This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/22d175-c71d-4637-a090-b19ad5455bfd/1/83T4vy6w6s-NbeBOg3NKn516tgI.roa File: 83T4vy6w6s-NbeBOg3NKn516tgI.roa (raw, json) Hash identifier: sjPUQm6Zny+WJ2MxBOvr0gIX9HwjXltWJjMRmGQhU5Q= Subject key identifier: F3:74:F8:BF:2E:B0:EA:CF:8D:6D:E0:4E:83:73:4A:9F:9D:7A:B6:02 Certificate issuer: /CN=3e25ab6985f79ca9de06e98e8b9da245d8559ab6 Certificate serial: 019BF0F50E1979E59EE4052BE8234DEFA366 Authority key identifier: 3E:25:AB:69:85:F7:9C:A9:DE:06:E9:8E:8B:9D:A2:45:D8:55:9A:B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiWraYX3nKneBumOi52iRdhVmrY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/22d175-c71d-4637-a090-b19ad5455bfd/1/83T4vy6w6s-NbeBOg3NKn516tgI.roa Signing time: Sat 24 Jan 2026 17:02:30 +0000 ROA not before: Sat 24 Jan 2026 17:02:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60707 IP address blocks: 80.253.244.0/24 maxlen: 24 80.253.247.0/24 maxlen: 24 91.151.83.0/24 maxlen: 24 91.151.84.0/24 maxlen: 24 185.179.124.0/24 maxlen: 24 213.142.135.0/24 maxlen: 24 213.142.143.0/24 maxlen: 24 2a01:ed80::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/22d175-c71d-4637-a090-b19ad5455bfd/1/PiWraYX3nKneBumOi52iRdhVmrY.crl rsync://rpki.ripe.net/repository/DEFAULT/95/22d175-c71d-4637-a090-b19ad5455bfd/1/PiWraYX3nKneBumOi52iRdhVmrY.mft rsync://rpki.ripe.net/repository/DEFAULT/PiWraYX3nKneBumOi52iRdhVmrY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f0:f5:0e:19:79:e5:9e:e4:05:2b:e8:23:4d:ef:a3:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e25ab6985f79ca9de06e98e8b9da245d8559ab6 Validity Not Before: Jan 24 17:02:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f374f8bf2eb0eacf8d6de04e83734a9f9d7ab602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:81:1c:c0:78:c4:31:f0:b5:47:0a:00:98:d9: 4d:df:15:4b:b7:d4:14:ca:df:38:6d:b2:05:e7:6e: d8:48:f9:95:9d:6d:1e:0e:3d:3a:e8:1a:76:01:7b: 33:ee:55:f8:59:a6:c7:a3:3b:69:91:bf:57:57:26: 32:7c:03:c1:0c:c5:b4:88:d1:9b:67:7e:fb:d8:e0: b9:6f:52:46:fd:4a:0c:00:da:8f:17:c4:e5:d7:7b: 8a:a4:87:53:9c:6d:07:23:be:bb:cc:e3:cb:d0:3a: 53:9b:e1:dc:71:09:3d:83:c5:d9:4e:2b:a5:cc:0a: 68:7e:d6:18:a1:54:d1:4b:dc:c2:0e:df:05:f3:fa: 72:46:dd:6f:dd:4c:b9:bf:2a:7b:5e:f7:3c:c2:4c: 99:d3:17:83:d2:e9:6b:6f:12:42:ec:74:be:09:d4: 46:e0:31:86:22:46:60:01:0e:b8:1f:e5:eb:3d:68: c6:a7:3d:6b:3c:55:5f:ae:64:4e:32:9d:e7:d9:77: 56:c2:81:34:6c:56:c7:4a:c9:c0:b0:4e:e2:a1:29: 81:c3:3e:74:45:d1:79:0f:6f:36:a5:71:e7:9f:d3: 8f:cf:47:8b:fc:cb:70:cf:0b:b5:d8:9f:c3:fd:12: ea:39:78:69:22:f0:f3:02:ba:50:3b:d4:77:52:9e: 35:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:74:F8:BF:2E:B0:EA:CF:8D:6D:E0:4E:83:73:4A:9F:9D:7A:B6:02 X509v3 Authority Key Identifier: keyid:3E:25:AB:69:85:F7:9C:A9:DE:06:E9:8E:8B:9D:A2:45:D8:55:9A:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiWraYX3nKneBumOi52iRdhVmrY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/22d175-c71d-4637-a090-b19ad5455bfd/1/83T4vy6w6s-NbeBOg3NKn516tgI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/22d175-c71d-4637-a090-b19ad5455bfd/1/PiWraYX3nKneBumOi52iRdhVmrY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.253.244.0/24 