This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/r7r1Y-kSqsjCkN5g73HGn7i1zrM.roa File: r7r1Y-kSqsjCkN5g73HGn7i1zrM.roa (raw, json) Hash identifier: MQaOsov42k9jc1VrZgl0fzxtEHOrx0ZX3W8NqjTVdN0= Subject key identifier: AF:BA:F5:63:E9:12:AA:C8:C2:90:DE:60:EF:71:C6:9F:B8:B5:CE:B3 Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24 Certificate serial: 019B78A32D89B0049935F765BEB3D24356FF Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/r7r1Y-kSqsjCkN5g73HGn7i1zrM.roa Signing time: Thu 01 Jan 2026 08:18:38 +0000 ROA not before: Thu 01 Jan 2026 08:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30475 IP address blocks: 193.8.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.mft rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 02:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:2d:89:b0:04:99:35:f7:65:be:b3:d2:43:56:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24 Validity Not Before: Jan 1 08:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=afbaf563e912aac8c290de60ef71c69fb8b5ceb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e3:0a:79:1a:76:52:90:9e:a5:7e:b6:18:16: 55:a7:58:c3:32:09:04:9b:5a:57:a4:76:86:b9:14: e7:85:22:6a:f8:d0:ac:c8:82:d4:f2:1d:24:f1:45: 52:64:58:66:9c:0f:9a:51:9d:73:4c:05:b0:92:e4: 73:43:37:f9:db:3d:16:c0:07:05:17:4c:87:31:a9: 40:92:dc:3b:39:fe:8c:22:f3:cf:af:9d:87:9b:29: 43:a3:ac:0c:3e:6a:42:01:2c:fe:86:57:68:b0:96: 03:ea:5c:18:53:bd:5d:f0:45:79:66:fc:3a:01:dd: b6:24:a2:cb:49:de:76:48:ad:f4:7b:c6:b4:76:81: bd:34:92:02:79:91:77:56:6f:31:1c:7b:20:13:f2: 15:b0:02:7a:8d:91:fe:1a:eb:2c:d9:bd:e6:0d:b2: ff:9a:8a:43:a6:71:44:58:6d:65:67:fe:03:9f:16: 25:4b:a2:d6:ff:70:a1:d7:21:e3:26:f1:c6:d2:f9: be:98:3c:b5:54:8a:bf:0c:71:88:5c:31:16:84:a5: db:cb:fd:e5:cf:90:ab:d6:c8:5e:5f:2e:1f:17:91: a1:8f:e2:e9:18:34:a3:70:47:bb:e7:a9:f7:ad:1c: ac:35:78:91:7a:38:13:a8:6e:06:55:09:63:38:7b: f4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:BA:F5:63:E9:12:AA:C8:C2:90:DE:60:EF:71:C6:9F:B8:B5:CE:B3 X509v3 Authority Key Identifier: keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/r7r1Y-kSqsjCkN5g73HGn7i1zrM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.8.172.0/24 Signature Algorithm: sha256WithRSAEncryption 50:c9:0e:8d:a4:62:d8:bf:e5:8a:26:4c:f0:b6:20:3f:cf:91: 44:24:55:68:39:20:99:8f:ad:8c:40:87:93:1c:75:ec:40:7d: c6:f3:20:93:80:69:50:fa:59:09:69:b1:8e:a0:5f:0e:28:f9: 2b:57:d7:b8:0d:6e:f2:cd:3c:de:e3:60:0a:53:eb:c6:5d:78: 9f:47:d6:05:4c:82:80:01:d6:9d:ca:e6:8d:c2:fb:f5:f2:c0: 45:ef:d3:2c:59:4e:d3:80:ee:84:07:4b:b8:0c:0e:90:82:f2: ef:62:d7:16:bd:00:64:30:86:06:d7:be:34:23:97:11:e2:69: d0:92:a9:f0:43:fd:8e:7e:a8:01:9a:ee:46:17:e8:9b:3b:d9: f9:b3:ce:eb:0e:5d:07:e5:8c:4b:66:0f:34:38:10:19:d7:c6: 4e:e4:97:61:01:b7:98:dd:30:65:cc:5e:32:4d:32:b3:31:1a: d0:f7:1f:f1:91:58:d9:25:61:fb:43:ef:ee:60:24:fc:d0:c2: 6d:c6:14:bb:0a:5c:ee:62:60:78:0b:30:6b:04:db:6d:9e:62: 92:15:62:10:b5:58:36:a9:a7:c5:06:a4:cb:5a:13:4c:20:b7: 4e:0d:8d:2e:06:91:9d:87:44:b6:65:1a:db:dc:72:c9:e8:35: 50:3e:af:71 -----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAZt4oy2JsASZNfdlvrPSQ1b/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5M2FjNmNkMjI0MDI0OWJiYTYwMTcxZjA4NmU5MTAxY2M4 N2NhMjQwHhcNMjYwMTAxMDgxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZmJhZjU2M2U5MTJhYWM4YzI5MGRlNjBlZjcxYzY5ZmI4YjVjZWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOMKeRp2UpCepX62GBZVp1jDMgkE m1pXpHaGuRTnhSJq+NCsyILU8h0k8UVSZFhmnA+aUZ1zTAWwkuRzQzf52z0WwAcF F0yHMalAktw7Of6MIvPPr52HmylDo6wMPmpCASz+hldosJYD6lwYU71d8EV5Zvw6 Ad22JKLLSd52SK30e8a0doG9NJICeZF3Vm8xHHsgE/IVsAJ6jZH+Guss2b3mDbL/ mopDpnFEWG1lZ/4DnxYlS6LW/3Ch1yHjJvHG0vm+mDy1VIq/DHGIXDEWhKXby/3l z5Cr1sheXy4fF5Ghj+LpGDSjcEe756n3rRysNXiRejgTqG4GVQljOHv0OwIDAQAB o4ICCzCCAgcwHQYDVR0OBBYEFK+69WPpEqrIwpDeYO9xxp+4tc6zMB8GA1UdIwQY MBaAFPk6xs0iQCSbumAXHwhukQHMh8okMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1Uckd6U0pBSkp1NllCY2ZDRzZSQWN5SHlpUS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgvYjAzMjEzLTVlODAtNDkzMS04MWNl LWY3NTJkODE2MDVmYi8xL3I3cjFZLWtTcXNqQ2tONWc3M0hHbjdpMXpyTS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOTgvYjAzMjEzLTVlODAtNDkzMS04MWNlLWY3NTJkODE2MDVm Yi8xLzEtVHJHelNKQUpKdTZZQmNmQ0c2UkFjeUh5aVEuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADBCKww DQYJKoZIhvcNAQELBQADggEBAFDJDo2kYti/5YomTPC2ID/PkUQkVWg5IJmPrYxA h5McdexAfcbzIJOAaVD6WQlpsY6gXw4o+StX17gNbvLNPN7jYApT68ZdeJ9H1gVM goAB1p3K5o3C+/XywEXv0yxZTtOA7oQHS7gMDpCC8u9i1xa9AGQwhgbXvjQjlxHi adCSqfBD/Y5+qAGa7kYX6Js72fmzzusOXQfljEtmDzQ4EBnXxk7kl2EBt5jdMGXM XjJNMrMxGtD3H/GRWNklYftD7+5gJPzQwm3GFLsKXO5iYHgLMGsE222eYpIVYhC1 WDapp8UGpMtaE0wgt04NjS4GkZ2HRLZlGtvccsnoNVA+r3E= -----END CERTIFICATE-----Generated at Sun Jan 11 12:33:51 2026 by rpki-client