This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/UidN5UAlQ-QinMDVuU713qtde6s.roa File: UidN5UAlQ-QinMDVuU713qtde6s.roa (raw, json) Hash identifier: SjCITC39fupPmxLMbA+D8zpJhx9IA929/zeseDSrizQ= Subject key identifier: 52:27:4D:E5:40:25:43:E4:22:9C:C0:D5:B9:4E:F5:DE:AB:5D:7B:AB Certificate issuer: /CN=2fe17bf80ee1e2e70db3ea05dc16f304e7090cf4 Certificate serial: 019B79EC3A36E7EE597A31F3933A0D3C06E2 Authority key identifier: 2F:E1:7B:F8:0E:E1:E2:E7:0D:B3:EA:05:DC:16:F3:04:E7:09:0C:F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/UidN5UAlQ-QinMDVuU713qtde6s.roa Signing time: Thu 01 Jan 2026 14:18:02 +0000 ROA not before: Thu 01 Jan 2026 14:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203713 IP address blocks: 185.153.76.0/22 maxlen: 24 2a06:9880::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.mft rsync://rpki.ripe.net/repository/DEFAULT/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:3a:36:e7:ee:59:7a:31:f3:93:3a:0d:3c:06:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2fe17bf80ee1e2e70db3ea05dc16f304e7090cf4 Validity Not Before: Jan 1 14:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52274de5402543e4229cc0d5b94ef5deab5d7bab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a6:19:5b:aa:be:2b:57:8d:82:cd:7c:6f:6c: 5b:b5:9a:76:df:19:64:d6:ce:eb:df:56:ed:d0:8c: db:f5:ac:69:ec:88:68:4e:bb:a3:81:c6:c3:ab:0e: 66:33:80:63:72:49:37:19:99:a8:08:f3:fe:45:e2: 62:82:ad:8f:8f:49:38:01:49:29:35:67:5b:b0:87: a2:85:a9:86:fb:30:d5:0b:f8:60:0c:34:15:cf:0f: d5:56:de:d7:34:c0:39:13:46:9b:ed:43:ca:ea:7b: 8f:94:62:3e:5a:5b:20:f0:8a:fe:16:e0:23:8a:92: 76:25:f6:66:07:28:57:9d:0f:58:e1:18:36:69:78: af:8f:78:96:c1:53:17:cd:6e:76:5c:6e:b8:0c:d7: 8e:e8:b9:fc:00:27:af:c1:80:fe:9c:74:be:d9:ff: 61:8c:bc:7b:ff:35:55:47:1c:49:17:48:54:c5:4c: 3c:1f:6a:e5:9f:49:17:ef:f4:6f:fa:7a:37:e7:e4: 2b:2e:71:43:90:7e:63:36:d7:21:38:73:35:e4:7b: 2b:a7:7c:d4:94:bc:1d:bc:04:63:e7:29:7d:fb:dd: 81:bd:dd:24:0b:a9:48:65:b8:86:6a:ed:43:fe:3d: 5a:08:c8:c6:e6:a2:2e:f3:35:75:10:a0:dd:11:8d: 43:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:27:4D:E5:40:25:43:E4:22:9C:C0:D5:B9:4E:F5:DE:AB:5D:7B:AB X509v3 Authority Key Identifier: keyid:2F:E1:7B:F8:0E:E1:E2:E7:0D:B3:EA:05:DC:16:F3:04:E7:09:0C:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/UidN5UAlQ-QinMDVuU713qtde6s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/5c4a71-b38a-4eb4-8633-24b3572a83bb/1/L-F7-A7h4ucNs-oF3BbzBOcJDPQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.153.76.0/22 IPv6: 2a06:9880::/29 Signature Algorithm: