This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/91fdb3-13e2-42b2-ac73-1a55d1e4c21c/1/tOX7dyIThoDN1xaTAaaJqMi__Vw.roa File: tOX7dyIThoDN1xaTAaaJqMi__Vw.roa (raw, json) Hash identifier: k4fTptzT7qrxypPu30EJnb+ns+ku02IYmPLr0kX7y1U= Subject key identifier: B4:E5:FB:77:22:13:86:80:CD:D7:16:93:01:A6:89:A8:C8:BF:FD:5C Certificate issuer: /CN=54158203da3a1e96318e85043411e7d4d03d4c44 Certificate serial: 019B78A25BDC4349FEFB0B870956FB37230C Authority key identifier: 54:15:82:03:DA:3A:1E:96:31:8E:85:04:34:11:E7:D4:D0:3D:4C:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBWCA9o6HpYxjoUENBHn1NA9TEQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/91fdb3-13e2-42b2-ac73-1a55d1e4c21c/1/tOX7dyIThoDN1xaTAaaJqMi__Vw.roa Signing time: Thu 01 Jan 2026 08:17:44 +0000 ROA not before: Thu 01 Jan 2026 08:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24951 IP address blocks: 193.8.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/91fdb3-13e2-42b2-ac73-1a55d1e4c21c/1/VBWCA9o6HpYxjoUENBHn1NA9TEQ.crl rsync://rpki.ripe.net/repository/DEFAULT/51/91fdb3-13e2-42b2-ac73-1a55d1e4c21c/1/VBWCA9o6HpYxjoUENBHn1NA9TEQ.mft rsync://rpki.ripe.net/repository/DEFAULT/VBWCA9o6HpYxjoUENBHn1NA9TEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:5b:dc:43:49:fe:fb:0b:87:09:56:fb:37:23:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=54158203da3a1e96318e85043411e7d4d03d4c44 Validity Not Before: Jan 1 08:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4e5fb7722138680cdd7169301a689a8c8bffd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e6:ba:cf:17:d6:e6:0c:b5:b5:3c:d4:be:45: b8:e5:d7:00:c7:e5:75:61:43:5f:c4:3d:3b:22:46: 0e:82:99:c8:9a:08:80:f1:05:89:d3:32:dd:85:3e: 57:b6:5a:24:a7:a6:4b:96:42:e1:6d:ce:09:d3:ef: df:40:7f:22:67:eb:9e:d6:00:a3:07:ad:f6:d1:04: 26:44:ee:dd:62:63:20:ed:8c:0d:94:42:9d:00:67: 93:57:bb:a4:cf:cb:fc:97:bc:6f:da:11:99:90:20: 52:6f:6b:95:f3:23:e8:7f:68:02:78:89:8a:14:09: 73:23:93:25:ae:a0:09:9f:0b:38:83:19:1a:13:18: 5e:f1:99:c7:59:09:ff:e0:cf:b2:19:d2:bf:4c:a9: c7:2b:00:68:6f:7e:78:d2:12:83:ba:de:1c:d0:b6: 27:8e:2d:4d:14:60:0c:8c:1f:47:47:bd:a7:52:ff: c4:3e:aa:bf:29:f6:fd:5d:82:dc:a7:dd:85:4b:9b: ba:02:ca:43:44:aa:f8:da:81:9d:d9:af:f5:26:36: 06:b1:33:ac:59:11:64:56:37:33:73:31:3b:57:d9: c7:ef:f0:01:f7:1e:42:33:26:c7:88:d3:99:a9:c0: 78:d9:79:b0:94:ae:eb:46:79:ad:72:3b:33:f7:0c: c0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E5:FB:77:22:13:86:80:CD:D7:16:93:01:A6:89:A8:C8:BF:FD:5C X509v3 Authority Key Identifier: keyid:54:15:82:03:DA:3A:1E:96:31:8E:85:04:34:11:E7:D4:D0:3D:4C:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBWCA9o6HpYxjoUENBHn1NA9TEQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/91fdb3-13e2-42b2-ac73-1a55d1e4c21c/1/tOX7dyIThoDN1xaTAaaJqMi__Vw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/91fdb3-13e2-42b2-ac73-1a55d1e4c21c/1/VBWCA9o6HpYxjoUENBHn1NA9TEQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.8.132.0/22 