This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/Si4jpmZW12nbOfMFKbO-M_4m1S4.roa File: Si4jpmZW12nbOfMFKbO-M_4m1S4.roa (raw, json) Hash identifier: dmHtHbLJie2HyiGu7kC548A/m5Md0L7daVdzAGAdcYA= Subject key identifier: 4A:2E:23:A6:66:56:D7:69:DB:39:F3:05:29:B3:BE:33:FE:26:D5:2E Certificate issuer: /CN=ffa3e55141c1a1f9f2e28811ed7e77fad378a579 Certificate serial: 019B7E38E94836D803C4EA7CB8680AEE52B1 Authority key identifier: FF:A3:E5:51:41:C1:A1:F9:F2:E2:88:11:ED:7E:77:FA:D3:78:A5:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/Si4jpmZW12nbOfMFKbO-M_4m1S4.roa Signing time: Fri 02 Jan 2026 10:20:17 +0000 ROA not before: Fri 02 Jan 2026 10:20:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55201 IP address blocks: 109.122.26.0/24 maxlen: 24 109.122.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.mft rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 10:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:e9:48:36:d8:03:c4:ea:7c:b8:68:0a:ee:52:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ffa3e55141c1a1f9f2e28811ed7e77fad378a579 Validity Not Before: Jan 2 10:20:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a2e23a66656d769db39f30529b3be33fe26d52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:08:97:2c:5d:75:61:d8:03:9c:75:66:2e: 2f:84:8b:0c:2d:24:3d:07:3d:c0:bb:60:58:58:1c: a5:26:4b:a4:06:29:82:da:61:c5:70:62:0e:5b:1d: 34:a4:88:19:51:dc:2e:7e:36:53:05:7b:ee:e5:d8: e8:29:aa:6d:9c:d6:d4:86:bf:c7:99:5e:c4:6b:58: 6d:0a:29:34:a9:0a:a8:20:5e:4f:c7:bb:6d:a0:50: 63:52:71:f7:56:79:e4:90:ff:b8:42:91:08:42:17: 3a:34:01:15:fa:1d:be:3b:05:5e:f7:5c:32:2f:06: 32:c8:02:8c:d4:14:95:dd:da:fb:fe:2d:57:e5:af: dd:78:4c:c0:8f:03:94:74:88:2a:d6:85:54:74:00: bf:93:c5:bb:87:e3:00:bc:fb:0d:8a:32:df:5c:99: 10:a0:50:ce:44:73:86:83:1b:29:e5:96:e7:d7:e0: bb:e8:e6:ab:4b:7c:2d:e7:c2:d4:53:66:ae:87:6d: cc:ef:78:aa:d2:33:b5:9e:32:43:43:b3:73:cc:2d: db:25:2b:da:d0:21:3b:6b:f0:c2:b2:68:a5:f0:c1: b5:16:a7:88:d0:38:ab:d6:36:be:fa:a7:ce:d9:57: 59:38:0b:6f:be:f4:87:e8:86:5a:1d:d2:1a:79:fc: 3b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2E:23:A6:66:56:D7:69:DB:39:F3:05:29:B3:BE:33:FE:26:D5:2E X509v3 Authority Key Identifier: keyid:FF:A3:E5:51:41:C1:A1:F9:F2:E2:88:11:ED:7E:77:FA:D3:78:A5:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/Si4jpmZW12nbOfMFKbO-M_4m1S4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.122.26.0/24 109.122.29.0/24 Signature Algorithm: sha256WithRSAEncryption 