This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/Ua52IPMh7tUk8OiJNRdVKabymgI.roa File: Ua52IPMh7tUk8OiJNRdVKabymgI.roa (raw, json) Hash identifier: Ig2jLrSQbVFfXELVpcCRVjOIIU8fStnsUhfT16Zx690= Subject key identifier: 51:AE:76:20:F3:21:EE:D5:24:F0:E8:89:35:17:55:29:A6:F2:9A:02 Certificate issuer: /CN=0c17dae04476db1016caa43e3ed9bc6bd69f3975 Certificate serial: 019B7F83D438A857B1F6F51E1DC6ED97DB4A Authority key identifier: 0C:17:DA:E0:44:76:DB:10:16:CA:A4:3E:3E:D9:BC:6B:D6:9F:39:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DBfa4ER22xAWyqQ-Ptm8a9afOXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/Ua52IPMh7tUk8OiJNRdVKabymgI.roa Signing time: Fri 02 Jan 2026 16:21:44 +0000 ROA not before: Fri 02 Jan 2026 16:21:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213281 IP address blocks: 45.155.140.0/22 maxlen: 24 151.252.216.0/21 maxlen: 24 185.124.72.0/22 maxlen: 24 217.195.148.0/22 maxlen: 24 2a0f:ff00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/DBfa4ER22xAWyqQ-Ptm8a9afOXU.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/DBfa4ER22xAWyqQ-Ptm8a9afOXU.mft rsync://rpki.ripe.net/repository/DEFAULT/DBfa4ER22xAWyqQ-Ptm8a9afOXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:d4:38:a8:57:b1:f6:f5:1e:1d:c6:ed:97:db:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c17dae04476db1016caa43e3ed9bc6bd69f3975 Validity Not Before: Jan 2 16:21:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=51ae7620f321eed524f0e88935175529a6f29a02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:90:09:f1:5d:1f:8a:86:db:d7:30:a2:db:f4: 24:10:06:0a:95:ed:22:df:e1:f0:e2:da:57:cc:13: c0:48:0e:fd:ce:8a:03:c4:8e:af:ea:88:e4:43:a7: b7:fd:24:de:b1:ac:f2:8f:6c:e6:ce:c8:53:c6:5f: a4:f8:62:ef:13:f3:d7:a9:77:c9:3b:73:f8:7e:87: ed:58:60:6f:ee:a1:65:ef:89:9b:fb:1d:f8:13:41: f5:3c:07:a0:f0:fd:d0:8f:21:2c:be:97:b6:b1:35: 9a:ff:74:62:36:50:fb:bc:b4:fa:a6:17:dc:3f:98: 3d:98:40:a5:5d:5d:d2:0b:cf:c6:f1:24:da:8e:15: 87:c3:a4:db:97:3b:ef:14:64:51:cb:bb:13:19:88: e1:ac:78:d7:9f:cc:8d:1d:6f:f4:c0:36:a6:1f:b4: 17:20:ec:7f:a4:8c:e8:c3:ff:1f:a7:dd:f3:4e:41: 28:79:38:79:0e:cc:a0:13:6c:d5:fc:4a:00:9e:1b: 1f:b9:47:57:15:c0:28:58:6a:70:b9:a3:81:c5:37: a3:35:a2:d1:f8:c5:b1:11:9c:c5:35:0a:58:98:b2: 34:56:ed:18:d1:d2:a9:58:b0:e9:c4:97:26:ce:f6: b3:cc:3f:28:11:b3:4a:61:d7:0c:89:26:2e:a5:44: 1b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:AE:76:20:F3:21:EE:D5:24:F0:E8:89:35:17:55:29:A6:F2:9A:02 X509v3 Authority Key Identifier: keyid:0C:17:DA:E0:44:76:DB:10:16:CA:A4:3E:3E:D9:BC:6B:D6:9F:39:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DBfa4ER22xAWyqQ-Ptm8a9afOXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/Ua52IPMh7tUk8OiJNRdVKabymgI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/81d94d-2e40-4546-8b89-804f17ec245e/1/DBfa4ER22xAWyqQ-Ptm8a9afOXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.155.140.0/22 