This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/osuY-cnY6vhLD6H1gcoPAxb709k.roa File: osuY-cnY6vhLD6H1gcoPAxb709k.roa (raw, json) Hash identifier: uqRcFkq6jjVYOzdkGQsiVwhb9Q+ozJsUHkALBpXOot0= Subject key identifier: A2:CB:98:F9:C9:D8:EA:F8:4B:0F:A1:F5:81:CA:0F:03:16:FB:D3:D9 Certificate issuer: /CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52 Certificate serial: 019B77C6FF88D93DA1717F701F17C0033617 Authority key identifier: 1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/osuY-cnY6vhLD6H1gcoPAxb709k.roa Signing time: Thu 01 Jan 2026 04:18:08 +0000 ROA not before: Thu 01 Jan 2026 04:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34984 IP address blocks: 195.49.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/Gk-AAcMMrFRuP5IQO0sScy38v1I.crl rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/Gk-AAcMMrFRuP5IQO0sScy38v1I.mft rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:ff:88:d9:3d:a1:71:7f:70:1f:17:c0:03:36:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a4f8001c30cac546e3f92103b4b12732dfcbf52 Validity Not Before: Jan 1 04:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2cb98f9c9d8eaf84b0fa1f581ca0f0316fbd3d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:55:d2:07:df:5c:a6:65:9c:4c:be:8c:d4:c4: b7:0e:aa:e3:e4:c5:a6:a8:39:0c:c1:a4:e7:1a:12: a3:31:a6:1b:cf:84:30:7a:6e:dd:bf:a2:02:d5:b5: 6d:e7:66:f4:cb:8e:fc:ad:87:57:23:43:94:8f:57: ab:c2:a9:ef:3c:98:91:3d:b2:86:bf:82:94:b5:84: 7f:57:b8:4e:3a:80:8a:98:fb:31:57:6a:e1:70:fd: 0f:74:75:3f:6b:af:05:1b:42:72:5e:e1:d3:3f:8f: cc:21:1b:f0:47:18:54:cc:d4:59:4a:c9:9a:2d:a9: 76:bb:f7:29:af:c8:a7:44:1c:50:ec:c8:c9:24:65: a3:8e:7f:d9:56:0f:1e:1b:7e:0a:8c:49:7e:9a:bb: 84:ba:02:24:8d:19:25:bd:e3:1f:f4:62:01:2d:7d: 57:ab:3c:b8:2f:71:1c:aa:22:31:87:e8:0e:9e:4a: 9c:54:90:aa:44:04:7c:d4:b1:0c:9c:92:3b:bc:d6: ee:11:14:f2:20:cb:86:89:26:4d:d0:6a:b0:61:81: 83:67:87:d7:01:fb:2d:d4:6a:01:b1:4c:4e:21:33: 70:28:0f:d1:1a:d3:3e:29:45:52:15:65:ff:a5:19: b5:2b:12:c6:6f:44:f3:5b:67:2c:d3:0e:56:cf:1f: 5d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:CB:98:F9:C9:D8:EA:F8:4B:0F:A1:F5:81:CA:0F:03:16:FB:D3:D9 X509v3 Authority Key Identifier: keyid:1A:4F:80:01:C3:0C:AC:54:6E:3F:92:10:3B:4B:12:73:2D:FC:BF:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk-AAcMMrFRuP5IQO0sScy38v1I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/osuY-cnY6vhLD6H1gcoPAxb709k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d6c86d-6c65-4a25-a8fa-38d4f3211896/1/Gk-AAcMMrFRuP5IQO0sScy38v1I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.49.236.0/23 