This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/bdfe17-91ad-4f31-aecd-81ed12ddf175/1/Uq5inBb-jqOud0f_hbs-E8z_-XY.roa File: Uq5inBb-jqOud0f_hbs-E8z_-XY.roa (raw, json) Hash identifier: S1HZrn9S5gAaduSRYO2e3A+5aLVn8Wyzjkhn28j1jks= Subject key identifier: 52:AE:62:9C:16:FE:8E:A3:AE:77:47:FF:85:BB:3E:13:CC:FF:F9:76 Certificate issuer: /CN=1b9e417bb9ecb1ace9491ebc2823bb78934b2cdf Certificate serial: 019B797EFCF4A3CB7CB7CF14214F9F57EF99 Authority key identifier: 1B:9E:41:7B:B9:EC:B1:AC:E9:49:1E:BC:28:23:BB:78:93:4B:2C:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G55Be7nssazpSR68KCO7eJNLLN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/bdfe17-91ad-4f31-aecd-81ed12ddf175/1/Uq5inBb-jqOud0f_hbs-E8z_-XY.roa Signing time: Thu 01 Jan 2026 12:18:43 +0000 ROA not before: Thu 01 Jan 2026 12:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30931 IP address blocks: 185.109.140.0/22 maxlen: 22 185.109.140.0/23 maxlen: 23 185.109.140.0/24 maxlen: 24 185.109.141.0/24 maxlen: 24 185.109.142.0/24 maxlen: 24 185.109.143.0/24 maxlen: 24 185.233.4.0/22 maxlen: 22 185.233.4.0/23 maxlen: 23 185.233.6.0/23 maxlen: 23 2a0c:c900::/29 maxlen: 29 2a0c:c900::/48 maxlen: 48 2a0c:c900:1::/48 maxlen: 48 2a0c:c900:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/bdfe17-91ad-4f31-aecd-81ed12ddf175/1/G55Be7nssazpSR68KCO7eJNLLN8.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/bdfe17-91ad-4f31-aecd-81ed12ddf175/1/G55Be7nssazpSR68KCO7eJNLLN8.mft rsync://rpki.ripe.net/repository/DEFAULT/G55Be7nssazpSR68KCO7eJNLLN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:fc:f4:a3:cb:7c:b7:cf:14:21:4f:9f:57:ef:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b9e417bb9ecb1ace9491ebc2823bb78934b2cdf Validity Not Before: Jan 1 12:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52ae629c16fe8ea3ae7747ff85bb3e13ccfff976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:47:1b:5e:d3:d9:25:e1:fd:5a:62:c3:8e:dc: a1:ea:91:8f:ce:dd:bc:1b:16:6f:04:95:16:25:03: 61:bc:49:dc:cd:22:b0:9d:18:c9:3d:9a:3e:2c:91: 1b:67:cd:98:ca:5b:b2:5b:fd:c1:1f:3b:01:c5:54: 73:0c:8a:a5:91:92:a3:79:b3:2c:62:18:ef:7c:e0: 2c:ec:12:2a:9c:fc:14:65:f5:02:5c:b1:ff:40:f0: b1:aa:4a:0c:d0:fb:76:ef:ce:66:f6:83:dc:a3:bc: ec:5e:cf:3d:d7:e9:98:e3:ac:c0:57:68:62:4d:e5: e8:f3:a5:9b:57:75:24:0b:cc:50:d5:36:54:ae:b9: b5:e4:22:7e:50:47:a6:fc:18:90:c5:32:d6:4e:72: 37:b6:79:02:55:d2:6c:50:cc:60:55:ea:db:3e:cb: 14:89:ab:16:30:2a:89:be:cf:65:b3:cc:d9:c9:90: 37:f6:cd:83:f3:33:d4:64:29:a4:12:85:49:87:48: 17:6f:a6:2e:a2:10:d1:0c:d5:1a:15:37:fd:c9:08: fd:4f:89:e8:19:12:f8:6c:e9:ef:ae:53:8e:c6:fa: 09:65:2e:6a:fe:7a:4d:9c:03:7c:a4:3b:a5:32:56: 3b:72:ac:23:c0:57:99:3b:2e:a9:f7:f6:eb:7d:37: 81:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AE:62:9C:16:FE:8E:A3:AE:77:47:FF:85:BB:3E:13:CC:FF:F9:76 X509v3 Authority Key Identifier: