This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/505755-c4ab-4905-8b48-bbd1ad53da43/1/1-yZ40ZIR1zrvdMavNgVP-U3GRkw.roa File: 1-yZ40ZIR1zrvdMavNgVP-U3GRkw.roa (raw, json) Hash identifier: rrotFnvFJZjY/IZDrZ/Q8wCEoprdXyBMiaME4EtjYZ8= Subject key identifier: FB:26:78:D1:92:11:D7:3A:EF:74:C6:AF:36:05:4F:F9:4D:C6:46:4C Certificate issuer: /CN=39374019a54d4bde23f0da28a252150d5cb473ad Certificate serial: 019B7AC8A5D9A59051D7EA07B6A8FE252FCC Authority key identifier: 39:37:40:19:A5:4D:4B:DE:23:F0:DA:28:A2:52:15:0D:5C:B4:73:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTdAGaVNS94j8NooolIVDVy0c60.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/505755-c4ab-4905-8b48-bbd1ad53da43/1/1-yZ40ZIR1zrvdMavNgVP-U3GRkw.roa Signing time: Thu 01 Jan 2026 18:18:48 +0000 ROA not before: Thu 01 Jan 2026 18:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211752 IP address blocks: 195.8.125.0/24 maxlen: 24 2a0a:fcc0::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/505755-c4ab-4905-8b48-bbd1ad53da43/1/OTdAGaVNS94j8NooolIVDVy0c60.crl rsync://rpki.ripe.net/repository/DEFAULT/47/505755-c4ab-4905-8b48-bbd1ad53da43/1/OTdAGaVNS94j8NooolIVDVy0c60.mft rsync://rpki.ripe.net/repository/DEFAULT/OTdAGaVNS94j8NooolIVDVy0c60.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:a5:d9:a5:90:51:d7:ea:07:b6:a8:fe:25:2f:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=39374019a54d4bde23f0da28a252150d5cb473ad Validity Not Before: Jan 1 18:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb2678d19211d73aef74c6af36054ff94dc6464c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:47:30:67:3c:ba:92:a2:4a:a8:a5:51:5a:64: 7e:0c:98:04:dc:91:64:19:8a:b1:aa:03:f9:33:13: 0d:5c:d1:81:6b:94:8f:7c:5e:52:29:34:09:2e:ad: 77:e5:6b:39:2d:39:7b:cb:90:ce:4a:83:45:4a:91: 45:8f:26:a5:e4:d9:dc:ff:7d:71:f2:07:92:66:d4: 55:0a:08:0f:c6:87:e8:18:12:cc:05:6e:d6:95:9b: 19:32:c7:e7:12:f4:f7:fa:4b:69:7f:64:d9:c5:a1: b8:60:e2:d7:9d:ef:fd:f4:64:5c:90:60:2c:77:d3: 0b:a2:8b:56:c9:44:4f:1e:12:dd:60:d8:76:1e:70: 9e:d1:e1:22:47:f8:9c:05:79:75:76:c4:c7:c0:d4: ea:81:00:d1:af:4c:4c:aa:ae:c5:0e:46:06:4e:93: bf:db:29:66:be:c4:85:ee:6d:dc:de:47:28:17:1a: d3:da:ef:7c:9d:e6:6d:17:e0:42:ad:7d:54:7e:f8: ba:fb:38:1f:df:8e:24:c8:ee:56:90:59:02:63:2c: b0:80:ca:98:4f:b6:47:1e:a5:3f:65:ac:21:2c:a1: c5:38:dd:f3:80:c3:e5:66:63:a1:00:7c:4c:11:bb: 5e:ec:39:6d:d3:d9:cf:e0:85:e1:f0:ad:a8:26:9f: 94:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:26:78:D1:92:11:D7:3A:EF:74:C6:AF:36:05:4F:F9:4D:C6:46:4C X509v3 Authority Key Identifier: keyid:39:37:40:19:A5:4D:4B:DE:23:F0:DA:28:A2:52:15:0D:5C:B4:73:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTdAGaVNS94j8NooolIVDVy0c60.