This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/2c6590-ab29-46b4-a6ae-da388bc34efb/1/uRKhnVnG5ahcONCLHxTMtWvrhtc.roa File: uRKhnVnG5ahcONCLHxTMtWvrhtc.roa (raw, json) Hash identifier: UA0ILSRoJWCUIQSmovc4YSm+7GF2eZguJHjrv0XpnQU= Subject key identifier: B9:12:A1:9D:59:C6:E5:A8:5C:38:D0:8B:1F:14:CC:B5:6B:EB:86:D7 Certificate issuer: /CN=c0c7f1ba3fae71364e932b0560d602c5725dda8e Certificate serial: 019B77589B9283C9042986A121C5195D8299 Authority key identifier: C0:C7:F1:BA:3F:AE:71:36:4E:93:2B:05:60:D6:02:C5:72:5D:DA:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wMfxuj-ucTZOkysFYNYCxXJd2o4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/2c6590-ab29-46b4-a6ae-da388bc34efb/1/uRKhnVnG5ahcONCLHxTMtWvrhtc.roa Signing time: Thu 01 Jan 2026 02:17:34 +0000 ROA not before: Thu 01 Jan 2026 02:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60168 IP address blocks: 194.8.53.0/24 maxlen: 24 195.177.218.0/24 maxlen: 24 195.177.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/2c6590-ab29-46b4-a6ae-da388bc34efb/1/wMfxuj-ucTZOkysFYNYCxXJd2o4.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/2c6590-ab29-46b4-a6ae-da388bc34efb/1/wMfxuj-ucTZOkysFYNYCxXJd2o4.mft rsync://rpki.ripe.net/repository/DEFAULT/wMfxuj-ucTZOkysFYNYCxXJd2o4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:9b:92:83:c9:04:29:86:a1:21:c5:19:5d:82:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c0c7f1ba3fae71364e932b0560d602c5725dda8e Validity Not Before: Jan 1 02:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b912a19d59c6e5a85c38d08b1f14ccb56beb86d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4b:9f:8d:5c:f3:9c:2b:a1:5a:83:43:ce:af: cd:8d:45:f1:89:b7:10:9c:65:9c:11:3e:8e:ce:07: 50:32:eb:7c:98:da:32:2b:5f:bb:11:8f:1a:4f:40: dd:4b:1d:53:44:8f:15:f1:45:67:97:41:c3:2a:6f: be:52:39:df:b4:5a:ed:05:b6:39:b8:49:ab:d1:c8: e8:ab:23:1e:5f:9f:d0:1c:70:34:b7:9f:77:14:e9: 03:92:25:21:1a:7b:ac:47:a0:92:b6:77:ff:87:1d: 46:d6:31:b6:8b:53:96:84:9a:a2:68:1a:2d:57:4d: f2:09:7e:98:be:9a:b2:78:89:77:f4:21:bb:c5:88: 65:d3:11:81:ad:cc:c0:f0:d9:b3:16:8d:a7:51:73: fd:5d:c4:c5:24:c5:74:59:ed:ca:79:1d:b0:17:05: d1:b4:16:52:ee:27:7b:c9:90:48:d3:5b:a8:dc:7e: 5a:14:62:71:42:c0:65:fa:be:13:0d:37:bb:38:ab: e2:f5:b2:40:10:f1:84:83:89:c6:4c:03:f8:62:87: 1f:53:04:f8:64:c7:de:d8:66:09:60:14:8f:66:34: ff:87:bf:0d:bc:ca:5a:6c:8b:44:4d:3c:c3:c5:01: 18:6c:96:33:5d:ec:4b:10:89:cc:f8:fa:93:16:6f: fe:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:12:A1:9D:59:C6:E5:A8:5C:38:D0:8B:1F:14:CC:B5:6B:EB:86:D7 X509v3 Authority Key Identifier: keyid:C0:C7:F1:BA:3F:AE:71:36:4E:93:2B:05:60:D6:02:C5:72:5D:DA:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wMfxuj-ucTZOkysFYNYCxXJd2o4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/2c6590-ab29-46b4-a6ae-da388bc34efb/1/uRKhnVnG5ahcONCLHxTMtWvrhtc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/2c6590-ab29-46b4-a6ae-da388bc34efb/1/wMfxuj-ucTZOkysFYNYCxXJd2o4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.8.53.0/24 195.177.218.