This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/Uj9qErLJ7z3sRt5hNWIVbAoCTJU.roa File: Uj9qErLJ7z3sRt5hNWIVbAoCTJU.roa (raw, json) Hash identifier: XmHbyEYbwLMwHEMXeqgjX8MuDffCoDklGaGBFZdSn00= Subject key identifier: 52:3F:6A:12:B2:C9:EF:3D:EC:46:DE:61:35:62:15:6C:0A:02:4C:95 Certificate issuer: /CN=be49fb190f4bd0f5815a8e579f366ad58d5d41f9 Certificate serial: 019B7AC80AB2987A66B63347086805791D81 Authority key identifier: BE:49:FB:19:0F:4B:D0:F5:81:5A:8E:57:9F:36:6A:D5:8D:5D:41:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/Uj9qErLJ7z3sRt5hNWIVbAoCTJU.roa Signing time: Thu 01 Jan 2026 18:18:08 +0000 ROA not before: Thu 01 Jan 2026 18:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133398 IP address blocks: 91.224.92.0/24 maxlen: 24 185.36.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.mft rsync://rpki.ripe.net/repository/DEFAULT/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:0a:b2:98:7a:66:b6:33:47:08:68:05:79:1d:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be49fb190f4bd0f5815a8e579f366ad58d5d41f9 Validity Not Before: Jan 1 18:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=523f6a12b2c9ef3dec46de613562156c0a024c95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d7:78:c6:57:78:59:0e:51:ff:f6:17:2d:84: 46:48:63:4f:b3:b8:a9:fc:f8:29:fc:41:1f:d1:f7: b0:6f:38:58:58:9b:0d:da:97:e7:69:a3:99:8a:c5: 15:dc:40:ac:b6:2d:31:60:5b:34:a7:b2:22:54:f6: b9:69:62:5f:b5:75:38:4f:da:17:6c:30:38:3a:d5: 23:09:f9:2a:01:da:5c:f6:e4:e1:17:86:68:ff:34: 0e:56:85:f8:ec:c9:22:5e:60:e6:ad:77:74:42:df: 9c:e2:b3:08:aa:75:f7:58:96:ff:4a:2c:31:8b:3c: 86:e8:4c:03:0f:7f:5d:86:af:7a:e0:0c:fe:b1:67: 65:ef:ba:3b:06:b5:62:9f:e4:96:66:07:dd:74:98: 14:4e:f4:09:be:92:52:d1:21:5e:74:3c:21:b0:a1: bb:8e:27:97:49:53:9e:aa:81:40:aa:e5:3e:c9:01: 65:ed:d9:c2:82:cf:4b:8a:f6:61:3f:6a:85:8d:8b: 98:53:73:5c:3b:35:dd:4e:5f:c9:24:9e:08:55:78: 6a:8c:c2:09:4b:f3:45:80:35:92:67:c6:e5:36:1b: 93:02:44:58:82:c7:0b:e2:f5:e8:8b:21:a6:62:99: 37:86:3c:94:9a:93:07:ab:78:b5:c9:08:e1:80:6c: 39:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:3F:6A:12:B2:C9:EF:3D:EC:46:DE:61:35:62:15:6C:0A:02:4C:95 X509v3 Authority Key Identifier: keyid:BE:49:FB:19:0F:4B:D0:F5:81:5A:8E:57:9F:36:6A:D5:8D:5D:41:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/Uj9qErLJ7z3sRt5hNWIVbAoCTJU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/bd0d13-e983-4ff9-b507-5e656f1b4876/1/vkn7GQ9L0PWBWo5XnzZq1Y1dQfk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.224.92.0/24 185.36.81.0/24 Signature Algorithm: