This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/uRRMYgnu-bZBG9baaLWfUi4PBns.roa File: uRRMYgnu-bZBG9baaLWfUi4PBns.roa (raw, json) Hash identifier: JWxuXbyBJNwH97SXL3KmtOQUktUGRxMlosbaF3EpabU= Subject key identifier: B9:14:4C:62:09:EE:F9:B6:41:1B:D6:DA:68:B5:9F:52:2E:0F:06:7B Certificate issuer: /CN=894928a39627cd5ee5f975bd897c2d775ab29940 Certificate serial: 019B7CEE4C26B41749CBC6D38C9D7E91D37B Authority key identifier: 89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/uRRMYgnu-bZBG9baaLWfUi4PBns.roa Signing time: Fri 02 Jan 2026 04:19:10 +0000 ROA not before: Fri 02 Jan 2026 04:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135609 IP address blocks: 192.48.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.mft rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 22:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:4c:26:b4:17:49:cb:c6:d3:8c:9d:7e:91:d3:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=894928a39627cd5ee5f975bd897c2d775ab29940 Validity Not Before: Jan 2 04:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b9144c6209eef9b6411bd6da68b59f522e0f067b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0f:69:8f:67:d8:62:6a:88:60:57:7b:29:c3: 74:01:c3:33:3c:12:8e:ba:af:28:e1:23:f2:76:ff: 50:75:3f:d4:df:8d:f2:1c:d1:4d:4a:af:50:fe:66: ec:26:4e:46:4c:e0:f7:43:e9:5a:c4:4e:89:00:98: 7a:5c:69:0b:e0:7e:66:7d:cd:b4:83:ad:10:36:5f: 02:8f:6e:23:1e:28:49:73:66:2c:bb:0b:c3:27:a7: 8d:21:ee:0e:ce:b9:45:f1:d7:0c:36:3b:32:c7:9c: 44:cd:81:8b:56:2d:2a:bb:5e:92:9e:85:0f:83:78: 27:b5:6d:fb:4b:90:8d:27:3a:ab:80:11:3d:ca:4d: 02:f2:02:1a:85:3e:68:12:71:60:02:e7:37:59:73: a6:f9:5b:8e:0a:ab:5f:66:61:e1:6d:d8:8a:0f:25: a1:a9:e9:4b:98:a7:ac:0f:66:f2:af:cb:a2:e8:58: 05:11:f8:cf:32:00:d4:05:e2:74:cf:da:39:24:89: ed:62:39:22:c0:e4:34:c3:ee:79:35:db:56:4d:3e: 27:14:ef:bf:2a:3f:55:5b:d1:e3:fd:bf:47:12:0e: 35:b8:4c:3f:7f:5e:d4:42:2d:df:d3:a1:09:7e:c1: 28:63:60:85:98:72:e2:b8:0d:7e:ea:b9:d5:24:a7: 4a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:14:4C:62:09:EE:F9:B6:41:1B:D6:DA:68:B5:9F:52:2E:0F:06:7B X509v3 Authority Key Identifier: keyid:89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/uRRMYgnu-bZBG9baaLWfUi4PBns.