This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/mdTsNfdOLmAj5Ib0bSI7RIV96g0.roa File: mdTsNfdOLmAj5Ib0bSI7RIV96g0.roa (raw, json) Hash identifier: xAGPZrEW2fEUSd+UrPEI5hWaivVab8Rku87e+bOIo2Q= Subject key identifier: 99:D4:EC:35:F7:4E:2E:60:23:E4:86:F4:6D:22:3B:44:85:7D:EA:0D Certificate issuer: /CN=89e5eb1e12098978745d540dca96cff0de4704da Certificate serial: 019B78A3084A28251013DD0D94C8E67A896E Authority key identifier: 89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/mdTsNfdOLmAj5Ib0bSI7RIV96g0.roa Signing time: Thu 01 Jan 2026 08:18:28 +0000 ROA not before: Thu 01 Jan 2026 08:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210220 IP address blocks: 193.25.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.mft rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:08:4a:28:25:10:13:dd:0d:94:c8:e6:7a:89:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89e5eb1e12098978745d540dca96cff0de4704da Validity Not Before: Jan 1 08:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=99d4ec35f74e2e6023e486f46d223b44857dea0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d8:69:be:f3:16:57:a1:5d:e8:b1:34:60:87: 25:02:5c:e3:37:54:34:9e:19:d5:f0:cf:00:4b:19: d9:e8:88:ef:15:55:b4:46:55:23:f1:01:67:37:5b: 4d:2c:50:f6:ea:4b:2b:20:10:85:63:89:8a:68:28: 2e:47:e9:2e:47:35:76:28:b5:9a:e8:e8:a6:99:96: fa:8a:57:1c:2e:18:d5:e4:aa:7d:b7:6e:f7:13:83: 3d:63:52:8a:d0:e7:b6:cc:3b:8e:cf:5b:03:d9:a5: 8c:36:5f:d6:6c:4f:a2:48:93:88:1b:2b:5e:3f:3e: d4:1b:27:26:02:f8:60:3d:59:7f:34:6f:a3:18:40: 3b:1d:61:3a:b0:ee:63:93:31:ac:0c:1b:e4:0d:ad: c5:f4:76:e5:f8:f9:3a:e5:fe:0f:4e:6d:9b:60:4a: 5f:bd:f9:3b:aa:a2:22:02:af:91:2c:85:13:b4:62: 26:32:2e:9d:b7:d7:c8:63:af:25:e3:7a:7a:7d:c0: b6:4b:88:fe:96:17:e9:86:97:49:e7:52:8e:e0:c0: a3:37:05:fe:1f:1c:b5:2e:43:dc:a5:c0:10:39:27: ca:37:96:4b:fe:4b:4e:22:6a:04:c6:e9:69:09:2c: b1:95:d7:6b:fa:7f:b5:82:2b:62:5f:b6:41:98:d8: 3f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:D4:EC:35:F7:4E:2E:60:23:E4:86:F4:6D:22:3B:44:85:7D:EA:0D X509v3 Authority Key Identifier: keyid:89:E5:EB:1E:12:09:89:78:74:5D:54:0D:CA:96:CF:F0:DE:47:04:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ieXrHhIJiXh0XVQNypbP8N5HBNo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/mdTsNfdOLmAj5Ib0bSI7RIV96g0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e13b32-1ba9-4db9-a569-4aca09564fa8/1/ieXrHhIJiXh0XVQNypbP8N5HBNo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.25.193.