This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/Up3P0BLXnOn0NJzNO22oJuB2P-0.roa File: Up3P0BLXnOn0NJzNO22oJuB2P-0.roa (raw, json) Hash identifier: WAsExi4a515grUSlWqpJ211VY3MEpndWg6Zn1Kyg9+8= Subject key identifier: 52:9D:CF:D0:12:D7:9C:E9:F4:34:9C:CD:3B:6D:A8:26:E0:76:3F:ED Certificate issuer: /CN=eebe79d147882422ec275417dfd2affa93a02757 Certificate serial: 019B9D33C52889A2BD6FCDDEC32B8EDA0AE6 Authority key identifier: EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/Up3P0BLXnOn0NJzNO22oJuB2P-0.roa Signing time: Thu 08 Jan 2026 10:42:54 +0000 ROA not before: Thu 08 Jan 2026 10:42:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200446 IP address blocks: 95.86.164.0/22 maxlen: 22 95.86.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/7r550UeIJCLsJ1QX39Kv-pOgJ1c.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/7r550UeIJCLsJ1QX39Kv-pOgJ1c.mft rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 04 Feb 2026 15:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9d:33:c5:28:89:a2:bd:6f:cd:de:c3:2b:8e:da:0a:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=eebe79d147882422ec275417dfd2affa93a02757 Validity Not Before: Jan 8 10:42:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=529dcfd012d79ce9f4349ccd3b6da826e0763fed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f6:24:1e:8d:25:68:1d:5b:93:c7:13:16:f4: 2b:1e:8d:6d:90:9b:da:54:9a:4f:f8:15:e7:e3:4e: f2:dc:2e:ba:32:0c:84:1c:9f:3d:a0:94:00:99:03: 03:04:0b:d1:66:d3:ac:a1:0f:14:db:e2:b1:3e:c7: 30:40:74:27:27:b9:c2:ee:84:7d:c5:20:4c:26:3d: b0:46:62:9c:22:c1:78:19:e7:78:27:59:94:2c:38: a6:8a:b8:6b:96:3b:7a:76:0e:97:10:b3:59:9f:db: a4:8d:43:ca:4b:f2:e0:c5:95:de:d8:9a:d4:fd:04: 42:16:03:89:5a:45:53:3f:d4:43:b5:f9:d1:fd:13: a1:f6:72:6e:ae:59:1c:e2:11:d5:45:7b:9c:0e:3c: 0b:58:43:98:56:1d:62:34:36:53:82:6e:bb:f3:56: 2a:63:d0:9f:86:01:c4:cc:c7:99:41:1d:2c:9b:6c: 68:50:19:ee:d0:c7:a4:65:0f:e7:d6:cc:2f:a5:5a: f9:ec:dd:7c:3d:da:23:07:ad:e0:11:62:2f:f2:63: de:cf:6c:02:62:28:59:44:23:9f:ef:95:1f:cc:a9: 2f:df:55:ce:8a:42:8f:f8:ff:c3:48:c5:58:ab:57: b4:db:fa:9a:ed:75:ce:28:ff:55:07:d4:4b:ed:dc: 00:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:9D:CF:D0:12:D7:9C:E9:F4:34:9C:CD:3B:6D:A8:26:E0:76:3F:ED X509v3 Authority Key Identifier: keyid:EE:BE:79:D1:47:88:24:22:EC:27:54:17:DF:D2:AF:FA:93:A0:27:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7r550UeIJCLsJ1QX39Kv-pOgJ1c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/Up3P0BLXnOn0NJzNO22oJuB2P-0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/c44b7f-5bcd-4ee7-8712-38823c1449af/1/7r550UeIJCLsJ1QX39Kv-pOgJ1c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.86.164.0-95.86.171.255 