This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/b9bda3-b611-4338-bbe8-a7dd16343297/1/iV4TEXZQGdAAaWWF18D6iGDTgkU.roa File: iV4TEXZQGdAAaWWF18D6iGDTgkU.roa (raw, json) Hash identifier: 8qmQo/R70e8QrQGIHQoR59I934fzerQsOqLOaPFw/WU= Subject key identifier: 89:5E:13:11:76:50:19:D0:00:69:65:85:D7:C0:FA:88:60:D3:82:45 Certificate issuer: /CN=a4a015b2d3d3e909b602f9fdd4f6f6f618873c58 Certificate serial: 019B783557025B478C414F788B0C9B1D210E Authority key identifier: A4:A0:15:B2:D3:D3:E9:09:B6:02:F9:FD:D4:F6:F6:F6:18:87:3C:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKAVstPT6Qm2Avn91Pb29hiHPFg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/b9bda3-b611-4338-bbe8-a7dd16343297/1/iV4TEXZQGdAAaWWF18D6iGDTgkU.roa Signing time: Thu 01 Jan 2026 06:18:40 +0000 ROA not before: Thu 01 Jan 2026 06:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31424 IP address blocks: 193.17.194.0/24 maxlen: 24 195.191.132.0/23 maxlen: 23 2001:67c:358::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/b9bda3-b611-4338-bbe8-a7dd16343297/1/pKAVstPT6Qm2Avn91Pb29hiHPFg.crl rsync://rpki.ripe.net/repository/DEFAULT/91/b9bda3-b611-4338-bbe8-a7dd16343297/1/pKAVstPT6Qm2Avn91Pb29hiHPFg.mft rsync://rpki.ripe.net/repository/DEFAULT/pKAVstPT6Qm2Avn91Pb29hiHPFg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:57:02:5b:47:8c:41:4f:78:8b:0c:9b:1d:21:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4a015b2d3d3e909b602f9fdd4f6f6f618873c58 Validity Not Before: Jan 1 06:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=895e1311765019d000696585d7c0fa8860d38245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d5:77:b5:59:f0:d2:16:f3:21:b3:d6:23:c9: a7:a1:88:8d:0d:52:b4:d3:ef:c1:38:3a:ae:13:c9: 61:da:e8:26:46:11:ba:6a:bb:15:df:a5:11:07:47: 92:d7:35:3e:54:8a:86:0f:73:6d:73:1e:6a:a8:68: 1b:fa:f7:ca:43:6d:ff:3b:4e:4a:8d:64:ce:ff:ad: df:84:95:ee:8f:d5:c1:33:1d:26:8e:11:9d:de:cd: 72:27:e6:bb:82:cd:99:9f:f2:0a:f2:bb:fb:2f:f4: ec:cf:81:46:b2:f4:01:d4:43:f9:e9:ef:b0:9d:c8: 3c:06:43:e7:84:d1:74:86:84:4a:18:b3:34:66:d8: d8:8f:44:3b:c0:be:37:52:f7:0d:ef:24:47:14:e5: 29:6f:66:f6:30:d0:ac:85:c6:d7:9a:f2:ae:88:35: 00:f6:ca:00:2a:a7:e9:1f:5d:08:4b:c2:2f:fa:b4: 06:ef:b5:15:64:cd:b7:59:e1:7e:a2:d3:a1:29:75: ea:4c:8a:76:87:ce:dc:bb:60:df:e5:14:14:78:2d: f0:00:b6:64:f0:19:a9:61:38:09:f9:1a:77:e5:10: f8:14:0b:f0:fc:0c:58:48:fa:58:3f:1a:4f:da:2a: 90:ad:83:84:3c:78:ff:c2:9b:43:75:e4:3a:6f:c2: 37:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:5E:13:11:76:50:19:D0:00:69:65:85:D7:C0:FA:88:60:D3:82:45 X509v3 Authority Key Identifier: keyid:A4:A0:15:B2:D3:D3:E9:09:B6:02:F9:FD:D4:F6:F6:F6:18:87:3C:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKAVstPT6Qm2Avn91Pb29hiHPFg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b9bda3-b611-4338-bbe8-a7dd16343297/1/iV4TEXZQGdAAaWWF18D6iGDTgkU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/b9bda3-b611-4338-bbe8-a7dd16343297/1/pKAVstPT6Qm2Avn91Pb29hiHPFg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.194.0/24 