This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/12274e-316b-4f3c-8e6c-dcfeb3f10c86/1/Uo2zXb7xDJEIiCoeCYCC8PrL42A.roa File: Uo2zXb7xDJEIiCoeCYCC8PrL42A.roa (raw, json) Hash identifier: oMrnSqWlYTSclklmzzYM7d3FpGFOzhG3FJDIuAEG0Rc= Subject key identifier: 52:8D:B3:5D:BE:F1:0C:91:08:88:2A:1E:09:80:82:F0:FA:CB:E3:60 Certificate issuer: /CN=292edce09f112ab2d3ffaf4cb2a38eaf1c1af92e Certificate serial: 019B775892A48940FAA9499608C3CBE4FE39 Authority key identifier: 29:2E:DC:E0:9F:11:2A:B2:D3:FF:AF:4C:B2:A3:8E:AF:1C:1A:F9:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KS7c4J8RKrLT_69MsqOOrxwa-S4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/12274e-316b-4f3c-8e6c-dcfeb3f10c86/1/Uo2zXb7xDJEIiCoeCYCC8PrL42A.roa Signing time: Thu 01 Jan 2026 02:17:31 +0000 ROA not before: Thu 01 Jan 2026 02:17:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 195.60.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/12274e-316b-4f3c-8e6c-dcfeb3f10c86/1/KS7c4J8RKrLT_69MsqOOrxwa-S4.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/12274e-316b-4f3c-8e6c-dcfeb3f10c86/1/KS7c4J8RKrLT_69MsqOOrxwa-S4.mft rsync://rpki.ripe.net/repository/DEFAULT/KS7c4J8RKrLT_69MsqOOrxwa-S4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 08:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:92:a4:89:40:fa:a9:49:96:08:c3:cb:e4:fe:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=292edce09f112ab2d3ffaf4cb2a38eaf1c1af92e Validity Not Before: Jan 1 02:17:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=528db35dbef10c9108882a1e098082f0facbe360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4c:c2:d2:e1:76:39:d9:84:94:b4:04:5d:62: 8f:e8:e7:09:1a:38:33:70:0c:28:f0:a8:00:2e:e4: f1:2c:bb:e9:0e:4d:21:ba:42:30:aa:d4:d7:28:6c: d8:b6:77:e2:86:72:f6:ef:e7:e4:2b:7f:5d:5a:49: 9e:da:5d:16:27:b7:65:e0:80:d7:12:16:13:56:4f: dc:15:e1:92:ea:28:84:7a:59:21:b1:77:28:94:08: 2a:7a:a9:e6:e9:38:c3:60:25:db:43:cb:71:09:cb: db:80:d4:af:09:b8:df:e0:fa:e6:34:32:da:5c:82: e0:3c:cd:28:b5:32:21:71:19:cf:75:32:dc:39:02: ac:51:b9:6b:ff:28:15:fa:d0:32:c9:70:bb:d5:35: b8:06:82:0d:d0:e5:08:ad:a0:45:31:2d:8f:32:c2: a5:f9:73:2d:8f:93:f2:57:09:25:89:db:69:20:c2: 95:7b:5e:0a:22:5d:cd:87:3f:4f:5b:ff:10:4d:9f: 44:df:59:ae:dc:3f:20:de:09:8f:66:06:2c:17:f3: 5e:7e:56:fd:9e:48:99:d3:4c:c2:f9:3f:66:c4:a8: 90:c3:f4:aa:d0:8f:0b:89:c4:44:b8:6f:2d:27:48: 7c:04:be:86:63:c1:4e:80:cb:08:69:87:fd:cd:80: 68:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:8D:B3:5D:BE:F1:0C:91:08:88:2A:1E:09:80:82:F0:FA:CB:E3:60 X509v3 Authority Key Identifier: keyid:29:2E:DC:E0:9F:11:2A:B2:D3:FF:AF:4C:B2:A3:8E:AF:1C:1A:F9:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KS7c4J8RKrLT_69MsqOOrxwa-S4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/12274e-316b-4f3c-8e6c-dcfeb3f10c86/1/Uo2zXb7xDJEIiCoeCYCC8PrL42A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/12274e-316b-4f3c-8e6c-dcfeb3f10c86/1/KS7c4J8RKrLT_69MsqOOrxwa-S4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.60.86.