This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/_uU5ssxCIcQAM3SMyMjxB94UIdI.roa File: _uU5ssxCIcQAM3SMyMjxB94UIdI.roa (raw, json) Hash identifier: tSyW1+iSOIbLDd34f8vgQPxMHckfLQ3hITt8+wBJJ/8= Subject key identifier: FE:E5:39:B2:CC:42:21:C4:00:33:74:8C:C8:C8:F1:07:DE:14:21:D2 Certificate issuer: /CN=9cd0758825dd89cfee5fdecc7dcb651f0a5d1018 Certificate serial: 019B7B362C9C11C9135554341C075EBDB542 Authority key identifier: 9C:D0:75:88:25:DD:89:CF:EE:5F:DE:CC:7D:CB:65:1F:0A:5D:10:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nNB1iCXdic_uX97MfctlHwpdEBg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/_uU5ssxCIcQAM3SMyMjxB94UIdI.roa Signing time: Thu 01 Jan 2026 20:18:26 +0000 ROA not before: Thu 01 Jan 2026 20:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43260 IP address blocks: 31.14.52.0/24 maxlen: 24 31.214.129.0/24 maxlen: 24 31.214.152.0/24 maxlen: 24 37.156.246.0/24 maxlen: 24 45.139.222.0/24 maxlen: 24 45.145.20.0/24 maxlen: 24 89.45.94.0/24 maxlen: 24 93.113.96.0/24 maxlen: 24 109.230.196.0/24 maxlen: 24 185.111.244.0/24 maxlen: 24 185.111.245.0/24 maxlen: 24 185.111.246.0/24 maxlen: 24 185.111.247.0/24 maxlen: 24 193.53.87.0/24 maxlen: 24 193.53.98.0/24 maxlen: 24 193.53.103.0/24 maxlen: 24 193.53.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/nNB1iCXdic_uX97MfctlHwpdEBg.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/nNB1iCXdic_uX97MfctlHwpdEBg.mft rsync://rpki.ripe.net/repository/DEFAULT/nNB1iCXdic_uX97MfctlHwpdEBg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:2c:9c:11:c9:13:55:54:34:1c:07:5e:bd:b5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9cd0758825dd89cfee5fdecc7dcb651f0a5d1018 Validity Not Before: Jan 1 20:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fee539b2cc4221c40033748cc8c8f107de1421d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a1:6d:fa:2f:fc:33:60:1d:10:ee:18:27:c9: 19:28:7e:aa:b9:5d:11:f5:dd:24:b4:4c:f7:85:ce: 63:12:ab:89:8c:a5:97:3b:9d:ba:67:36:4a:9e:f5: 20:73:4e:59:84:6d:f0:f3:0d:00:0a:65:65:11:45: 37:ec:82:c8:a5:4a:87:a1:ae:e7:9b:2b:85:4b:53: 84:9b:ba:ba:fe:6a:c2:f4:67:de:57:32:af:89:96: f8:1a:ff:55:eb:31:55:51:47:d2:9d:fe:4b:f9:ed: c2:62:7c:e2:66:cc:22:27:55:fe:44:6f:17:9b:76: bc:eb:c5:ff:a5:4b:17:73:13:2c:94:a9:c3:2f:13: e7:3a:90:b6:71:62:5d:68:23:46:f1:9f:29:48:25: e2:f1:0a:eb:ac:c6:e7:10:36:6b:36:9d:b1:ff:a7: 68:55:67:50:d9:18:04:b8:92:c3:eb:0c:8e:39:f2: ed:45:62:f0:cd:84:98:ec:09:28:06:d6:18:22:3f: 27:0d:d7:ac:ae:ea:32:cc:a8:2e:8c:c5:1c:b7:bd: 69:2a:02:09:c6:8a:16:64:b2:60:3f:56:52:49:90: 39:82:fc:d3:d7:a5:87:74:38:00:56:26:3c:32:2f: 69:72:9b:ab:c1:16:48:eb:30:20:ed:e6:3f:d5:6c: 13:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E5:39:B2:CC:42:21:C4:00:33:74:8C:C8:C8:F1:07:DE:14:21:D2 X509v3 Authority Key Identifier: keyid:9C:D0:75:88:25:DD:89:CF:EE:5F:DE:CC:7D:CB:65:1F:0A:5D:10:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nNB1iCXdic_uX97MfctlHwpdEBg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/_uU5ssxCIcQAM3SMyMjxB94UIdI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0e651e-90c7-4acd-97b9-a54f8e4813e7/1/nNB1iCXdic_uX97MfctlHwpdEBg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.14.52.0/24 