This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/a0z-AbRmR3k4hvCcnLBue9KeVqM.roa File: a0z-AbRmR3k4hvCcnLBue9KeVqM.roa (raw, json) Hash identifier: qT/StEGLFVSjh33kY7iHudUpk5Fpk4IxNrG4Q88+bPk= Subject key identifier: 6B:4C:FE:01:B4:66:47:79:38:86:F0:9C:9C:B0:6E:7B:D2:9E:56:A3 Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c Certificate serial: 019B7F143EDAA5ABE859869E6A8A8599B21C Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/a0z-AbRmR3k4hvCcnLBue9KeVqM.roa Signing time: Fri 02 Jan 2026 14:19:51 +0000 ROA not before: Fri 02 Jan 2026 14:19:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2587 IP address blocks: 193.233.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:3e:da:a5:ab:e8:59:86:9e:6a:8a:85:99:b2:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c Validity Not Before: Jan 2 14:19:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6b4cfe01b46647793886f09c9cb06e7bd29e56a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:58:d5:f0:34:f0:26:26:f6:ff:97:2c:5a:ad: 7f:51:32:62:d9:49:ad:65:88:6b:af:80:5c:d4:09: e1:a2:21:5d:5c:71:79:9f:ec:29:d2:c5:fa:cc:d1: 8d:93:81:fe:80:17:76:64:bd:65:ff:d0:24:7b:9b: 86:29:24:10:3a:a0:1f:28:53:1c:ee:de:c7:db:01: c8:a9:f0:b9:2d:47:52:c2:b9:d1:7e:75:dd:46:1f: e1:d3:d9:4e:fe:f5:6e:03:3b:9f:e8:29:ca:a3:97: 10:47:c1:9e:bf:7b:14:3b:0a:11:b0:49:54:1f:4d: 8a:a1:01:0b:c0:ea:ee:7f:f4:d7:d5:91:2a:e3:6c: f7:0c:18:2b:c3:e0:80:9d:e8:cd:e3:a8:aa:c0:ed: 15:63:19:74:a5:2b:a9:8c:29:66:42:4f:3b:7c:89: 92:eb:0d:d0:ea:db:5a:f4:51:57:7c:15:c2:4d:50: b1:cb:32:21:e1:d5:9e:90:d2:38:6f:7f:c4:33:a2: 4e:89:25:92:23:db:da:92:3d:79:9c:df:ef:cd:41: 79:aa:5a:12:55:2d:2c:f5:09:c9:d3:63:f7:7e:26: 8b:76:49:bd:05:08:c6:73:37:17:7e:f5:6a:65:51: 08:d4:04:16:2d:8b:c6:94:23:3d:f2:1d:95:9f:bb: 8b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:4C:FE:01:B4:66:47:79:38:86:F0:9C:9C:B0:6E:7B:D2:9E:56:A3 X509v3 Authority Key Identifier: keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/a0z-AbRmR3k4hvCcnLBue9KeVqM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.233.14.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:89:0f:47:15:cc:61:8f:3c:fc:d1:34:59:d8:27:92:5b:f3: e7:c7:57:87:ce:ed:6f:7e:da:65:f7:1d:1c:ee:38:5b:7f:79: fe:ab:ee:d7:48:fe:67:b0:f3:37:b3:ae:ef:15:e9:d1:66:d1: 74:e2:3e:41:57:2a:19:e7:26:b6:43:f9:00:f8:04:11:c2:70: bb:89:e4:23:b0:70:d3:b0:c2:8e:87:f8:22:6f:59:aa:9f:a3: 57:d3:61:0d:32:c3:cd:77:b0:12:51:5f:0c:91:0a:0a:7c:e3: 5b:f0:74:12:09:46:bf:3d:27:61:a0:91:ce:95:03:ae:e6:67: 36:97:78:d9:a2:6c:b1:43:26:70:f0:0d:51:69:b7:f3:12:66: 64:90:0b:18:cc:9e:b9:9d:8c:72:1b:d2:25:dc:e3:5d:da:22: b6:b3:49:44:ab:7f:80:96:d2:42:19:bb:f0:99:d0:11:41:bc: 35:36:b4:c4:71:f1:9e:13:cc:a5:4d:a1:ea:f7:2c:b4:3b:33: 0e:6f:38:c6:de:e7:15:e9:5f:32:e3:f7:27:0e:5e:8c:83:42: 11:75:8a:47:5b:3f:f5:df:b0:af:21:d6:aa:67:1f:28:87:75: b7:11:a1:47:c3:4f:04:32:be:de:d7:c4:f9:09:cd:c6:d0:63: 9d:68:3d:79 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FD7apavoWYaeaoqFmbIcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4 Mjg3M2MwHhcNMjYwMTAyMTQxOTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YjRjZmUwMWI0NjY0Nzc5Mzg4NmYwOWM5Y2IwNmU3YmQyOWU1NmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2VjV8DTwJib2/5csWq1/UTJi2Umt ZYhrr4Bc1AnhoiFdXHF5n+wp0sX6zNGNk4H+gBd2ZL1l/9Ake5uGKSQQOqAfKFMc 7t7H2wHIqfC5LUdSwrnRfnXdRh/h09lO/vVuAzuf6CnKo5cQR8Gev3sUOwoRsElU H02KoQELwOruf/TX1ZEq42z3DBgrw+CAnejN46iqwO0VYxl0pSupjClmQk87fImS 6w3Q6tta9FFXfBXCTVCxyzIh4dWekNI4b3/EM6JOiSWSI9vakj15nN/vzUF5qloS VS0s9QnJ02P3fiaLdkm9BQjGczcXfvVqZVEI1AQWLYvGlCM98h2Vn7uLxQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGtM/gG0Zkd5OIbwnJywbnvSnlajMB8GA1UdIwQY MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt NGRlYzRkYWZlZTQ5LzEvYTB6LUFiUm1SM2s0aHZDY25MQnVlOUtlVnFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5 LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwekOMA0G CSqGSIb3DQEBCwUAA4IBAQCKiQ9HFcxhjzz80TRZ2CeSW/Pnx1eHzu1vftpl9x0c 7jhbf3n+q+7XSP5nsPM3s67vFenRZtF04j5BVyoZ5ya2Q/kA+AQRwnC7ieQjsHDT sMKOh/gib1mqn6NX02ENMsPNd7ASUV8MkQoKfONb8HQSCUa/PSdhoJHOlQOu5mc2 l3jZomyxQyZw8A1RabfzEmZkkAsYzJ65nYxyG9Il3ONd2iK2s0lEq3+AltJCGbvw mdARQbw1NrTEcfGeE8ylTaHq9yy0OzMObzjG3ucV6V8y4/cnDl6Mg0IRdYpHWz/1 37CvIdaqZx8oh3W3EaFHw08EMr7e18T5Cc3G0GOdaD15 -----END CERTIFICATE-----Generated at Tue Jan 20 11:09:45 2026 by rpki-client