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.48.31.0/24 Signature Algorithm: sha256WithRSAEncryption 96:05:d7:10:ad:2b:ee:bd:70:a0:32:9e:49:a1:df:00:98:34: f9:35:e5:cf:3e:cc:59:a9:7b:f4:95:8c:e2:39:f3:78:d2:df: 07:f5:2a:31:8f:46:2c:c8:ad:e2:45:27:ae:52:b6:26:02:b4: 50:96:77:74:c6:58:76:2b:54:fd:0b:af:52:7f:e5:2d:1f:28: 4b:bc:1d:9a:a8:42:8d:f9:65:cc:ce:c4:37:fe:fc:e5:fb:66: 40:bb:f9:ed:c9:82:25:88:ff:21:67:87:ee:d7:76:c6:e2:f0: 16:77:db:47:14:be:28:32:1d:4a:9b:68:10:91:88:ea:a8:ed: 2e:9d:41:4f:f9:2e:d4:b1:26:75:1b:45:1a:3c:91:26:1f:c9: 8a:bd:14:14:7b:6f:64:ea:fd:a5:82:fc:17:4f:32:a5:ab:84: bf:af:fb:1e:c9:1a:bb:b7:8b:d9:1d:16:fb:eb:32:0c:c6:9a: 40:02:9e:86:ec:70:58:24:40:4c:92:09:b0:da:28:2c:34:b9: 06:3e:f4:18:0b:c1:29:cf:34:d3:6d:fa:03:18:16:77:e2:df: 82:15:36:30:cd:73:c5:16:f4:20:33:08:00:e4:a5:5b:c6:fe: 4c:dc:ae:fd:11:bd:78:11:63:9c:0e:90:42:ae:bf:0c:6b:f6: e5:d0:0f:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87kwmtBdJy8bTjJ1+kdN7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NDkyOGEzOTYyN2NkNWVlNWY5NzViZDg5N2MyZDc3NWFi Mjk5NDAwHhcNMjYwMTAyMDQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTE0NGM2MjA5ZWVmOWI2NDExYmQ2ZGE2OGI1OWY1MjJlMGYwNjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArg9pj2fYYmqIYFd7KcN0AcMzPBKO uq8o4SPydv9QdT/U343yHNFNSq9Q/mbsJk5GTOD3Q+laxE6JAJh6XGkL4H5mfc20 g60QNl8Cj24jHihJc2YsuwvDJ6eNIe4OzrlF8dcMNjsyx5xEzYGLVi0qu16SnoUP g3gntW37S5CNJzqrgBE9yk0C8gIahT5oEnFgAuc3WXOm+VuOCqtfZmHhbdiKDyWh qelLmKesD2byr8ui6FgFEfjPMgDUBeJ0z9o5JIntYjkiwOQ0w+55NdtWTT4nFO+/ Kj9VW9Hj/b9HEg41uEw/f17UQi3f06EJfsEoY2CFmHLiuA1+6rnVJKdKIwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLkUTGIJ7vm2QRvW2mi1n1IuDwZ7MB8GA1UdIwQY MBaAFIlJKKOWJ81e5fl1vYl8LXdasplAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVVrb281WW56VjdsLVhXOWlYd3RkMXF5bVVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC82OWM3ZDEtYzQzZC00YmNkLThlNmEt MTU5M2Q0MDQ1Y2JjLzEvdVJSTVlnbnUtYlpCRzliYWFMV2ZVaTRQQm5zLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC82OWM3ZDEtYzQzZC00YmNkLThlNmEtMTU5M2Q0MDQ1Y2Jj LzEvaVVrb281WW56VjdsLVhXOWlYd3RkMXF5bVVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwDAfMA0G CSqGSIb3DQEBCwUAA4IBAQCWBdcQrSvuvXCgMp5Jod8AmDT5NeXPPsxZqXv0lYzi OfN40t8H9Soxj0YsyK3iRSeuUrYmArRQlnd0xlh2K1T9C69Sf+UtHyhLvB2aqEKN +WXMzsQ3/vzl+2ZAu/ntyYIliP8hZ4fu13bG4vAWd9tHFL4oMh1Km2gQkYjqqO0u nUFP+S7UsSZ1G0UaPJEmH8mKvRQUe29k6v2lgvwXTzKlq4S/r/seyRq7t4vZHRb7 6zIMxppAAp6G7HBYJEBMkgmw2igsNLkGPvQYC8EpzzTTbfoDGBZ34t+CFTYwzXPF FvQgMwgA5KVbxv5M3K79Eb14EWOcDpBCrr8Ma/bl0A94 -----END CERTIFICATE-----Generated at Mon Jan 12 06:43:20 2026 by rpki-client