This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UdU5bdDKKGg5XLUfdH1psD8KSBA.roa File: UdU5bdDKKGg5XLUfdH1psD8KSBA.roa (raw, json) Hash identifier: EFk/5nYUq4O84ReQ08bZPX0ZrnvQK2Rw2ziHyavLHQc= Subject key identifier: 51:D5:39:6D:D0:CA:28:68:39:5C:B5:1F:74:7D:69:B0:3F:0A:48:10 Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Certificate serial: 019B797E2402B8A4A423389AC534A57494DA Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UdU5bdDKKGg5XLUfdH1psD8KSBA.roa Signing time: Thu 01 Jan 2026 12:17:48 +0000 ROA not before: Thu 01 Jan 2026 12:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 22649 IP address blocks: 185.141.204.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.mft rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 12:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:24:02:b8:a4:a4:23:38:9a:c5:34:a5:74:94:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745 Validity Not Before: Jan 1 12:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51d5396dd0ca2868395cb51f747d69b03f0a4810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9f:47:30:28:44:d3:17:4a:d3:dc:d9:94:b4: ac:a3:69:b9:e7:5e:ae:f4:26:7d:71:7e:47:15:c0: 09:0a:49:35:67:7f:84:a6:6b:9a:ae:aa:1d:3e:85: 0a:4e:1c:85:e9:83:d3:9b:c2:74:cb:58:c8:db:54: 2e:0d:94:81:f6:c3:46:d7:7e:74:b0:eb:0b:f4:d9: e7:a8:14:3e:e4:59:f4:3c:70:13:5f:86:f1:78:b5: 92:59:f0:b3:9b:05:02:2f:d4:6f:f0:1f:28:b3:1a: e7:6d:e2:04:da:77:50:4a:44:55:9d:8f:ab:0e:0c: 85:86:62:81:a9:54:6c:c4:17:64:49:d7:4a:f1:f9: 14:cf:fd:bf:a2:29:f5:4d:7b:cd:bd:94:0c:70:62: bc:75:88:e1:47:b0:ff:4c:9f:9a:3f:78:60:6e:12: 4e:2e:5f:9e:0c:ef:a2:39:2b:87:52:75:8e:b5:c8: 83:d2:57:0c:0c:bd:cb:fc:a1:e3:ac:19:41:8e:22: 86:b0:f7:12:23:78:d3:cb:25:16:d4:d3:99:5f:6e: 46:50:15:02:8d:37:ae:89:7a:d1:15:2d:d8:46:c1: 21:5b:49:74:67:7b:87:a3:85:bc:41:26:d5:27:94: 37:8c:c7:f0:f1:fb:7d:3c:09:a7:2d:24:21:ed:61: a8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D5:39:6D:D0:CA:28:68:39:5C:B5:1F:74:7D:69:B0:3F:0A:48:10 X509v3 Authority Key Identifier: keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/UdU5bdDKKGg5XLUfdH1psD8KSBA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.141.204.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:9a:82:0b:92:cb:f6:e4:7e:91:78:0b:09:12:8e:20:ec:33: 7b:cc:74:6e:b7:a0:3c:59:c0:bd:81:90:5c:67:ec:82:f6:2e: 08:f7:5f:79:25:fd:e1:a7:66:b1:f9:9d:b5:cd:e8:b1:4d:2b: c2:13:e4:1d:04:56:f0:e3:40:e6:7c:6e:80:c5:41:b3:cf:99: 72:4c:3f:13:c7:a0:a8:23:ab:bd:5d:01:b4:f9:52:c9:c4:67: 20:6b:dd:50:45:f2:e2:4c:f3:38:fe:c9:5e:68:ca:a0:41:11: f4:8e:ea:d9:bc:1e:ca:87:07:40:e9:48:37:9e:db:51:fb:c3: 54:08:84:f0:d8:d3:16:20:2d:45:14:5d:b9:2a:f7:d6:50:08: 98:9f:d0:22:af:b6:74:af:c3:c7:1d:4d:58:dc:90:2f:0f:c3: 6b:3f:f5:93:0a:a1:13:0e:6e:a5:46:f6:c0:de:d8:71:0d:5c: 88:a4:7d:56:dc:b2:34:fa:f5:31:b5:46:ba:4d:bd:10:2a:90: 0b:b4:b2:86:3c:a8:5a:f3:d1:dc:a4:1f:4e:f2:ca:d1:0f:d9: c8:26:45:27:0c:bf:5f:85:32:00:77:8d:b0:ef:c7:bf:fb:96: a7:f0:b9:3a:1d:7b:4f:3b:0b:38:c9:a5:3e:2a:2d:52:58:d9: 8b:ed:81:7f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fiQCuKSkIziaxTSldJTaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi YTU3NDUwHhcNMjYwMTAxMTIxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWQ1Mzk2ZGQwY2EyODY4Mzk1Y2I1MWY3NDdkNjliMDNmMGE0ODEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZ9HMChE0xdK09zZlLSso2m5516u 9CZ9cX5HFcAJCkk1Z3+EpmuarqodPoUKThyF6YPTm8J0y1jI21QuDZSB9sNG1350 sOsL9NnnqBQ+5Fn0PHATX4bxeLWSWfCzmwUCL9Rv8B8osxrnbeIE2ndQSkRVnY+r DgyFhmKBqVRsxBdkSddK8fkUz/2/oin1TXvNvZQMcGK8dYjhR7D/TJ+aP3hgbhJO Ll+eDO+iOSuHUnWOtciD0lcMDL3L/KHjrBlBjiKGsPcSI3jTyyUW1NOZX25GUBUC jTeuiXrRFS3YRsEhW0l0Z3uHo4W8QSbVJ5Q3jMfw8ft9PAmnLSQh7WGolwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFHVOW3QyihoOVy1H3R9abA/CkgQMB8GA1UdIwQY MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt ZmVhYzI2ZWFlY2MyLzEvVWRVNWJkREtLR2c1WExVZmRIMXBzRDhLU0JBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuY3MMA0G CSqGSIb3DQEBCwUAA4IBAQBvmoILksv25H6ReAsJEo4g7DN7zHRut6A8WcC9gZBc Z+yC9i4I9195Jf3hp2ax+Z21zeixTSvCE+QdBFbw40DmfG6AxUGzz5lyTD8Tx6Co I6u9XQG0+VLJxGcga91QRfLiTPM4/sleaMqgQRH0jurZvB7KhwdA6Ug3nttR+8NU CITw2NMWIC1FFF25KvfWUAiYn9Air7Z0r8PHHU1Y3JAvD8NrP/WTCqETDm6lRvbA 3thxDVyIpH1W3LI0+vUxtUa6Tb0QKpALtLKGPKha89HcpB9O8srRD9nIJkUnDL9f hTIAd42w78e/+5an8Lk6HXtPOws4yaU+Ki1SWNmL7YF/ -----END CERTIFICATE-----Generated at Mon Jan 19 20:21:54 2026 by rpki-client