This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/UKQ5Gx_xeBxacDeIbWDFvI2sD3w.roa File: UKQ5Gx_xeBxacDeIbWDFvI2sD3w.roa (raw, json) Hash identifier: QrqhBBMsTTwSodsla3NMIT0+aTJqntAImLif4CjmD3s= Subject key identifier: 50:A4:39:1B:1F:F1:78:1C:5A:70:37:88:6D:60:C5:BC:8D:AC:0F:7C Certificate issuer: /CN=233e3828411bafab006e75fd0dd5f5f9ef55ec25 Certificate serial: 019B7C122F6DD93D58028EF1C96A32CA1266 Authority key identifier: 23:3E:38:28:41:1B:AF:AB:00:6E:75:FD:0D:D5:F5:F9:EF:55:EC:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iz44KEEbr6sAbnX9DdX1-e9V7CU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/UKQ5Gx_xeBxacDeIbWDFvI2sD3w.roa Signing time: Fri 02 Jan 2026 00:18:45 +0000 ROA not before: Fri 02 Jan 2026 00:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59452 IP address blocks: 91.241.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/Iz44KEEbr6sAbnX9DdX1-e9V7CU.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/Iz44KEEbr6sAbnX9DdX1-e9V7CU.mft rsync://rpki.ripe.net/repository/DEFAULT/Iz44KEEbr6sAbnX9DdX1-e9V7CU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:2f:6d:d9:3d:58:02:8e:f1:c9:6a:32:ca:12:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=233e3828411bafab006e75fd0dd5f5f9ef55ec25 Validity Not Before: Jan 2 00:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=50a4391b1ff1781c5a7037886d60c5bc8dac0f7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:9f:a4:bc:cc:32:a0:c9:6a:21:f4:c2:f2:00: 06:d5:1b:e7:a0:09:de:75:3f:66:9c:d8:7a:30:b7: bf:e8:e6:dd:7c:cc:4c:d2:46:f2:e3:0f:5b:ab:c3: 3e:fc:eb:36:9c:d2:84:9d:05:62:1e:b3:41:83:0a: ca:1a:68:99:df:a1:c2:2a:f9:37:f8:f2:61:68:b2: fc:dd:c8:78:53:5a:63:31:00:e0:ff:70:20:8d:ac: 51:ee:e3:94:70:af:0c:68:4e:92:d1:bd:ef:5f:26: 1e:77:f8:41:ce:ed:14:78:c5:41:24:a6:a4:64:35: 15:cd:64:ff:3f:6b:b7:ba:82:df:ee:8e:e0:86:c3: 90:21:0c:37:32:8d:ea:dc:91:9b:bd:04:1f:bb:b8: a4:26:71:29:7c:a3:6d:e1:b4:ea:45:3b:30:1e:ba: 7b:49:ce:f7:b0:6e:28:95:9a:31:e5:70:3d:58:f0: f5:ce:a8:ba:02:51:6d:9c:be:c8:79:4e:f8:14:65: c0:fd:43:6a:fc:a1:f2:5e:11:2e:2b:b0:3e:4b:07: b5:fa:f4:1d:66:71:6c:3d:c0:07:47:82:cb:0e:97: d9:c8:37:db:b5:05:5c:1d:3f:9d:14:e7:c9:e9:0b: 98:46:7a:11:ba:1a:47:fd:ca:58:23:04:6b:2f:22: a0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A4:39:1B:1F:F1:78:1C:5A:70:37:88:6D:60:C5:BC:8D:AC:0F:7C X509v3 Authority Key Identifier: keyid:23:3E:38:28:41:1B:AF:AB:00:6E:75:FD:0D:D5:F5:F9:EF:55:EC:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iz44KEEbr6sAbnX9DdX1-e9V7CU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/UKQ5Gx_xeBxacDeIbWDFvI2sD3w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a6cffc-be64-4d08-94a6-a15f0e78a5a9/1/Iz44KEEbr6sAbnX9DdX1-e9V7CU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.241.45.0/24 