This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/a19e7e-b5b4-44f7-b937-0da6dc2c782c/1/onU8z40HzXbnWY9IaUiQLwKDFGU.roa File: onU8z40HzXbnWY9IaUiQLwKDFGU.roa (raw, json) Hash identifier: JmAau5mAfXMJlxpYOlZN7re/iLo9qI2ZxQ8BfJtKX+k= Subject key identifier: A2:75:3C:CF:8D:07:CD:76:E7:59:8F:48:69:48:90:2F:02:83:14:65 Certificate issuer: /CN=43e65136838668e35dd552ef0c21fbe9abed139b Certificate serial: 019B76EAACB77B28D62947D51A8AB16AB5FC Authority key identifier: 43:E6:51:36:83:86:68:E3:5D:D5:52:EF:0C:21:FB:E9:AB:ED:13:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q-ZRNoOGaONd1VLvDCH76avtE5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/a19e7e-b5b4-44f7-b937-0da6dc2c782c/1/onU8z40HzXbnWY9IaUiQLwKDFGU.roa Signing time: Thu 01 Jan 2026 00:17:29 +0000 ROA not before: Thu 01 Jan 2026 00:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30841 IP address blocks: 193.22.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/a19e7e-b5b4-44f7-b937-0da6dc2c782c/1/Q-ZRNoOGaONd1VLvDCH76avtE5s.crl rsync://rpki.ripe.net/repository/DEFAULT/57/a19e7e-b5b4-44f7-b937-0da6dc2c782c/1/Q-ZRNoOGaONd1VLvDCH76avtE5s.mft rsync://rpki.ripe.net/repository/DEFAULT/Q-ZRNoOGaONd1VLvDCH76avtE5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:ac:b7:7b:28:d6:29:47:d5:1a:8a:b1:6a:b5:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43e65136838668e35dd552ef0c21fbe9abed139b Validity Not Before: Jan 1 00:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2753ccf8d07cd76e7598f486948902f02831465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:31:b0:31:c3:38:7c:8e:b4:c0:12:91:e2:00: db:7b:60:cc:7d:71:bd:04:ff:97:33:b5:ba:40:8f: b1:12:17:52:a2:3d:c4:90:32:16:21:e5:9d:be:2f: 58:32:0b:01:cc:5b:22:d7:a6:a6:b0:5a:30:03:63: c1:9a:d7:8e:d5:cb:48:ea:98:4b:5c:a7:40:14:24: 72:3a:06:ee:f7:10:c9:bf:dd:de:e6:a8:6c:62:97: 75:97:fc:35:1e:46:8a:b2:64:85:7b:98:91:ef:12: 90:75:2a:89:91:5b:e5:83:13:8e:7f:2b:cf:f8:f7: 59:f3:10:7a:6f:57:f5:76:2d:e5:fe:43:75:d2:19: 64:5b:2a:5d:9f:e9:4e:0f:ee:55:f7:3d:43:00:b3: 7a:c0:3e:94:92:8e:1c:4c:96:8a:3b:de:85:5b:3c: 65:bf:51:89:76:e4:c1:bf:dd:d4:5c:ac:22:ba:2b: f7:16:a6:c8:6d:e4:03:ad:48:3c:20:7b:e3:9e:a5: 72:2f:8a:4e:e6:c2:45:14:42:82:09:b1:de:13:e3: 98:d3:d6:df:68:fc:93:49:13:1f:1e:5a:a8:94:ef: e1:8a:17:b5:d6:cd:65:ab:07:fe:45:ba:71:b5:7e: f9:68:5d:4e:40:48:08:c5:0a:b1:f4:4e:04:eb:73: 56:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:75:3C:CF:8D:07:CD:76:E7:59:8F:48:69:48:90:2F:02:83:14:65 X509v3 Authority Key Identifier: keyid:43:E6:51:36:83:86:68:E3:5D:D5:52:EF:0C:21:FB:E9:AB:ED:13:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q-ZRNoOGaONd1VLvDCH76avtE5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a19e7e-b5b4-44f7-b937-0da6dc2c782c/1/onU8z40HzXbnWY9IaUiQLwKDFGU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a19e7e-b5b4-44f7-b937-0da6dc2c782c/1/Q-ZRNoOGaONd1VLvDCH76avtE5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.22.31.0/24 