195.191.132.0/23 IPv6: 2001:67c:358::/48 Signature Algorithm: sha256WithRSAEncryption 12:f8:6d:b8:81:6a:41:60:ae:58:65:66:f6:28:7e:dd:f2:4b: db:30:55:d0:f3:a3:2d:ee:48:0d:bb:c8:64:a7:c5:08:6c:3a: 90:5e:2c:bb:8f:7e:82:fc:f5:12:d1:66:15:ed:15:ba:38:d7: 30:dd:89:7f:e7:11:cc:4f:2a:97:8b:14:f6:52:f5:c2:96:c3: 99:2c:98:58:be:25:7e:a2:0e:20:02:29:51:0a:0c:08:a4:a2: 4c:a1:f8:e5:6c:7d:ec:1e:00:62:b0:73:13:ea:39:e0:21:27: f8:e2:2f:24:a1:f5:3c:14:cc:c7:39:28:bf:54:98:ce:56:26: b7:de:34:ef:07:b7:ce:da:5e:88:19:54:43:40:b2:1b:f7:18: 22:3b:52:0b:dc:22:09:a6:72:63:54:ad:c0:d8:4f:82:6d:bf: 84:0d:a8:d7:f2:79:75:f0:58:0c:2d:02:ec:ab:10:1d:1f:79: 16:5c:a6:f8:b4:cf:12:1a:5d:86:04:1d:cc:bd:aa:8c:81:6c: 99:ac:91:ea:cb:d0:ca:09:7b:ca:ec:e0:4f:96:01:80:7d:80: 26:af:f5:7c:ea:d0:2e:92:d0:44:7a:ad:b7:5e:01:9c:38:32: 04:fa:3c:57:62:95:90:62:dd:f1:49:12:1d:dc:1b:b3:69:ad: cf:d5:46:ba -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt4NVcCW0eMQU94iwybHSEOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0YTAxNWIyZDNkM2U5MDliNjAyZjlmZGQ0ZjZmNmY2MTg4 NzNjNTgwHhcNMjYwMTAxMDYxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTVlMTMxMTc2NTAxOWQwMDA2OTY1ODVkN2MwZmE4ODYwZDM4MjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtV3tVnw0hbzIbPWI8mnoYiNDVK0 0+/BODquE8lh2ugmRhG6arsV36URB0eS1zU+VIqGD3Ntcx5qqGgb+vfKQ23/O05K jWTO/63fhJXuj9XBMx0mjhGd3s1yJ+a7gs2Zn/IK8rv7L/Tsz4FGsvQB1EP56e+w ncg8BkPnhNF0hoRKGLM0ZtjYj0Q7wL43UvcN7yRHFOUpb2b2MNCshcbXmvKuiDUA 9soAKqfpH10IS8Iv+rQG77UVZM23WeF+otOhKXXqTIp2h87cu2Df5RQUeC3wALZk 8BmpYTgJ+Rp35RD4FAvw/AxYSPpYPxpP2iqQrYOEPHj/wptDdeQ6b8I3eQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFIleExF2UBnQAGllhdfA+ohg04JFMB8GA1UdIwQY MBaAFKSgFbLT0+kJtgL5/dT29vYYhzxYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEtBVnN0UFQ2UW0yQXZuOTFQYjI5aGlIUEZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9iOWJkYTMtYjYxMS00MzM4LWJiZTgt YTdkZDE2MzQzMjk3LzEvaVY0VEVYWlFHZEFBYVdXRjE4RDZpR0RUZ2tVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS9iOWJkYTMtYjYxMS00MzM4LWJiZTgtYTdkZDE2MzQzMjk3 LzEvcEtBVnN0UFQ2UW0yQXZuOTFQYjI5aGlIUEZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQAwRHCAwQB w7+EMA8EAgACMAkDBwAgAQZ8A1gwDQYJKoZIhvcNAQELBQADggEBABL4bbiBakFg rlhlZvYoft3yS9swVdDzoy3uSA27yGSnxQhsOpBeLLuPfoL89RLRZhXtFbo41zDd iX/nEcxPKpeLFPZS9cKWw5ksmFi+JX6iDiACKVEKDAikokyh+OVsfeweAGKwcxPq OeAhJ/jiLySh9TwUzMc5KL9UmM5WJrfeNO8Ht87aXogZVENAshv3GCI7UgvcIgmm cmNUrcDYT4Jtv4QNqNfyeXXwWAwtAuyrEB0feRZcpvi0zxIaXYYEHcy9qoyBbJms kerL0MoJe8rs4E+WAYB9gCav9Xzq0C6S0ER6rbdeAZw4MgT6PFdilZBi3fFJEh3c G7Nprc/VRro= -----END CERTIFICATE-----Generated at Mon Jan 26 07:57:36 2026 by rpki-client