This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/UmTOMuHCa-fwYMq_pxCMzn3YXZM.roa File: UmTOMuHCa-fwYMq_pxCMzn3YXZM.roa (raw, json) Hash identifier: GyQ5NKyLCgY3IraQz2Cl1rsHyWrOPMkegOhODBfaa4U= Subject key identifier: 52:64:CE:32:E1:C2:6B:E7:F0:60:CA:BF:A7:10:8C:CE:7D:D8:5D:93 Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a Certificate serial: 019B77C73F38CCCCDDB91CFF292E7DBB9994 Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/UmTOMuHCa-fwYMq_pxCMzn3YXZM.roa Signing time: Thu 01 Jan 2026 04:18:25 +0000 ROA not before: Thu 01 Jan 2026 04:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59513 IP address blocks: 194.190.55.0/24 maxlen: 24 194.226.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:3f:38:cc:cc:dd:b9:1c:ff:29:2e:7d:bb:99:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a Validity Not Before: Jan 1 04:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5264ce32e1c26be7f060cabfa7108cce7dd85d93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:d2:48:87:26:9e:95:2f:33:a8:30:a7:df:3b: 22:a5:56:70:83:f3:04:66:71:45:6a:91:ef:62:b8: 17:d6:1f:6d:4b:90:79:32:a0:27:a4:50:53:b2:f7: 87:a5:28:46:59:e5:64:fd:7f:11:48:c8:7c:eb:41: c8:06:62:e7:7f:b2:f6:38:df:69:6f:8f:d8:cc:11: e1:1d:34:bb:6f:1d:de:c6:4b:e0:f4:3f:b5:f3:52: 15:1a:19:e7:8b:6c:d8:5a:3f:12:a7:e0:cd:71:2f: e9:df:5e:d4:cd:67:57:13:03:50:4b:74:5c:89:a9: f2:b9:b4:36:72:78:28:b5:88:5a:1c:3d:a7:6a:2c: 87:1d:0f:95:dd:f8:e8:95:48:f2:70:86:d5:dc:16: 97:82:fb:f7:80:07:55:35:60:80:93:07:53:08:01: ad:30:6b:16:57:56:71:0b:d0:e4:97:f9:f6:66:12: 69:94:6f:39:27:55:09:41:7d:2e:fb:a5:df:e5:e6: d2:d2:cf:01:42:c2:69:69:14:38:05:9c:1c:20:9b: b6:c3:28:fe:f5:e6:fb:6f:d4:34:ec:ec:8d:89:b4: 8f:f3:db:a2:2b:02:94:ef:da:f9:53:e9:b7:16:91: e5:09:5b:b9:19:bd:d6:b3:c3:8e:be:62:58:f5:bb: 51:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:64:CE:32:E1:C2:6B:E7:F0:60:CA:BF:A7:10:8C:CE:7D:D8:5D:93 X509v3 Authority Key Identifier: keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/UmTOMuHCa-fwYMq_pxCMzn3YXZM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.190.55.0/24 194.226.21.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:40:2a:11:46:b3:a8:2f:ae:26:08:64:42:24:13:25:31:03: bf:ce:24:54:3a:a0:15:ca:42:c8:4a:8c:1f:4a:7a:66:21:56: ee:3a:f4:0d:7d:18:b5:0d:96:be:c0:88:7d:9b:45:fc:6c:0c: 87:a0:0d:28:d0:26:ac:3d:16:f7:12:07:48:d4:4b:88:26:e8: 60:ab:fb:57:45:15:ff:5d:ad:2c:54:dd:86:fd:3b:7e:1e:47: 9f:f5:da:50:19:f2:35:05:b9:8f:06:ac:d8:18:3d:1a:01:ed: 7a:0e:7e:72:09:35:ea:6a:ea:c1:ab:9c:37:48:0d:5b:61:56: dc:dd:aa:c1:c4:84:90:79:23:b6:93:be:17:7e:b2:e7:58:8a: c2:7e:6c:e3:fc:d2:ac:7c:b9:63:4d:d5:9e:72:8b:74:ba:04: 86:ef:a6:dd:e3:4b:14:93:64:53:8d:6c:80:bb:8c:72:46:30: 1c:41:55:01:8b:a9:71:62:dd:50:0c:9e:00:21:e1:17:12:a3: 13:0e:fc:53:80:00:ec:d4:fe:16:09:e5:56:ec:c1:aa:85:65: ac:51:3f:07:7d:af:f2:dd:1b:5b:46:cc:3e:dd:5b:23:f2:57: 13:64:6b:3a:07:15:63:c2:ab:f5:66:89:fe:96:db:1d:b4:ed: 9e:4d:de:07 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xz84zMzduRz/KS59u5mUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx NjQ2NGEwHhcNMjYwMTAxMDQxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjY0Y2UzMmUxYzI2YmU3ZjA2MGNhYmZhNzEwOGNjZTdkZDg1ZDkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAitJIhyaelS8zqDCn3zsipVZwg/ME ZnFFapHvYrgX1h9tS5B5MqAnpFBTsveHpShGWeVk/X8RSMh860HIBmLnf7L2ON9p b4/YzBHhHTS7bx3exkvg9D+181IVGhnni2zYWj8Sp+DNcS/p317UzWdXEwNQS3Rc ianyubQ2cngotYhaHD2naiyHHQ+V3fjolUjycIbV3BaXgvv3gAdVNWCAkwdTCAGt MGsWV1ZxC9Dkl/n2ZhJplG85J1UJQX0u+6Xf5ebS0s8BQsJpaRQ4BZwcIJu2wyj+ 9eb7b9Q07OyNibSP89uiKwKU79r5U+m3FpHlCVu5Gb3Ws8OOvmJY9btRvwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFJkzjLhwmvn8GDKv6cQjM592F2TMB8GA1UdIwQY MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt OWU5YTFlMDM3MzhlLzEvVW1UT011SENhLWZ3WU1xX3B4Q016bjNZWFpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwr43AwQA wuIVMA0GCSqGSIb3DQEBCwUAA4IBAQBfQCoRRrOoL64mCGRCJBMlMQO/ziRUOqAV ykLISowfSnpmIVbuOvQNfRi1DZa+wIh9m0X8bAyHoA0o0CasPRb3EgdI1EuIJuhg q/tXRRX/Xa0sVN2G/Tt+Hkef9dpQGfI1BbmPBqzYGD0aAe16Dn5yCTXqaurBq5w3 SA1bYVbc3arBxISQeSO2k74XfrLnWIrCfmzj/NKsfLljTdWecot0ugSG76bd40sU k2RTjWyAu4xyRjAcQVUBi6lxYt1QDJ4AIeEXEqMTDvxTgADs1P4WCeVW7MGqhWWs UT8Hfa/y3RtbRsw+3Vsj8lcTZGs6BxVjwqv1Zon+ltsdtO2eTd4H -----END CERTIFICATE-----Generated at Sun Jan 25 21:15:14 2026 by rpki-client