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:df:b3:c2:48:2e:47:41:81:d8:a2:1a:69:c8:36:3a:04:c8: ec:d4:a7:7a:08:13:c8:b8:d8:a6:18:fb:0d:c8:3b:a4:15:47: f3:80:01:6c:06:ce:5c:5f:60:fc:ad:89:10:fd:2d:16:07:6e: d1:30:30:e6:c7:d5:2f:ac:6a:9b:c1:81:e1:bf:7d:95:17:cf: b0:d4:c8:a1:c6:86:2a:63:88:20:3a:76:ea:d2:15:67:e5:c5: 48:7f:0d:58:92:e0:f4:fa:f2:8b:0f:ce:89:da:a6:9d:85:30: 13:03:e9:33:5d:72:3d:19:b6:76:10:a3:e6:33:49:b1:7d:9b: 96:02:e5:ca:b8:62:f9:93:ff:30:e1:44:de:27:62:93:da:b8: 91:99:c6:92:56:75:5d:4a:76:4c:96:ba:14:fc:69:b9:97:a4: 20:27:da:f6:41:09:a1:50:0c:e8:e9:5d:8f:01:dd:d4:d7:09: f3:85:60:30:51:c2:d6:9e:2b:af:c3:27:16:b3:86:31:16:71: e0:f0:5d:3d:27:9a:9c:66:82:9b:e6:c4:eb:40:a3:64:f1:47: c2:f4:22:a9:68:be:b1:c8:6b:e4:bf:ae:fa:85:98:ca:27:fb: 32:a9:ff:97:06:40:c6:d2:24:4b:9d:2d:f7:64:e0:d6:22:4c: 8b:3b:24:94 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4owhKKCUQE90NlMjmeoluMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5ZTVlYjFlMTIwOTg5Nzg3NDVkNTQwZGNhOTZjZmYwZGU0 NzA0ZGEwHhcNMjYwMTAxMDgxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OWQ0ZWMzNWY3NGUyZTYwMjNlNDg2ZjQ2ZDIyM2I0NDg1N2RlYTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxthpvvMWV6Fd6LE0YIclAlzjN1Q0 nhnV8M8ASxnZ6IjvFVW0RlUj8QFnN1tNLFD26ksrIBCFY4mKaCguR+kuRzV2KLWa 6OimmZb6ilccLhjV5Kp9t273E4M9Y1KK0Oe2zDuOz1sD2aWMNl/WbE+iSJOIGyte Pz7UGycmAvhgPVl/NG+jGEA7HWE6sO5jkzGsDBvkDa3F9Hbl+Pk65f4PTm2bYEpf vfk7qqIiAq+RLIUTtGImMi6dt9fIY68l43p6fcC2S4j+lhfphpdJ51KO4MCjNwX+ Hxy1LkPcpcAQOSfKN5ZL/ktOImoExulpCSyxlddr+n+1gitiX7ZBmNg/PwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJnU7DX3Ti5gI+SG9G0iO0SFfeoNMB8GA1UdIwQY MBaAFInl6x4SCYl4dF1UDcqWz/DeRwTaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1Njkt NGFjYTA5NTY0ZmE4LzEvbWRUc05mZE9MbUFqNUliMGJTSTdSSVY5NmcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9lMTNiMzItMWJhOS00ZGI5LWE1NjktNGFjYTA5NTY0ZmE4 LzEvaWVYckhoSUppWGgwWFZRTnlwYlA4TjVIQk5vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRnBMA0G CSqGSIb3DQEBCwUAA4IBAQAP37PCSC5HQYHYohppyDY6BMjs1Kd6CBPIuNimGPsN yDukFUfzgAFsBs5cX2D8rYkQ/S0WB27RMDDmx9UvrGqbwYHhv32VF8+w1MihxoYq Y4ggOnbq0hVn5cVIfw1YkuD0+vKLD86J2qadhTATA+kzXXI9GbZ2EKPmM0mxfZuW AuXKuGL5k/8w4UTeJ2KT2riRmcaSVnVdSnZMlroU/Gm5l6QgJ9r2QQmhUAzo6V2P Ad3U1wnzhWAwUcLWniuvwycWs4YxFnHg8F09J5qcZoKb5sTrQKNk8UfC9CKpaL6x yGvkv676hZjKJ/syqf+XBkDG0iRLnS33ZODWIkyLOySU -----END CERTIFICATE-----Generated at Mon Jan 26 23:21:20 2026 by rpki-client