Signature Algorithm: sha256WithRSAEncryption 47:47:82:79:10:94:00:cf:e5:f7:a2:57:b2:ac:bd:3b:50:e2: a3:08:18:70:f8:28:2c:41:70:6c:9b:3b:03:00:40:ce:25:d8: c4:82:e5:13:18:5e:02:bd:31:8c:ea:bd:de:58:2f:74:4e:70: 21:c1:1d:92:bc:31:5c:84:a8:5d:75:ad:93:a0:23:c6:9c:20: d8:39:c4:e8:a5:b2:fa:ca:51:4a:6d:97:d9:29:ea:67:97:80: 34:0f:06:7e:26:e8:aa:6f:c1:5a:c7:5d:d8:eb:8b:a2:f6:f2: 9f:bb:69:77:1e:4c:2f:ab:b0:16:59:e3:94:ae:ae:76:1c:46: 71:dd:e1:53:31:27:7c:de:84:77:68:8e:9c:7f:65:b9:88:d1: 27:a3:8f:d3:eb:d9:d4:fe:e8:f7:a1:a9:54:53:dd:1e:65:a3: 0a:87:3f:2e:5c:7a:aa:c6:29:9f:7a:01:ea:a2:5f:54:e7:8b: 51:ab:25:4d:56:ac:b3:ac:97:1f:26:3b:99:7b:dc:1a:93:53: 3d:1e:65:45:6a:c1:c9:b4:4a:a6:1d:cc:89:b4:c4:8d:ec:0e: bc:5f:3c:55:b5:5c:ab:9e:14:08:68:a0:19:17:e1:01:19:6c: 75:76:de:ac:d4:27:0e:83:65:02:eb:fc:48:c7:2f:b5:28:4b: 76:af:e7:96 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26qy3eyjWKUfVGoqxarX8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzZTY1MTM2ODM4NjY4ZTM1ZGQ1NTJlZjBjMjFmYmU5YWJl ZDEzOWIwHhcNMjYwMTAxMDAxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMjc1M2NjZjhkMDdjZDc2ZTc1OThmNDg2OTQ4OTAyZjAyODMxNDY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTGwMcM4fI60wBKR4gDbe2DMfXG9 BP+XM7W6QI+xEhdSoj3EkDIWIeWdvi9YMgsBzFsi16amsFowA2PBmteO1ctI6phL XKdAFCRyOgbu9xDJv93e5qhsYpd1l/w1HkaKsmSFe5iR7xKQdSqJkVvlgxOOfyvP +PdZ8xB6b1f1di3l/kN10hlkWypdn+lOD+5V9z1DALN6wD6Uko4cTJaKO96FWzxl v1GJduTBv93UXKwiuiv3FqbIbeQDrUg8IHvjnqVyL4pO5sJFFEKCCbHeE+OY09bf aPyTSRMfHlqolO/hihe11s1lqwf+RbpxtX75aF1OQEgIxQqx9E4E63NWUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKJ1PM+NB81251mPSGlIkC8CgxRlMB8GA1UdIwQY MBaAFEPmUTaDhmjjXdVS7wwh++mr7RObMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUS1aUk5vT0dhT05kMVZMdkRDSDc2YXZ0RTVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9hMTllN2UtYjViNC00NGY3LWI5Mzct MGRhNmRjMmM3ODJjLzEvb25VOHo0MEh6WGJuV1k5SWFVaVFMd0tERkdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny9hMTllN2UtYjViNC00NGY3LWI5MzctMGRhNmRjMmM3ODJj LzEvUS1aUk5vT0dhT05kMVZMdkRDSDc2YXZ0RTVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRYfMA0G CSqGSIb3DQEBCwUAA4IBAQBHR4J5EJQAz+X3oleyrL07UOKjCBhw+CgsQXBsmzsD AEDOJdjEguUTGF4CvTGM6r3eWC90TnAhwR2SvDFchKhdda2ToCPGnCDYOcTopbL6 ylFKbZfZKepnl4A0DwZ+Juiqb8Fax13Y64ui9vKfu2l3Hkwvq7AWWeOUrq52HEZx 3eFTMSd83oR3aI6cf2W5iNEno4/T69nU/uj3oalUU90eZaMKhz8uXHqqximfegHq ol9U54tRqyVNVqyzrJcfJjuZe9wak1M9HmVFasHJtEqmHcyJtMSN7A68XzxVtVyr nhQIaKAZF+EBGWx1dt6s1CcOg2UC6/xIxy+1KEt2r+eW -----END CERTIFICATE-----Generated at Tue Feb 10 04:15:43 2026 by rpki-client