31.214.129.0/24 31.214.152.0/24 37.156.246.0/24 45.139.222.0/24 45.145.20.0/24 89.45.94.0/24 93.113.96.0/24 109.230.196.0/24 185.111.244.0/22 193.53.87.0/24 193.53.98.0/24 193.53.103.0/24 193.53.245.0/24 Signature Algorithm: sha256WithRSAEncryption 10:d0:d0:8c:5e:cd:77:81:40:c0:dc:65:95:82:15:d1:93:32: 50:75:e0:a2:55:4f:13:9f:99:b4:95:0b:78:32:15:fb:3b:d5: 75:00:2b:0d:90:ed:f1:15:ac:e2:76:15:7a:6a:ee:ef:83:bd: 85:4c:b6:aa:f2:9e:79:50:7a:e7:6d:38:93:a3:a5:26:9b:8f: 4f:61:ee:38:2a:67:80:19:25:70:ce:9d:95:c2:93:e8:86:e3: bd:a7:aa:b4:e3:45:09:ca:6c:78:80:28:71:03:c0:73:13:fc: 6d:f4:d7:b9:4f:c6:67:d3:cb:f9:97:7a:e8:33:88:c8:fc:0f: 3e:fb:5b:12:ae:63:fe:e7:32:02:ab:1b:66:bd:b5:14:59:e7: e9:c6:ea:34:b6:15:96:de:4f:4b:47:84:4c:27:bb:5c:91:56: 6b:cd:5b:f4:2f:68:9e:2b:a9:0f:00:a5:d3:e4:0d:d3:f8:fa: 5a:ac:4f:f7:46:25:9d:15:31:c3:a6:07:11:80:1a:ad:e1:cc: a8:7e:4a:20:f4:1a:fc:73:63:0b:92:30:84:51:9f:cc:2d:b0: ba:6f:17:99:c2:7c:7c:cd:54:eb:f9:85:2a:b2:87:94:74:95: c5:a0:f6:97:68:d7:e2:61:b6:27:58:40:8d:72:c2:75:e3:b5: 6b:02:df:b9 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgISAZt7NiycEckTVVQ0HAdevbVCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljZDA3NTg4MjVkZDg5Y2ZlZTVmZGVjYzdkY2I2NTFmMGE1 ZDEwMTgwHhcNMjYwMTAxMjAxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZWU1MzliMmNjNDIyMWM0MDAzMzc0OGNjOGM4ZjEwN2RlMTQyMWQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3qFt+i/8M2AdEO4YJ8kZKH6quV0R 9d0ktEz3hc5jEquJjKWXO526ZzZKnvUgc05ZhG3w8w0ACmVlEUU37ILIpUqHoa7n myuFS1OEm7q6/mrC9GfeVzKviZb4Gv9V6zFVUUfSnf5L+e3CYnziZswiJ1X+RG8X m3a868X/pUsXcxMslKnDLxPnOpC2cWJdaCNG8Z8pSCXi8QrrrMbnEDZrNp2x/6do VWdQ2RgEuJLD6wyOOfLtRWLwzYSY7AkoBtYYIj8nDdesruoyzKgujMUct71pKgIJ xooWZLJgP1ZSSZA5gvzT16WHdDgAViY8Mi9pcpurwRZI6zAg7eY/1WwTywIDAQAB o4ICVzCCAlMwHQYDVR0OBBYEFP7lObLMQiHEADN0jMjI8QfeFCHSMB8GA1UdIwQY MBaAFJzQdYgl3YnP7l/ezH3LZR8KXRAYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbk5CMWlDWGRpY191WDk3TWZjdGxId3BkRUJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wZTY1MWUtOTBjNy00YWNkLTk3Yjkt YTU0ZjhlNDgxM2U3LzEvX3VVNXNzeENJY1FBTTNTTXlNanhCOTRVSWRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8wZTY1MWUtOTBjNy00YWNkLTk3YjktYTU0ZjhlNDgxM2U3 LzEvbk5CMWlDWGRpY191WDk3TWZjdGxId3BkRUJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG0GCCsGAQUFBwEHAQH/BF4wXDBaBAIAATBUAwQAHw40AwQA H9aBAwQAH9aYAwQAJZz2AwQALYveAwQALZEUAwQAWS1eAwQAXXFgAwQAbebEAwQC uW/0AwQAwTVXAwQAwTViAwQAwTVnAwQAwTX1MA0GCSqGSIb3DQEBCwUAA4IBAQAQ 0NCMXs13gUDA3GWVghXRkzJQdeCiVU8Tn5m0lQt4MhX7O9V1ACsNkO3xFazidhV6 au7vg72FTLaq8p55UHrnbTiTo6Umm49PYe44KmeAGSVwzp2VwpPohuO9p6q040UJ ymx4gChxA8BzE/xt9Ne5T8Zn08v5l3roM4jI/A8++1sSrmP+5zICqxtmvbUUWefp xuo0thWW3k9LR4RMJ7tckVZrzVv0L2ieK6kPAKXT5A3T+PparE/3RiWdFTHDpgcR gBqt4cyofkog9Br8c2MLkjCEUZ/MLbC6bxeZwnx8zVTr+YUqsoeUdJXFoPaXaNfi YbYnWECNcsJ147VrAt+5 -----END CERTIFICATE-----Generated at Mon Jan 19 16:51:35 2026 by rpki-client