This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c98aa3-0e0c-4d97-9bc3-74d91cdbe195/1/UTM1CR1pMYaFXHZzCtiduNbVB5s.roa File: UTM1CR1pMYaFXHZzCtiduNbVB5s.roa (raw, json) Hash identifier: v1x9VJ2yRV2qLCy6+vcnGUOTPUPi2aAkt7M842PxmE8= Subject key identifier: 51:33:35:09:1D:69:31:86:85:5C:76:73:0A:D8:9D:B8:D6:D5:07:9B Certificate issuer: /CN=86170339c2bc664d600fa98b8061269d48e4f2c6 Certificate serial: 019B7CECD084A007B50866C7DB15D6F675CB Authority key identifier: 86:17:03:39:C2:BC:66:4D:60:0F:A9:8B:80:61:26:9D:48:E4:F2:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hhcDOcK8Zk1gD6mLgGEmnUjk8sY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c98aa3-0e0c-4d97-9bc3-74d91cdbe195/1/UTM1CR1pMYaFXHZzCtiduNbVB5s.roa Signing time: Fri 02 Jan 2026 04:17:33 +0000 ROA not before: Fri 02 Jan 2026 04:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50224 IP address blocks: 94.103.125.0/24 maxlen: 24 2a11:3a06::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c98aa3-0e0c-4d97-9bc3-74d91cdbe195/1/hhcDOcK8Zk1gD6mLgGEmnUjk8sY.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/c98aa3-0e0c-4d97-9bc3-74d91cdbe195/1/hhcDOcK8Zk1gD6mLgGEmnUjk8sY.mft rsync://rpki.ripe.net/repository/DEFAULT/hhcDOcK8Zk1gD6mLgGEmnUjk8sY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 13:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:d0:84:a0:07:b5:08:66:c7:db:15:d6:f6:75:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86170339c2bc664d600fa98b8061269d48e4f2c6 Validity Not Before: Jan 2 04:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=513335091d693186855c76730ad89db8d6d5079b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:28:d7:57:3f:c8:12:31:77:e1:85:69:5b:88: bc:00:d5:58:fc:93:7d:19:47:af:e1:be:83:50:dc: c4:8b:b0:89:4f:eb:1d:91:22:16:95:a0:10:0f:e1: 66:79:4c:8c:9d:45:40:75:f6:8c:1d:69:3a:bf:57: 5e:0a:87:40:f4:06:2c:4a:3c:47:31:a4:eb:57:c8: 15:21:36:c8:fb:3d:fe:0a:23:ab:55:c4:7c:27:f8: 7e:bd:27:25:72:05:6f:a0:69:fd:b8:86:6a:f6:7f: 0a:98:61:12:a1:f0:b5:f4:5a:8f:e2:2b:11:6b:86: 48:11:14:93:54:5c:c7:38:15:ae:13:86:1b:43:31: 42:22:48:07:e9:39:0e:58:82:59:7c:98:c3:e3:79: bb:d4:41:e7:f8:dd:9a:18:52:4a:cb:e4:34:2a:e9: 20:03:47:a5:74:6e:b0:14:24:5d:88:08:d1:b2:d9: 2f:78:84:9f:6b:21:50:8a:90:09:65:d4:be:75:44: f0:08:8d:22:54:d5:a6:8c:d9:08:39:df:af:22:64: cb:42:ff:3f:15:1a:9f:cc:8b:a6:53:06:c7:34:cc: c6:61:0a:f1:e0:c2:4c:c4:54:82:bf:df:65:6f:c1: 0e:91:62:1d:77:dd:53:35:cf:70:41:cb:0e:8f:c6: b0:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:33:35:09:1D:69:31:86:85:5C:76:73:0A:D8:9D:B8:D6:D5:07:9B X509v3 Authority Key Identifier: