This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/iAuw5JQ3mAXjxY6QWG9RY3yTA-Q.roa File: iAuw5JQ3mAXjxY6QWG9RY3yTA-Q.roa (raw, json) Hash identifier: UOg7kVgDqAJH5jfqy325Mwl+Vg9DYyHjwnI/jC5MC+Y= Subject key identifier: 88:0B:B0:E4:94:37:98:05:E3:C5:8E:90:58:6F:51:63:7C:93:03:E4 Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Certificate serial: 019B7DCA2EA36FC2F65E9D481D3D1E0D5461 Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/iAuw5JQ3mAXjxY6QWG9RY3yTA-Q.roa Signing time: Fri 02 Jan 2026 08:19:20 +0000 ROA not before: Fri 02 Jan 2026 08:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213296 IP address blocks: 194.28.156.0/24 maxlen: 24 194.28.158.0/24 maxlen: 24 194.104.4.0/24 maxlen: 24 194.104.5.0/24 maxlen: 24 194.104.6.0/24 maxlen: 24 212.69.132.0/24 maxlen: 24 212.69.133.0/24 maxlen: 24 212.69.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.mft rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:2e:a3:6f:c2:f6:5e:9d:48:1d:3d:1e:0d:54:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Validity Not Before: Jan 2 08:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=880bb0e494379805e3c58e90586f51637c9303e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:0d:b1:52:b2:0e:74:87:75:f1:90:46:58:55: a4:c6:16:51:f8:1d:33:51:9d:a8:a5:c5:4f:ea:de: 99:67:36:5c:ce:31:1a:04:c2:60:d7:dd:53:51:3d: e9:18:cb:a2:46:30:60:a1:de:3b:b5:5e:2d:29:db: 2c:83:7f:c5:5c:18:26:b8:dc:f3:a6:f5:78:c9:6a: 35:99:33:02:04:ea:22:0f:71:a6:cb:52:4b:0f:94: 76:9b:7d:1a:fe:fd:a5:4f:4a:e8:bd:c5:75:d8:14: 35:75:78:ad:3c:46:a0:e7:46:49:6d:e8:f4:0b:b4: d7:fc:b6:34:6b:da:3f:97:fc:6c:de:bd:19:0f:83: ac:aa:4d:28:69:61:78:58:c2:39:25:e6:9e:2b:8f: d7:f8:0a:e1:b4:b3:84:f6:3b:12:80:fd:ff:df:26: a3:b3:be:a2:a6:96:54:d2:37:86:0d:65:ba:01:b6: 47:eb:b8:39:9d:a5:d8:b3:83:a2:12:1a:15:d7:62: c9:26:72:6b:99:0f:5d:93:28:22:33:bb:cf:9b:f2: 68:d9:15:6c:8d:21:a2:f9:57:1f:bd:b1:0e:46:a2: b6:46:ce:5a:29:f6:7b:9c:5c:d9:ef:e2:b3:d4:5c: 2b:ad:a3:0f:52:3b:40:84:b6:c9:ad:e3:de:dd:1a: d8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:0B:B0:E4:94:37:98:05:E3:C5:8E:90:58:6F:51:63:7C:93:03:E4 X509v3 Authority Key Identifier: keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/iAuw5JQ3mAXjxY6QWG9RY3yTA-Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.28.156.0/24 194.28.158.0/24 194.104.4.0-194.104.6.255 212.69.132.0-212.69.134.255 Signature Algorithm: sha256WithRSAEncryption 4d:32:0c:6e:b0:8d:aa:34:d4:e7:e9:d6:1e:13:c6:02:cf:cd: d8:37:02:87:49:e1:e6:10:1c:24:e1:31:c4:1e:4a:78:ac:02: 5c:d1:e0:75:b1:a6:25:35:fc:44:16:a7:3f:f2:41:aa:c9:60: 3c:93:6b:76:b6:ab:3d:bc:34:35:d3:26:0a:88:42:b8:b9:47: c6:b2:1b:e3:b4:ff:87:df:7a:29:83:62:29:cf:78:d4:09:31: 6f:f6:65:41:ba:79:47:3a:e3:a8:ca:84:69:46:5d:e9:4f:8d: a4:3d:72:d0:dd:21:14:ce:d6:a3:5d:f8:01:74:8c:0d:e8:89: fe:37:de:02:55:f0:9c:e8:75:45:bc:e4:27:5c:0e:0a:a1:9f: c3:0c:55:aa:c1:9a:92:e0:4e:23:9b:fb:25:65:51:9a:8a:20: 81:8f:21:73:1a:21:9d:84:30:39:6e:f1:3f:c2:08:fc:63:79: 27:86:14:de:13:79:0f:3e:dc:ce:98:c3:b8:4d:c1:06:a6:18: 77:7a:11:a4:e5:72:4f:26:ec:f5:db:6f:23:7b:ae:09:cf:cb: c7:0c:94:3a:ea:f7:83:60:98:1d:93:8b:12:25:c2:09:87:4c: 2c:1a:28:42:a6:ba:cd:d6:a9:b7:36:34:db:c2:33:34:73:3f: d5:00:50:77 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt9yi6jb8L2Xp1IHT0eDVRhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2 OWExZmQwHhcNMjYwMTAyMDgxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODBiYjBlNDk0Mzc5ODA1ZTNjNThlOTA1ODZmNTE2MzdjOTMwM2U0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkg2xUrIOdId18ZBGWFWkxhZR+B0z UZ2opcVP6t6ZZzZczjEaBMJg191TUT3pGMuiRjBgod47tV4tKdssg3/FXBgmuNzz pvV4yWo1mTMCBOoiD3Gmy1JLD5R2m30a/v2lT0rovcV12BQ1dXitPEag50ZJbej0 C7TX/LY0a9o/l/xs3r0ZD4Osqk0oaWF4WMI5JeaeK4/X+ArhtLOE9jsSgP3/3yaj s76ippZU0jeGDWW6AbZH67g5naXYs4OiEhoV12LJJnJrmQ9dkygiM7vPm/Jo2RVs jSGi+VcfvbEORqK2Rs5aKfZ7nFzZ7+Kz1FwrraMPUjtAhLbJrePe3RrY4wIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFIgLsOSUN5gF48WOkFhvUWN8kwPkMB8GA1UdIwQY MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et OTk0ODA2ZjA4MWYwLzEvaUF1dzVKUTNtQVhqeFk2UVdHOVJZM3lUQS1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAuBAIAATAoAwQAwhycAwQA whyeMAwDBALCaAQDBADCaAYwDAMEAtRFhAMEANRFhjANBgkqhkiG9w0BAQsFAAOC AQEATTIMbrCNqjTU5+nWHhPGAs/N2DcCh0nh5hAcJOExxB5KeKwCXNHgdbGmJTX8 RBanP/JBqslgPJNrdrarPbw0NdMmCohCuLlHxrIb47T/h996KYNiKc941Akxb/Zl Qbp5RzrjqMqEaUZd6U+NpD1y0N0hFM7Wo134AXSMDeiJ/jfeAlXwnOh1RbzkJ1wO CqGfwwxVqsGakuBOI5v7JWVRmooggY8hcxohnYQwOW7xP8II/GN5J4YU3hN5Dz7c zpjDuE3BBqYYd3oRpOVyTybs9dtvI3uuCc/LxwyUOur3g2CYHZOLEiXCCYdMLBoo Qqa6zdaptzY028IzNHM/1QBQdw== -----END CERTIFICATE-----Generated at Mon Jan 19 21:27:48 2026 by rpki-client