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:46:9a:2c:db:8a:f2:26:50:17:5d:67:e5:c4:23:48:41:f2: 9a:54:05:0a:41:ef:3c:c0:b4:5b:a7:00:9a:24:58:25:b7:d3: 56:cb:0e:4e:ea:16:b5:66:1c:99:35:ee:df:e6:f9:c3:31:31: 4c:09:58:89:60:22:66:79:77:04:a2:26:8f:7c:49:39:5b:ac: 7c:07:55:c3:83:bc:b4:4e:5f:10:71:ba:f4:06:aa:22:91:b3: 45:2f:64:f6:41:f6:fd:a4:13:2b:f3:58:c0:4c:fc:15:0f:2f: 57:90:f3:13:74:84:e1:94:c8:22:ed:9b:17:03:85:4e:e8:7a: 91:0d:c2:d5:ab:4c:5e:59:c5:f4:ac:96:86:03:0f:ca:8b:df: 25:ad:53:29:cc:46:2b:ab:a8:22:7d:6e:f1:e8:8f:ee:b7:1a: ab:1e:2c:45:7f:22:03:f0:54:13:d2:df:3e:69:be:15:d9:56: 8d:d8:41:be:31:25:10:2f:6a:79:d5:19:68:f7:28:67:d4:1b: 23:46:36:b4:da:2f:d1:28:ea:6e:79:3f:7c:8d:d0:4c:76:04: b5:3c:1b:b3:f6:11:16:94:df:d4:de:5d:58:45:11:83:e0:54: 7f:d0:d3:55:34:90:2c:c0:4d:b6:a2:43:88:4b:68:40:9a:90: ed:51:1d:53 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WJuSg8kEKYahIcUZXYKZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwYzdmMWJhM2ZhZTcxMzY0ZTkzMmIwNTYwZDYwMmM1NzI1 ZGRhOGUwHhcNMjYwMTAxMDIxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTEyYTE5ZDU5YzZlNWE4NWMzOGQwOGIxZjE0Y2NiNTZiZWI4NmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0ufjVzznCuhWoNDzq/NjUXxibcQ nGWcET6OzgdQMut8mNoyK1+7EY8aT0DdSx1TRI8V8UVnl0HDKm++UjnftFrtBbY5 uEmr0cjoqyMeX5/QHHA0t593FOkDkiUhGnusR6CStnf/hx1G1jG2i1OWhJqiaBot V03yCX6YvpqyeIl39CG7xYhl0xGBrczA8NmzFo2nUXP9XcTFJMV0We3KeR2wFwXR tBZS7id7yZBI01uo3H5aFGJxQsBl+r4TDTe7OKvi9bJAEPGEg4nGTAP4YocfUwT4 ZMfe2GYJYBSPZjT/h78NvMpabItETTzDxQEYbJYzXexLEInM+PqTFm/+3QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLkSoZ1ZxuWoXDjQix8UzLVr64bXMB8GA1UdIwQY MBaAFMDH8bo/rnE2TpMrBWDWAsVyXdqOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd01meHVqLXVjVFpPa3lzRllOWUN4WEpkMm80LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8yYzY1OTAtYWIyOS00NmI0LWE2YWUt ZGEzODhiYzM0ZWZiLzEvdVJLaG5Wbkc1YWhjT05DTEh4VE10V3ZyaHRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8yYzY1OTAtYWIyOS00NmI0LWE2YWUtZGEzODhiYzM0ZWZi LzEvd01meHVqLXVjVFpPa3lzRllOWUN4WEpkMm80LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwgg1AwQB w7HaMA0GCSqGSIb3DQEBCwUAA4IBAQBfRpos24ryJlAXXWflxCNIQfKaVAUKQe88 wLRbpwCaJFglt9NWyw5O6ha1ZhyZNe7f5vnDMTFMCViJYCJmeXcEoiaPfEk5W6x8 B1XDg7y0Tl8Qcbr0BqoikbNFL2T2Qfb9pBMr81jATPwVDy9XkPMTdIThlMgi7ZsX A4VO6HqRDcLVq0xeWcX0rJaGAw/Ki98lrVMpzEYrq6gifW7x6I/utxqrHixFfyID 8FQT0t8+ab4V2VaN2EG+MSUQL2p51Rlo9yhn1BsjRja02i/RKOpueT98jdBMdgS1 PBuz9hEWlN/U3l1YRRGD4FR/0NNVNJAswE22okOIS2hAmpDtUR1T -----END CERTIFICATE-----Generated at Mon Jan 19 17:52:27 2026 by rpki-client