sha256WithRSAEncryption 68:83:98:f5:d5:18:ed:c6:87:86:4a:dd:97:0e:b2:33:9f:18: 1e:f7:2f:d8:eb:43:41:b2:1c:88:9a:e5:88:ea:f2:4a:88:9b: b8:6b:35:53:c9:4b:64:e3:04:7c:5a:fb:d3:f6:6a:08:d5:60: 58:31:10:8b:50:c0:a0:da:8c:4a:67:a9:0c:bf:35:2c:58:37: 63:07:1d:d6:f5:27:45:46:0b:54:85:84:d3:51:41:1b:1f:84: 0d:34:65:b0:34:79:e3:bf:08:87:53:a7:6d:7c:7f:07:a3:cf: 93:0e:6a:71:06:67:2f:db:a5:e3:40:6a:db:a4:39:12:f2:59: 93:89:94:be:69:f1:14:0e:ce:28:b1:38:68:57:55:91:f7:3b: 0d:d9:20:76:de:25:60:0f:a4:77:43:79:3e:e4:dd:df:4d:1a: a8:a4:3f:9a:fa:22:b6:24:71:80:a0:3b:bd:0b:48:21:79:07: 51:14:3a:34:a2:39:cb:2d:dc:51:a5:47:53:80:e9:2d:5f:67: 81:21:6a:ef:42:32:b9:6d:52:d6:20:33:15:12:98:47:ed:52: 62:b3:22:09:a9:5d:12:35:b5:b2:3b:bb:6f:ad:83:ea:76:4d: f3:91:34:b1:84:c7:ba:ac:c3:0b:2a:ff:60:51:dc:7a:13:47: 1f:c4:8d:ad -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57Do25+5ZejHzkzoNPAbiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJmZTE3YmY4MGVlMWUyZTcwZGIzZWEwNWRjMTZmMzA0ZTcw OTBjZjQwHhcNMjYwMTAxMTQxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjI3NGRlNTQwMjU0M2U0MjI5Y2MwZDViOTRlZjVkZWFiNWQ3YmFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6YZW6q+K1eNgs18b2xbtZp23xlk 1s7r31bt0Izb9axp7IhoTrujgcbDqw5mM4Bjckk3GZmoCPP+ReJigq2Pj0k4AUkp NWdbsIeihamG+zDVC/hgDDQVzw/VVt7XNMA5E0ab7UPK6nuPlGI+Wlsg8Ir+FuAj ipJ2JfZmByhXnQ9Y4Rg2aXivj3iWwVMXzW52XG64DNeO6Ln8ACevwYD+nHS+2f9h jLx7/zVVRxxJF0hUxUw8H2rln0kX7/Rv+no35+QrLnFDkH5jNtchOHM15Hsrp3zU lLwdvARj5yl9+92Bvd0kC6lIZbiGau1D/j1aCMjG5qIu8zV1EKDdEY1DqwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFInTeVAJUPkIpzA1blO9d6rXXurMB8GA1UdIwQY MBaAFC/he/gO4eLnDbPqBdwW8wTnCQz0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTC1GNy1BN2g0dWNOcy1vRjNCYnpCT2NKRFBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS81YzRhNzEtYjM4YS00ZWI0LTg2MzMt MjRiMzU3MmE4M2JiLzEvVWlkTjVVQWxRLVFpbk1EVnVVNzEzcXRkZTZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS81YzRhNzEtYjM4YS00ZWI0LTg2MzMtMjRiMzU3MmE4M2Ji LzEvTC1GNy1BN2g0dWNOcy1vRjNCYnpCT2NKRFBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZlMMA0E AgACMAcDBQMqBpiAMA0GCSqGSIb3DQEBCwUAA4IBAQBog5j11RjtxoeGSt2XDrIz nxge9y/Y60NBshyImuWI6vJKiJu4azVTyUtk4wR8WvvT9moI1WBYMRCLUMCg2oxK Z6kMvzUsWDdjBx3W9SdFRgtUhYTTUUEbH4QNNGWwNHnjvwiHU6dtfH8Ho8+TDmpx Bmcv26XjQGrbpDkS8lmTiZS+afEUDs4osThoV1WR9zsN2SB23iVgD6R3Q3k+5N3f TRqopD+a+iK2JHGAoDu9C0gheQdRFDo0ojnLLdxRpUdTgOktX2eBIWrvQjK5bVLW IDMVEphH7VJisyIJqV0SNbWyO7tvrYPqdk3zkTSxhMe6rMMLKv9gUdx6E0cfxI2t -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:04 2026 by rpki-client