This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/2ec4b3-e65d-4612-9304-a39303d85066/1/Uhh2a08gwiDaMSROk1rK4331Chw.roa File: Uhh2a08gwiDaMSROk1rK4331Chw.roa (raw, json) Hash identifier: 8oJqf3hEnDAqhg+fdWdx5w+WvA2GyWV10zwFhqN5lCI= Subject key identifier: 52:18:76:6B:4F:20:C2:20:DA:31:24:4E:93:5A:CA:E3:7D:F5:0A:1C Certificate issuer: /CN=f1af8bb98e405539ea983384fafa82b2b4b71724 Certificate serial: 019B77C76C550C7F6EBE11E2ABB5BD1829A6 Authority key identifier: F1:AF:8B:B9:8E:40:55:39:EA:98:33:84:FA:FA:82:B2:B4:B7:17:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8a-LuY5AVTnqmDOE-vqCsrS3FyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/2ec4b3-e65d-4612-9304-a39303d85066/1/Uhh2a08gwiDaMSROk1rK4331Chw.roa Signing time: Thu 01 Jan 2026 04:18:36 +0000 ROA not before: Thu 01 Jan 2026 04:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51399 IP address blocks: 91.103.144.0/22 maxlen: 24 91.103.144.0/24 maxlen: 24 91.217.0.0/23 maxlen: 24 91.218.200.0/22 maxlen: 24 91.218.208.0/22 maxlen: 24 110.172.146.0/24 maxlen: 24 185.157.12.0/22 maxlen: 24 2a07:a080::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/2ec4b3-e65d-4612-9304-a39303d85066/1/8a-LuY5AVTnqmDOE-vqCsrS3FyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/2ec4b3-e65d-4612-9304-a39303d85066/1/8a-LuY5AVTnqmDOE-vqCsrS3FyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8a-LuY5AVTnqmDOE-vqCsrS3FyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:6c:55:0c:7f:6e:be:11:e2:ab:b5:bd:18:29:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1af8bb98e405539ea983384fafa82b2b4b71724 Validity Not Before: Jan 1 04:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5218766b4f20c220da31244e935acae37df50a1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:04:36:62:b2:bf:9d:32:ac:cc:9d:40:ce:04: 55:be:f6:3c:cf:cc:a8:e7:b2:60:e1:a5:83:00:c8: fc:20:95:b2:ac:bf:d9:e3:9a:d8:e6:7c:6c:4c:b6: 04:27:30:40:8f:e5:c5:9e:de:f4:90:29:b9:84:c4: 54:be:98:09:4f:16:87:d4:f4:10:5f:c3:e0:4e:24: e6:e7:3d:9f:dc:d0:d3:fa:18:ce:d5:c9:c7:60:34: c6:82:4b:ce:2a:ae:08:6a:55:a7:34:34:f9:d6:99: 54:d5:d3:93:1c:6e:ec:a8:2c:00:ed:83:48:b2:21: 57:8f:8d:22:9a:28:9d:29:ff:e4:f5:f5:ed:54:d2: 94:61:fb:8a:46:27:4f:97:a7:ea:3c:3f:92:4e:f2: 66:15:1c:15:85:e3:07:35:84:12:a8:47:84:af:d9: 97:c0:b9:3b:68:c0:b7:57:84:2f:b8:cf:a3:3a:60: ce:e5:13:2d:06:d6:8f:3d:2c:e6:e9:02:47:62:f8: 10:27:54:fc:2f:d6:b8:db:1d:a1:fd:3b:f0:3f:3c: 83:fc:b4:43:00:7a:49:c5:e2:2a:ec:71:df:4c:c4: b5:4a:08:1f:90:48:f8:98:54:65:f4:6e:46:16:c6: d1:5f:09:5d:b7:11:9a:e7:35:3f:f1:fe:d5:b6:b0: e1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:18:76:6B:4F:20:C2:20:DA:31:24:4E:93:5A:CA:E3:7D:F5:0A:1C X509v3 Authority Key Identifier: keyid:F1:AF:8B:B9:8E:40:55:39:EA:98:33:84:FA:FA:82:B2:B4:B7:17:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a-LuY5AVTnqmDOE-vqCsrS3FyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/2ec4b3-e65d-4612-9304-a39303d85066/1/Uhh2a08gwiDaMSROk1rK4331Chw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/2ec4b3-e65d-4612-9304-a39303d85066/1/8a-LuY5AVTnqmDOE-vqCsrS3FyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.103.144.0/22 