This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/koNJsw7rhD5IJatTFzpoPL-Nrc0.roa File: koNJsw7rhD5IJatTFzpoPL-Nrc0.roa (raw, json) Hash identifier: Wndxcrvpmd8iBNHp55napUJ/eEMGTsK13AYEaJxB1y8= Subject key identifier: 92:83:49:B3:0E:EB:84:3E:48:25:AB:53:17:3A:68:3C:BF:8D:AD:CD Certificate issuer: /CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6 Certificate serial: 019B797EE7081D412DE9036F492F4ECC5FD9 Authority key identifier: 38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/koNJsw7rhD5IJatTFzpoPL-Nrc0.roa Signing time: Thu 01 Jan 2026 12:18:38 +0000 ROA not before: Thu 01 Jan 2026 12:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21373 IP address blocks: 193.53.48.0/24 maxlen: 24 193.53.49.0/24 maxlen: 24 193.53.50.0/24 maxlen: 24 193.53.51.0/24 maxlen: 24 193.53.52.0/24 maxlen: 24 193.53.53.0/24 maxlen: 24 193.53.54.0/24 maxlen: 24 193.53.55.0/24 maxlen: 24 193.53.56.0/23 maxlen: 24 193.53.58.0/23 maxlen: 24 193.53.60.0/24 maxlen: 24 193.53.61.0/24 maxlen: 24 193.53.62.0/24 maxlen: 24 193.53.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.mft rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:e7:08:1d:41:2d:e9:03:6f:49:2f:4e:cc:5f:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=382bec43dd1afe97a64f56eb854c79f163fa4ee6 Validity Not Before: Jan 1 12:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=928349b30eeb843e4825ab53173a683cbf8dadcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:11:c0:f0:a0:c4:f4:93:a9:fb:92:06:64:8b: cf:e5:44:1c:81:b7:f9:61:93:67:05:28:ea:1f:59: 4e:0e:87:58:b2:da:6e:95:58:f2:93:34:e6:50:46: bb:f1:ed:6e:dc:53:c4:ca:e9:e9:b3:5b:02:54:6c: c5:0f:ef:ba:ab:6b:4f:c0:2f:1b:bf:6e:e5:27:84: 39:3d:ff:ec:a0:c7:e0:16:cf:21:21:0f:65:b4:fe: dc:0f:1a:0c:1d:9c:28:73:d2:a1:39:cb:88:02:a6: b7:06:63:85:27:64:c6:1f:7f:d2:1e:04:18:12:8f: 00:cc:be:31:34:93:a1:bb:63:51:0a:6b:f2:99:f1: 4f:6b:34:84:89:84:bd:79:9d:62:0d:39:58:aa:1c: 58:e8:93:a7:88:99:0a:6b:4e:00:fc:c6:48:21:65: 5c:fa:77:64:73:20:8d:a5:9c:7f:88:82:9e:66:b4: d1:2c:94:05:3f:b5:9b:7f:3c:de:a4:45:f7:ba:df: a4:7f:03:25:89:e0:ee:a4:fd:75:3d:64:0a:fa:86: b8:77:73:51:85:93:4e:83:c3:b4:e9:0f:6e:3a:79: 96:06:90:2a:4f:6f:83:9b:40:9b:62:45:3d:7b:e3: b5:0a:2b:b2:89:e1:c7:eb:46:5f:fd:fc:33:af:7e: 55:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:83:49:B3:0E:EB:84:3E:48:25:AB:53:17:3A:68:3C:BF:8D:AD:CD X509v3 Authority Key Identifier: keyid:38:2B:EC:43:DD:1A:FE:97:A6:4F:56:EB:85:4C:79:F1:63:FA:4E:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCvsQ90a_pemT1brhUx58WP6TuY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/koNJsw7rhD5IJatTFzpoPL-Nrc0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/e2a8f4-7065-474b-a03d-27509711e37f/1/OCvsQ90a_pemT1brhUx58WP6TuY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.53.48.0/20 