This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/sN7KZAb0tSBb8kQXanj5RVDo87M.roa File: sN7KZAb0tSBb8kQXanj5RVDo87M.roa (raw, json) Hash identifier: sNtlv5Kfns7Qub92+PG+1MiYKqG3uVLYzRGiFbw3ks8= Subject key identifier: B0:DE:CA:64:06:F4:B5:20:5B:F2:44:17:6A:78:F9:45:50:E8:F3:B3 Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df Certificate serial: 019B7E37F83E453A9FB57A52AF00625CE55A Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/sN7KZAb0tSBb8kQXanj5RVDo87M.roa Signing time: Fri 02 Jan 2026 10:19:15 +0000 ROA not before: Fri 02 Jan 2026 10:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47610 IP address blocks: 129.233.212.0/24 maxlen: 24 129.233.213.0/24 maxlen: 24 153.96.180.0/24 maxlen: 24 153.96.208.0/23 maxlen: 23 192.44.11.0/24 maxlen: 24 192.102.148.0/24 maxlen: 24 2a03:db80:2c10::/48 maxlen: 48 2a03:db80:2c14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.mft rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:f8:3e:45:3a:9f:b5:7a:52:af:00:62:5c:e5:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df Validity Not Before: Jan 2 10:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0deca6406f4b5205bf244176a78f94550e8f3b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:19:79:8f:df:27:3b:df:ed:72:c1:8a:75:4d: 41:67:95:1b:b7:04:52:a4:f2:ed:c5:40:ab:8f:00: c2:e6:09:e0:7f:30:6c:0f:71:63:88:1c:81:f7:96: 56:a7:1d:1f:a6:51:88:6c:a4:37:f7:c4:5d:67:1f: 92:02:95:6b:6b:68:24:64:5e:ca:97:54:ac:1a:c2: f7:3f:46:10:74:3f:f9:d0:9b:72:a4:b4:fc:28:6c: a2:48:ef:eb:75:26:62:f3:9f:18:e3:d5:0c:31:b7: 92:49:e6:c4:66:7c:c2:a3:27:1e:71:74:ae:cb:31: 61:85:24:fe:ce:57:4b:da:db:a9:73:71:24:9b:3d: 02:16:02:b2:0d:f9:70:19:2b:f6:8b:ee:49:5a:de: 73:82:7a:6b:5b:97:90:91:1e:80:82:db:8d:72:1c: 8e:39:de:33:0a:48:d7:f6:f6:e6:ba:10:f3:48:4f: ad:b5:1e:33:64:73:a3:25:fa:36:d1:46:2f:50:4e: 73:43:a0:93:35:47:9c:3b:d4:87:c7:f8:15:49:ec: 36:5f:56:89:52:97:f0:88:07:ce:67:70:48:78:04: 43:e2:21:6e:9d:f3:d8:9d:a0:c3:53:0a:0f:e9:e5: b8:f7:8e:e1:87:1c:3d:58:25:83:0d:76:84:f0:7c: 28:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DE:CA:64:06:F4:B5:20:5B:F2:44:17:6A:78:F9:45:50:E8:F3:B3 X509v3 Authority Key Identifier: keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/sN7KZAb0tSBb8kQXanj5RVDo87M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.233.212.0/23 153.96.180.0/24 153.96.208.0/23 192.44.11.0/24 192.102.148.0/24 IPv6: 2a03:db80:2c10::/48 2a03:db80:2c14::/48 Signature