88:f6:30:3e:e4:a8:f1:be:f9:b6:eb:fc:32:83:55:a8:a8:37: 17:b1:f2:f2:51:07:ed:c0:ee:83:e5:31:ad:2b:ac:4f:ae:da: 46:4f:84:a5:f2:bc:7b:66:fe:01:0f:07:55:8a:33:82:ff:00: ec:44:1f:13:bc:03:9d:b5:63:22:07:ad:cc:be:9b:83:bd:5e: 1d:99:63:9c:64:c6:d2:d9:69:b3:43:89:de:2f:b7:26:39:0b: 6d:09:63:85:e8:15:d3:d6:7d:00:39:96:4a:78:34:b8:82:67: 72:c0:07:20:40:a5:94:95:bf:51:58:e2:e0:dd:5c:80:97:23: dd:5a:7b:45:9c:d1:4f:f4:68:38:cc:38:b6:11:6e:d9:8c:f8: 93:ab:7f:3a:52:60:b3:78:05:11:3b:6d:55:df:26:30:bb:c8: 7a:f0:e3:e3:d2:b6:62:ea:37:28:2c:71:53:cb:c5:05:8a:00: 4a:21:e7:dc:ba:9d:1f:29:0c:d1:64:23:6d:fd:8b:0e:9f:af: 0f:6e:28:b7:43:f0:f2:b2:74:cc:17:a7:c1:d6:18:0a:e9:a1: 63:1f:05:18:37:2c:f2:35:b2:48:79:f0:90:1f:f5:bf:7e:d4: 61:a5:5c:ed:b5:20:f7:34:ad:38:66:e6:60:5d:72:96:bd:4a: 27:55:03:3f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OOlINtgDxOp8uGgK7lKxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmYTNlNTUxNDFjMWExZjlmMmUyODgxMWVkN2U3N2ZhZDM3 OGE1NzkwHhcNMjYwMTAyMTAyMDE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTJlMjNhNjY2NTZkNzY5ZGIzOWYzMDUyOWIzYmUzM2ZlMjZkNTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuysIlyxddWHYA5x1Zi4vhIsMLSQ9 Bz3Au2BYWBylJkukBimC2mHFcGIOWx00pIgZUdwufjZTBXvu5djoKaptnNbUhr/H mV7Ea1htCik0qQqoIF5Px7ttoFBjUnH3VnnkkP+4QpEIQhc6NAEV+h2+OwVe91wy LwYyyAKM1BSV3dr7/i1X5a/deEzAjwOUdIgq1oVUdAC/k8W7h+MAvPsNijLfXJkQ oFDORHOGgxsp5Zbn1+C76OarS3wt58LUU2auh23M73iq0jO1njJDQ7NzzC3bJSva 0CE7a/DCsmil8MG1FqeI0Dir1ja++qfO2VdZOAtvvvSH6IZaHdIaefw7FQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEouI6ZmVtdp2znzBSmzvjP+JtUuMB8GA1UdIwQY MBaAFP+j5VFBwaH58uKIEe1+d/rTeKV5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzZQbFVVSEJvZm55NG9nUjdYNTMtdE40cFhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iMjYzYTItMGY2Zi00ZjVkLWFmOWUt YTM5YWMyNTM5ZmM1LzEvU2k0anBtWlcxMm5iT2ZNRktiTy1NXzRtMVM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iMjYzYTItMGY2Zi00ZjVkLWFmOWUtYTM5YWMyNTM5ZmM1 LzEvXzZQbFVVSEJvZm55NG9nUjdYNTMtdE40cFhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAbXoaAwQA bXodMA0GCSqGSIb3DQEBCwUAA4IBAQCI9jA+5Kjxvvm26/wyg1WoqDcXsfLyUQft wO6D5TGtK6xPrtpGT4Sl8rx7Zv4BDwdVijOC/wDsRB8TvAOdtWMiB63MvpuDvV4d mWOcZMbS2WmzQ4neL7cmOQttCWOF6BXT1n0AOZZKeDS4gmdywAcgQKWUlb9RWOLg 3VyAlyPdWntFnNFP9Gg4zDi2EW7ZjPiTq386UmCzeAURO21V3yYwu8h68OPj0rZi 6jcoLHFTy8UFigBKIefcup0fKQzRZCNt/YsOn68Pbii3Q/DysnTMF6fB1hgK6aFj HwUYNyzyNbJIefCQH/W/ftRhpVzttSD3NK04ZuZgXXKWvUonVQM/ -----END CERTIFICATE-----Generated at Sun Jan 11 21:00:04 2026 by rpki-client