This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/uGgURm4xZb_PGCLcLHmslzE7biA.roa File: uGgURm4xZb_PGCLcLHmslzE7biA.roa (raw, json) Hash identifier: pIGXgkw2db69+0HAwWrFE2B3kXizGYdLfC7lC0LFfVk= Subject key identifier: B8:68:14:46:6E:31:65:BF:CF:18:22:DC:2C:79:AC:97:31:3B:6E:20 Certificate issuer: /CN=05bfdbb6a4b1663369da407db97b021f73284a28 Certificate serial: 019B7F15C9D0301061B4FB6C267C22F1471D Authority key identifier: 05:BF:DB:B6:A4:B1:66:33:69:DA:40:7D:B9:7B:02:1F:73:28:4A:28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bb_btqSxZjNp2kB9uXsCH3MoSig.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/uGgURm4xZb_PGCLcLHmslzE7biA.roa Signing time: Fri 02 Jan 2026 14:21:32 +0000 ROA not before: Fri 02 Jan 2026 14:21:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215000 IP address blocks: 78.110.171.0/24 maxlen: 24 78.157.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/Bb_btqSxZjNp2kB9uXsCH3MoSig.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/Bb_btqSxZjNp2kB9uXsCH3MoSig.mft rsync://rpki.ripe.net/repository/DEFAULT/Bb_btqSxZjNp2kB9uXsCH3MoSig.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 13:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c9:d0:30:10:61:b4:fb:6c:26:7c:22:f1:47:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05bfdbb6a4b1663369da407db97b021f73284a28 Validity Not Before: Jan 2 14:21:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b86814466e3165bfcf1822dc2c79ac97313b6e20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f7:9a:79:6e:8f:be:a4:a1:fb:c2:68:4b:e7: d0:f3:ff:d2:f7:3f:e7:f3:ed:63:6d:8d:09:a7:c3: e8:e5:da:73:c1:87:30:aa:48:8d:9d:f4:25:b7:0b: e1:97:9f:ae:9d:e5:7a:35:92:af:e1:54:86:1c:c7: 8c:39:47:32:35:50:08:41:49:c2:4a:09:b4:96:6c: dc:49:fd:01:8a:3c:a2:7b:26:3a:15:e7:df:30:49: 9c:09:13:0f:f6:3f:87:14:b3:9e:ce:69:ed:f3:ae: 97:06:2d:2a:6c:0f:11:fb:65:88:02:53:14:83:c7: 50:0f:55:f7:f5:c2:0d:fe:f3:51:c0:f7:2e:d3:5a: b0:f9:a0:00:09:69:d5:df:e2:6b:6a:db:16:76:53: 77:af:fc:fc:a7:b3:49:b5:dd:ce:f6:14:42:a5:c2: 4b:e4:90:44:76:4f:bb:e2:dc:21:d5:7b:e5:bd:eb: 6c:49:47:e8:f2:35:32:78:d0:d1:99:8f:d5:5b:aa: 21:d2:63:5d:cd:d2:b5:8c:a8:90:75:11:24:cd:83: 45:01:1d:ef:6e:45:85:08:a2:73:b5:81:2e:ae:1c: 43:bb:b6:ee:83:2e:0b:9f:e2:b7:59:61:0f:d1:28: e6:34:12:c5:b7:e1:5e:0a:d6:e8:18:24:71:33:89: 0f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:68:14:46:6E:31:65:BF:CF:18:22:DC:2C:79:AC:97:31:3B:6E:20 X509v3 Authority Key Identifier: keyid:05:BF:DB:B6:A4:B1:66:33:69:DA:40:7D:B9:7B:02:1F:73:28:4A:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bb_btqSxZjNp2kB9uXsCH3MoSig.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/uGgURm4xZb_PGCLcLHmslzE7biA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/460c00-3e95-4274-bc9c-060dacfebe0f/1/Bb_btqSxZjNp2kB9uXsCH3MoSig.