Algorithm: sha256WithRSAEncryption 68:41:34:d7:24:e8:ae:e7:5d:12:67:df:8a:52:81:b9:76:e9: c9:3a:05:bc:47:f2:78:03:50:3d:89:ce:9a:7c:2a:7e:90:2f: e8:18:83:30:b5:5f:2b:8f:20:1d:f8:d2:2a:d7:f0:18:05:88: 9f:83:f6:78:7a:f9:88:19:b7:2d:c9:58:7c:f8:28:97:25:ee: fb:dd:aa:e4:05:16:66:05:0f:65:04:65:a0:e9:4d:86:18:46: dc:4d:ee:e7:70:a7:01:5c:86:60:51:5b:1f:ee:91:01:aa:b0: c3:6a:fc:02:2d:bc:64:d9:aa:30:55:43:6f:b1:16:7b:67:59: 42:59:a3:6f:60:9f:7b:b1:57:c9:2d:af:c9:b8:bd:cb:b4:5e: b3:1f:dc:fe:02:5f:c9:38:9b:39:52:43:10:da:b5:ed:22:af: 80:38:5c:7c:e4:0d:99:69:f2:3a:39:6e:54:16:ab:f6:f1:00: 4d:83:29:9b:39:8b:f6:8c:fb:95:ac:c3:6b:1a:b8:42:25:13: b6:23:d7:3f:c3:98:04:92:f0:73:46:81:1b:2e:58:14:09:23: 41:5f:50:e0:d3:79:a5:aa:8b:3e:19:86:f5:57:9f:45:26:ee: 65:ae:a2:40:38:0c:d7:47:58:28:87:4c:b5:36:a8:7a:95:bd: aa:fb:3c:e6 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt+N/g+RTqftXpSrwBiXOVaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YTc1ODI2ZTk5MTIyNWE0MjlmZjhhMWU3ZmZkYzgwNDY2 NDIwZGYwHhcNMjYwMTAyMTAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGRlY2E2NDA2ZjRiNTIwNWJmMjQ0MTc2YTc4Zjk0NTUwZThmM2IzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmBl5j98nO9/tcsGKdU1BZ5UbtwRS pPLtxUCrjwDC5gngfzBsD3FjiByB95ZWpx0fplGIbKQ398RdZx+SApVra2gkZF7K l1SsGsL3P0YQdD/50JtypLT8KGyiSO/rdSZi858Y49UMMbeSSebEZnzCoycecXSu yzFhhST+zldL2tupc3Ekmz0CFgKyDflwGSv2i+5JWt5zgnprW5eQkR6AgtuNchyO Od4zCkjX9vbmuhDzSE+ttR4zZHOjJfo20UYvUE5zQ6CTNUecO9SHx/gVSew2X1aJ UpfwiAfOZ3BIeARD4iFunfPYnaDDUwoP6eW4947hhxw9WCWDDXaE8Hwo1QIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFLDeymQG9LUgW/JEF2p4+UVQ6POzMB8GA1UdIwQY MBaAFHanWCbpkSJaQp/4oef/3IBGZCDfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTct YWQ4ZmJlYWE4ZGQ5LzEvc043S1pBYjB0U0JiOGtRWGFuajVSVkRvODdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTctYWQ4ZmJlYWE4ZGQ5 LzEvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAkBAIAATAeAwQBgenUAwQA mWC0AwQBmWDQAwQAwCwLAwQAwGaUMBgEAgACMBIDBwAqA9uALBADBwAqA9uALBQw DQYJKoZIhvcNAQELBQADggEBAGhBNNck6K7nXRJn34pSgbl26ck6BbxH8ngDUD2J zpp8Kn6QL+gYgzC1XyuPIB340irX8BgFiJ+D9nh6+YgZty3JWHz4KJcl7vvdquQF FmYFD2UEZaDpTYYYRtxN7udwpwFchmBRWx/ukQGqsMNq/AItvGTZqjBVQ2+xFntn WUJZo29gn3uxV8ktr8m4vcu0XrMf3P4CX8k4mzlSQxDate0ir4A4XHzkDZlp8jo5 blQWq/bxAE2DKZs5i/aM+5Wsw2sauEIlE7Yj1z/DmASS8HNGgRsuWBQJI0FfUODT eaWqiz4ZhvVXn0Um7mWuokA4DNdHWCiHTLU2qHqVvar7POY= -----END CERTIFICATE-----Generated at Wed Jan 21 14:41:11 2026 by rpki-client