sha256WithRSAEncryption 65:3b:02:e2:1b:2c:bd:82:42:58:2c:ad:9d:9d:fa:60:46:c1: e3:f9:61:90:d9:17:5b:db:eb:d8:67:b3:47:ed:89:e2:7d:84: 96:3d:c6:f0:e8:be:8d:09:27:e3:c9:3b:b2:f5:86:7d:a3:cb: 79:b7:18:23:7e:31:0f:9d:7f:0b:f2:a7:6c:3f:b9:5e:5b:47: cf:e0:21:8b:fb:f0:7b:82:b9:f1:33:ca:24:72:a3:5f:9a:09: f6:eb:83:98:a2:9b:92:0d:f4:d5:81:f0:31:fa:6b:e0:49:da: 02:60:ba:2e:83:66:3b:45:1f:2e:7b:e1:65:1b:fe:9a:43:e9: da:c8:62:f4:e8:f2:dc:d7:4a:72:8c:f3:fc:e2:16:42:af:e9: 59:5a:a1:43:4a:b2:cf:77:c3:fa:bc:15:55:c1:63:0a:6b:7d: a7:95:36:ea:87:9a:9f:a3:4a:7c:8b:64:ff:2c:2f:ec:10:da: c8:b9:78:7e:03:fd:13:51:d0:c1:f4:03:83:5d:5e:e4:57:69: 6f:a3:bb:37:12:5c:5c:d7:7b:b9:dc:6d:9f:f5:4f:2e:4c:77: cc:90:e5:62:1b:99:6a:ee:76:9f:da:da:8b:c2:4e:40:77:8b: 1e:62:5c:ac:1a:88:36:b7:d6:64:ad:0e:6e:e4:f6:90:f6:e0: 43:6e:5c:81 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yAqymHpmtjNHCGgFeR2BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlNDlmYjE5MGY0YmQwZjU4MTVhOGU1NzlmMzY2YWQ1OGQ1 ZDQxZjkwHhcNMjYwMTAxMTgxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjNmNmExMmIyYzllZjNkZWM0NmRlNjEzNTYyMTU2YzBhMDI0Yzk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9d4xld4WQ5R//YXLYRGSGNPs7ip /Pgp/EEf0fewbzhYWJsN2pfnaaOZisUV3ECsti0xYFs0p7IiVPa5aWJftXU4T9oX bDA4OtUjCfkqAdpc9uThF4Zo/zQOVoX47MkiXmDmrXd0Qt+c4rMIqnX3WJb/Siwx izyG6EwDD39dhq964Az+sWdl77o7BrVin+SWZgfddJgUTvQJvpJS0SFedDwhsKG7 jieXSVOeqoFAquU+yQFl7dnCgs9LivZhP2qFjYuYU3NcOzXdTl/JJJ4IVXhqjMIJ S/NFgDWSZ8blNhuTAkRYgscL4vXoiyGmYpk3hjyUmpMHq3i1yQjhgGw5CQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFFI/ahKyye897EbeYTViFWwKAkyVMB8GA1UdIwQY MBaAFL5J+xkPS9D1gVqOV582atWNXUH5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmtuN0dROUwwUFdCV281WG56WnExWTFkUWZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9iZDBkMTMtZTk4My00ZmY5LWI1MDct NWU2NTZmMWI0ODc2LzEvVWo5cUVyTEo3ejNzUnQ1aE5XSVZiQW9DVEpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9iZDBkMTMtZTk4My00ZmY5LWI1MDctNWU2NTZmMWI0ODc2 LzEvdmtuN0dROUwwUFdCV281WG56WnExWTFkUWZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+BcAwQA uSRRMA0GCSqGSIb3DQEBCwUAA4IBAQBlOwLiGyy9gkJYLK2dnfpgRsHj+WGQ2Rdb 2+vYZ7NH7YnifYSWPcbw6L6NCSfjyTuy9YZ9o8t5txgjfjEPnX8L8qdsP7leW0fP 4CGL+/B7grnxM8okcqNfmgn264OYopuSDfTVgfAx+mvgSdoCYLoug2Y7RR8ue+Fl G/6aQ+nayGL06PLc10pyjPP84hZCr+lZWqFDSrLPd8P6vBVVwWMKa32nlTbqh5qf o0p8i2T/LC/sENrIuXh+A/0TUdDB9AODXV7kV2lvo7s3Elxc13u53G2f9U8uTHfM kOViG5lq7naf2tqLwk5Ad4seYlysGog2t9ZkrQ5u5PaQ9uBDblyB -----END CERTIFICATE-----Generated at Wed Jan 21 01:07:58 2026 by rpki-client