Signature Algorithm: sha256WithRSAEncryption a3:dc:fe:97:f7:ae:37:4c:83:d3:bb:ae:71:6d:99:0d:3e:42: 2f:cf:4f:72:8f:96:fe:0c:b2:ff:85:f2:49:24:5c:ea:d9:21: 10:5f:5c:98:e0:3c:ef:f2:d1:a1:5d:ba:15:ba:f7:2f:7d:76: 92:a3:6e:ba:88:d0:c6:6a:88:90:54:f6:df:45:d4:a5:82:1b: e2:aa:84:d1:12:cf:75:91:79:c8:9a:62:1e:4f:bb:2a:64:7d: b5:5e:6c:bd:dd:41:22:fe:cc:0c:34:fc:38:26:72:b8:c5:d2: eb:bd:66:5b:9c:6b:0f:cb:1c:00:76:4b:f7:52:53:5d:45:e3: 95:28:a8:9d:83:5f:8e:23:71:06:7b:22:ff:09:0a:31:47:c5: 61:bc:7b:fe:19:7d:99:c8:d8:60:50:7f:fc:4e:5c:76:d0:39: c1:d3:47:08:c2:3c:e5:b3:23:14:91:7f:02:d5:3a:f1:dd:50: c8:e0:86:95:7a:0a:40:f5:b6:e9:b0:7d:4f:76:f5:da:5e:e0: d9:3f:32:f7:94:1e:d9:1b:75:ac:ac:79:b8:40:2a:06:b1:be: 2e:ca:59:bb:ad:f3:e4:3f:2e:39:1c:0b:d4:bc:70:d8:19:88: b6:c1:7a:fb:44:31:11:e3:4f:1e:a5:a0:0d:fe:84:01:8a:25: 86:bb:94:eb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4olvcQ0n++wuHCVb7NyMMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0MTU4MjAzZGEzYTFlOTYzMThlODUwNDM0MTFlN2Q0ZDAz ZDRjNDQwHhcNMjYwMTAxMDgxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGU1ZmI3NzIyMTM4NjgwY2RkNzE2OTMwMWE2ODlhOGM4YmZmZDVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApua6zxfW5gy1tTzUvkW45dcAx+V1 YUNfxD07IkYOgpnImgiA8QWJ0zLdhT5Xtlokp6ZLlkLhbc4J0+/fQH8iZ+ue1gCj B6320QQmRO7dYmMg7YwNlEKdAGeTV7ukz8v8l7xv2hGZkCBSb2uV8yPof2gCeImK FAlzI5MlrqAJnws4gxkaExhe8ZnHWQn/4M+yGdK/TKnHKwBob3540hKDut4c0LYn ji1NFGAMjB9HR72nUv/EPqq/Kfb9XYLcp92FS5u6AspDRKr42oGd2a/1JjYGsTOs WRFkVjczczE7V9nH7/AB9x5CMybHiNOZqcB42XmwlK7rRnmtcjsz9wzAyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLTl+3ciE4aAzdcWkwGmiajIv/1cMB8GA1UdIwQY MBaAFFQVggPaOh6WMY6FBDQR59TQPUxEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkJXQ0E5bzZIcFl4am9VRU5CSG4xTkE5VEVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS85MWZkYjMtMTNlMi00MmIyLWFjNzMt MWE1NWQxZTRjMjFjLzEvdE9YN2R5SVRob0ROMXhhVEFhYUpxTWlfX1Z3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS85MWZkYjMtMTNlMi00MmIyLWFjNzMtMWE1NWQxZTRjMjFj LzEvVkJXQ0E5bzZIcFl4am9VRU5CSG4xTkE5VEVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwQiEMA0G CSqGSIb3DQEBCwUAA4IBAQCj3P6X9643TIPTu65xbZkNPkIvz09yj5b+DLL/hfJJ JFzq2SEQX1yY4Dzv8tGhXboVuvcvfXaSo266iNDGaoiQVPbfRdSlghviqoTREs91 kXnImmIeT7sqZH21Xmy93UEi/swMNPw4JnK4xdLrvWZbnGsPyxwAdkv3UlNdReOV KKidg1+OI3EGeyL/CQoxR8VhvHv+GX2ZyNhgUH/8Tlx20DnB00cIwjzlsyMUkX8C 1Trx3VDI4IaVegpA9bbpsH1PdvXaXuDZPzL3lB7ZG3WsrHm4QCoGsb4uylm7rfPk Py45HAvUvHDYGYi2wXr7RDER408epaAN/oQBiiWGu5Tr -----END CERTIFICATE-----Generated at Mon Feb 9 22:57:54 2026 by rpki-client