This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/9JqZryS5V90sfPbzDmWbNHdWDz4.roa File: 9JqZryS5V90sfPbzDmWbNHdWDz4.roa (raw, json) Hash identifier: xRoJI+4gTPgSbGis5y17EtT/awD7P4de01zDNxO2DGg= Subject key identifier: F4:9A:99:AF:24:B9:57:DD:2C:7C:F6:F3:0E:65:9B:34:77:56:0F:3E Certificate issuer: /CN=525ec93d7ca73744b2c1fbb6dda64493c2a495c1 Certificate serial: 019B791020107D20351C1F31FA817D0F8FC2 Authority key identifier: 52:5E:C9:3D:7C:A7:37:44:B2:C1:FB:B6:DD:A6:44:93:C2:A4:95:C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ul7JPXynN0Sywfu23aZEk8KklcE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/9JqZryS5V90sfPbzDmWbNHdWDz4.roa Signing time: Thu 01 Jan 2026 10:17:38 +0000 ROA not before: Thu 01 Jan 2026 10:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210644 IP address blocks: 193.33.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/Ul7JPXynN0Sywfu23aZEk8KklcE.crl rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/Ul7JPXynN0Sywfu23aZEk8KklcE.mft rsync://rpki.ripe.net/repository/DEFAULT/Ul7JPXynN0Sywfu23aZEk8KklcE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:20:10:7d:20:35:1c:1f:31:fa:81:7d:0f:8f:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=525ec93d7ca73744b2c1fbb6dda64493c2a495c1 Validity Not Before: Jan 1 10:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f49a99af24b957dd2c7cf6f30e659b3477560f3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:60:77:ba:11:44:3e:3b:73:22:60:ca:59:e1: be:ee:cd:57:73:2f:4b:6b:e2:eb:da:e9:b8:d1:7a: 51:7e:38:1a:6e:96:61:6f:2d:c8:78:85:e1:e6:1a: 65:4b:16:cd:09:4d:e0:99:ec:2a:94:30:b2:ba:ee: 71:63:4d:31:32:e3:59:b8:87:8f:95:44:33:69:6a: 9a:99:70:0b:4a:29:92:82:e5:28:4e:61:d0:55:5f: ad:d8:79:3c:86:6b:f6:ef:33:24:6b:ab:16:6b:4d: f3:6c:53:c4:b2:23:59:e8:55:e8:2c:5c:aa:d0:5d: 3a:c7:30:01:20:c9:60:74:57:99:bc:bd:78:0c:d9: ab:ed:47:9a:73:10:76:89:6b:2e:cf:d9:2a:24:5d: a8:d5:82:94:28:db:e3:03:98:b2:9b:ee:c3:f8:46: 04:38:96:82:06:aa:af:2c:cb:89:f0:79:65:ab:c0: 43:a4:53:e8:3f:59:9b:d5:41:83:02:3f:9d:a5:66: bd:d9:71:b2:42:0e:ad:83:96:e3:a7:db:21:d1:51: dd:40:0b:12:4b:11:1b:d1:c3:86:e5:61:15:28:30: 71:5c:12:26:10:12:b5:1b:c2:71:1b:e3:6b:b0:09: 9e:6f:fc:d3:9b:84:ce:d1:01:f9:87:40:d2:80:b4: 24:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9A:99:AF:24:B9:57:DD:2C:7C:F6:F3:0E:65:9B:34:77:56:0F:3E X509v3 Authority Key Identifier: keyid:52:5E:C9:3D:7C:A7:37:44:B2:C1:FB:B6:DD:A6:44:93:C2:A4:95:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ul7JPXynN0Sywfu23aZEk8KklcE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/9JqZryS5V90sfPbzDmWbNHdWDz4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/6558ec-d568-4cb9-a03a-8366b164dd66/1/Ul7JPXynN0Sywfu23aZEk8KklcE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.33.153.0/24 