This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/sNdU_E9AeTRcV1tQUPKaysFTZxA.roa File: sNdU_E9AeTRcV1tQUPKaysFTZxA.roa (raw, json) Hash identifier: RsVC7/l8xCsWReH4ylGowvPT0B2fPTstrTBA1NPEml0= Subject key identifier: B0:D7:54:FC:4F:40:79:34:5C:57:5B:50:50:F2:9A:CA:C1:53:67:10 Certificate issuer: /CN=66953361ff6c0083fd93d52865033319863fbc46 Certificate serial: 019B7E3923E05FC2B232D6ABCF3AB9FB2E8B Authority key identifier: 66:95:33:61:FF:6C:00:83:FD:93:D5:28:65:03:33:19:86:3F:BC:46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/sNdU_E9AeTRcV1tQUPKaysFTZxA.roa Signing time: Fri 02 Jan 2026 10:20:32 +0000 ROA not before: Fri 02 Jan 2026 10:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197883 IP address blocks: 217.197.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.crl rsync://rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.mft rsync://rpki.ripe.net/repository/DEFAULT/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:23:e0:5f:c2:b2:32:d6:ab:cf:3a:b9:fb:2e:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66953361ff6c0083fd93d52865033319863fbc46 Validity Not Before: Jan 2 10:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0d754fc4f4079345c575b5050f29acac1536710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c9:9a:77:ac:99:20:b2:83:25:85:36:e9:b7: ed:37:f9:40:e1:b6:69:fd:54:4f:d4:87:e3:17:61: 1e:54:e3:e0:fe:4e:03:f8:00:d5:66:94:96:f8:91: 30:59:a6:01:63:e0:3d:f2:c8:92:1b:5e:6d:a7:4c: 2c:9f:6c:9a:6e:2b:c0:c9:a4:17:ab:69:25:f3:45: d9:aa:bb:27:f1:d0:62:6d:27:d8:c6:12:e3:c8:23: d4:73:87:8a:6d:cc:b3:a8:eb:73:37:65:7a:52:44: b6:42:ad:79:35:a2:f5:fb:09:f2:81:76:9d:8c:b3: a5:3e:9d:e3:3d:96:43:2f:27:6c:80:c1:93:e7:f2: 0e:7d:11:79:e5:8d:77:f4:66:27:72:48:af:f1:88: 06:91:09:bf:e1:15:2c:fa:d6:4a:d3:e6:3e:b5:f9: 4b:01:1a:1e:33:d0:6c:ab:4e:59:15:32:60:a4:65: 8d:6f:3a:be:a7:74:c3:fe:5a:b9:27:3a:6e:ba:b7: 23:e7:a2:76:0e:3d:8d:ae:61:1f:d1:63:d1:e6:d5: 5e:c0:ca:d3:c0:6a:8d:c8:3d:d7:01:d5:69:01:84: a1:44:7d:a6:26:ff:0a:8f:7f:12:97:76:30:d0:3c: a5:e8:7d:e6:c8:94:c6:61:c2:9c:44:48:19:6f:d6: fa:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D7:54:FC:4F:40:79:34:5C:57:5B:50:50:F2:9A:CA:C1:53:67:10 X509v3 Authority Key Identifier: keyid:66:95:33:61:FF:6C:00:83:FD:93:D5:28:65:03:33:19:86:3F:BC:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/sNdU_E9AeTRcV1tQUPKaysFTZxA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/013526-7710-4bb0-b514-fbb7d30dce38/1/ZpUzYf9sAIP9k9UoZQMzGYY_vEY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.197.109.