keyid:86:17:03:39:C2:BC:66:4D:60:0F:A9:8B:80:61:26:9D:48:E4:F2:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hhcDOcK8Zk1gD6mLgGEmnUjk8sY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c98aa3-0e0c-4d97-9bc3-74d91cdbe195/1/UTM1CR1pMYaFXHZzCtiduNbVB5s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c98aa3-0e0c-4d97-9bc3-74d91cdbe195/1/hhcDOcK8Zk1gD6mLgGEmnUjk8sY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.103.125.0/24 IPv6: 2a11:3a06::/32 Signature Algorithm: sha256WithRSAEncryption 93:b4:6d:c9:33:25:7f:13:76:a4:e6:d7:e5:05:d4:ca:53:60: 31:75:42:ff:db:ca:ff:fc:88:e5:53:4b:45:02:56:e7:51:da: 83:87:3e:67:c2:26:b5:0c:51:86:ce:c3:ab:8a:63:09:e1:a7: 5d:a3:af:4c:d7:64:4d:ce:6a:ce:46:0c:44:da:2a:c9:13:2d: cd:cd:dd:7e:b9:87:81:40:88:27:4e:16:69:b8:20:3a:e0:f0: 58:63:2a:94:b6:ed:9e:76:f5:1c:ab:63:05:ca:12:b0:93:dc: cc:0b:64:fe:05:10:b0:b7:8f:2d:24:5a:c4:56:de:75:13:24: c1:0d:66:b4:8a:c1:c8:2e:ba:0c:df:2a:5c:21:21:62:d2:c3: 4c:4c:3d:75:f4:cf:99:1b:3a:2e:3b:3a:7f:a1:16:1f:4a:3e: 62:f5:35:e5:d0:7c:8f:98:e1:6b:1c:c5:84:3a:ca:1f:b5:e1: da:c7:a9:dc:8a:06:f6:70:51:b4:28:22:a5:71:25:88:05:8a: dd:2f:a1:4c:14:69:3a:c4:05:98:39:87:c1:c4:78:c4:95:9b: aa:96:7a:97:c6:42:64:d6:89:1b:d2:fa:5a:7d:55:7e:51:11: c5:05:d7:93:1c:89:bb:8e:7b:6f:78:19:f7:9e:ff:12:59:b8: c3:e7:5a:1f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87NCEoAe1CGbH2xXW9nXLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MTcwMzM5YzJiYzY2NGQ2MDBmYTk4YjgwNjEyNjlkNDhl NGYyYzYwHhcNMjYwMTAyMDQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTMzMzUwOTFkNjkzMTg2ODU1Yzc2NzMwYWQ4OWRiOGQ2ZDUwNzliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvijXVz/IEjF34YVpW4i8ANVY/JN9 GUev4b6DUNzEi7CJT+sdkSIWlaAQD+FmeUyMnUVAdfaMHWk6v1deCodA9AYsSjxH MaTrV8gVITbI+z3+CiOrVcR8J/h+vSclcgVvoGn9uIZq9n8KmGESofC19FqP4isR a4ZIERSTVFzHOBWuE4YbQzFCIkgH6TkOWIJZfJjD43m71EHn+N2aGFJKy+Q0Kukg A0eldG6wFCRdiAjRstkveISfayFQipAJZdS+dUTwCI0iVNWmjNkIOd+vImTLQv8/ FRqfzIumUwbHNMzGYQrx4MJMxFSCv99lb8EOkWIdd91TNc9wQcsOj8awFwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFFEzNQkdaTGGhVx2cwrYnbjW1QebMB8GA1UdIwQY MBaAFIYXAznCvGZNYA+pi4BhJp1I5PLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGhjRE9jSzhaazFnRDZtTGdHRW1uVWprOHNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9jOThhYTMtMGUwYy00ZDk3LTliYzMt NzRkOTFjZGJlMTk1LzEvVVRNMUNSMXBNWWFGWEhaekN0aWR1TmJWQjVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy9jOThhYTMtMGUwYy00ZDk3LTliYzMtNzRkOTFjZGJlMTk1 LzEvaGhjRE9jSzhaazFnRDZtTGdHRW1uVWprOHNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAXmd9MA0E AgACMAcDBQAqEToGMA0GCSqGSIb3DQEBCwUAA4IBAQCTtG3JMyV/E3ak5tflBdTK U2AxdUL/28r//IjlU0tFAlbnUdqDhz5nwia1DFGGzsOrimMJ4addo69M12RNzmrO RgxE2irJEy3Nzd1+uYeBQIgnThZpuCA64PBYYyqUtu2edvUcq2MFyhKwk9zMC2T+ BRCwt48tJFrEVt51EyTBDWa0isHILroM3ypcISFi0sNMTD119M+ZGzouOzp/oRYf Sj5i9TXl0HyPmOFrHMWEOsofteHax6ncigb2cFG0KCKlcSWIBYrdL6FMFGk6xAWY OYfBxHjElZuqlnqXxkJk1okb0vpafVV+URHFBdeTHIm7jntveBn3nv8SWbjD51of -----END CERTIFICATE-----Generated at Sun Jan 18 16:37:24 2026 by rpki-client