This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/JTQp6yJ4aQq8jb8AlnG_qqNfzxc.roa File: JTQp6yJ4aQq8jb8AlnG_qqNfzxc.roa (raw, json) Hash identifier: UOuakYUOpXbIZx8SsJ7cpP08RS5fViWIwWu2p4Ku/jI= Subject key identifier: 25:34:29:EB:22:78:69:0A:BC:8D:BF:00:96:71:BF:AA:A3:5F:CF:17 Certificate issuer: /CN=522399c2789b1a5504f81671cff220c04eaf59f1 Certificate serial: 019B77C6FDDB8589EA831CD2D50CB7DE6E89 Authority key identifier: 52:23:99:C2:78:9B:1A:55:04:F8:16:71:CF:F2:20:C0:4E:AF:59:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UiOZwnibGlUE-BZxz_IgwE6vWfE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/JTQp6yJ4aQq8jb8AlnG_qqNfzxc.roa Signing time: Thu 01 Jan 2026 04:18:08 +0000 ROA not before: Thu 01 Jan 2026 04:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43216 IP address blocks: 195.238.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/UiOZwnibGlUE-BZxz_IgwE6vWfE.crl rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/UiOZwnibGlUE-BZxz_IgwE6vWfE.mft rsync://rpki.ripe.net/repository/DEFAULT/UiOZwnibGlUE-BZxz_IgwE6vWfE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:fd:db:85:89:ea:83:1c:d2:d5:0c:b7:de:6e:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=522399c2789b1a5504f81671cff220c04eaf59f1 Validity Not Before: Jan 1 04:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=253429eb2278690abc8dbf009671bfaaa35fcf17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:15:a8:59:9e:57:d4:98:57:07:6c:98:bd:e0: aa:e8:73:23:b0:05:b0:d3:1d:30:0c:ab:6b:37:d9: 14:c7:7e:11:d4:e6:86:af:af:0f:d7:db:7a:8b:bd: 94:fc:cf:3e:ed:b7:b9:f0:1d:74:03:7a:00:80:f8: 55:0a:64:03:97:ff:83:78:75:74:9a:97:76:bc:de: a9:e6:2b:71:f5:6c:49:c4:10:44:ef:6d:48:c7:46: f1:cd:0b:34:20:e8:44:9f:57:f4:34:5b:ce:67:dc: 9a:d6:d7:a4:dc:7f:5a:f2:2d:c2:1e:9f:dc:4d:b6: 0c:c8:22:48:dc:0c:64:41:b9:3c:35:35:36:22:72: c0:0d:fd:6e:66:fa:62:13:47:44:d7:2e:d6:e4:b3: b3:2e:74:88:fe:42:fb:64:fb:45:60:e7:79:71:94: f9:34:51:7c:8e:f1:0d:8a:80:5e:90:18:4f:fe:08: d7:1a:ae:02:ba:3f:1a:5f:0f:e5:ca:03:7f:d1:1e: 9e:f1:99:d9:24:64:d5:39:17:38:1b:ab:e1:91:2c: 79:76:fd:1e:d0:99:e9:6f:98:0c:fa:f9:2c:56:e1: 79:98:bf:e5:ec:06:05:5a:3c:95:0f:a4:39:2f:dd: b4:f5:28:74:24:51:e3:10:0b:2f:72:5b:a2:f1:19: d7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:34:29:EB:22:78:69:0A:BC:8D:BF:00:96:71:BF:AA:A3:5F:CF:17 X509v3 Authority Key Identifier: keyid:52:23:99:C2:78:9B:1A:55:04:F8:16:71:CF:F2:20:C0:4E:AF:59:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UiOZwnibGlUE-BZxz_IgwE6vWfE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/JTQp6yJ4aQq8jb8AlnG_qqNfzxc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/22d011-ed42-4d14-a670-d5d51d37949d/1/UiOZwnibGlUE-BZxz_IgwE6vWfE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.238.252.0/24 