This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sLf6XUWFD99zNRrQuFOVarc8m7k.roa File: sLf6XUWFD99zNRrQuFOVarc8m7k.roa (raw, json) Hash identifier: xJkAXdFlNvlM/PQ4p1rkOergPWhC6FORTTYGKRvw0F4= Subject key identifier: B0:B7:FA:5D:45:85:0F:DF:73:35:1A:D0:B8:53:95:6A:B7:3C:9B:B9 Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c Certificate serial: 019B7F145419BBE2A4C1CB18B1FDF29796C9 Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sLf6XUWFD99zNRrQuFOVarc8m7k.roa Signing time: Fri 02 Jan 2026 14:19:57 +0000 ROA not before: Fri 02 Jan 2026 14:19:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199785 IP address blocks: 193.233.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.mft rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:54:19:bb:e2:a4:c1:cb:18:b1:fd:f2:97:96:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c Validity Not Before: Jan 2 14:19:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0b7fa5d45850fdf73351ad0b853956ab73c9bb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:82:2e:98:22:b9:28:4f:4d:c8:c8:4d:ad:e8: 6a:c0:b9:9e:15:c9:06:22:53:d1:de:60:a5:67:41: 4b:62:f8:a1:43:c6:7c:1e:98:7c:6d:cf:df:fb:29: ac:2f:16:6e:c4:eb:ec:09:7e:f1:bd:53:a0:4f:e2: 6f:c3:ad:c2:ae:5c:0c:02:f2:43:ec:8a:2f:f9:72: 2b:16:91:b4:84:45:62:ac:67:fd:60:12:32:82:e9: 84:5c:f9:5c:43:8f:49:71:f7:e9:8d:9a:5e:a7:a2: d2:e5:fb:11:c9:8b:b6:e7:8a:ed:ac:7f:ce:0f:89: 32:44:fb:f6:bf:e8:5a:1b:19:4d:16:eb:ca:37:7d: d1:32:23:5c:92:6d:15:ba:d7:bf:cc:0c:37:59:57: f4:87:6f:32:de:a1:73:e1:3d:88:e2:f7:3b:9a:1e: b0:ef:ee:04:46:cd:54:07:2d:34:af:00:e7:24:b3: 44:12:21:bf:36:c8:a6:13:37:6e:30:40:92:8f:94: 47:bd:2e:57:b3:25:7f:e1:a2:d5:18:b6:3d:a7:a4: d2:9c:5e:48:2f:39:96:4d:4a:e0:42:62:ef:03:51: bb:44:79:66:ca:61:63:65:64:a1:d1:d0:09:c6:ca: 4b:a7:ec:5b:06:d6:48:c6:bd:7e:d1:14:b9:b6:73: 01:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B7:FA:5D:45:85:0F:DF:73:35:1A:D0:B8:53:95:6A:B7:3C:9B:B9 X509v3 Authority Key Identifier: keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/sLf6XUWFD99zNRrQuFOVarc8m7k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.233.86.0/24 Signature Algorithm: sha256WithRSAEncryption 36:c7:e3:5f:e3:c8:96:8d:dc:86:d1:73:fe:2f:8b:f6:eb:30: 43:13:59:8f:d5:cb:74:20:2d:bf:8e:b6:4f:03:c9:d2:ec:b4: 8f:f2:90:4f:b4:67:75:b3:84:c6:34:7e:3b:97:34:48:f3:47: 6e:34:95:eb:a3:b0:af:87:a0:29:8e:26:0a:2f:34:ef:2e:f9: 5e:fa:63:de:43:bf:08:c7:49:e4:e5:cd:3d:39:ee:c1:05:fe: 7a:48:50:0f:f2:e6:f0:b8:51:fe:83:1d:67:21:00:0d:59:c3: e6:f3:64:1a:00:52:ad:89:47:e8:ff:c6:10:9c:47:5d:79:49: f2:fc:63:dc:45:87:a4:77:94:6e:1f:65:95:74:cb:00:c3:5a: 2a:e5:77:72:a5:9c:c7:6b:be:3f:e9:92:0a:1b:56:92:c0:8e: 8a:7f:78:b3:4a:fa:a9:60:03:8a:da:c2:3a:d4:cd:ea:80:4c: 8b:fb:74:71:0a:b7:4c:44:a1:04:d3:bb:2b:65:a4:8e:05:6f: e1:7a:1d:c4:6c:55:1f:00:2a:f2:b2:53:37:69:d8:13:c4:79: 07:d3:83:03:95:7a:22:89:56:0d:a1:36:3e:ab:9c:d2:ae:cd: b8:95:26:47:72:3d:f1:d6:12:9f:8c:2f:75:3b:5f:1d:21:47: bb:4e:bc:e9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FFQZu+KkwcsYsf3yl5bJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4 Mjg3M2MwHhcNMjYwMTAyMTQxOTU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGI3ZmE1ZDQ1ODUwZmRmNzMzNTFhZDBiODUzOTU2YWI3M2M5YmI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/oIumCK5KE9NyMhNrehqwLmeFckG IlPR3mClZ0FLYvihQ8Z8Hph8bc/f+ymsLxZuxOvsCX7xvVOgT+Jvw63CrlwMAvJD 7Iov+XIrFpG0hEVirGf9YBIygumEXPlcQ49JcffpjZpep6LS5fsRyYu254rtrH/O D4kyRPv2v+haGxlNFuvKN33RMiNckm0Vute/zAw3WVf0h28y3qFz4T2I4vc7mh6w 7+4ERs1UBy00rwDnJLNEEiG/NsimEzduMECSj5RHvS5XsyV/4aLVGLY9p6TSnF5I LzmWTUrgQmLvA1G7RHlmymFjZWSh0dAJxspLp+xbBtZIxr1+0RS5tnMBVQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLC3+l1FhQ/fczUa0LhTlWq3PJu5MB8GA1UdIwQY MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt NGRlYzRkYWZlZTQ5LzEvc0xmNlhVV0ZEOTl6TlJyUXVGT1ZhcmM4bTdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5 LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwelWMA0G CSqGSIb3DQEBCwUAA4IBAQA2x+Nf48iWjdyG0XP+L4v26zBDE1mP1ct0IC2/jrZP A8nS7LSP8pBPtGd1s4TGNH47lzRI80duNJXro7Cvh6ApjiYKLzTvLvle+mPeQ78I x0nk5c09Oe7BBf56SFAP8ubwuFH+gx1nIQANWcPm82QaAFKtiUfo/8YQnEddeUny /GPcRYekd5RuH2WVdMsAw1oq5XdypZzHa74/6ZIKG1aSwI6Kf3izSvqpYAOK2sI6 1M3qgEyL+3RxCrdMRKEE07srZaSOBW/heh3EbFUfACryslM3adgTxHkH04MDlXoi iVYNoTY+q5zSrs24lSZHcj3x1hKfjC91O18dIUe7Trzp -----END CERTIFICATE-----Generated at Tue Jan 20 11:09:50 2026 by rpki-client