This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/1d5b0b-4b05-402c-8265-efcfba9907dc/1/UqRs_bqs0VhHaTN282P9bVhhhBg.roa File: UqRs_bqs0VhHaTN282P9bVhhhBg.roa (raw, json) Hash identifier: VbKxBTMmSvaIdEScwWRF+rUhdcFdJ0rTtF7OYGrB3iw= Subject key identifier: 52:A4:6C:FD:BA:AC:D1:58:47:69:33:76:F3:63:FD:6D:58:61:84:18 Certificate issuer: /CN=39f7c7498fd9c9f28680495162b9eb76ad47c603 Certificate serial: 019B791143C6035EBF46F9A35FD587F6E51A Authority key identifier: 39:F7:C7:49:8F:D9:C9:F2:86:80:49:51:62:B9:EB:76:AD:47:C6:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OffHSY_ZyfKGgElRYrnrdq1HxgM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/1d5b0b-4b05-402c-8265-efcfba9907dc/1/UqRs_bqs0VhHaTN282P9bVhhhBg.roa Signing time: Thu 01 Jan 2026 10:18:53 +0000 ROA not before: Thu 01 Jan 2026 10:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48918 IP address blocks: 185.250.108.0/24 maxlen: 24 185.250.110.0/24 maxlen: 24 2a0c:c40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/1d5b0b-4b05-402c-8265-efcfba9907dc/1/OffHSY_ZyfKGgElRYrnrdq1HxgM.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/1d5b0b-4b05-402c-8265-efcfba9907dc/1/OffHSY_ZyfKGgElRYrnrdq1HxgM.mft rsync://rpki.ripe.net/repository/DEFAULT/OffHSY_ZyfKGgElRYrnrdq1HxgM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 15:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:43:c6:03:5e:bf:46:f9:a3:5f:d5:87:f6:e5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39f7c7498fd9c9f28680495162b9eb76ad47c603 Validity Not Before: Jan 1 10:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52a46cfdbaacd15847693376f363fd6d58618418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b5:bf:2d:09:58:81:24:8f:cd:72:2c:29:d8: a3:aa:c6:31:9b:e7:cc:5f:3a:ce:4d:9b:fc:01:da: e2:a5:1a:e9:26:c6:d8:fa:be:fe:f3:c4:d1:96:68: cc:aa:47:1f:7a:9d:03:b5:f2:66:53:28:7a:59:04: cf:d2:f9:78:20:19:be:86:54:5a:be:4a:ea:f5:66: fe:d2:a7:08:22:b2:e5:7f:14:49:bc:e7:be:6d:39: 72:88:67:e4:c2:35:f2:a6:38:64:a5:09:91:e0:98: b3:42:54:ff:a3:f6:03:73:1a:79:aa:4d:d1:8d:d2: 7f:e2:85:6b:20:1a:88:26:18:43:27:13:07:e4:40: 07:40:d6:ba:02:55:1a:b3:7f:b3:3c:5b:05:ac:20: 4b:9c:27:d9:81:8e:f2:81:62:46:40:dd:ce:c4:c2: 92:d1:65:ac:f2:c2:7d:83:fd:b9:f5:88:46:28:aa: c5:b2:04:db:fa:be:60:d2:39:84:28:f0:28:d8:29: a5:4d:65:b9:fd:0e:87:9b:23:41:13:b0:c5:75:8e: 2f:46:86:fa:3d:a6:06:b2:c8:cd:fa:84:07:db:3f: 5d:a0:45:35:7f:95:05:c6:3d:7b:01:4f:bd:e4:8f: 0e:99:e8:25:54:fa:19:25:36:98:cc:1a:37:17:66: 79:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A4:6C:FD:BA:AC:D1:58:47:69:33:76:F3:63:FD:6D:58:61:84:18 X509v3 Authority Key Identifier: keyid:39:F7:C7:49:8F:D9:C9:F2:86:80:49:51:62:B9:EB:76:AD:47:C6:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OffHSY_ZyfKGgElRYrnrdq1HxgM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1d5b0b-4b05-402c-8265-efcfba9907dc/1/UqRs_bqs0VhHaTN282P9bVhhhBg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1d5b0b-4b05-402c-8265-efcfba9907dc/1/OffHSY_ZyfKGgElRYrnrdq1HxgM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.250.108.0/24 185.250.110.0/24 IPv6: 2a0c:c40::/32 Signature Algorithm: sha256WithRSAEncryption 84:90:ca:6e:df:98:3a:b1:e2:44:e9:4b:eb:b8:ce:57:e8:2b: c0:d4:ad:b0:23:20:b1:63:1b:ab:32:f9:18:2f:4a:2e:55:fa: 91:23:92:d3:0c:04:e8:6a:02:f3:06:ff:3c:9a:9c:b0:c5:79: a9:ef:aa:a9:49:6a:10:39:aa:4a:d9:97:c6:d1:78:7b:07:0d: 34:cd:b4:f5:ed:44:63:1b:f3:7d:e7:b1:37:02:ba:b6:f7:52: 9b:b7:5c:92:62:b0:27:a5:78:12:f9:16:00:ad:12:cf:26:32: 02:b1:31:e4:d0:79:43:4c:ad:a8:e3:20:23:f8:40:00:27:08: 52:e5:6d:83:dd:ae:52:51:6c:38:0d:4b:f2:82:3c:1e:3a:a4: 1c:f6:73:35:3b:3d:de:6b:99:8a:b2:09:6a:f6:fb:06:b2:76: 7c:0a:2b:8e:92:1b:39:d2:38:c7:aa:3e:14:df:c5:40:a6:bc: 07:44:2d:9d:35:b3:02:c3:bd:94:16:94:4e:4e:ab:b6:22:b2: 6c:1b:13:7c:66:1a:2b:db:74:12:44:32:2d:27:ea:72:44:7d: 80:af:69:f7:e8:36:84:60:08:c8:a8:59:f0:33:22:c0:2b:20: bd:87:eb:6b:8a:0d:f0:0d:64:01:42:e1:63:c5:8f:6f:6a:ec: c8:bf:0b:9c -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt5EUPGA16/RvmjX9WH9uUaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5ZjdjNzQ5OGZkOWM5ZjI4NjgwNDk1MTYyYjllYjc2YWQ0 N2M2MDMwHhcNMjYwMTAxMTAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmE0NmNmZGJhYWNkMTU4NDc2OTMzNzZmMzYzZmQ2ZDU4NjE4NDE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7W/LQlYgSSPzXIsKdijqsYxm+fM XzrOTZv8AdripRrpJsbY+r7+88TRlmjMqkcfep0DtfJmUyh6WQTP0vl4IBm+hlRa vkrq9Wb+0qcIIrLlfxRJvOe+bTlyiGfkwjXypjhkpQmR4JizQlT/o/YDcxp5qk3R jdJ/4oVrIBqIJhhDJxMH5EAHQNa6AlUas3+zPFsFrCBLnCfZgY7ygWJGQN3OxMKS 0WWs8sJ9g/259YhGKKrFsgTb+r5g0jmEKPAo2CmlTWW5/Q6HmyNBE7DFdY4vRob6 PaYGssjN+oQH2z9doEU1f5UFxj17AU+95I8OmeglVPoZJTaYzBo3F2Z5EQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFFKkbP26rNFYR2kzdvNj/W1YYYQYMB8GA1UdIwQY MBaAFDn3x0mP2cnyhoBJUWK563atR8YDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2ZmSFNZX1p5ZktHZ0VsUllybnJkcTFIeGdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8xZDViMGItNGIwNS00MDJjLTgyNjUt ZWZjZmJhOTkwN2RjLzEvVXFSc19icXMwVmhIYVROMjgyUDliVmhoaEJnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi8xZDViMGItNGIwNS00MDJjLTgyNjUtZWZjZmJhOTkwN2Rj LzEvT2ZmSFNZX1p5ZktHZ0VsUllybnJkcTFIeGdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAufpsAwQA ufpuMA0EAgACMAcDBQAqDAxAMA0GCSqGSIb3DQEBCwUAA4IBAQCEkMpu35g6seJE 6UvruM5X6CvA1K2wIyCxYxurMvkYL0ouVfqRI5LTDAToagLzBv88mpywxXmp76qp SWoQOapK2ZfG0Xh7Bw00zbT17URjG/N957E3Arq291Kbt1ySYrAnpXgS+RYArRLP JjICsTHk0HlDTK2o4yAj+EAAJwhS5W2D3a5SUWw4DUvygjweOqQc9nM1Oz3ea5mK sglq9vsGsnZ8CiuOkhs50jjHqj4U38VAprwHRC2dNbMCw72UFpROTqu2IrJsGxN8 Zhor23QSRDItJ+pyRH2Ar2n36DaEYAjIqFnwMyLAKyC9h+trig3wDWQBQuFjxY9v auzIvwuc -----END CERTIFICATE-----Generated at Tue Feb 3 00:08:03 2026 by rpki-client