This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RXNXkO77ro8PRvprzpo99zh0ToY.roa File: RXNXkO77ro8PRvprzpo99zh0ToY.roa (raw, json) Hash identifier: JqcEsEqYwES6OA9zoQWJQM95xs1uvZE0ykKMxoZJ+vo= Subject key identifier: 45:73:57:90:EE:FB:AE:8F:0F:46:FA:6B:CE:9A:3D:F7:38:74:4E:86 Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c Certificate serial: 019B7F1444A10B672DB44B779922934C6D51 Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RXNXkO77ro8PRvprzpo99zh0ToY.roa Signing time: Fri 02 Jan 2026 14:19:53 +0000 ROA not before: Fri 02 Jan 2026 14:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 26548 IP address blocks: 193.233.136.0/22 maxlen: 22 193.233.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:44:a1:0b:67:2d:b4:4b:77:99:22:93:4c:6d:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c Validity Not Before: Jan 2 14:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=45735790eefbae8f0f46fa6bce9a3df738744e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c7:b4:dd:94:e6:6d:a5:62:ff:3b:3f:d9:c2: 38:ab:73:32:a6:6f:af:79:24:52:cd:a6:3d:2f:5f: 26:a9:82:26:bf:ed:29:05:88:fe:2a:4c:6a:b0:88: a0:74:1a:c0:ea:ec:3b:97:5e:c6:09:18:cd:87:3d: 10:f0:9c:14:0b:a1:b8:ee:c6:b1:22:4b:71:15:5f: 52:18:77:2a:19:02:c9:c8:fa:47:c8:a4:08:63:99: 3f:81:65:41:4b:a8:fa:c0:cd:98:ab:95:46:f6:45: 66:f4:b4:97:8c:f8:ab:b5:17:0c:04:fc:72:6e:3c: a9:52:5d:79:de:b3:d9:f6:d4:7b:8c:29:3e:62:5c: 84:83:83:9c:04:99:aa:97:01:80:b7:96:ee:6b:73: d0:06:68:fe:42:45:eb:d5:61:c2:b6:0a:20:c8:6e: 69:39:5e:1c:39:cb:a4:38:93:36:75:53:23:ff:2b: f9:b0:80:8b:be:1a:4f:b2:bd:9b:25:05:02:61:c2: 0d:7f:0f:58:51:fa:f8:52:ad:8e:df:c1:c5:39:7d: 86:71:58:82:cc:66:99:35:dd:7c:bb:50:60:02:c2: 3a:a1:f7:59:75:74:18:a4:ad:4e:e0:41:e5:c7:ea: 0f:49:3f:51:c0:b5:8f:56:e1:47:c1:11:59:39:0c: dc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:73:57:90:EE:FB:AE:8F:0F:46:FA:6B:CE:9A:3D:F7:38:74:4E:86 X509v3 Authority Key Identifier: keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/RXNXkO77ro8PRvprzpo99zh0ToY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.233.136.0/22 193.233.210.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:7a:9b:cc:40:12:d4:45:05:fe:07:4f:4d:77:36:9c:a1:21: d3:eb:5e:6a:50:15:47:77:e8:2f:d6:b5:08:04:b9:d4:f0:88: 9e:ac:0d:61:8f:16:e0:de:66:3f:24:a8:78:79:1a:5b:1b:a1: f4:7a:37:18:e7:4d:2a:01:15:db:01:cb:e5:d5:ef:7b:66:25: 24:c4:de:35:06:8f:e6:31:03:fb:d9:00:d3:99:35:e3:bd:cb: 62:99:23:0d:06:75:fd:6e:fe:b2:1a:0f:52:47:d9:bd:cd:cd: 71:0e:5a:ae:bf:c9:2a:dd:a2:20:75:d6:7e:9b:74:a7:84:0f: 7d:2e:21:54:57:5b:bc:69:e7:d3:48:d7:7f:3a:7e:e2:98:9f: f9:46:1f:be:ef:88:83:ef:9b:30:0f:48:84:88:55:1e:b1:70: 41:69:b0:c6:51:59:ae:90:f2:09:c1:0b:8b:b6:0d:38:fc:36: 7d:7c:08:5d:ab:7c:9c:b1:9f:6b:f5:d4:23:ee:aa:5d:2f:2e: 80:3e:e2:21:97:75:39:3e:e4:4f:c6:47:59:34:87:5d:86:6d: 77:6b:89:94:cf:77:69:ec:3d:8f:95:57:9d:d5:99:0f:13:ed: fc:2e:a4:2b:8f:25:4a:2f:88:f0:f1:c2:d6:f6:f7:12:a0:32: f6:d1:57:38 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/FEShC2cttEt3mSKTTG1RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4 Mjg3M2MwHhcNMjYwMTAyMTQxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTczNTc5MGVlZmJhZThmMGY0NmZhNmJjZTlhM2RmNzM4NzQ0ZTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvMe03ZTmbaVi/zs/2cI4q3Mypm+v eSRSzaY9L18mqYImv+0pBYj+KkxqsIigdBrA6uw7l17GCRjNhz0Q8JwUC6G47sax IktxFV9SGHcqGQLJyPpHyKQIY5k/gWVBS6j6wM2Yq5VG9kVm9LSXjPirtRcMBPxy bjypUl153rPZ9tR7jCk+YlyEg4OcBJmqlwGAt5bua3PQBmj+QkXr1WHCtgogyG5p OV4cOcukOJM2dVMj/yv5sICLvhpPsr2bJQUCYcINfw9YUfr4Uq2O38HFOX2GcViC zGaZNd18u1BgAsI6ofdZdXQYpK1O4EHlx+oPST9RwLWPVuFHwRFZOQzcpwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEVzV5Du+66PD0b6a86aPfc4dE6GMB8GA1UdIwQY MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt NGRlYzRkYWZlZTQ5LzEvUlhOWGtPNzdybzhQUnZwcnpwbzk5emgwVG9ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5 LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCwemIAwQB wenSMA0GCSqGSIb3DQEBCwUAA4IBAQBKepvMQBLURQX+B09NdzacoSHT615qUBVH d+gv1rUIBLnU8IierA1hjxbg3mY/JKh4eRpbG6H0ejcY500qARXbAcvl1e97ZiUk xN41Bo/mMQP72QDTmTXjvctimSMNBnX9bv6yGg9SR9m9zc1xDlquv8kq3aIgddZ+ m3SnhA99LiFUV1u8aefTSNd/On7imJ/5Rh++74iD75swD0iEiFUesXBBabDGUVmu kPIJwQuLtg04/DZ9fAhdq3ycsZ9r9dQj7qpdLy6APuIhl3U5PuRPxkdZNIddhm13 a4mUz3dp7D2PlVed1ZkPE+38LqQrjyVKL4jw8cLW9vcSoDL20Vc4 -----END CERTIFICATE-----Generated at Tue Jan 20 00:06:12 2026 by rpki-client