80.253.247.0/24 91.151.83.0-91.151.84.255 185.179.124.0/24 213.142.135.0/24 213.142.143.0/24 IPv6: 2a01:ed80::/29 Signature Algorithm: sha256WithRSAEncryption 7b:ec:cb:d0:32:e7:f6:cb:3e:56:ad:49:0d:c7:c2:55:63:2b: c1:09:03:b7:3b:b0:d8:8d:b7:96:1f:9e:1f:90:47:91:93:5c: 80:f1:c9:69:26:5b:13:f9:4c:52:2f:eb:b8:29:2a:e9:1b:9a: 1b:3b:b2:c1:8f:5f:35:75:6c:7a:29:3c:35:1f:51:8f:77:1b: 8d:0a:11:0c:85:9b:e6:56:dd:3e:6a:6e:d3:7c:c9:ab:f3:b6: 63:2d:0e:56:ae:65:70:f1:bd:1d:81:b6:4a:45:f3:5c:f7:86: 9b:b7:5b:f4:92:4d:51:18:0e:83:b9:9c:5d:91:8b:1f:84:3f: f5:9a:c6:fd:b2:da:42:44:8f:03:23:2b:9a:8b:94:58:dc:ca: ea:83:13:4f:74:21:4c:06:cd:52:93:6d:c8:88:0a:20:d7:15: c3:61:c3:9e:0d:93:2a:16:eb:1d:4d:1e:cc:59:d8:7f:60:2f: 65:51:6c:ba:19:78:5f:ce:d6:3f:ec:e1:ac:cc:56:dd:f1:0d: bf:7b:8c:5c:d0:9b:45:e1:96:7d:61:a4:68:1e:3d:c2:01:72: 67:24:10:0d:38:05:aa:b3:f9:1b:20:b1:9c:25:0b:e0:20:43: e7:2d:59:f3:89:7f:7f:f9:18:2f:1c:aa:f3:6c:75:b0:a7:08: 97:5f:b7:84 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgISAZvw9Q4ZeeWe5AUr6CNN76NmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlMjVhYjY5ODVmNzljYTlkZTA2ZTk4ZThiOWRhMjQ1ZDg1 NTlhYjYwHhcNMjYwMTI0MTcwMjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMzc0ZjhiZjJlYjBlYWNmOGQ2ZGUwNGU4MzczNGE5ZjlkN2FiNjAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIEcwHjEMfC1RwoAmNlN3xVLt9QU yt84bbIF527YSPmVnW0eDj066Bp2AXsz7lX4WabHoztpkb9XVyYyfAPBDMW0iNGb Z3772OC5b1JG/UoMANqPF8Tl13uKpIdTnG0HI767zOPL0DpTm+HccQk9g8XZTiul zApoftYYoVTRS9zCDt8F8/pyRt1v3Uy5vyp7Xvc8wkyZ0xeD0ulrbxJC7HS+CdRG 4DGGIkZgAQ64H+XrPWjGpz1rPFVfrmROMp3n2XdWwoE0bFbHSsnAsE7ioSmBwz50 RdF5D282pXHnn9OPz0eL/Mtwzwu12J/D/RLqOXhpIvDzArpQO9R3Up412wIDAQAB o4ICPjCCAjowHQYDVR0OBBYEFPN0+L8usOrPjW3gToNzSp+derYCMB8GA1UdIwQY MBaAFD4lq2mF95yp3gbpjoudokXYVZq2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUGlXcmFZWDNuS25lQnVtT2k1MmlSZGhWbXJZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8yMmQxNzUtYzcxZC00NjM3LWEwOTAt YjE5YWQ1NDU1YmZkLzEvODNUNHZ5Nnc2cy1OYmVCT2czTktuNTE2dGdJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8yMmQxNzUtYzcxZC00NjM3LWEwOTAtYjE5YWQ1NDU1YmZk LzEvUGlXcmFZWDNuS25lQnVtT2k1MmlSZGhWbXJZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFQGCCsGAQUFBwEHAQH/BEUwQzAyBAIAATAsAwQAUP30AwQA UP33MAwDBABbl1MDBABbl1QDBAC5s3wDBADVjocDBADVjo8wDQQCAAIwBwMFAyoB 7YAwDQYJKoZIhvcNAQELBQADggEBAHvsy9Ay5/bLPlatSQ3HwlVjK8EJA7c7sNiN t5Yfnh+QR5GTXIDxyWkmWxP5TFIv67gpKukbmhs7ssGPXzV1bHopPDUfUY93G40K EQyFm+ZW3T5qbtN8yavztmMtDlauZXDxvR2BtkpF81z3hpu3W/SSTVEYDoO5nF2R ix+EP/Waxv2y2kJEjwMjK5qLlFjcyuqDE090IUwGzVKTbciICiDXFcNhw54NkyoW 6x1NHsxZ2H9gL2VRbLoZeF/O1j/s4azMVt3xDb97jFzQm0Xhln1hpGgePcIBcmck EA04Baqz+RsgsZwlC+AgQ+ctWfOJf3/5GC8cqvNsdbCnCJdft4Q= -----END CERTIFICATE-----Generated at Mon Jan 26 12:55:32 2026 by rpki-client