Signature Algorithm: sha256WithRSAEncryption 59:29:85:4e:07:9b:9c:72:de:43:79:89:79:c1:3f:d1:4f:88: a4:1b:13:31:2f:77:6c:4e:92:d9:e5:01:68:6f:82:1e:a1:b1: 6a:b7:a8:99:30:35:bc:f2:a6:55:e6:94:0f:3d:27:46:8b:2a: 71:fd:56:28:c7:6a:66:14:5c:00:83:0a:38:1b:68:60:4f:1f: 7e:11:3d:f9:91:c4:6b:0b:91:58:4f:1a:c4:c2:90:ca:a1:9b: ef:d4:8e:72:f4:2c:b7:9d:49:59:1a:65:c7:ca:03:62:26:1b: f2:8e:c7:9c:c3:52:bf:f3:c1:7e:f7:46:1f:90:a3:5e:03:ba: 0c:f9:e7:58:5c:96:bf:15:58:4b:65:3b:7b:3e:a4:31:ab:1c: 49:6e:d1:d4:ad:f5:2f:be:85:e7:dc:2f:e1:76:68:1d:39:71: d3:92:6c:64:08:71:dd:bc:23:fc:89:16:00:6b:26:43:41:3d: 3f:7d:7c:9f:7b:cf:6a:8e:07:59:59:8a:70:7c:0e:d1:50:ae: 89:1d:1c:d4:25:a9:39:fd:16:4f:a6:33:ed:a6:8d:a0:18:14: 4d:1d:61:e6:55:3d:a3:91:f6:06:58:9d:f6:d0:35:e5:31:dd: 2c:ed:22:da:dd:29:23:6e:e9:a0:c3:bb:17:f0:3b:77:e1:32: 6b:98:78:7a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xv3bhYnqgxzS1Qy33m6JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyMjM5OWMyNzg5YjFhNTUwNGY4MTY3MWNmZjIyMGMwNGVh ZjU5ZjEwHhcNMjYwMTAxMDQxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTM0MjllYjIyNzg2OTBhYmM4ZGJmMDA5NjcxYmZhYWEzNWZjZjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBWoWZ5X1JhXB2yYveCq6HMjsAWw 0x0wDKtrN9kUx34R1OaGr68P19t6i72U/M8+7be58B10A3oAgPhVCmQDl/+DeHV0 mpd2vN6p5itx9WxJxBBE721Ix0bxzQs0IOhEn1f0NFvOZ9ya1tek3H9a8i3CHp/c TbYMyCJI3AxkQbk8NTU2InLADf1uZvpiE0dE1y7W5LOzLnSI/kL7ZPtFYOd5cZT5 NFF8jvENioBekBhP/gjXGq4Cuj8aXw/lygN/0R6e8ZnZJGTVORc4G6vhkSx5dv0e 0Jnpb5gM+vksVuF5mL/l7AYFWjyVD6Q5L9209Sh0JFHjEAsvclui8RnXFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCU0KesieGkKvI2/AJZxv6qjX88XMB8GA1UdIwQY MBaAFFIjmcJ4mxpVBPgWcc/yIMBOr1nxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVWlPWnduaWJHbFVFLUJaeHpfSWd3RTZ2V2ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8yMmQwMTEtZWQ0Mi00ZDE0LWE2NzAt ZDVkNTFkMzc5NDlkLzEvSlRRcDZ5SjRhUXE4amI4QWxuR19xcU5menhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83ZC8yMmQwMTEtZWQ0Mi00ZDE0LWE2NzAtZDVkNTFkMzc5NDlk LzEvVWlPWnduaWJHbFVFLUJaeHpfSWd3RTZ2V2ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw+78MA0G CSqGSIb3DQEBCwUAA4IBAQBZKYVOB5ucct5DeYl5wT/RT4ikGxMxL3dsTpLZ5QFo b4IeobFqt6iZMDW88qZV5pQPPSdGiypx/VYox2pmFFwAgwo4G2hgTx9+ET35kcRr C5FYTxrEwpDKoZvv1I5y9Cy3nUlZGmXHygNiJhvyjsecw1K/88F+90YfkKNeA7oM +edYXJa/FVhLZTt7PqQxqxxJbtHUrfUvvoXn3C/hdmgdOXHTkmxkCHHdvCP8iRYA ayZDQT0/fXyfe89qjgdZWYpwfA7RUK6JHRzUJak5/RZPpjPtpo2gGBRNHWHmVT2j kfYGWJ320DXlMd0s7SLa3Skjbumgw7sX8Dt34TJrmHh6 -----END CERTIFICATE-----Generated at Mon Feb 9 20:03:24 2026 by rpki-client