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:ec:92:ef:ae:65:85:b6:41:f0:0a:70:83:32:97:03:7d:ac: 37:f2:3d:00:92:0d:2f:2b:e7:43:77:32:ef:f4:01:0a:bc:ce: 00:cd:40:0f:8f:50:ba:3f:9e:3d:56:d9:8f:0f:21:9c:13:9e: 44:7e:bd:b5:90:4e:5e:60:7c:c7:37:47:4d:97:71:53:65:92: d8:0a:dd:d0:7f:b1:c9:69:69:f4:6e:7a:54:71:db:5e:df:08: 6b:3c:58:5e:c2:16:db:56:74:05:35:9c:51:cd:39:fb:06:f1: 48:1a:88:88:b0:1c:39:c4:04:7d:39:96:f0:16:78:46:31:f3: 4d:5d:11:56:12:fe:8b:31:29:9a:e2:a6:69:64:99:13:ef:86: 34:e6:18:da:ec:a4:2f:b4:95:2b:cc:89:25:6e:af:1a:6f:67: f3:92:69:fc:5a:9c:94:f3:d4:22:94:ec:0c:14:ce:8b:4f:b6: e2:ab:27:cf:25:ba:c6:ee:0b:00:47:ec:d3:ba:df:6e:9d:c6: 42:93:0f:ca:8c:d7:43:5a:0a:a6:26:56:1c:3e:c5:4c:84:49: 4e:4c:25:16:60:fc:73:c9:24:84:47:86:2a:72:54:76:91:e8: 23:05:4f:cd:c6:62:05:70:8c:ee:7b:76:92:36:f9:86:55:81: 10:8b:0d:a3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WJKkiUD6qUmWCMPL5P45MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MmVkY2UwOWYxMTJhYjJkM2ZmYWY0Y2IyYTM4ZWFmMWMx YWY5MmUwHhcNMjYwMTAxMDIxNzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjhkYjM1ZGJlZjEwYzkxMDg4ODJhMWUwOTgwODJmMGZhY2JlMzYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0zC0uF2OdmElLQEXWKP6OcJGjgz cAwo8KgALuTxLLvpDk0hukIwqtTXKGzYtnfihnL27+fkK39dWkme2l0WJ7dl4IDX EhYTVk/cFeGS6iiEelkhsXcolAgqeqnm6TjDYCXbQ8txCcvbgNSvCbjf4PrmNDLa XILgPM0otTIhcRnPdTLcOQKsUblr/ygV+tAyyXC71TW4BoIN0OUIraBFMS2PMsKl +XMtj5PyVwklidtpIMKVe14KIl3Nhz9PW/8QTZ9E31mu3D8g3gmPZgYsF/Neflb9 nkiZ00zC+T9mxKiQw/Sq0I8LicREuG8tJ0h8BL6GY8FOgMsIaYf9zYBoOQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFKNs12+8QyRCIgqHgmAgvD6y+NgMB8GA1UdIwQY MBaAFCku3OCfESqy0/+vTLKjjq8cGvkuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1M3YzRKOFJLckxUXzY5TXNxT09yeHdhLVM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8xMjI3NGUtMzE2Yi00ZjNjLThlNmMt ZGNmZWIzZjEwYzg2LzEvVW8yelhiN3hESkVJaUNvZUNZQ0M4UHJMNDJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8xMjI3NGUtMzE2Yi00ZjNjLThlNmMtZGNmZWIzZjEwYzg2 LzEvS1M3YzRKOFJLckxUXzY5TXNxT09yeHdhLVM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwzxWMA0G CSqGSIb3DQEBCwUAA4IBAQAb7JLvrmWFtkHwCnCDMpcDfaw38j0Akg0vK+dDdzLv 9AEKvM4AzUAPj1C6P549VtmPDyGcE55Efr21kE5eYHzHN0dNl3FTZZLYCt3Qf7HJ aWn0bnpUcdte3whrPFhewhbbVnQFNZxRzTn7BvFIGoiIsBw5xAR9OZbwFnhGMfNN XRFWEv6LMSma4qZpZJkT74Y05hja7KQvtJUrzIklbq8ab2fzkmn8WpyU89QilOwM FM6LT7biqyfPJbrG7gsAR+zTut9uncZCkw/KjNdDWgqmJlYcPsVMhElOTCUWYPxz ySSER4YqclR2kegjBU/NxmIFcIzue3aSNvmGVYEQiw2j -----END CERTIFICATE-----Generated at Fri Jan 9 17:05:26 2026 by rpki-client