This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/34bb77-c847-4111-96f3-bdd5cc440396/1/UlgMubvL0b05NPo0OYBZNNMYbpc.roa File: UlgMubvL0b05NPo0OYBZNNMYbpc.roa (raw, json) Hash identifier: 5BRGLDe+CLca7bIM6Jp7/JjKHJiwcAuqklCH8T20ndI= Subject key identifier: 52:58:0C:B9:BB:CB:D1:BD:39:34:FA:34:39:80:59:34:D3:18:6E:97 Certificate issuer: /CN=9b986fc646fda0cf145e10d93fe1b10eb0dee625 Certificate serial: 019B79114906E3D4ED535B78CD304B3216A5 Authority key identifier: 9B:98:6F:C6:46:FD:A0:CF:14:5E:10:D9:3F:E1:B1:0E:B0:DE:E6:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5hvxkb9oM8UXhDZP-GxDrDe5iU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/34bb77-c847-4111-96f3-bdd5cc440396/1/UlgMubvL0b05NPo0OYBZNNMYbpc.roa Signing time: Thu 01 Jan 2026 10:18:54 +0000 ROA not before: Thu 01 Jan 2026 10:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39761 IP address blocks: 45.11.132.0/22 maxlen: 22 45.14.156.0/22 maxlen: 22 45.83.212.0/22 maxlen: 22 45.87.12.0/22 maxlen: 22 81.90.240.0/20 maxlen: 24 84.246.160.0/21 maxlen: 24 2a00:1268::/32 maxlen: 32 2a0e:6d00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/34bb77-c847-4111-96f3-bdd5cc440396/1/m5hvxkb9oM8UXhDZP-GxDrDe5iU.crl rsync://rpki.ripe.net/repository/DEFAULT/0a/34bb77-c847-4111-96f3-bdd5cc440396/1/m5hvxkb9oM8UXhDZP-GxDrDe5iU.mft rsync://rpki.ripe.net/repository/DEFAULT/m5hvxkb9oM8UXhDZP-GxDrDe5iU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 13:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:49:06:e3:d4:ed:53:5b:78:cd:30:4b:32:16:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9b986fc646fda0cf145e10d93fe1b10eb0dee625 Validity Not Before: Jan 1 10:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52580cb9bbcbd1bd3934fa3439805934d3186e97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:97:27:0b:9b:4c:3e:1e:4f:de:b9:63:0b:62: 2e:dc:0e:9b:c4:d6:fd:1b:89:0a:57:dc:2f:a9:70: 18:b6:3e:0f:bb:35:1d:6c:ee:a6:29:ed:88:42:4e: 37:e3:4f:5e:9b:be:2e:78:3d:83:db:19:7d:c2:3a: c1:56:1d:43:1d:60:2f:d4:ae:f4:ff:89:f6:4b:79: 30:ef:ed:ab:a0:90:0d:ae:f8:80:ae:7e:b6:2e:11: 76:6b:4c:b0:67:4e:72:e3:fb:e5:b5:24:be:c1:d2: 7d:e6:09:c5:99:e5:46:c3:3d:97:c9:fa:34:8c:e1: d2:87:93:83:22:7b:7b:7e:6e:ef:c1:99:dd:3f:fa: fa:95:f8:55:94:06:eb:8f:ec:2c:b3:d3:12:56:e3: fa:83:8b:a4:78:51:5c:1e:48:9f:64:6e:c6:75:1a: 53:ed:0a:53:2f:68:83:f0:6f:d1:13:5a:99:54:88: 9e:c6:cf:8c:a9:56:d8:6a:6d:68:aa:0d:42:bf:b0: 58:f2:9f:2b:f9:90:04:22:c4:5c:47:98:1f:fd:5a: 69:07:cb:f5:64:55:3b:c8:96:22:49:64:4a:4e:26: ae:41:19:26:5e:e0:ff:b1:3a:44:f3:da:7a:f4:d5: 0c:29:24:21:14:f0:80:cb:e7:21:00:23:ba:7c:a0: ed:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:58:0C:B9:BB:CB:D1:BD:39:34:FA:34:39:80:59:34:D3:18:6E:97 X509v3 Authority Key Identifier: keyid:9B:98:6F:C6:46:FD:A0:CF:14:5E:10:D9:3F:E1:B1:0E:B0:DE:E6:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5hvxkb9oM8UXhDZP-GxDrDe5iU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/34bb77-c847-4111-96f3-bdd5cc440396/1/UlgMubvL0b05NPo0OYBZNNMYbpc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/34bb77-c847-4111-96f3-bdd5cc440396/1/m5hvxkb9oM8UXhDZP-GxDrDe5iU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.11.132.0/22 45.14.156.0/22 45.83.212.0/22 45.87.12.0/22 81.90.240.0/20 84.246.160.0/21 IPv6: 2a00:1268::/32 2a0e:6d00::/29 Signature Algorithm: sha256WithRSAEncryption 8b:b7:48:ce:73:dd:9c:b0:aa:d5:8d:00:06:97:01:76:a3:d6: 46:ab:de:a9:e6:0b:71:13:b7:90:20:4a:61:1c:32:2c:2e:e3: e9:cd:ae:ed:f3:86:23:a3:5e:79:5b:26:89:48:4c:0c:b0:59: b2:b9:40:44:11:e1:60:8c:a8:84:10:a3:32:82:90:d0:c6:f0: 6d:67:40:b8:98:fe:31:5d:15:c2:29:a2:eb:45:7f:ce:0e:b5: f3:69:1e:b2:81:d5:67:25:75:97:36:81:ac:40:12:cc:f8:da: e1:8f:98:68:21:55:19:a4:89:34:67:f9:3c:43:c7:30:e8:23: f0:3e:1f:47:c3:02:3e:73:ae:68:b0:ac:31:46:17:29:d4:ec: dd:9e:19:48:38:46:9c:07:49:9e:14:ca:bc:47:cc:1f:dd:9c: 04:93:cf:d0:09:cf:e2:b3:45:1c:02:fb:9b:4b:b4:b6:d4:5a: ad:d3:08:c6:a2:7b:a3:c8:70:93:d1:cd:f2:09:17:ec:a6:a7: d4:9b:b3:ea:c5:b4:27:52:36:4e:04:3a:61:cf:93:8a:d8:9e: 6e:40:09:40:d7:61:07:d1:00:aa:00:2a:eb:76:e1:4d:d1:a7: 03:41:21:15:00:f7:93:b3:e2:f8:67:7e:de:84:f5:df:82:39: 0c:8b:e1:66 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt5EUkG49TtU1t4zTBLMhalMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDliOTg2ZmM2NDZmZGEwY2YxNDVlMTBkOTNmZTFiMTBlYjBk ZWU2MjUwHhcNMjYwMTAxMTAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MjU4MGNiOWJiY2JkMWJkMzkzNGZhMzQzOTgwNTkzNGQzMTg2ZTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZcnC5tMPh5P3rljC2Iu3A6bxNb9 G4kKV9wvqXAYtj4PuzUdbO6mKe2IQk43409em74ueD2D2xl9wjrBVh1DHWAv1K70 /4n2S3kw7+2roJANrviArn62LhF2a0ywZ05y4/vltSS+wdJ95gnFmeVGwz2Xyfo0 jOHSh5ODInt7fm7vwZndP/r6lfhVlAbrj+wss9MSVuP6g4ukeFFcHkifZG7GdRpT 7QpTL2iD8G/RE1qZVIiexs+MqVbYam1oqg1Cv7BY8p8r+ZAEIsRcR5gf/VppB8v1 ZFU7yJYiSWRKTiauQRkmXuD/sTpE89p69NUMKSQhFPCAy+chACO6fKDtIwIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFFJYDLm7y9G9OTT6NDmAWTTTGG6XMB8GA1UdIwQY MBaAFJuYb8ZG/aDPFF4Q2T/hsQ6w3uYlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbTVodnhrYjlvTThVWGhEWlAtR3hEckRlNWlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS8zNGJiNzctYzg0Ny00MTExLTk2ZjMt YmRkNWNjNDQwMzk2LzEvVWxnTXVidkwwYjA1TlBvME9ZQlpOTk1ZYnBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYS8zNGJiNzctYzg0Ny00MTExLTk2ZjMtYmRkNWNjNDQwMzk2 LzEvbTVodnhrYjlvTThVWGhEWlAtR3hEckRlNWlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQCLQuEAwQC LQ6cAwQCLVPUAwQCLVcMAwQEUVrwAwQDVPagMBQEAgACMA4DBQAqABJoAwUDKg5t ADANBgkqhkiG9w0BAQsFAAOCAQEAi7dIznPdnLCq1Y0ABpcBdqPWRqveqeYLcRO3 kCBKYRwyLC7j6c2u7fOGI6NeeVsmiUhMDLBZsrlARBHhYIyohBCjMoKQ0MbwbWdA uJj+MV0Vwimi60V/zg6182kesoHVZyV1lzaBrEASzPja4Y+YaCFVGaSJNGf5PEPH MOgj8D4fR8MCPnOuaLCsMUYXKdTs3Z4ZSDhGnAdJnhTKvEfMH92cBJPP0AnP4rNF HAL7m0u0ttRardMIxqJ7o8hwk9HN8gkX7Kan1Juz6sW0J1I2TgQ6Yc+TitiebkAJ QNdhB9EAqgAq63bhTdGnA0EhFQD3k7Pi+Gd+3oT134I5DIvhZg== -----END CERTIFICATE-----Generated at Sun Jan 11 23:32:01 2026 by rpki-client