Signature Algorithm: sha256WithRSAEncryption 90:16:28:0f:5f:b1:f5:b6:53:e7:bf:0d:43:33:0e:c2:e1:68: f8:21:70:65:90:80:29:65:10:6f:9c:17:55:b9:34:46:20:31: d4:65:b0:03:ef:46:33:35:8e:89:0d:04:79:d4:20:68:a9:8c: ba:8a:75:56:bb:11:39:2c:04:d3:ff:13:fe:e8:17:cd:e7:d6: ca:cb:70:f1:47:fd:b7:ab:5d:0e:0c:d8:c2:5f:5d:ae:07:98: 7c:c1:a9:3f:19:b2:7d:68:cf:e1:ae:91:e3:fa:49:af:7b:c4: 3a:68:9c:2b:10:54:fc:2f:9d:25:78:a7:78:c2:d9:b5:5c:12: e6:d0:c7:8b:2f:fc:d1:ea:4d:b3:24:98:e5:e7:4e:8d:f2:70: 3c:b2:9a:c1:57:3a:3b:27:77:b0:db:5c:92:eb:3c:37:35:10: 93:2e:c7:fa:bd:54:d5:81:dc:0d:60:d3:f0:95:a8:49:7e:99: 1f:49:17:ec:b7:4b:a1:d2:d9:7f:b3:1c:4b:a7:01:c5:f1:e6: 2b:dc:e8:6a:af:e8:2e:fa:19:91:7b:17:63:c7:11:7c:be:d7: bc:c2:62:e8:14:6e:e6:a6:37:d9:b1:0b:54:8b:5c:56:32:d1: a9:3e:6c:92:23:62:33:41:42:b7:09:ad:b0:6f:fe:86:62:9d: 26:87:de:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ECAQfSA1HB8x+oF9D4/CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyNWVjOTNkN2NhNzM3NDRiMmMxZmJiNmRkYTY0NDkzYzJh NDk1YzEwHhcNMjYwMTAxMTAxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNDlhOTlhZjI0Yjk1N2RkMmM3Y2Y2ZjMwZTY1OWIzNDc3NTYwZjNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlWB3uhFEPjtzImDKWeG+7s1Xcy9L a+Lr2um40XpRfjgabpZhby3IeIXh5hplSxbNCU3gmewqlDCyuu5xY00xMuNZuIeP lUQzaWqamXALSimSguUoTmHQVV+t2Hk8hmv27zMka6sWa03zbFPEsiNZ6FXoLFyq 0F06xzABIMlgdFeZvL14DNmr7UeacxB2iWsuz9kqJF2o1YKUKNvjA5iym+7D+EYE OJaCBqqvLMuJ8Hllq8BDpFPoP1mb1UGDAj+dpWa92XGyQg6tg5bjp9sh0VHdQAsS SxEb0cOG5WEVKDBxXBImEBK1G8JxG+NrsAmeb/zTm4TO0QH5h0DSgLQk3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPSama8kuVfdLHz28w5lmzR3Vg8+MB8GA1UdIwQY MBaAFFJeyT18pzdEssH7tt2mRJPCpJXBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWw3SlBYeW5OMFN5d2Z1MjNhWkVrOEtrbGNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC82NTU4ZWMtZDU2OC00Y2I5LWEwM2Et ODM2NmIxNjRkZDY2LzEvOUpxWnJ5UzVWOTBzZlBiekRtV2JOSGRXRHo0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC82NTU4ZWMtZDU2OC00Y2I5LWEwM2EtODM2NmIxNjRkZDY2 LzEvVWw3SlBYeW5OMFN5d2Z1MjNhWkVrOEtrbGNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwSGZMA0G CSqGSIb3DQEBCwUAA4IBAQCQFigPX7H1tlPnvw1DMw7C4Wj4IXBlkIApZRBvnBdV uTRGIDHUZbAD70YzNY6JDQR51CBoqYy6inVWuxE5LATT/xP+6BfN59bKy3DxR/23 q10ODNjCX12uB5h8wak/GbJ9aM/hrpHj+kmve8Q6aJwrEFT8L50leKd4wtm1XBLm 0MeLL/zR6k2zJJjl506N8nA8sprBVzo7J3ew21yS6zw3NRCTLsf6vVTVgdwNYNPw lahJfpkfSRfst0uh0tl/sxxLpwHF8eYr3Ohqr+gu+hmRexdjxxF8vte8wmLoFG7m pjfZsQtUi1xWMtGpPmySI2IzQUK3Ca2wb/6GYp0mh97s -----END CERTIFICATE-----Generated at Tue Jan 20 06:07:16 2026 by rpki-client