Signature Algorithm: sha256WithRSAEncryption 3b:37:ce:8b:05:ea:5e:44:64:b8:1d:0d:80:db:bd:c8:09:c6: 87:fb:41:6c:b6:f7:07:ef:aa:75:36:c9:38:cc:26:4f:34:c9: cd:0b:49:85:29:ce:f8:d8:de:e5:4c:b9:24:5d:88:84:2d:8d: 09:11:c0:9c:b4:0e:32:94:ac:1e:f0:89:b3:12:58:05:a3:7a: 14:78:4e:74:a3:98:d9:8c:18:43:15:29:47:f8:41:1e:26:64: 1b:9c:d4:92:70:bb:29:c0:51:16:d6:99:4f:43:01:d4:89:25: 68:31:04:5b:2c:1c:3f:3e:76:ab:f9:fc:3b:bf:9c:80:fb:d7: ef:7f:74:e5:33:46:06:be:62:0c:e0:21:f2:7c:ef:8a:5f:38: 0c:78:38:c7:c6:41:4a:e0:bf:a5:19:99:b3:27:8f:78:71:f3: 40:dc:15:5d:30:ab:98:16:d4:84:ae:a5:f4:14:02:7e:b3:a4: 4c:af:5c:f2:43:29:ae:0b:29:ce:c3:e3:e9:97:b5:58:9a:27: 0a:04:ba:3c:34:44:c3:7a:b9:f9:61:6d:25:a3:8f:95:1e:c8: 7a:10:3f:95:c4:5e:33:76:ad:9b:17:ca:f2:a2:7f:05:d9:a9: 38:b2:df:4b:eb:f6:6b:83:b4:6f:fa:82:cb:9e:7a:75:e0:4c: 8f:b9:a9:38 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fucIHUEt6QNvSS9OzF/ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MmJlYzQzZGQxYWZlOTdhNjRmNTZlYjg1NGM3OWYxNjNm YTRlZTYwHhcNMjYwMTAxMTIxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MjgzNDliMzBlZWI4NDNlNDgyNWFiNTMxNzNhNjgzY2JmOGRhZGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtxHA8KDE9JOp+5IGZIvP5UQcgbf5 YZNnBSjqH1lODodYstpulVjykzTmUEa78e1u3FPEyunps1sCVGzFD++6q2tPwC8b v27lJ4Q5Pf/soMfgFs8hIQ9ltP7cDxoMHZwoc9KhOcuIAqa3BmOFJ2TGH3/SHgQY Eo8AzL4xNJOhu2NRCmvymfFPazSEiYS9eZ1iDTlYqhxY6JOniJkKa04A/MZIIWVc +ndkcyCNpZx/iIKeZrTRLJQFP7WbfzzepEX3ut+kfwMlieDupP11PWQK+oa4d3NR hZNOg8O06Q9uOnmWBpAqT2+Dm0CbYkU9e+O1CiuyieHH60Zf/fwzr35VbwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJKDSbMO64Q+SCWrUxc6aDy/ja3NMB8GA1UdIwQY MBaAFDgr7EPdGv6Xpk9W64VMefFj+k7mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9lMmE4ZjQtNzA2NS00NzRiLWEwM2Qt Mjc1MDk3MTFlMzdmLzEva29OSnN3N3JoRDVJSmF0VEZ6cG9QTC1OcmMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ny9lMmE4ZjQtNzA2NS00NzRiLWEwM2QtMjc1MDk3MTFlMzdm LzEvT0N2c1E5MGFfcGVtVDFicmhVeDU4V1A2VHVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEwTUwMA0G CSqGSIb3DQEBCwUAA4IBAQA7N86LBepeRGS4HQ2A273ICcaH+0FstvcH76p1Nsk4 zCZPNMnNC0mFKc742N7lTLkkXYiELY0JEcCctA4ylKwe8ImzElgFo3oUeE50o5jZ jBhDFSlH+EEeJmQbnNSScLspwFEW1plPQwHUiSVoMQRbLBw/Pnar+fw7v5yA+9fv f3TlM0YGvmIM4CHyfO+KXzgMeDjHxkFK4L+lGZmzJ494cfNA3BVdMKuYFtSErqX0 FAJ+s6RMr1zyQymuCynOw+Ppl7VYmicKBLo8NETDern5YW0lo4+VHsh6ED+VxF4z dq2bF8ryon8F2ak4st9L6/Zrg7Rv+oLLnnp14EyPuak4 -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:15 2026 by rpki-client