This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/A2bfGYMLAYC3MI5Zuf1zYE_i_qw.roa File: A2bfGYMLAYC3MI5Zuf1zYE_i_qw.roa (raw, json) Hash identifier: klW6imVbB/HHFFpP1oAsgKz8g3tR0MpotD9555g9Yls= Subject key identifier: 03:66:DF:19:83:0B:01:80:B7:30:8E:59:B9:FD:73:60:4F:E2:FE:AC Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A2E1584DE26B9A1088AA276C5F1E43 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/A2bfGYMLAYC3MI5Zuf1zYE_i_qw.roa Signing time: Thu 01 Jan 2026 08:18:19 +0000 ROA not before: Thu 01 Jan 2026 08:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 18101 IP address blocks: 193.58.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:e1:58:4d:e2:6b:9a:10:88:aa:27:6c:5f:1e:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0366df19830b0180b7308e59b9fd73604fe2feac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a8:5c:e7:7c:3d:d8:c1:cb:3f:58:63:31:4c: 7d:5e:cb:12:df:11:1a:82:ac:db:21:bd:a8:37:27: 99:cb:a4:fe:ae:a0:8a:e8:88:c5:91:e2:ac:3f:58: f9:3d:ac:8f:82:ef:8b:f6:d5:7a:dc:1b:b9:c1:c6: 7a:d9:28:a0:5d:3c:7a:e5:51:b1:76:01:0a:bc:af: f3:56:f9:ca:1c:d4:3f:b5:41:68:ed:a7:bc:1a:18: e1:b4:70:e3:cd:bc:d1:8f:8e:fc:7d:0d:c2:cd:cf: 1a:81:00:1a:35:3b:02:24:cf:bc:c1:c6:69:03:3b: a4:2d:32:8d:96:36:4c:b9:b8:55:f0:ed:97:b8:55: 5c:ba:75:3a:f2:e1:f4:d6:83:e9:6d:31:72:83:db: 5f:35:ab:e0:c3:a2:12:d9:04:7d:aa:b1:65:ab:49: 42:80:95:21:7a:27:7e:b0:62:07:1f:d2:38:f7:c1: b4:d9:35:dd:f1:34:53:81:14:3f:1f:26:da:77:46: 9d:6a:4e:ed:c2:76:f7:f9:0b:af:94:20:6a:6f:d9: 46:48:cc:7c:85:2c:3a:f2:b9:f0:84:e4:b5:9b:96: f7:06:07:10:b0:f0:fb:0d:8d:70:3b:47:59:c9:a1: 94:f8:8b:db:52:48:09:14:e9:4b:77:0d:83:b0:4e: 28:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:66:DF:19:83:0B:01:80:B7:30:8E:59:B9:FD:73:60:4F:E2:FE:AC X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/A2bfGYMLAYC3MI5Zuf1zYE_i_qw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.58.123.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:28:0d:d7:1d:d3:e5:9e:e4:6d:10:c9:cc:4f:a9:5b:c1:c5: 34:55:db:4e:b2:b9:81:43:f3:a6:77:72:fe:3c:a4:b9:20:63: 64:d5:23:97:61:21:eb:ac:a9:4e:e8:52:38:15:c6:28:80:d9: 68:04:6f:83:89:81:7d:a1:6e:71:84:94:df:f9:d3:a2:dd:8a: 69:1d:d0:59:bf:0e:2e:67:33:cb:da:65:bb:a9:ea:6b:92:90: 56:d7:c3:e9:52:51:92:a2:1f:60:7f:ae:93:0b:ed:db:33:26: f3:d2:d6:f6:b4:a1:00:30:fd:c4:c8:a1:6a:e8:9d:ff:4f:03: f6:fa:68:c9:b1:5b:a7:61:b3:03:de:01:1f:c6:9e:ab:ff:c7: 38:f4:12:f8:76:20:ce:64:b9:39:20:d6:b0:28:74:ee:a7:1a: 37:a6:3c:2b:cc:dd:76:a4:dd:2f:f6:b2:85:df:e5:9f:1f:a8: 72:be:6f:68:75:dd:92:71:11:86:65:2f:cc:f5:eb:ea:52:e3: c5:f6:8c:ac:d3:a2:22:0c:96:d5:ec:cf:3f:05:9b:9c:e9:8c: f9:b1:2c:f8:f3:08:f3:e9:f9:d9:57:ec:17:30:88:34:ce:ed: 1c:dd:63:06:03:e7:c4:21:0f:a7:aa:94:ba:19:dc:a3:df:6f: bb:8d:62:d8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4ouFYTeJrmhCIqidsXx5DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzY2ZGYxOTgzMGIwMTgwYjczMDhlNTliOWZkNzM2MDRmZTJmZWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3Khc53w92MHLP1hjMUx9XssS3xEa gqzbIb2oNyeZy6T+rqCK6IjFkeKsP1j5PayPgu+L9tV63Bu5wcZ62SigXTx65VGx dgEKvK/zVvnKHNQ/tUFo7ae8GhjhtHDjzbzRj478fQ3Czc8agQAaNTsCJM+8wcZp AzukLTKNljZMubhV8O2XuFVcunU68uH01oPpbTFyg9tfNavgw6IS2QR9qrFlq0lC gJUheid+sGIHH9I498G02TXd8TRTgRQ/Hybad0adak7twnb3+QuvlCBqb9lGSMx8 hSw68rnwhOS1m5b3BgcQsPD7DY1wO0dZyaGU+IvbUkgJFOlLdw2DsE4oHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFANm3xmDCwGAtzCOWbn9c2BP4v6sMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvQTJiZkdZTUxBWUMzTUk1WnVmMXpZRV9pX3F3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTp7MA0G CSqGSIb3DQEBCwUAA4IBAQB9KA3XHdPlnuRtEMnMT6lbwcU0VdtOsrmBQ/Omd3L+ PKS5IGNk1SOXYSHrrKlO6FI4FcYogNloBG+DiYF9oW5xhJTf+dOi3YppHdBZvw4u ZzPL2mW7qeprkpBW18PpUlGSoh9gf66TC+3bMybz0tb2tKEAMP3EyKFq6J3/TwP2 +mjJsVunYbMD3gEfxp6r/8c49BL4diDOZLk5INawKHTupxo3pjwrzN12pN0v9rKF 3+WfH6hyvm9odd2ScRGGZS/M9evqUuPF9oys06IiDJbV7M8/BZuc6Yz5sSz48wjz 6fnZV+wXMIg0zu0c3WMGA+fEIQ+nqpS6Gdyj32+7jWLY -----END CERTIFICATE-----Generated at Fri Jan 2 12:06:13 2026 by rpki-client