This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/d4Q4rAnfpXOeAbJYBUPwtSvE0C4.roa File: d4Q4rAnfpXOeAbJYBUPwtSvE0C4.roa (raw, json) Hash identifier: VH/lWBMHD+i4fqbnrQ3A8LHUVK+ZvV0Uo/u2P1/66qk= Subject key identifier: 77:84:38:AC:09:DF:A5:73:9E:01:B2:58:05:43:F0:B5:2B:C4:D0:2E Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c Certificate serial: 019B7F1443EC0F1B13E842A0056E6EC6531A Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/d4Q4rAnfpXOeAbJYBUPwtSvE0C4.roa Signing time: Fri 02 Jan 2026 14:19:53 +0000 ROA not before: Fri 02 Jan 2026 14:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20549 IP address blocks: 193.233.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:43:ec:0f:1b:13:e8:42:a0:05:6e:6e:c6:53:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c Validity Not Before: Jan 2 14:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=778438ac09dfa5739e01b2580543f0b52bc4d02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5d:81:e7:1f:11:54:7f:06:fd:af:f7:55:fa: 89:93:5c:1f:48:98:98:77:5a:a0:fc:1c:45:c9:66: f6:52:a0:4c:c3:ae:e1:4c:ca:6a:31:b7:be:e6:cf: 9a:8a:6c:e5:d1:18:1c:62:11:04:41:f7:82:92:ce: 39:c2:be:93:55:87:66:08:e9:00:27:39:9d:94:b6: cf:67:56:f8:61:26:41:29:55:46:5b:8c:e2:99:46: 37:ec:49:e4:7c:ec:71:e6:c5:8b:06:fb:de:cd:9f: 9b:51:06:46:69:f6:d5:c4:d1:63:3f:6d:12:4f:98: 0c:96:08:b7:36:31:9f:f8:7b:c3:a5:3e:03:0d:a9: 60:e2:7d:0b:5b:c8:bf:15:7d:eb:ca:f7:b8:ad:38: dc:ca:96:e9:8a:a7:0b:a9:79:18:29:77:d1:12:69: d3:79:e9:8a:e0:96:30:44:ff:3c:ac:2d:af:a1:68: 14:08:73:fb:b3:71:c5:38:e5:ff:3f:8f:9f:4c:fb: 66:8d:74:0a:39:7d:e9:8f:0e:f6:3f:a1:5c:a0:d5: 8b:2e:7a:18:82:ae:fe:ac:eb:ed:c0:17:00:d9:c9: 57:65:10:84:9b:9a:ea:51:89:2f:64:dd:3c:90:0f: 90:ca:7e:b0:e9:9e:3e:e2:2d:4d:d3:8d:59:0d:6f: 48:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:84:38:AC:09:DF:A5:73:9E:01:B2:58:05:43:F0:B5:2B:C4:D0:2E X509v3 Authority Key Identifier: keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/d4Q4rAnfpXOeAbJYBUPwtSvE0C4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.233.64.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:67:c4:11:cd:5b:9f:94:91:33:bc:76:4d:5d:09:70:88:28: ae:f1:98:4b:ba:3f:e4:1e:e9:3e:24:be:ed:fc:2d:83:16:c7: 3b:4d:eb:9e:9a:c0:34:ad:56:d4:5c:ef:ad:b9:9c:4b:c5:e8: 28:02:8f:1f:f5:38:94:be:9d:d6:b5:df:2f:0b:c1:c6:7d:66: 63:4c:30:da:17:97:ae:14:9c:49:1a:b0:9b:a6:7c:e1:95:8f: 7f:b7:3f:e5:63:15:41:7e:c5:47:f9:1e:51:57:9b:78:71:73: 6f:83:30:84:24:e9:32:12:21:4f:a7:41:01:10:ce:7f:73:18: ed:4d:a6:00:72:f6:11:ba:aa:89:5d:98:ce:52:06:2b:1d:09: ce:b6:1c:a1:55:ac:bd:35:1e:47:6d:0a:de:ff:c1:6e:92:49: c9:ab:0f:c9:cf:96:fe:9b:c4:48:58:53:df:b5:d8:d5:91:4f: d7:f8:a4:79:f6:fc:8b:d4:0d:04:83:e0:88:d6:cf:71:4d:12: 45:43:44:55:8b:07:66:ac:0a:1c:8a:53:13:c2:06:4b:30:19: 06:82:22:bb:e6:86:d5:10:16:7b:20:2c:2d:80:3d:a7:4f:a9: 89:c8:60:de:5e:e5:48:e4:0b:87:20:5f:12:ce:ed:4c:d0:d2: 93:58:09:20 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FEPsDxsT6EKgBW5uxlMaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4 Mjg3M2MwHhcNMjYwMTAyMTQxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Nzg0MzhhYzA5ZGZhNTczOWUwMWIyNTgwNTQzZjBiNTJiYzRkMDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzF2B5x8RVH8G/a/3VfqJk1wfSJiY d1qg/BxFyWb2UqBMw67hTMpqMbe+5s+aimzl0RgcYhEEQfeCks45wr6TVYdmCOkA JzmdlLbPZ1b4YSZBKVVGW4zimUY37EnkfOxx5sWLBvvezZ+bUQZGafbVxNFjP20S T5gMlgi3NjGf+HvDpT4DDalg4n0LW8i/FX3ryve4rTjcypbpiqcLqXkYKXfREmnT eemK4JYwRP88rC2voWgUCHP7s3HFOOX/P4+fTPtmjXQKOX3pjw72P6FcoNWLLnoY gq7+rOvtwBcA2clXZRCEm5rqUYkvZN08kA+Qyn6w6Z4+4i1N041ZDW9IYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHeEOKwJ36VzngGyWAVD8LUrxNAuMB8GA1UdIwQY MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt NGRlYzRkYWZlZTQ5LzEvZDRRNHJBbmZwWE9lQWJKWUJVUHd0U3ZFMEM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5 LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwelAMA0G CSqGSIb3DQEBCwUAA4IBAQB7Z8QRzVuflJEzvHZNXQlwiCiu8ZhLuj/kHuk+JL7t /C2DFsc7TeuemsA0rVbUXO+tuZxLxegoAo8f9TiUvp3Wtd8vC8HGfWZjTDDaF5eu FJxJGrCbpnzhlY9/tz/lYxVBfsVH+R5RV5t4cXNvgzCEJOkyEiFPp0EBEM5/cxjt TaYAcvYRuqqJXZjOUgYrHQnOthyhVay9NR5HbQre/8FukknJqw/Jz5b+m8RIWFPf tdjVkU/X+KR59vyL1A0Eg+CI1s9xTRJFQ0RViwdmrAocilMTwgZLMBkGgiK75obV EBZ7ICwtgD2nT6mJyGDeXuVI5AuHIF8Szu1M0NKTWAkg -----END CERTIFICATE-----Generated at Tue Jan 20 11:09:48 2026 by rpki-client