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:37:bf:8e:d2:44:99:03:10:e6:d5:f3:19:97:9c:bc:ab:c3: 04:58:18:22:5c:1f:33:dc:df:64:55:ca:0c:0b:32:c3:cc:01: 70:61:ca:ed:c3:1c:e1:30:e9:fd:25:8b:e1:c9:86:70:d2:a3: 16:f6:2f:8a:03:2c:ad:6c:72:01:5e:47:ab:ed:5a:2d:a3:6c: 7f:d6:97:f1:30:f5:01:54:37:35:65:4e:16:ba:85:45:63:cf: 1d:cc:96:71:8f:e5:dc:a5:ef:51:bb:9e:54:91:4d:70:12:3a: 7b:44:55:20:39:4e:9a:ec:6a:a2:fa:3e:d2:09:55:cd:ad:4f: 55:cf:ad:e7:f6:c1:a3:9d:b5:75:88:f0:59:62:24:a2:da:b3: 0c:a7:f6:ff:18:0d:33:27:5a:28:12:8b:54:cf:9f:54:c1:41: d4:61:31:7a:ab:58:b8:90:28:a6:e0:ff:d0:43:2b:07:41:f4: 9b:1e:e8:2a:db:9a:32:42:13:65:a3:24:8a:11:4d:17:3f:d7: 0c:16:49:c5:ba:e4:b6:a8:bc:e2:c6:ae:6a:25:6e:eb:2c:ee: a4:fc:31:90:4d:d9:ea:f0:be:54:c8:2e:91:0d:3b:b4:89:3c: 9a:a3:ce:cc:4f:64:8e:18:e5:5f:6b:c3:ff:d6:5b:86:06:12: 13:ee:bc:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OSPgX8KyMtarzzq5+y6LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2OTUzMzYxZmY2YzAwODNmZDkzZDUyODY1MDMzMzE5ODYz ZmJjNDYwHhcNMjYwMTAyMTAyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGQ3NTRmYzRmNDA3OTM0NWM1NzViNTA1MGYyOWFjYWMxNTM2NzEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmMmad6yZILKDJYU26bftN/lA4bZp /VRP1IfjF2EeVOPg/k4D+ADVZpSW+JEwWaYBY+A98siSG15tp0wsn2yabivAyaQX q2kl80XZqrsn8dBibSfYxhLjyCPUc4eKbcyzqOtzN2V6UkS2Qq15NaL1+wnygXad jLOlPp3jPZZDLydsgMGT5/IOfRF55Y139GYnckiv8YgGkQm/4RUs+tZK0+Y+tflL ARoeM9Bsq05ZFTJgpGWNbzq+p3TD/lq5Jzpuurcj56J2Dj2NrmEf0WPR5tVewMrT wGqNyD3XAdVpAYShRH2mJv8Kj38Sl3Yw0Dyl6H3myJTGYcKcREgZb9b6zwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLDXVPxPQHk0XFdbUFDymsrBU2cQMB8GA1UdIwQY MBaAFGaVM2H/bACD/ZPVKGUDMxmGP7xGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnBVellmOXNBSVA5azlVb1pRTXpHWVlfdkVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8wMTM1MjYtNzcxMC00YmIwLWI1MTQt ZmJiN2QzMGRjZTM4LzEvc05kVV9FOUFlVFJjVjF0UVVQS2F5c0ZUWnhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC8wMTM1MjYtNzcxMC00YmIwLWI1MTQtZmJiN2QzMGRjZTM4 LzEvWnBVellmOXNBSVA5azlVb1pRTXpHWVlfdkVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2cVtMA0G CSqGSIb3DQEBCwUAA4IBAQBaN7+O0kSZAxDm1fMZl5y8q8MEWBgiXB8z3N9kVcoM CzLDzAFwYcrtwxzhMOn9JYvhyYZw0qMW9i+KAyytbHIBXker7Voto2x/1pfxMPUB VDc1ZU4WuoVFY88dzJZxj+Xcpe9Ru55UkU1wEjp7RFUgOU6a7Gqi+j7SCVXNrU9V z63n9sGjnbV1iPBZYiSi2rMMp/b/GA0zJ1ooEotUz59UwUHUYTF6q1i4kCim4P/Q QysHQfSbHugq25oyQhNloySKEU0XP9cMFknFuuS2qLzixq5qJW7rLO6k/DGQTdnq 8L5UyC6RDTu0iTyao87MT2SOGOVfa8P/1luGBhIT7rze -----END CERTIFICATE-----Generated at Mon Feb 9 22:58:18 2026 by rpki-client