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.110.171.0/24 78.157.205.0/24 Signature Algorithm: sha256WithRSAEncryption 79:f1:d9:c9:aa:a5:5e:e7:6b:56:63:ed:dd:87:e2:89:b8:78: 55:c3:b0:db:56:7b:91:4a:fd:84:41:37:ce:e6:12:93:61:ce: a7:85:08:1c:9a:85:51:b7:d6:00:0a:3a:cd:a2:37:38:1b:33: b9:c9:c1:57:65:8b:55:d2:a7:c5:3c:0b:9f:80:12:41:63:93: 14:9e:80:77:17:a0:69:bb:91:0b:cc:1a:ef:00:4c:19:4a:1a: 0d:60:6b:1c:88:13:ef:89:d5:96:81:ad:63:f9:7b:26:f1:91: 03:0f:7c:35:2d:aa:f9:8c:75:72:b0:dd:28:a4:46:fd:73:49: 9c:6f:68:7b:46:8b:95:5d:83:17:f2:91:b0:e6:8b:1b:63:81: 2c:61:9d:9b:36:62:a6:1d:4b:8b:e4:af:ea:93:4d:1a:02:17: 6f:b5:47:b5:e1:1d:74:47:d3:63:7f:36:da:f8:22:42:4b:e3: 0d:da:43:1c:f5:9b:c8:8f:07:1f:e4:4b:9b:b9:f4:d6:fe:c3: ce:e0:38:d1:b0:65:d3:d0:9c:30:cd:d8:d9:8d:da:c1:7a:0d: 6f:50:bf:7f:fe:9d:19:d1:59:22:d3:c2:b0:b5:65:19:8b:9f: d4:9f:9f:5a:43:04:b5:87:a2:70:c2:21:88:2b:da:be:e8:8f: 42:dd:2f:2a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FcnQMBBhtPtsJnwi8UcdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1YmZkYmI2YTRiMTY2MzM2OWRhNDA3ZGI5N2IwMjFmNzMy ODRhMjgwHhcNMjYwMTAyMTQyMTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODY4MTQ0NjZlMzE2NWJmY2YxODIyZGMyYzc5YWM5NzMxM2I2ZTIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPeaeW6PvqSh+8JoS+fQ8//S9z/n 8+1jbY0Jp8Po5dpzwYcwqkiNnfQltwvhl5+uneV6NZKv4VSGHMeMOUcyNVAIQUnC Sgm0lmzcSf0BijyieyY6FeffMEmcCRMP9j+HFLOezmnt866XBi0qbA8R+2WIAlMU g8dQD1X39cIN/vNRwPcu01qw+aAACWnV3+JratsWdlN3r/z8p7NJtd3O9hRCpcJL 5JBEdk+74twh1XvlvetsSUfo8jUyeNDRmY/VW6oh0mNdzdK1jKiQdREkzYNFAR3v bkWFCKJztYEurhxDu7bugy4Ln+K3WWEP0SjmNBLFt+FeCtboGCRxM4kPlwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLhoFEZuMWW/zxgi3Cx5rJcxO24gMB8GA1UdIwQY MBaAFAW/27aksWYzadpAfbl7Ah9zKEooMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmJfYnRxU3haak5wMmtCOXVYc0NIM01vU2lnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi80NjBjMDAtM2U5NS00Mjc0LWJjOWMt MDYwZGFjZmViZTBmLzEvdUdnVVJtNHhaYl9QR0NMY0xIbXNsekU3YmlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi80NjBjMDAtM2U5NS00Mjc0LWJjOWMtMDYwZGFjZmViZTBm LzEvQmJfYnRxU3haak5wMmtCOXVYc0NIM01vU2lnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATm6rAwQA Tp3NMA0GCSqGSIb3DQEBCwUAA4IBAQB58dnJqqVe52tWY+3dh+KJuHhVw7DbVnuR Sv2EQTfO5hKTYc6nhQgcmoVRt9YACjrNojc4GzO5ycFXZYtV0qfFPAufgBJBY5MU noB3F6Bpu5ELzBrvAEwZShoNYGsciBPvidWWga1j+Xsm8ZEDD3w1Lar5jHVysN0o pEb9c0mcb2h7RouVXYMX8pGw5osbY4EsYZ2bNmKmHUuL5K/qk00aAhdvtUe14R10 R9Njfzba+CJCS+MN2kMc9ZvIjwcf5EubufTW/sPO4DjRsGXT0JwwzdjZjdrBeg1v UL9//p0Z0Vki08KwtWUZi5/Un59aQwS1h6JwwiGIK9q+6I9C3S8q -----END CERTIFICATE-----Generated at Sat Jan 24 21:11:52 2026 by rpki-client