Signature Algorithm: sha256WithRSAEncryption 97:19:72:d5:06:e5:52:2a:e2:58:8c:82:f2:96:32:f2:d6:ff: ec:47:0f:bf:1d:ea:ab:cf:8b:ac:93:24:9c:01:55:d4:0e:52: 5e:cc:8e:44:0e:43:ed:20:81:a5:a2:50:84:64:d3:04:b7:94: ff:af:5c:5f:fc:d7:00:5a:bc:8f:da:c1:1d:df:4c:f9:2c:02: ad:7d:f5:8e:f2:b9:4f:87:0a:5e:b7:5a:ec:b5:81:29:8b:1d: ab:19:21:78:e1:ab:9b:3f:0c:ff:ed:c2:53:ad:1c:a1:c7:4e: 31:a7:ca:e0:3a:10:3b:70:dd:5d:49:c8:43:ce:89:c1:f4:25: bb:fb:db:4f:15:80:91:69:dc:98:6f:8d:97:e3:dc:13:b5:3f: d2:f3:7b:77:fd:97:58:6a:14:57:55:17:25:e0:0c:85:13:d3: 5d:26:5d:41:e8:25:e6:83:12:29:4f:ba:44:45:f5:52:aa:4b: 29:e4:76:9c:d3:31:28:1f:73:8c:f4:2a:32:1d:f4:ec:60:43: 3d:91:ec:b1:96:e4:65:23:a6:df:ca:16:3e:28:3e:18:54:f4: 77:70:76:79:78:be:ba:56:40:f9:c6:f2:22:47:30:27:07:b8: e8:14:7c:f3:19:6b:f3:65:6a:10:fa:06:a0:e2:ad:15:2c:95: da:04:62:30 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xv+I2T2hcX9wHxfAAzYXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhNGY4MDAxYzMwY2FjNTQ2ZTNmOTIxMDNiNGIxMjczMmRm Y2JmNTIwHhcNMjYwMTAxMDQxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmNiOThmOWM5ZDhlYWY4NGIwZmExZjU4MWNhMGYwMzE2ZmJkM2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslXSB99cpmWcTL6M1MS3Dqrj5MWm qDkMwaTnGhKjMaYbz4Qwem7dv6IC1bVt52b0y478rYdXI0OUj1erwqnvPJiRPbKG v4KUtYR/V7hOOoCKmPsxV2rhcP0PdHU/a68FG0JyXuHTP4/MIRvwRxhUzNRZSsma Lal2u/cpr8inRBxQ7MjJJGWjjn/ZVg8eG34KjEl+mruEugIkjRklveMf9GIBLX1X qzy4L3EcqiIxh+gOnkqcVJCqRAR81LEMnJI7vNbuERTyIMuGiSZN0GqwYYGDZ4fX Afst1GoBsUxOITNwKA/RGtM+KUVSFWX/pRm1KxLGb0TzW2cs0w5Wzx9dTwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKLLmPnJ2Or4Sw+h9YHKDwMW+9PZMB8GA1UdIwQY MBaAFBpPgAHDDKxUbj+SEDtLEnMt/L9SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2stQUFjTU1yRlJ1UDVJUU8wc1NjeTM4djFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9kNmM4NmQtNmM2NS00YTI1LWE4ZmEt MzhkNGYzMjExODk2LzEvb3N1WS1jblk2dmhMRDZIMWdjb1BBeGI3MDlrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9kNmM4NmQtNmM2NS00YTI1LWE4ZmEtMzhkNGYzMjExODk2 LzEvR2stQUFjTU1yRlJ1UDVJUU8wc1NjeTM4djFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwzHsMA0G CSqGSIb3DQEBCwUAA4IBAQCXGXLVBuVSKuJYjILyljLy1v/sRw+/Heqrz4uskySc AVXUDlJezI5EDkPtIIGlolCEZNMEt5T/r1xf/NcAWryP2sEd30z5LAKtffWO8rlP hwpet1rstYEpix2rGSF44aubPwz/7cJTrRyhx04xp8rgOhA7cN1dSchDzonB9CW7 +9tPFYCRadyYb42X49wTtT/S83t3/ZdYahRXVRcl4AyFE9NdJl1B6CXmgxIpT7pE RfVSqksp5Hac0zEoH3OM9CoyHfTsYEM9keyxluRlI6bfyhY+KD4YVPR3cHZ5eL66 VkD5xvIiRzAnB7joFHzzGWvzZWoQ+gag4q0VLJXaBGIw -----END CERTIFICATE-----Generated at Mon Jan 26 07:08:38 2026 by rpki-client