keyid:1B:9E:41:7B:B9:EC:B1:AC:E9:49:1E:BC:28:23:BB:78:93:4B:2C:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G55Be7nssazpSR68KCO7eJNLLN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/bdfe17-91ad-4f31-aecd-81ed12ddf175/1/Uq5inBb-jqOud0f_hbs-E8z_-XY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/bdfe17-91ad-4f31-aecd-81ed12ddf175/1/G55Be7nssazpSR68KCO7eJNLLN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.109.140.0/22 185.233.4.0/22 IPv6: 2a0c:c900::/29 Signature Algorithm: sha256WithRSAEncryption 50:d1:3c:82:fa:f7:1e:e4:85:80:c9:b7:7d:2e:dc:7c:65:46: 9e:a3:bd:59:5a:76:ac:aa:35:c0:9a:2d:b4:27:9a:f2:a1:c6: 20:1a:8c:0c:18:6f:3c:c8:4d:cc:3e:62:ce:a2:91:aa:4a:f0: fe:ab:fd:31:1d:6c:90:ef:bd:dd:c0:17:1d:27:fd:0a:d5:26: b9:87:c7:8e:a7:bc:39:50:af:71:33:92:c1:f5:59:78:93:49: 95:aa:2e:f7:e4:2f:de:77:a6:fe:35:df:bb:a9:13:2d:14:4b: 17:81:fa:0c:79:62:12:2c:63:5f:ed:de:7b:c6:b3:aa:1b:54: 66:ea:7b:1b:08:c0:6e:c9:8f:29:c6:6d:2b:6b:5c:db:3d:dc: 96:fd:2e:0f:7a:2b:73:7c:e3:51:96:92:6f:42:44:29:6b:f9: 9e:e2:3c:db:7a:81:6f:33:a7:01:eb:dc:7b:ce:0e:57:d0:94: 85:02:d3:02:fc:09:5e:9f:26:06:3d:25:e1:8f:aa:20:21:a5: 94:4f:90:cd:f2:1f:21:42:78:b9:b1:f1:c7:4c:1f:8f:7c:a5: cf:f4:cc:f5:12:87:e7:65:d8:60:a9:46:f4:e4:b9:fa:c9:6d: 9d:43:32:22:89:f8:71:4a:eb:4d:1e:7f:74:cb:94:cc:73:56: 30:de:68:bb -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt5fvz0o8t8t88UIU+fV++ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiOWU0MTdiYjllY2IxYWNlOTQ5MWViYzI4MjNiYjc4OTM0 YjJjZGYwHhcNMjYwMTAxMTIxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmFlNjI5YzE2ZmU4ZWEzYWU3NzQ3ZmY4NWJiM2UxM2NjZmZmOTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuEcbXtPZJeH9WmLDjtyh6pGPzt28 GxZvBJUWJQNhvEnczSKwnRjJPZo+LJEbZ82YyluyW/3BHzsBxVRzDIqlkZKjebMs YhjvfOAs7BIqnPwUZfUCXLH/QPCxqkoM0Pt2785m9oPco7zsXs891+mY46zAV2hi TeXo86WbV3UkC8xQ1TZUrrm15CJ+UEem/BiQxTLWTnI3tnkCVdJsUMxgVerbPssU iasWMCqJvs9ls8zZyZA39s2D8zPUZCmkEoVJh0gXb6YuohDRDNUaFTf9yQj9T4no GRL4bOnvrlOOxvoJZS5q/npNnAN8pDulMlY7cqwjwFeZOy6p9/brfTeBWwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFFKuYpwW/o6jrndH/4W7PhPM//l2MB8GA1UdIwQY MBaAFBueQXu57LGs6UkevCgju3iTSyzfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRzU1QmU3bnNzYXpwU1I2OEtDTzdlSk5MTE44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9iZGZlMTctOTFhZC00ZjMxLWFlY2Qt ODFlZDEyZGRmMTc1LzEvVXE1aW5CYi1qcU91ZDBmX2hicy1FOHpfLVhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi9iZGZlMTctOTFhZC00ZjMxLWFlY2QtODFlZDEyZGRmMTc1 LzEvRzU1QmU3bnNzYXpwU1I2OEtDTzdlSk5MTE44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuW2MAwQC uekEMA0EAgACMAcDBQMqDMkAMA0GCSqGSIb3DQEBCwUAA4IBAQBQ0TyC+vce5IWA ybd9Ltx8ZUaeo71ZWnasqjXAmi20J5ryocYgGowMGG88yE3MPmLOopGqSvD+q/0x HWyQ773dwBcdJ/0K1Sa5h8eOp7w5UK9xM5LB9Vl4k0mVqi735C/ed6b+Nd+7qRMt FEsXgfoMeWISLGNf7d57xrOqG1Rm6nsbCMBuyY8pxm0ra1zbPdyW/S4PeitzfONR lpJvQkQpa/me4jzbeoFvM6cB69x7zg5X0JSFAtMC/AlenyYGPSXhj6ogIaWUT5DN 8h8hQni5sfHHTB+PfKXP9Mz1EofnZdhgqUb05Ln6yW2dQzIiifhxSutNHn90y5TM c1Yw3mi7 -----END CERTIFICATE-----Generated at Mon Feb 9 22:23:46 2026 by rpki-client