This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/oTQStwFSuI2Q1W08FZTLs7BXO5k.roa File: oTQStwFSuI2Q1W08FZTLs7BXO5k.roa (raw, json) Hash identifier: C8X1J1aYpfCLBdtwgg3h+C2d55+qHBalin4zkQ6E7f4= Subject key identifier: A1:34:12:B7:01:52:B8:8D:90:D5:6D:3C:15:94:CB:B3:B0:57:3B:99 Certificate issuer: /CN=b0c798d3d5b6096cd39e58925a28a17dfb61ce75 Certificate serial: 019B7EA48D03F4DCF917865D6316D5E95091 Authority key identifier: B0:C7:98:D3:D5:B6:09:6C:D3:9E:58:92:5A:28:A1:7D:FB:61:CE:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMeY09W2CWzTnliSWiihffthznU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/oTQStwFSuI2Q1W08FZTLs7BXO5k.roa Signing time: Fri 02 Jan 2026 12:17:51 +0000 ROA not before: Fri 02 Jan 2026 12:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197353 IP address blocks: 193.33.126.0/23 maxlen: 23 193.33.126.0/24 maxlen: 24 193.33.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/sMeY09W2CWzTnliSWiihffthznU.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/sMeY09W2CWzTnliSWiihffthznU.mft rsync://rpki.ripe.net/repository/DEFAULT/sMeY09W2CWzTnliSWiihffthznU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:8d:03:f4:dc:f9:17:86:5d:63:16:d5:e9:50:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0c798d3d5b6096cd39e58925a28a17dfb61ce75 Validity Not Before: Jan 2 12:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a13412b70152b88d90d56d3c1594cbb3b0573b99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:82:cd:45:d9:68:48:c8:76:73:ed:29:3b:f8: 45:c6:86:d0:26:59:54:b7:a0:c0:fe:a1:6e:01:22: e1:61:db:bc:1e:af:44:b7:03:a4:ea:c9:8e:5a:16: 2b:56:05:2c:fb:ce:04:81:1b:fb:f1:8e:07:23:34: d4:c8:d9:f1:9e:f6:0b:f6:68:e5:37:d1:1b:3e:c4: 67:3b:08:3e:a1:5d:ed:1e:10:7e:22:a7:68:00:e7: 08:6f:e0:20:17:24:8d:87:57:99:d1:8b:ba:c6:47: 8d:73:50:27:e4:cb:cb:b2:56:fc:91:70:85:44:47: 05:e2:10:a1:68:f3:9c:3e:1b:9a:62:52:44:b9:ea: 20:5f:63:6e:ac:55:2c:e3:a6:a0:ea:5f:90:77:7a: bb:5c:ff:0e:60:40:2e:2e:5d:b4:15:83:af:92:d1: 4f:46:dc:9d:47:43:da:2e:1f:67:8c:31:1d:0b:1e: a8:25:d6:a8:dc:22:33:d5:5c:63:5f:a5:00:cb:3e: be:75:44:58:6b:fb:44:f3:3c:e4:38:ad:35:3d:0a: cd:2e:76:74:58:49:2c:df:4f:cb:3d:b1:42:90:6d: ea:ee:c9:f1:6b:c1:05:bc:65:25:9c:46:15:43:82: 6b:a8:fa:f3:a8:c7:a7:22:9c:51:60:e6:4e:61:b2: 31:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:34:12:B7:01:52:B8:8D:90:D5:6D:3C:15:94:CB:B3:B0:57:3B:99 X509v3 Authority Key Identifier: keyid:B0:C7:98:D3:D5:B6:09:6C:D3:9E:58:92:5A:28:A1:7D:FB:61:CE:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMeY09W2CWzTnliSWiihffthznU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/oTQStwFSuI2Q1W08FZTLs7BXO5k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/sMeY09W2CWzTnliSWiihffthznU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.33.126.0/23 