This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/P1I6iwGTt85fYfYAUkquFM4T7-I.roa File: P1I6iwGTt85fYfYAUkquFM4T7-I.roa (raw, json) Hash identifier: EReexW3SdLOsBVVQTNn3ybvI9YT+LPx36BNRZrBsBWA= Subject key identifier: 3F:52:3A:8B:01:93:B7:CE:5F:61:F6:00:52:4A:AE:14:CE:13:EF:E2 Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a Certificate serial: 019B7FF16D21ED2053D9281EF9EFB0602CD5 Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/P1I6iwGTt85fYfYAUkquFM4T7-I.roa Signing time: Fri 02 Jan 2026 18:21:27 +0000 ROA not before: Fri 02 Jan 2026 18:21:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 63150 IP address blocks: 193.160.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.mft rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:6d:21:ed:20:53:d9:28:1e:f9:ef:b0:60:2c:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a Validity Not Before: Jan 2 18:21:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f523a8b0193b7ce5f61f600524aae14ce13efe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:3b:f6:4c:e1:bd:e0:ec:dd:b3:e7:7d:b4:84: 20:6e:ea:b2:fd:7b:9e:6c:51:53:b8:40:4d:f0:ef: 69:86:05:b1:98:c1:0e:3c:57:b9:2a:2a:a6:c3:b0: ca:0e:fa:ad:f6:08:14:ce:77:9b:11:05:ae:d7:4a: bd:20:73:fe:62:fd:92:1a:b5:d8:02:7f:81:d6:38: 62:e3:1e:4b:50:3b:90:5d:24:cb:11:74:55:af:5f: a2:d8:76:e0:b7:48:bb:35:56:4d:fb:1f:36:7e:01: 0a:45:dc:73:68:8f:6d:ff:3e:ee:37:15:cc:ed:de: 7c:33:a6:b9:23:fd:df:f2:9f:86:ac:e6:8d:8d:b4: 9c:ab:98:ca:8c:1c:b4:3a:80:9c:2b:76:9c:f2:84: 0f:14:f7:01:5b:ba:c5:98:df:45:2c:78:d9:a1:a9: c4:48:62:fe:a2:8e:73:50:63:ad:48:7f:ad:1b:86: cc:77:df:94:ec:24:e3:9d:7a:63:0b:66:40:ed:bd: 13:af:85:a6:97:33:d3:6a:0f:72:57:18:dd:51:ac: 5e:9d:2e:5e:17:0c:33:7d:39:ee:e6:7a:c8:8f:61: e2:0d:ec:3f:76:a8:b4:88:88:1d:0e:b5:b1:b9:f4: 13:a6:af:12:e6:be:ca:f9:6e:15:a9:70:85:45:9f: 15:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:52:3A:8B:01:93:B7:CE:5F:61:F6:00:52:4A:AE:14:CE:13:EF:E2 X509v3 Authority Key Identifier: keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/P1I6iwGTt85fYfYAUkquFM4T7-I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.160.221.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:fc:bf:21:22:50:2b:6a:41:b7:2c:ba:4f:bd:02:90:f4:3e: fa:eb:94:99:5c:ba:2b:95:48:1a:1f:58:f1:e7:04:9e:28:e3: 72:a1:63:fa:7f:93:89:2e:6d:a0:15:9e:79:bb:3d:b1:7f:17: d5:2e:fa:11:54:96:77:d9:d5:df:ac:1e:ff:7d:28:48:eb:f0: 8c:fb:bd:43:83:33:5e:94:1e:8a:3b:9f:56:9a:da:58:67:81: e6:ab:e1:dc:dc:f7:df:b7:98:92:92:48:0c:6d:b1:f1:9b:d2: 0e:f8:ba:cd:c3:27:44:99:80:57:48:2e:ce:22:d0:b3:81:8d: b6:22:ed:14:a5:2b:a6:ab:81:65:c6:41:59:03:66:7e:17:7c: 74:7c:3f:95:78:00:4a:eb:93:04:ef:02:92:f2:aa:7a:d5:1e: 49:0c:d3:87:cc:e6:d4:ed:7b:64:b3:a5:19:35:cf:c5:5c:a2: 6d:f6:2a:10:e0:40:ef:8f:48:f2:49:49:50:6b:75:6b:75:42: 8d:33:a3:6e:d6:d4:68:44:64:84:a2:5a:ec:55:bc:e1:a7:99: d2:d6:da:e7:1a:79:06:66:b1:4c:4a:30:3a:51:0e:f5:db:b1: 24:c4:4e:71:3b:92:ac:d9:ff:49:1b:36:b9:c3:63:53:fd:41: b9:c2:e7:f2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8W0h7SBT2Sge+e+wYCzVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwOGRhOWNmMDBkNGQ1OGI4NTRmZmM2MjAxMGYyMzViMDZk ZjM1NGEwHhcNMjYwMTAyMTgyMTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjUyM2E4YjAxOTNiN2NlNWY2MWY2MDA1MjRhYWUxNGNlMTNlZmUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTv2TOG94Ozds+d9tIQgbuqy/Xue bFFTuEBN8O9phgWxmMEOPFe5Kiqmw7DKDvqt9ggUznebEQWu10q9IHP+Yv2SGrXY An+B1jhi4x5LUDuQXSTLEXRVr1+i2Hbgt0i7NVZN+x82fgEKRdxzaI9t/z7uNxXM 7d58M6a5I/3f8p+GrOaNjbScq5jKjBy0OoCcK3ac8oQPFPcBW7rFmN9FLHjZoanE SGL+oo5zUGOtSH+tG4bMd9+U7CTjnXpjC2ZA7b0Tr4WmlzPTag9yVxjdUaxenS5e FwwzfTnu5nrIj2HiDew/dqi0iIgdDrWxufQTpq8S5r7K+W4VqXCFRZ8VKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD9SOosBk7fOX2H2AFJKrhTOE+/iMB8GA1UdIwQY MBaAFNCNqc8A1NWLhU/8YgEPI1sG3zVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYt MjBlMTk3ODBjYjJlLzEvUDFJNml3R1R0ODVmWWZZQVVrcXVGTTRUNy1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYtMjBlMTk3ODBjYjJl LzEvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaDdMA0G CSqGSIb3DQEBCwUAA4IBAQBv/L8hIlArakG3LLpPvQKQ9D7665SZXLorlUgaH1jx 5wSeKONyoWP6f5OJLm2gFZ55uz2xfxfVLvoRVJZ32dXfrB7/fShI6/CM+71DgzNe lB6KO59WmtpYZ4Hmq+Hc3Pfft5iSkkgMbbHxm9IO+LrNwydEmYBXSC7OItCzgY22 Iu0UpSumq4FlxkFZA2Z+F3x0fD+VeABK65ME7wKS8qp61R5JDNOHzObU7Xtks6UZ Nc/FXKJt9ioQ4EDvj0jySUlQa3VrdUKNM6Nu1tRoRGSEolrsVbzhp5nS1trnGnkG ZrFMSjA6UQ7127EkxE5xO5Ks2f9JGza5w2NT/UG5wufy -----END CERTIFICATE-----Generated at Mon Jan 19 14:38:57 2026 by rpki-client