Signature Algorithm: sha256WithRSAEncryption 69:ae:e9:61:11:da:36:05:c5:46:be:05:a3:b1:5e:6c:21:bc: 52:31:39:e3:74:92:91:95:c7:b8:83:26:98:ae:a1:fa:9b:14: de:fe:99:04:10:78:65:37:fb:83:52:24:44:1e:a9:ec:67:b4: 42:c0:80:14:9c:20:21:22:1a:9a:c7:11:39:58:c6:19:3f:b9: b2:1a:8f:ce:75:49:c3:92:0e:d9:0e:06:81:6c:5d:a7:af:e1: 1f:f4:f9:0c:1f:22:c3:53:29:e6:cb:7d:91:03:26:c5:f0:52: 30:71:8c:8d:30:7f:49:dc:9d:af:0c:09:21:ae:59:6c:3c:02: 69:05:9f:7a:e7:14:29:32:dc:14:b9:05:86:9b:70:63:72:a6: bb:79:72:33:de:0e:cb:fd:15:be:ce:98:ab:bf:5b:09:bf:90: a8:44:8f:2b:4b:4e:c3:91:2a:be:16:93:87:5f:8f:66:86:6a: a4:80:12:56:1a:7f:1c:90:03:5a:d3:f9:35:4d:79:93:78:4e: 47:0c:af:09:a3:9f:9d:94:0f:ce:7e:d5:50:cb:97:5b:95:2c: e8:5f:fa:27:15:9a:04:c3:4d:8c:64:45:a3:e5:69:ae:ac:82: ef:67:a8:eb:9e:12:a1:fd:64:4b:3f:d8:e6:e6:a3:8e:7a:d9: 16:f1:21:b6 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZudM8UoiaK9b83ewyuO2grmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlYmU3OWQxNDc4ODI0MjJlYzI3NTQxN2RmZDJhZmZhOTNh MDI3NTcwHhcNMjYwMTA4MTA0MjU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjlkY2ZkMDEyZDc5Y2U5ZjQzNDljY2QzYjZkYTgyNmUwNzYzZmVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/YkHo0laB1bk8cTFvQrHo1tkJva VJpP+BXn407y3C66MgyEHJ89oJQAmQMDBAvRZtOsoQ8U2+KxPscwQHQnJ7nC7oR9 xSBMJj2wRmKcIsF4Ged4J1mULDimirhrljt6dg6XELNZn9ukjUPKS/LgxZXe2JrU /QRCFgOJWkVTP9RDtfnR/ROh9nJurlkc4hHVRXucDjwLWEOYVh1iNDZTgm6781Yq Y9CfhgHEzMeZQR0sm2xoUBnu0MekZQ/n1swvpVr57N18PdojB63gEWIv8mPez2wC YihZRCOf75UfzKkv31XOikKP+P/DSMVYq1e02/qa7XXOKP9VB9RL7dwAXQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFFKdz9AS15zp9DSczTttqCbgdj/tMB8GA1UdIwQY MBaAFO6+edFHiCQi7CdUF9/Sr/qToCdXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3I1NTBVZUlKQ0xzSjFRWDM5S3YtcE9nSjFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9jNDRiN2YtNWJjZC00ZWU3LTg3MTIt Mzg4MjNjMTQ0OWFmLzEvVXAzUDBCTFhuT24wTkp6Tk8yMm9KdUIyUC0wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS9jNDRiN2YtNWJjZC00ZWU3LTg3MTItMzg4MjNjMTQ0OWFm LzEvN3I1NTBVZUlKQ0xzSjFRWDM5S3YtcE9nSjFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAJfVqQD BAJfVqgwDQYJKoZIhvcNAQELBQADggEBAGmu6WER2jYFxUa+BaOxXmwhvFIxOeN0 kpGVx7iDJpiuofqbFN7+mQQQeGU3+4NSJEQeqexntELAgBScICEiGprHETlYxhk/ ubIaj851ScOSDtkOBoFsXaev4R/0+QwfIsNTKebLfZEDJsXwUjBxjI0wf0ncna8M CSGuWWw8AmkFn3rnFCky3BS5BYabcGNyprt5cjPeDsv9Fb7OmKu/Wwm/kKhEjytL TsORKr4Wk4dfj2aGaqSAElYafxyQA1rT+TVNeZN4TkcMrwmjn52UD85+1VDLl1uV LOhf+icVmgTDTYxkRaPlaa6sgu9nqOueEqH9ZEs/2Obmo4562RbxIbY= -----END CERTIFICATE-----Generated at Tue Feb 3 22:50:29 2026 by rpki-client