This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IDNYgD8vC_kHEfE9UKyFWxPcz_A.roa File: IDNYgD8vC_kHEfE9UKyFWxPcz_A.roa (raw, json) Hash identifier: 8pmlTEDgZVvDIGKd0UvipI/2t8aVoiR9hmJ66ICNGaU= Subject key identifier: 20:33:58:80:3F:2F:0B:F9:07:11:F1:3D:50:AC:85:5B:13:DC:CF:F0 Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Certificate serial: 019B7F8549E4C447D33954CF21D254FD2521 Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IDNYgD8vC_kHEfE9UKyFWxPcz_A.roa Signing time: Fri 02 Jan 2026 16:23:20 +0000 ROA not before: Fri 02 Jan 2026 16:23:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41798 IP address blocks: 193.124.93.0/24 maxlen: 24 193.124.204.0/24 maxlen: 24 194.58.42.0/24 maxlen: 24 195.133.8.0/24 maxlen: 24 195.133.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.mft rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 13:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:49:e4:c4:47:d3:39:54:cf:21:d2:54:fd:25:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7 Validity Not Before: Jan 2 16:23:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=203358803f2f0bf90711f13d50ac855b13dccff0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:07:62:81:b8:8f:fc:6d:82:87:ba:54:50:94: 37:c1:8e:22:29:ca:d3:54:0d:a8:7a:70:17:d7:c7: 65:7d:7c:39:1e:9d:d0:64:13:f0:23:71:33:34:26: 5f:0e:07:15:30:7c:bb:33:e0:0a:37:b3:c9:fd:b0: ae:27:d5:89:f7:45:2d:ee:a0:90:b3:dd:f4:30:73: 87:f0:fa:3e:6e:2b:5d:5a:f7:22:b8:df:30:9b:9b: 04:c4:18:61:25:82:2c:1a:bd:02:7e:91:52:4b:a5: e0:e4:bb:5b:8b:a2:34:ba:b6:90:b0:23:34:b8:fb: af:c7:60:2a:1e:f4:74:39:42:b1:68:8a:21:8a:8a: ea:51:4b:14:91:75:86:77:5f:71:c9:f8:11:d0:f5: 42:ad:00:36:80:51:74:fc:d9:82:c4:05:86:75:42: 7c:15:75:5d:c8:2c:f7:76:f9:52:78:b2:6f:3f:8d: 55:d7:2f:13:88:a7:d8:c3:b2:3a:5e:de:f0:3d:84: 41:46:1e:7c:ec:a4:ca:70:93:08:3a:a2:bf:b9:e7: c7:b2:ea:c6:7c:a9:ca:5d:35:0f:72:93:7a:3e:ef: 98:ba:8e:6f:99:dd:4c:45:2b:06:2e:11:39:23:be: b0:2e:29:4c:b7:10:64:61:a3:68:4e:09:32:5e:83: b0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:33:58:80:3F:2F:0B:F9:07:11:F1:3D:50:AC:85:5B:13:DC:CF:F0 X509v3 Authority Key Identifier: keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IDNYgD8vC_kHEfE9UKyFWxPcz_A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.124.93.0/24 193.124.204.0/24 194.58.42.0/24 195.133.8.0/24 195.133.62.0/24 Signature Algorithm: sha256WithRSAEncryption 74:20:6b:36:4e:7e:9b:cf:b7:2b:07:42:ea:82:11:8d:b9:7c: b0:69:30:b3:d0:fe:57:ba:f4:26:37:36:46:77:30:93:b7:16: 2a:f3:9f:7d:30:51:c8:39:7e:e1:e1:05:02:9f:10:32:3e:95: c5:93:d3:89:45:df:e5:39:f8:ca:3b:8b:bd:fd:d6:bc:6d:f0: 60:b5:23:3d:70:83:8b:e2:3e:6c:0d:25:1a:18:c3:1e:ee:ca: d8:09:7f:9d:69:20:74:d0:23:5f:67:fe:17:dc:95:b7:21:14: b5:c3:f3:c5:e9:35:db:92:c5:11:8e:63:1f:bb:17:4e:1a:9f: f3:c9:7d:e6:a0:37:a7:68:fa:04:4e:59:ff:24:a8:37:69:c4: e6:65:86:c8:f4:9c:a6:cb:ea:6d:60:33:ce:2b:b3:d3:5e:6c: 4b:e2:39:f6:8e:8a:d7:58:dd:81:3c:3f:4b:71:ce:21:b4:c8: fa:bc:f7:5a:de:79:b2:28:7d:b5:99:c2:b8:54:5e:32:e6:9c: 60:8a:3a:90:f1:72:46:d2:6d:ae:a7:ca:57:f4:14:2f:7e:81: 3e:68:18:0a:ef:01:28:05:f9:e7:6b:9c:0b:f0:fb:9d:4e:f1: b4:d0:8f:b5:d1:13:c9:62:77:27:f1:b2:30:1e:94:d6:ef:28: 23:c4:4b:43 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt/hUnkxEfTOVTPIdJU/SUhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw ZTFhYzcwHhcNMjYwMTAyMTYyMzIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDMzNTg4MDNmMmYwYmY5MDcxMWYxM2Q1MGFjODU1YjEzZGNjZmYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQdigbiP/G2Ch7pUUJQ3wY4iKcrT VA2oenAX18dlfXw5Hp3QZBPwI3EzNCZfDgcVMHy7M+AKN7PJ/bCuJ9WJ90Ut7qCQ s930MHOH8Po+bitdWvciuN8wm5sExBhhJYIsGr0CfpFSS6Xg5Ltbi6I0uraQsCM0 uPuvx2AqHvR0OUKxaIohiorqUUsUkXWGd19xyfgR0PVCrQA2gFF0/NmCxAWGdUJ8 FXVdyCz3dvlSeLJvP41V1y8TiKfYw7I6Xt7wPYRBRh587KTKcJMIOqK/uefHsurG fKnKXTUPcpN6Pu+Yuo5vmd1MRSsGLhE5I76wLilMtxBkYaNoTgkyXoOw/QIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFCAzWIA/Lwv5BxHxPVCshVsT3M/wMB8GA1UdIwQY MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt NWE0MjQyOGYxMTQzLzEvSUROWWdEOHZDX2tIRWZFOVVLeUZXeFBjel9BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAwXxdAwQA wXzMAwQAwjoqAwQAw4UIAwQAw4U+MA0GCSqGSIb3DQEBCwUAA4IBAQB0IGs2Tn6b z7crB0LqghGNuXywaTCz0P5XuvQmNzZGdzCTtxYq8599MFHIOX7h4QUCnxAyPpXF k9OJRd/lOfjKO4u9/da8bfBgtSM9cIOL4j5sDSUaGMMe7srYCX+daSB00CNfZ/4X 3JW3IRS1w/PF6TXbksURjmMfuxdOGp/zyX3moDenaPoETln/JKg3acTmZYbI9Jym y+ptYDPOK7PTXmxL4jn2jorXWN2BPD9Lcc4htMj6vPda3nmyKH21mcK4VF4y5pxg ijqQ8XJG0m2up8pX9BQvfoE+aBgK7wEoBfnna5wL8PudTvG00I+10RPJYncn8bIw HpTW7ygjxEtD -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:40 2026 by rpki-client