This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sKs9e3A_YkjXEC2v3ilRUv8ZhFA.roa File: sKs9e3A_YkjXEC2v3ilRUv8ZhFA.roa (raw, json) Hash identifier: 4ChptaClTqgYhA9XW8h91k37cOjssUh4EOUH9zOOgdA= Subject key identifier: B0:AB:3D:7B:70:3F:62:48:D7:10:2D:AF:DE:29:51:52:FF:19:84:50 Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB79019ADA4908648666A022D0B627 Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sKs9e3A_YkjXEC2v3ilRUv8ZhFA.roa Signing time: Fri 02 Jan 2026 08:20:45 +0000 ROA not before: Fri 02 Jan 2026 08:20:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203004 IP address blocks: 195.80.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:79:01:9a:da:49:08:64:86:66:a0:22:d0:b6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0ab3d7b703f6248d7102dafde295152ff198450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0e:4f:c7:79:45:c2:db:6a:c0:e7:19:bc:c9: a9:60:90:9b:26:32:fc:d4:6e:b6:02:7b:91:9f:ff: 3f:e8:e1:4c:e1:3b:ad:02:f7:dd:74:7c:6b:40:6e: 51:d8:27:52:99:9c:23:74:67:8b:c6:34:87:11:45: ed:58:31:c3:8f:9e:d6:8b:ac:55:59:86:3f:00:16: 9b:6e:8b:41:81:85:69:02:33:b1:3a:17:53:ae:b3: 3b:c5:c6:56:b6:57:c6:f1:d2:72:d1:24:f7:f0:ee: b5:f4:1d:ae:28:77:cb:68:b8:13:8a:ae:2f:4a:8d: 56:5b:f5:70:1e:27:05:5c:39:e0:db:33:38:78:ee: e4:64:25:48:c7:e0:05:61:38:33:58:55:12:db:f0: 53:44:7d:5a:e1:5b:6e:88:1a:cd:1e:57:87:4b:f5: da:bb:5d:80:83:57:5c:2d:db:57:bd:2d:ce:de:46: d3:35:67:bf:93:b8:a1:2e:2f:9e:91:a3:19:80:a3: 3a:74:18:86:10:2e:f3:f3:b1:64:27:ce:82:4e:c2: 2d:79:74:66:84:05:f4:7c:38:16:e9:43:f5:1c:5f: ca:dd:ab:90:a3:12:18:86:41:64:37:a7:fd:7a:8a: 1c:eb:b3:bc:48:9c:c0:9d:f2:0d:72:27:c9:ff:8c: 8c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:AB:3D:7B:70:3F:62:48:D7:10:2D:AF:DE:29:51:52:FF:19:84:50 X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/sKs9e3A_YkjXEC2v3ilRUv8ZhFA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.80.238.0/24 Signature Algorithm: sha256WithRSAEncryption 22:df:d2:28:86:7b:01:a7:18:ab:84:a1:db:2c:bb:c2:f7:cb: ab:5e:3d:08:45:da:66:a9:be:9f:6c:d1:b7:c3:31:75:51:e2: 05:c3:c4:99:d4:9c:60:1c:ae:74:f7:1b:69:c4:f0:c6:4b:4a: 76:55:0e:7f:34:19:10:9e:00:82:31:96:f2:dc:78:5c:bb:83: 2a:42:2d:e4:54:7a:69:71:54:46:62:d1:01:44:02:94:cc:2d: 74:70:9a:16:4d:b8:bd:d6:c6:e6:8e:9e:32:f5:57:58:ac:02: d0:46:dc:2e:4f:55:c7:98:94:0b:a4:7d:69:2a:d7:8a:b0:c8: 49:64:93:db:9d:62:35:18:47:84:4e:5e:60:50:8f:9c:51:cc: 67:2f:e4:50:0e:ad:ac:ee:a7:12:23:ca:c2:83:cf:58:0e:f4: 78:d3:b6:ed:e8:08:bc:e6:2b:f2:d5:b1:f4:ac:8c:aa:28:7a: dd:55:87:c1:cf:37:8f:4f:88:3e:97:20:34:c3:3e:74:9b:e5: 31:6e:dc:85:94:46:1b:ff:a1:6b:c3:39:58:9a:29:55:a1:01: d9:c0:17:71:9d:d1:e4:fd:a0:60:81:83:8d:0d:20:f1:03:d5: 32:bb:cb:40:8a:ac:c2:7c:e2:ef:de:ec:59:99:37:29:eb:70: e2:23:65:66 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y3kBmtpJCGSGZqAi0LYnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGFiM2Q3YjcwM2Y2MjQ4ZDcxMDJkYWZkZTI5NTE1MmZmMTk4NDUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmg5Px3lFwttqwOcZvMmpYJCbJjL8 1G62AnuRn/8/6OFM4TutAvfddHxrQG5R2CdSmZwjdGeLxjSHEUXtWDHDj57Wi6xV WYY/ABabbotBgYVpAjOxOhdTrrM7xcZWtlfG8dJy0ST38O619B2uKHfLaLgTiq4v So1WW/VwHicFXDng2zM4eO7kZCVIx+AFYTgzWFUS2/BTRH1a4VtuiBrNHleHS/Xa u12Ag1dcLdtXvS3O3kbTNWe/k7ihLi+ekaMZgKM6dBiGEC7z87FkJ86CTsIteXRm hAX0fDgW6UP1HF/K3auQoxIYhkFkN6f9eooc67O8SJzAnfINcifJ/4yMMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLCrPXtwP2JI1xAtr94pUVL/GYRQMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvc0tzOWUzQV9Za2pYRUMydjNpbFJVdjhaaEZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1DuMA0G CSqGSIb3DQEBCwUAA4IBAQAi39IohnsBpxirhKHbLLvC98urXj0IRdpmqb6fbNG3 wzF1UeIFw8SZ1JxgHK509xtpxPDGS0p2VQ5/NBkQngCCMZby3Hhcu4MqQi3kVHpp cVRGYtEBRAKUzC10cJoWTbi91sbmjp4y9VdYrALQRtwuT1XHmJQLpH1pKteKsMhJ ZJPbnWI1GEeETl5gUI+cUcxnL+RQDq2s7qcSI8rCg89YDvR407bt6Ai85ivy1bH0 rIyqKHrdVYfBzzePT4g+lyA0wz50m+UxbtyFlEYb/6FrwzlYmilVoQHZwBdxndHk /aBggYONDSDxA9Uyu8tAiqzCfOLv3uxZmTcp63DiI2Vm -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:13 2026 by rpki-client