Signature Algorithm: sha256WithRSAEncryption 69:ab:ac:af:81:dc:92:32:e5:0f:45:bc:05:ef:cf:5f:be:57: bf:7b:be:b3:3e:59:47:27:4d:c0:d1:19:d9:d7:32:0e:f7:e2: 0f:1a:aa:db:e3:3f:dc:f1:5e:6a:5b:c6:cd:33:18:72:a6:bd: e6:40:97:03:6f:be:81:e3:f8:ea:0c:fb:8d:3f:aa:67:d6:2a: 1a:af:28:f9:71:ed:5c:14:dc:4a:c9:cf:87:c7:c2:4f:f1:1c: 0d:fb:e3:3d:c5:80:88:71:d7:33:58:82:5b:a3:c7:f0:6f:f5: 16:2b:31:9e:b3:3f:21:37:cd:8f:eb:04:59:fc:a4:2d:88:91: c2:63:1d:d3:d0:c8:32:9f:8b:4c:96:16:a5:32:53:66:b7:0d: f2:62:b7:cf:1a:84:36:85:fa:3b:bd:02:25:c1:da:49:05:72: d5:9f:e5:97:7a:46:43:20:01:dd:64:32:4d:ee:71:a5:3d:16: 82:e2:28:04:eb:56:64:d0:2b:e6:3f:30:61:97:4e:16:ed:cd: e5:3b:c3:7f:60:74:87:22:35:54:01:8c:64:ba:0b:6f:d2:87: 34:c0:00:e3:de:dd:b0:27:26:32:77:69:f6:50:72:66:98:3f: 95:aa:57:01:83:de:f8:8e:57:78:b4:3c:6d:ee:33:ef:98:cc: 18:fb:41:ba -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Ei9t2T1YAo7xyWoyyhJmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzM2UzODI4NDExYmFmYWIwMDZlNzVmZDBkZDVmNWY5ZWY1 NWVjMjUwHhcNMjYwMTAyMDAxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MGE0MzkxYjFmZjE3ODFjNWE3MDM3ODg2ZDYwYzViYzhkYWMwZjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk5+kvMwyoMlqIfTC8gAG1RvnoAne dT9mnNh6MLe/6ObdfMxM0kby4w9bq8M+/Os2nNKEnQViHrNBgwrKGmiZ36HCKvk3 +PJhaLL83ch4U1pjMQDg/3AgjaxR7uOUcK8MaE6S0b3vXyYed/hBzu0UeMVBJKak ZDUVzWT/P2u3uoLf7o7ghsOQIQw3Mo3q3JGbvQQfu7ikJnEpfKNt4bTqRTswHrp7 Sc73sG4olZox5XA9WPD1zqi6AlFtnL7IeU74FGXA/UNq/KHyXhEuK7A+Swe1+vQd ZnFsPcAHR4LLDpfZyDfbtQVcHT+dFOfJ6QuYRnoRuhpH/cpYIwRrLyKgAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFCkORsf8XgcWnA3iG1gxbyNrA98MB8GA1UdIwQY MBaAFCM+OChBG6+rAG51/Q3V9fnvVewlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXo0NEtFRWJyNnNBYm5YOURkWDEtZTlWN0NVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9hNmNmZmMtYmU2NC00ZDA4LTk0YTYt YTE1ZjBlNzhhNWE5LzEvVUtRNUd4X3hlQnhhY0RlSWJXREZ2STJzRDN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9hNmNmZmMtYmU2NC00ZDA4LTk0YTYtYTE1ZjBlNzhhNWE5 LzEvSXo0NEtFRWJyNnNBYm5YOURkWDEtZTlWN0NVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/EtMA0G CSqGSIb3DQEBCwUAA4IBAQBpq6yvgdySMuUPRbwF789fvle/e76zPllHJ03A0RnZ 1zIO9+IPGqrb4z/c8V5qW8bNMxhypr3mQJcDb76B4/jqDPuNP6pn1ioaryj5ce1c FNxKyc+Hx8JP8RwN++M9xYCIcdczWIJbo8fwb/UWKzGesz8hN82P6wRZ/KQtiJHC Yx3T0Mgyn4tMlhalMlNmtw3yYrfPGoQ2hfo7vQIlwdpJBXLVn+WXekZDIAHdZDJN 7nGlPRaC4igE61Zk0CvmPzBhl04W7c3lO8N/YHSHIjVUAYxkugtv0oc0wADj3t2w JyYyd2n2UHJmmD+VqlcBg974jld4tDxt7jPvmMwY+0G6 -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:59 2026 by rpki-client