91.217.0.0/23 91.218.200.0/22 91.218.208.0/22 110.172.146.0/24 185.157.12.0/22 IPv6: 2a07:a080::/29 Signature Algorithm: sha256WithRSAEncryption 4a:fb:ca:fc:6a:d3:1b:2e:39:63:37:d1:fc:22:98:11:ff:e4: c3:b1:c8:c3:6f:c1:89:1a:68:e0:2e:07:8f:ba:66:f1:1c:15: 20:d6:8e:24:0f:f8:19:66:68:72:34:a5:33:03:66:1b:8e:db: 28:aa:1e:8f:f2:34:59:08:8c:68:9e:7f:b7:82:12:e3:6e:19: 8f:46:78:26:41:de:69:7c:4e:1a:d6:d3:5a:c9:b5:15:e2:98: 8e:db:7e:f8:dc:25:03:62:7f:91:40:ba:07:10:de:b4:4c:b9: 81:a6:23:8f:67:b9:da:42:b1:9c:d5:c2:71:2c:9f:6c:0d:6d: d4:ba:f3:b6:c5:31:60:4d:ce:1f:28:92:84:6f:2d:83:5b:14: 98:73:67:b3:33:17:bf:cc:aa:cb:df:a8:b0:cf:b9:25:14:e0: a8:d6:ad:47:db:e7:13:b2:0c:2d:da:fa:b2:22:03:da:2a:6d: f7:8d:a3:4e:bc:52:60:27:ca:5a:ad:16:4e:b6:e6:56:6c:0f: 8e:27:4d:8c:86:e2:de:b1:f2:be:6d:fe:c9:ae:8d:47:b1:f4: 03:16:a4:48:3c:f4:23:8b:a2:a3:fb:26:86:3a:b5:f1:be:08: ba:56:c0:cd:5a:24:af:fa:43:12:87:11:09:94:b8:e8:5c:d5: 1c:51:a5:70 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt3x2xVDH9uvhHiq7W9GCmmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxYWY4YmI5OGU0MDU1MzllYTk4MzM4NGZhZmE4MmIyYjRi NzE3MjQwHhcNMjYwMTAxMDQxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjE4NzY2YjRmMjBjMjIwZGEzMTI0NGU5MzVhY2FlMzdkZjUwYTFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQQ2YrK/nTKszJ1AzgRVvvY8z8yo 57Jg4aWDAMj8IJWyrL/Z45rY5nxsTLYEJzBAj+XFnt70kCm5hMRUvpgJTxaH1PQQ X8PgTiTm5z2f3NDT+hjO1cnHYDTGgkvOKq4IalWnNDT51plU1dOTHG7sqCwA7YNI siFXj40imiidKf/k9fXtVNKUYfuKRidPl6fqPD+STvJmFRwVheMHNYQSqEeEr9mX wLk7aMC3V4QvuM+jOmDO5RMtBtaPPSzm6QJHYvgQJ1T8L9a42x2h/TvwPzyD/LRD AHpJxeIq7HHfTMS1SggfkEj4mFRl9G5GFsbRXwldtxGa5zU/8f7VtrDhKwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFFIYdmtPIMIg2jEkTpNayuN99QocMB8GA1UdIwQY MBaAFPGvi7mOQFU56pgzhPr6grK0txckMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGEtTHVZNUFWVG5xbURPRS12cUNzclMzRnlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8yZWM0YjMtZTY1ZC00NjEyLTkzMDQt YTM5MzAzZDg1MDY2LzEvVWhoMmEwOGd3aURhTVNST2sxcks0MzMxQ2h3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi8yZWM0YjMtZTY1ZC00NjEyLTkzMDQtYTM5MzAzZDg1MDY2 LzEvOGEtTHVZNUFWVG5xbURPRS12cUNzclMzRnlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQCW2eQAwQB W9kAAwQCW9rIAwQCW9rQAwQAbqySAwQCuZ0MMA0EAgACMAcDBQMqB6CAMA0GCSqG SIb3DQEBCwUAA4IBAQBK+8r8atMbLjljN9H8IpgR/+TDscjDb8GJGmjgLgePumbx HBUg1o4kD/gZZmhyNKUzA2Ybjtsoqh6P8jRZCIxonn+3ghLjbhmPRngmQd5pfE4a 1tNaybUV4piO23743CUDYn+RQLoHEN60TLmBpiOPZ7naQrGc1cJxLJ9sDW3UuvO2 xTFgTc4fKJKEby2DWxSYc2ezMxe/zKrL36iwz7klFOCo1q1H2+cTsgwt2vqyIgPa Km33jaNOvFJgJ8parRZOtuZWbA+OJ02MhuLesfK+bf7Jro1HsfQDFqRIPPQji6Kj +yaGOrXxvgi6VsDNWiSv+kMShxEJlLjoXNUcUaVw -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:17 2026 by rpki-client