This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/uDy0uboGuQ8F6QOEny3tapvn0PQ.roa File: uDy0uboGuQ8F6QOEny3tapvn0PQ.roa (raw, json) Hash identifier: 3MCli/TbeRr8V0MnXhO1yofF6LpNILL0P0q1Ula5Od8= Subject key identifier: B8:3C:B4:B9:BA:06:B9:0F:05:E9:03:84:9F:2D:ED:6A:9B:E7:D0:F4 Certificate issuer: /CN=cd434fd859223ae76e8d78648a937295e8ecd79a Certificate serial: 019B78A345A6A59828D3D47D9D2002ED3A17 Authority key identifier: CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/uDy0uboGuQ8F6QOEny3tapvn0PQ.roa Signing time: Thu 01 Jan 2026 08:18:44 +0000 ROA not before: Thu 01 Jan 2026 08:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44299 IP address blocks: 194.48.153.0/24 maxlen: 24 2a0c:6940::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.mft rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:45:a6:a5:98:28:d3:d4:7d:9d:20:02:ed:3a:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd434fd859223ae76e8d78648a937295e8ecd79a Validity Not Before: Jan 1 08:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b83cb4b9ba06b90f05e903849f2ded6a9be7d0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a9:d3:5d:96:06:f2:96:06:1b:e7:5d:b5:a4: 34:10:7f:31:9a:aa:db:e5:5c:94:4c:87:5f:dc:de: af:ab:0c:53:c7:af:e1:84:79:b2:a3:c8:5b:7f:e7: 6e:88:0f:f9:1d:0a:9d:24:9a:05:09:c6:57:57:5d: de:f4:38:37:9d:85:d9:a9:31:f2:15:57:25:ec:cb: 83:a8:7c:fa:cb:24:bf:c9:15:8b:42:6c:10:21:5c: 42:69:5d:76:a6:f0:7c:9f:af:1e:7f:3e:05:23:1a: d6:97:01:e5:10:38:cf:2a:47:5b:81:66:eb:e8:00: ff:b0:21:93:87:a7:80:c4:87:06:78:3e:d6:2d:45: 26:dc:31:8f:00:33:7e:c9:6e:d4:6c:9c:2b:89:8d: 6b:ef:f3:ff:f9:91:24:3f:8d:0e:fb:a6:4b:86:40: b1:28:f1:b9:08:1c:63:b1:d5:73:3d:00:bf:80:26: 88:64:75:87:39:dd:e5:78:21:56:80:1b:cd:e3:a6: b2:ca:d6:bc:5d:c6:e7:d1:c4:a1:8f:59:af:d5:a8: a9:52:3d:87:cc:cb:a4:44:ed:9e:34:65:e4:d9:c1: 4c:02:f0:0d:4e:43:0a:ec:95:06:69:b7:a1:12:99: 0d:96:17:3f:3f:6f:31:ef:ab:4d:f0:44:f0:a5:aa: 7b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:3C:B4:B9:BA:06:B9:0F:05:E9:03:84:9F:2D:ED:6A:9B:E7:D0:F4 X509v3 Authority Key Identifier: keyid:CD:43:4F:D8:59:22:3A:E7:6E:8D:78:64:8A:93:72:95:E8:EC:D7:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zUNP2FkiOudujXhkipNylejs15o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/uDy0uboGuQ8F6QOEny3tapvn0PQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3d18dc-73c6-4c6f-8c28-5a57234ddb76/1/zUNP2FkiOudujXhkipNylejs15o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.48.153.0/24 IPv6: 2a0c:6940::/29 Signature Algorithm: sha256WithRSAEncryption a3:da:f5:ea:c0:c9:4c:7e:77:6a:09:11:ba:6e:34:2d:ad:5c: 55:6a:f9:39:43:09:46:84:66:07:97:41:55:89:69:9b:8e:69: e6:b9:76:7b:3b:bb:a4:4a:db:87:ff:cc:50:4d:f5:28:25:10: 61:98:f8:55:ee:34:be:32:ca:f1:9b:42:cb:e6:cb:a0:31:20: c5:bc:43:0e:de:bf:85:fc:c7:bf:34:8e:1d:45:1e:d0:48:41: 78:56:5f:5b:5a:b3:81:1a:16:06:a9:85:06:47:53:06:05:fd: eb:18:8f:be:a9:2d:a1:7c:28:c1:fe:ce:e5:d5:f7:ec:46:71: 6d:19:2b:6e:36:7e:69:22:19:17:85:df:3a:2d:04:30:12:ce: 8c:a9:98:67:c5:e5:77:c9:79:0f:7c:16:ea:6f:73:54:0d:a3: c4:04:bd:28:05:88:02:fe:f5:27:bb:b0:65:fb:85:8e:e9:be: a7:b0:59:31:4b:21:55:fc:ab:07:33:cb:46:53:bb:d5:fe:2a: c5:50:a2:4b:7e:6b:41:2d:2d:8b:44:cd:32:90:65:90:42:f5: b9:17:c9:14:59:fc:62:b1:81:da:34:a2:c1:26:ee:44:8b:c4: 3b:3e:dc:0e:00:40:bd:1e:05:65:71:23:f1:00:20:a6:82:d7: dd:4a:f7:94 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4o0WmpZgo09R9nSAC7ToXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkNDM0ZmQ4NTkyMjNhZTc2ZThkNzg2NDhhOTM3Mjk1ZThl Y2Q3OWEwHhcNMjYwMTAxMDgxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiODNjYjRiOWJhMDZiOTBmMDVlOTAzODQ5ZjJkZWQ2YTliZTdkMGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2anTXZYG8pYGG+ddtaQ0EH8xmqrb 5VyUTIdf3N6vqwxTx6/hhHmyo8hbf+duiA/5HQqdJJoFCcZXV13e9Dg3nYXZqTHy FVcl7MuDqHz6yyS/yRWLQmwQIVxCaV12pvB8n68efz4FIxrWlwHlEDjPKkdbgWbr 6AD/sCGTh6eAxIcGeD7WLUUm3DGPADN+yW7UbJwriY1r7/P/+ZEkP40O+6ZLhkCx KPG5CBxjsdVzPQC/gCaIZHWHOd3leCFWgBvN46ayyta8Xcbn0cShj1mv1aipUj2H zMukRO2eNGXk2cFMAvANTkMK7JUGabehEpkNlhc/P28x76tN8ETwpap7qwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLg8tLm6BrkPBekDhJ8t7Wqb59D0MB8GA1UdIwQY MBaAFM1DT9hZIjrnbo14ZIqTcpXo7NeaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelVOUDJGa2lPdWR1alhoa2lwTnlsZWpzMTVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zZDE4ZGMtNzNjNi00YzZmLThjMjgt NWE1NzIzNGRkYjc2LzEvdUR5MHVib0d1UThGNlFPRW55M3RhcHZuMFBRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8zZDE4ZGMtNzNjNi00YzZmLThjMjgtNWE1NzIzNGRkYjc2 LzEvelVOUDJGa2lPdWR1alhoa2lwTnlsZWpzMTVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwjCZMA0E AgACMAcDBQMqDGlAMA0GCSqGSIb3DQEBCwUAA4IBAQCj2vXqwMlMfndqCRG6bjQt rVxVavk5QwlGhGYHl0FViWmbjmnmuXZ7O7ukStuH/8xQTfUoJRBhmPhV7jS+Msrx m0LL5sugMSDFvEMO3r+F/Me/NI4dRR7QSEF4Vl9bWrOBGhYGqYUGR1MGBf3rGI++ qS2hfCjB/s7l1ffsRnFtGStuNn5pIhkXhd86LQQwEs6MqZhnxeV3yXkPfBbqb3NU DaPEBL0oBYgC/vUnu7Bl+4WO6b6nsFkxSyFV/KsHM8tGU7vV/irFUKJLfmtBLS2L RM0ykGWQQvW5F8kUWfxisYHaNKLBJu5Ei8Q7PtwOAEC9HgVlcSPxACCmgtfdSveU -----END CERTIFICATE-----Generated at Tue Feb 10 06:08:07 2026 by rpki-client