Signature Algorithm: sha256WithRSAEncryption 99:af:ad:8d:c7:da:0b:39:31:2e:d4:90:cb:39:3c:dc:3a:55: cb:d6:23:df:1f:12:9c:ee:46:0d:72:ed:b2:43:7c:53:5e:36: 00:cf:43:ed:50:c0:91:7a:bd:74:1d:34:b5:8e:74:fb:4b:b4: e7:97:b6:8e:9a:ce:e2:fb:2e:34:d5:76:40:50:a8:2c:7a:6f: fd:f3:b0:30:06:82:af:f4:49:42:d5:98:5a:5e:3d:4a:28:46: a6:2c:ad:86:cb:82:24:ec:cb:12:de:4a:65:a6:59:36:29:5e: 87:2f:74:bb:0d:c1:56:ab:13:56:69:98:6d:30:34:ed:1f:5e: 7a:6b:d1:63:61:67:df:7f:eb:b2:02:ba:40:0e:f5:12:bc:26: 2e:fa:70:c4:e4:b0:28:b5:cf:43:60:ad:12:be:75:bb:71:b7: 12:bb:c9:be:ef:22:9f:fe:e4:dc:9d:2a:04:08:00:82:4a:43: 1f:da:37:4a:30:e0:4f:18:f7:79:ba:ba:a1:85:78:49:14:68: d1:da:bb:f7:d0:54:f4:35:69:eb:77:72:a7:e1:68:a4:17:43: 45:fc:f0:f4:ca:f7:5e:e4:ab:63:e3:51:b2:08:63:d0:08:41: a7:ad:3a:2c:f6:cd:74:e9:a8:bb:9a:21:85:28:4e:28:e5:9e: 88:c1:ca:2b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pI0D9Nz5F4ZdYxbV6VCRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYzc5OGQzZDViNjA5NmNkMzllNTg5MjVhMjhhMTdkZmI2 MWNlNzUwHhcNMjYwMTAyMTIxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMTM0MTJiNzAxNTJiODhkOTBkNTZkM2MxNTk0Y2JiM2IwNTczYjk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4LNRdloSMh2c+0pO/hFxobQJllU t6DA/qFuASLhYdu8Hq9EtwOk6smOWhYrVgUs+84EgRv78Y4HIzTUyNnxnvYL9mjl N9EbPsRnOwg+oV3tHhB+IqdoAOcIb+AgFySNh1eZ0Yu6xkeNc1An5MvLslb8kXCF REcF4hChaPOcPhuaYlJEueogX2NurFUs46ag6l+Qd3q7XP8OYEAuLl20FYOvktFP RtydR0PaLh9njDEdCx6oJdao3CIz1VxjX6UAyz6+dURYa/tE8zzkOK01PQrNLnZ0 WEks30/LPbFCkG3q7snxa8EFvGUlnEYVQ4JrqPrzqMenIpxRYOZOYbIx3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKE0ErcBUriNkNVtPBWUy7OwVzuZMB8GA1UdIwQY MBaAFLDHmNPVtgls055YkloooX37Yc51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc01lWTA5VzJDV3pUbmxpU1dpaWhmZnRoem5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC82NWUwMDYtYzc2Mi00YzdkLTk2ZmYt ZjlmMzExOGUxOTg1LzEvb1RRU3R3RlN1STJRMVcwOEZaVExzN0JYTzVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC82NWUwMDYtYzc2Mi00YzdkLTk2ZmYtZjlmMzExOGUxOTg1 LzEvc01lWTA5VzJDV3pUbmxpU1dpaWhmZnRoem5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwSF+MA0G CSqGSIb3DQEBCwUAA4IBAQCZr62Nx9oLOTEu1JDLOTzcOlXL1iPfHxKc7kYNcu2y Q3xTXjYAz0PtUMCRer10HTS1jnT7S7Tnl7aOms7i+y401XZAUKgsem/987AwBoKv 9ElC1ZhaXj1KKEamLK2Gy4Ik7MsS3kplplk2KV6HL3S7DcFWqxNWaZhtMDTtH156 a9FjYWfff+uyArpADvUSvCYu+nDE5LAotc9DYK0SvnW7cbcSu8m+7yKf/uTcnSoE CACCSkMf2jdKMOBPGPd5urqhhXhJFGjR2rv30FT0NWnrd3Kn4WikF0NF/PD0yvde 5Ktj41GyCGPQCEGnrTos9s106ai7miGFKE4o5Z6Iwcor -----END CERTIFICATE-----Generated at Tue Feb 10 04:49:04 2026 by rpki-client