This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/aVaSopuN0rfYxzGf1msV-e-0LZ4.roa File: aVaSopuN0rfYxzGf1msV-e-0LZ4.roa (raw, json) Hash identifier: tEWZvuVGCaQazP8mv20pjbjMYfn/bE2xgimAVye9IxQ= Subject key identifier: 69:56:92:A2:9B:8D:D2:B7:D8:C7:31:9F:D6:6B:15:F9:EF:B4:2D:9E Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019C1F6D6BA3E86318784429994125474EFE Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/aVaSopuN0rfYxzGf1msV-e-0LZ4.roa Signing time: Mon 02 Feb 2026 17:36:30 +0000 ROA not before: Mon 02 Feb 2026 17:36:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214309 IP address blocks: 144.31.225.0/24 maxlen: 24 185.176.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Feb 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1f:6d:6b:a3:e8:63:18:78:44:29:99:41:25:47:4e:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Feb 2 17:36:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=695692a29b8dd2b7d8c7319fd66b15f9efb42d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bd:74:3c:df:88:18:b4:62:ec:2a:8d:d4:df: f7:29:3d:68:cf:4b:37:73:c6:c2:4d:36:22:0c:9d: cc:4b:d2:da:64:27:d5:b6:7b:73:4a:1e:07:91:34: 46:86:d8:e1:ff:35:8c:bc:ed:c4:40:dc:db:ea:01: ad:f3:7f:01:73:ae:37:b5:11:eb:58:9a:2b:ab:9f: de:a5:3e:b2:08:37:a7:ef:77:40:1b:69:ef:10:03: 52:e4:0e:7b:87:bf:2f:52:48:15:22:e1:af:28:3a: d0:c4:bc:3c:2b:1f:89:f4:f6:ec:e1:a0:24:c4:e1: 2d:07:55:35:eb:ad:e5:39:80:b0:86:ce:f6:0c:a0: ed:3a:c1:b0:e4:67:90:00:7e:ac:dc:69:11:23:b6: c7:35:83:88:ab:55:a3:57:5c:4d:09:c0:11:4c:91: 96:51:20:7b:d4:4c:fe:76:8f:85:7c:76:58:b3:f9: 02:02:55:5f:2e:ea:4b:cb:a5:d1:6b:02:c5:a8:29: d7:ed:6a:d9:80:0f:19:8d:30:28:97:89:68:f2:44: d3:2b:e2:78:9b:70:02:d3:4b:42:ec:ce:23:47:83: a2:f1:8e:8d:02:8b:02:bc:74:03:da:26:62:e5:2d: 50:42:64:17:d4:9b:95:b1:05:c0:0e:4d:23:4d:5e: 70:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:56:92:A2:9B:8D:D2:B7:D8:C7:31:9F:D6:6B:15:F9:EF:B4:2D:9E X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/aVaSopuN0rfYxzGf1msV-e-0LZ4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.31.225.0/24 185.176.94.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:5c:d6:5c:c5:37:4b:93:35:5f:b5:23:9f:92:0d:87:ba:0d: 2d:e4:00:a4:44:13:46:bb:8f:f2:23:41:a4:bd:e2:6b:8e:5f: 86:a7:ed:63:dc:41:b6:32:63:c1:5f:af:4a:03:4d:c1:03:d2: ed:31:06:3c:13:a0:26:e7:8e:19:8a:41:dd:75:23:c5:54:d8: 6d:e7:27:9b:93:3e:31:e2:fa:2b:7d:26:d5:04:44:af:31:1a: 42:06:89:ac:2c:32:e6:89:a6:05:c3:6e:37:d0:fa:ea:0a:1e: e7:06:f2:58:ae:c2:3f:11:e4:1b:47:89:6d:90:47:a8:59:5b: ff:09:8f:08:93:98:64:61:73:33:5c:a3:d0:d6:b2:2a:80:38: 05:8c:ec:f5:ba:75:ff:72:d5:f6:d3:0f:bc:34:e1:21:07:7f: 42:5f:41:09:0f:7b:20:c3:b1:6d:fe:66:32:5f:12:62:9f:67: da:64:f4:aa:c7:66:0e:fe:8b:cb:fa:b9:7e:5d:ef:1a:43:70: c3:c8:79:f3:97:42:82:53:1f:5c:7f:ec:27:b6:54:15:fb:22: f8:65:a1:72:ca:b6:02:01:9a:24:0a:72:f8:a1:e7:c2:28:24: d8:51:f1:37:cb:8e:89:08:ea:a1:65:c3:b7:3a:a5:38:40:ab: cf:2b:27:3e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZwfbWuj6GMYeEQpmUElR07+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMjAyMTczNjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTU2OTJhMjliOGRkMmI3ZDhjNzMxOWZkNjZiMTVmOWVmYjQyZDllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv710PN+IGLRi7CqN1N/3KT1oz0s3 c8bCTTYiDJ3MS9LaZCfVtntzSh4HkTRGhtjh/zWMvO3EQNzb6gGt838Bc643tRHr WJorq5/epT6yCDen73dAG2nvEANS5A57h78vUkgVIuGvKDrQxLw8Kx+J9Pbs4aAk xOEtB1U1663lOYCwhs72DKDtOsGw5GeQAH6s3GkRI7bHNYOIq1WjV1xNCcARTJGW USB71Ez+do+FfHZYs/kCAlVfLupLy6XRawLFqCnX7WrZgA8ZjTAol4lo8kTTK+J4 m3AC00tC7M4jR4Oi8Y6NAosCvHQD2iZi5S1QQmQX1JuVsQXADk0jTV5w4wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFGlWkqKbjdK32Mcxn9ZrFfnvtC2eMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvYVZhU29wdU4wcmZZeHpHZjFtc1YtZS0wTFo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAkB/hAwQA ubBeMA0GCSqGSIb3DQEBCwUAA4IBAQCfXNZcxTdLkzVftSOfkg2Hug0t5ACkRBNG u4/yI0GkveJrjl+Gp+1j3EG2MmPBX69KA03BA9LtMQY8E6Am544ZikHddSPFVNht 5yebkz4x4vorfSbVBESvMRpCBomsLDLmiaYFw2430PrqCh7nBvJYrsI/EeQbR4lt kEeoWVv/CY8Ik5hkYXMzXKPQ1rIqgDgFjOz1unX/ctX20w+8NOEhB39CX0EJD3sg w7Ft/mYyXxJin2faZPSqx2YO/ovL+rl+Xe8aQ3DDyHnzl0KCUx9cf+wntlQV+yL4 ZaFyyrYCAZokCnL4oefCKCTYUfE3y46JCOqhZcO3OqU4QKvPKyc+ -----END CERTIFICATE-----Generated at Wed Feb 4 10:01:50 2026 by rpki-client