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/505755-c4ab-4905-8b48-bbd1ad53da43/1/1-yZ40ZIR1zrvdMavNgVP-U3GRkw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/505755-c4ab-4905-8b48-bbd1ad53da43/1/OTdAGaVNS94j8NooolIVDVy0c60.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.8.125.0/24 IPv6: 2a0a:fcc0::/29 Signature Algorithm: sha256WithRSAEncryption 0c:e5:e1:ad:5b:3b:a6:79:4f:3b:8f:35:1e:2a:28:24:4f:32: 43:85:24:88:ed:4c:65:76:5b:fc:25:c5:c9:31:4e:6e:69:53: 35:2c:a6:ec:8e:34:a8:66:07:9a:02:58:36:d1:30:c2:19:82: 92:02:1d:c2:f2:2b:72:e6:d4:c9:3b:a2:18:82:ec:ea:75:8d: 6f:ce:dd:6b:6c:f5:0e:d9:2f:87:ed:fe:b8:89:24:8e:97:63: 15:1c:bb:2a:f7:28:27:65:c6:41:c2:33:7d:d8:b0:6f:10:dd: 45:0a:d8:76:a6:07:f8:ea:cd:5c:32:2f:62:16:17:42:18:f0: a5:b1:66:e2:84:97:36:e9:17:ba:1e:1c:bf:35:07:da:76:f2: ed:47:4a:ab:ae:1f:4e:ee:9f:c0:c5:be:3e:14:a3:ad:6e:23: 77:72:0c:37:55:eb:58:d4:b2:b3:05:87:93:1d:29:16:0d:a1: 46:8f:d2:bd:41:ee:97:38:bc:f0:36:a0:a8:e2:46:c0:8b:ef: 9c:1f:e1:71:1e:e6:d7:62:94:c4:be:0e:cc:a0:17:12:0c:1e: 71:1e:14:68:35:74:f0:50:a5:29:c3:4f:87:1b:24:b8:71:79: a2:37:4e:87:d1:10:eb:76:ab:71:e9:48:ca:9f:28:27:cc:70: 20:7c:8a:4b -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt6yKXZpZBR1+oHtqj+JS/MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5Mzc0MDE5YTU0ZDRiZGUyM2YwZGEyOGEyNTIxNTBkNWNi NDczYWQwHhcNMjYwMTAxMTgxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjI2NzhkMTkyMTFkNzNhZWY3NGM2YWYzNjA1NGZmOTRkYzY0NjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0cwZzy6kqJKqKVRWmR+DJgE3JFk GYqxqgP5MxMNXNGBa5SPfF5SKTQJLq135Ws5LTl7y5DOSoNFSpFFjyal5Nnc/31x 8geSZtRVCggPxofoGBLMBW7WlZsZMsfnEvT3+ktpf2TZxaG4YOLXne/99GRckGAs d9MLootWyURPHhLdYNh2HnCe0eEiR/icBXl1dsTHwNTqgQDRr0xMqq7FDkYGTpO/ 2ylmvsSF7m3c3kcoFxrT2u98neZtF+BCrX1Ufvi6+zgf344kyO5WkFkCYyywgMqY T7ZHHqU/ZawhLKHFON3zgMPlZmOhAHxMEbte7Dlt09nP4IXh8K2oJp+UawIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFPsmeNGSEdc673TGrzYFT/lNxkZMMB8GA1UdIwQY MBaAFDk3QBmlTUveI/DaKKJSFQ1ctHOtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1RkQUdhVk5TOTRqOE5vb29sSVZEVnkwYzYwLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny81MDU3NTUtYzRhYi00OTA1LThiNDgt YmJkMWFkNTNkYTQzLzEvMS15WjQwWklSMXpydmRNYXZOZ1ZQLVUzR1Jrdy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNDcvNTA1NzU1LWM0YWItNDkwNS04YjQ4LWJiZDFhZDUzZGE0 My8xL09UZEFHYVZOUzk0ajhOb29vbElWRFZ5MGM2MC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMMIfTAN BAIAAjAHAwUDKgr8wDANBgkqhkiG9w0BAQsFAAOCAQEADOXhrVs7pnlPO481Hioo JE8yQ4UkiO1MZXZb/CXFyTFObmlTNSym7I40qGYHmgJYNtEwwhmCkgIdwvIrcubU yTuiGILs6nWNb87da2z1Dtkvh+3+uIkkjpdjFRy7KvcoJ2XGQcIzfdiwbxDdRQrY dqYH+OrNXDIvYhYXQhjwpbFm4oSXNukXuh4cvzUH2nby7UdKq64fTu6fwMW+PhSj rW4jd3IMN1XrWNSyswWHkx0pFg2hRo/SvUHulzi88DagqOJGwIvvnB/hcR7m12KU xL4OzKAXEgwecR4UaDV08FClKcNPhxskuHF5ojdOh9EQ63arcelIyp8oJ8xwIHyK Sw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:14 2026 by rpki-client