This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/uZHn0r02l2agjVRMRfZ3xICbMLw.roa File: uZHn0r02l2agjVRMRfZ3xICbMLw.roa (raw, json) Hash identifier: YR/6cl0OhmlwCiQwg5TQ7bSWNguLPLl/GP2GOc23T+k= Subject key identifier: B9:91:E7:D2:BD:36:97:66:A0:8D:54:4C:45:F6:77:C4:80:9B:30:BC Certificate issuer: /CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686 Certificate serial: 019B7F82774E3FEDDD128F7426712D14A534 Authority key identifier: 0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/uZHn0r02l2agjVRMRfZ3xICbMLw.roa Signing time: Fri 02 Jan 2026 16:20:15 +0000 ROA not before: Fri 02 Jan 2026 16:20:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33842 IP address blocks: 185.73.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:77:4e:3f:ed:dd:12:8f:74:26:71:2d:14:a5:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686 Validity Not Before: Jan 2 16:20:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b991e7d2bd369766a08d544c45f677c4809b30bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e3:fc:95:14:5a:62:0d:92:c6:7e:09:18:fc: 9c:f8:b4:6f:5a:48:03:ea:7b:25:7d:f1:ed:9e:7a: c0:34:b1:6e:c2:08:a2:cd:71:b0:a0:46:f3:af:d6: 46:dd:71:29:80:0c:73:ef:6a:8f:1f:10:37:66:f9: 5a:f3:a1:c9:47:ef:89:c3:81:72:68:95:2b:fc:41: e5:44:f7:77:bd:3a:d6:0b:c6:f7:60:b7:47:f2:77: db:b0:28:f4:05:5e:8d:9e:49:a0:8e:fc:ae:8a:27: 5f:65:38:df:e3:0f:c0:4f:97:40:10:18:c6:35:c2: 9d:9a:72:b7:f9:65:42:0d:ed:4f:b7:3d:56:67:78: fb:ea:79:79:6e:b8:93:f2:7a:27:f4:39:e6:be:a1: e2:e3:96:93:85:f1:02:c6:f3:cb:c2:30:7b:41:67: ea:17:a2:8a:33:e7:fa:80:3f:18:70:81:37:5f:1c: 4d:e8:e5:cf:29:d9:d7:b0:87:65:b3:d8:dc:d6:77: 8f:d6:2f:9c:b2:46:01:12:96:80:55:2d:2e:42:5f: 00:ad:b0:53:8d:15:5d:19:ed:7a:0a:35:13:9f:d6: 23:26:cf:dd:c7:08:18:61:01:39:14:39:c0:92:09: 88:74:12:27:44:83:73:d9:68:61:85:88:9e:36:87: 5a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:91:E7:D2:BD:36:97:66:A0:8D:54:4C:45:F6:77:C4:80:9B:30:BC X509v3 Authority Key Identifier: keyid:0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/uZHn0r02l2agjVRMRfZ3xICbMLw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.73.126.0/24 Signature Algorithm: sha256WithRSAEncryption 96:53:e2:e9:59:5e:5d:54:94:29:06:1b:e4:39:d4:30:19:47: 1a:c0:bb:d3:e4:ed:10:10:10:84:6b:c2:95:53:ee:9e:2b:45: d2:35:49:04:3c:93:e0:90:88:67:c2:45:d7:5b:e0:43:46:ca: a8:64:d1:72:d3:63:18:2c:07:49:a7:89:7a:d2:1b:15:aa:9a: db:0d:82:31:1a:94:95:7e:2b:04:1e:f3:2c:af:dd:0c:83:5a: 26:8f:ea:24:37:0d:2f:86:ae:0d:58:70:7b:a0:0f:d1:42:52: ae:ad:12:c1:8c:ee:46:7b:c5:6a:5a:a8:8e:7d:b4:c7:38:32: 73:65:65:7e:eb:1b:82:5f:28:77:af:75:15:08:b2:91:53:ac: 39:06:9a:6b:51:a7:af:20:19:46:83:17:4e:83:f7:fb:25:7b: ff:b0:ee:a7:43:3b:fe:c9:b0:df:b8:0c:1c:0b:e1:f2:02:96: 1d:79:ca:4d:cc:33:29:31:16:16:be:34:7e:f8:7f:e5:5b:27: c6:c9:e9:ff:1a:3b:87:8f:5c:c0:f6:10:99:79:5c:5e:08:7e: 11:27:81:96:ab:df:dc:c0:3e:94:7d:a3:8e:7a:c1:dc:f8:49: dc:29:94:be:90:4d:6b:2a:fb:a6:fe:e2:f8:4d:c9:28:7e:b0: 16:5f:e5:5b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gndOP+3dEo90JnEtFKU0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlM2YzMWM5ZWFjZTZmMGE1ZWNjZGI4ZGYyYjAxYzczNTE1 Njg2ODYwHhcNMjYwMTAyMTYyMDE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOTkxZTdkMmJkMzY5NzY2YTA4ZDU0NGM0NWY2NzdjNDgwOWIzMGJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmuP8lRRaYg2Sxn4JGPyc+LRvWkgD 6nslffHtnnrANLFuwgiizXGwoEbzr9ZG3XEpgAxz72qPHxA3Zvla86HJR++Jw4Fy aJUr/EHlRPd3vTrWC8b3YLdH8nfbsCj0BV6NnkmgjvyuiidfZTjf4w/AT5dAEBjG NcKdmnK3+WVCDe1Ptz1WZ3j76nl5briT8non9DnmvqHi45aThfECxvPLwjB7QWfq F6KKM+f6gD8YcIE3XxxN6OXPKdnXsIdls9jc1neP1i+cskYBEpaAVS0uQl8ArbBT jRVdGe16CjUTn9YjJs/dxwgYYQE5FDnAkgmIdBInRINz2WhhhYieNodaNwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLmR59K9NpdmoI1UTEX2d8SAmzC8MB8GA1UdIwQY MBaAFA4/Mcnqzm8KXszbjfKwHHNRVoaGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGo4eHllck9id3Blek51TjhyQWNjMUZXaG9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9hNmRkYTEtMWI4Ny00ZWMzLTkzOGYt ZGQ1ZGRkMDVkYjBiLzEvdVpIbjByMDJsMmFnalZSTVJmWjN4SUNiTUx3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9hNmRkYTEtMWI4Ny00ZWMzLTkzOGYtZGQ1ZGRkMDVkYjBi LzEvRGo4eHllck9id3Blek51TjhyQWNjMUZXaG9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUl+MA0G CSqGSIb3DQEBCwUAA4IBAQCWU+LpWV5dVJQpBhvkOdQwGUcawLvT5O0QEBCEa8KV U+6eK0XSNUkEPJPgkIhnwkXXW+BDRsqoZNFy02MYLAdJp4l60hsVqprbDYIxGpSV fisEHvMsr90Mg1omj+okNw0vhq4NWHB7oA/RQlKurRLBjO5Ge8VqWqiOfbTHODJz ZWV+6xuCXyh3r3UVCLKRU6w5BpprUaevIBlGgxdOg/f7JXv/sO6nQzv+ybDfuAwc C+HyApYdecpNzDMpMRYWvjR++H/lWyfGyen/GjuHj1zA9hCZeVxeCH4RJ4GWq9/c wD6UfaOOesHc+EncKZS+kE1rKvum/uL4TckofrAWX+Vb -----END CERTIFICATE-----Generated at Mon Jan 12 13:29:07 2026 by rpki-client