151.252.216.0/21 185.124.72.0/22 217.195.148.0/22 IPv6: 2a0f:ff00::/29 Signature Algorithm: sha256WithRSAEncryption 6d:f6:fb:97:37:e0:29:33:54:0f:81:4e:6a:38:d3:4c:21:05: dd:76:61:d6:9e:5a:6f:47:4b:5c:3e:07:3c:d0:66:1d:b3:b2: 6d:62:63:a7:93:ff:c5:bb:7b:f7:7e:bc:30:7b:81:96:da:26: ba:54:19:7f:e2:15:51:e9:fb:06:0b:29:a5:b7:fa:1b:b7:4b: e6:1a:f1:97:95:52:06:00:d8:28:48:6d:b6:4d:dd:40:2a:af: d1:3f:f9:7e:31:a1:cc:d1:ab:72:eb:df:31:b9:03:81:59:45: e6:f8:a2:5a:10:a8:c6:97:f5:12:cc:26:60:aa:69:55:43:78: fe:21:f8:cd:b0:27:a3:8c:bd:34:6d:4a:1e:0e:59:d1:f0:7d: d4:a6:33:93:33:e3:4f:3a:8a:b6:f9:3b:1e:9b:97:34:ce:ad: fa:0d:33:23:13:ed:57:74:56:7f:dc:e0:04:f2:24:ff:35:07: ef:e9:e8:95:54:43:8b:66:5f:97:a8:b3:ab:6e:42:27:9e:f3: 12:fd:82:8f:f5:e6:a6:24:eb:27:3e:f6:92:a7:c1:01:3d:1c: 86:d8:5e:e7:ba:0a:06:3b:01:36:f9:f1:b8:2d:f9:f3:5a:25: d6:15:d1:72:f4:28:c2:6f:55:b7:6e:14:b3:91:bb:0a:55:d0: 3d:c9:27:e2 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt/g9Q4qFex9vUeHcbtl9tKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMTdkYWUwNDQ3NmRiMTAxNmNhYTQzZTNlZDliYzZiZDY5 ZjM5NzUwHhcNMjYwMTAyMTYyMTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MWFlNzYyMGYzMjFlZWQ1MjRmMGU4ODkzNTE3NTUyOWE2ZjI5YTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppAJ8V0fiobb1zCi2/QkEAYKle0i 3+Hw4tpXzBPASA79zooDxI6v6ojkQ6e3/STesazyj2zmzshTxl+k+GLvE/PXqXfJ O3P4foftWGBv7qFl74mb+x34E0H1PAeg8P3QjyEsvpe2sTWa/3RiNlD7vLT6phfc P5g9mEClXV3SC8/G8STajhWHw6TblzvvFGRRy7sTGYjhrHjXn8yNHW/0wDamH7QX IOx/pIzow/8fp93zTkEoeTh5DsygE2zV/EoAnhsfuUdXFcAoWGpwuaOBxTejNaLR +MWxEZzFNQpYmLI0Vu0Y0dKpWLDpxJcmzvazzD8oEbNKYdcMiSYupUQbcQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFFGudiDzIe7VJPDoiTUXVSmm8poCMB8GA1UdIwQY MBaAFAwX2uBEdtsQFsqkPj7ZvGvWnzl1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREJmYTRFUjIyeEFXeXFRLVB0bThhOWFmT1hVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi84MWQ5NGQtMmU0MC00NTQ2LThiODkt ODA0ZjE3ZWMyNDVlLzEvVWE1MklQTWg3dFVrOE9pSk5SZFZLYWJ5bWdJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi84MWQ5NGQtMmU0MC00NTQ2LThiODktODA0ZjE3ZWMyNDVl LzEvREJmYTRFUjIyeEFXeXFRLVB0bThhOWFmT1hVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCLZuMAwQD l/zYAwQCuXxIAwQC2cOUMA0EAgACMAcDBQMqD/8AMA0GCSqGSIb3DQEBCwUAA4IB AQBt9vuXN+ApM1QPgU5qONNMIQXddmHWnlpvR0tcPgc80GYds7JtYmOnk//Fu3v3 frwwe4GW2ia6VBl/4hVR6fsGCymlt/obt0vmGvGXlVIGANgoSG22Td1AKq/RP/l+ MaHM0aty698xuQOBWUXm+KJaEKjGl/USzCZgqmlVQ3j+IfjNsCejjL00bUoeDlnR 8H3UpjOTM+NPOoq2+Tsem5c0zq36DTMjE+1XdFZ/3OAE8iT/NQfv6eiVVEOLZl+X qLOrbkInnvMS/YKP9eamJOsnPvaSp8EBPRyG2F7nugoGOwE2+fG4LfnzWiXWFdFy 9CjCb1W3bhSzkbsKVdA9ySfi -----END CERTIFICATE-----Generated at Mon Feb 9 22:26:52 2026 by rpki-client