This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/UrpK2aDM9BWX4hkX_ZfJV4Q5U9Q.roa File: UrpK2aDM9BWX4hkX_ZfJV4Q5U9Q.roa (raw, json) Hash identifier: V3bPj8XA/9eMaVjByU2VVkN7jt9slqIFty3EUEMhXfs= Subject key identifier: 52:BA:4A:D9:A0:CC:F4:15:97:E2:19:17:FD:97:C9:57:84:39:53:D4 Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a Certificate serial: 019B77C740454FBDD66689B64C8D45C90105 Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/UrpK2aDM9BWX4hkX_ZfJV4Q5U9Q.roa Signing time: Thu 01 Jan 2026 04:18:25 +0000 ROA not before: Thu 01 Jan 2026 04:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60308 IP address blocks: 212.193.175.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:40:45:4f:bd:d6:66:89:b6:4c:8d:45:c9:01:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a Validity Not Before: Jan 1 04:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52ba4ad9a0ccf41597e21917fd97c957843953d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:ac:30:25:7d:b4:29:03:c5:15:9b:0b:1f:85: d5:8e:32:30:f1:17:13:35:8f:51:0b:fa:67:86:1d: 93:14:05:1b:e7:16:dd:09:48:c9:76:aa:07:54:17: 96:2c:47:f7:3b:e4:9b:20:86:ce:b5:5e:d1:ba:b4: 73:03:08:89:d2:c9:3e:df:e4:02:fe:0a:8a:2f:46: 2a:06:00:e0:9b:47:3a:78:22:03:1f:9f:31:f7:4b: 17:82:78:13:47:1a:4a:97:b7:f2:29:f3:5d:86:4c: e3:72:11:a1:a6:cd:ee:19:6e:5e:35:9c:b6:49:a7: 2b:14:60:7d:f0:8b:86:8b:f9:3e:61:6b:fd:06:a4: 18:c7:dd:d4:11:68:c7:3d:2c:10:2f:96:52:5f:7c: 80:a8:5c:6f:ed:fd:87:e6:88:ba:e9:24:72:e7:c5: a0:78:c1:a3:7e:1e:fa:6a:d3:4e:b5:5e:1e:11:9a: ee:42:e1:6f:e5:c8:2b:a1:37:f2:1e:ad:8d:33:6a: d9:79:e4:2e:39:12:74:c5:65:80:45:c9:ed:4d:31: fd:3e:01:7f:88:1b:44:44:01:1c:2a:fa:03:dc:75: 61:a0:dc:65:74:cc:7d:21:20:4c:a7:20:cd:fa:cc: 21:7b:33:30:8a:b5:df:d9:d9:6f:2a:e7:6e:70:31: 76:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:BA:4A:D9:A0:CC:F4:15:97:E2:19:17:FD:97:C9:57:84:39:53:D4 X509v3 Authority Key Identifier: keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/UrpK2aDM9BWX4hkX_ZfJV4Q5U9Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.193.175.0/24 Signature Algorithm: sha256WithRSAEncryption 76:d2:00:ec:18:cb:f8:27:09:d6:1f:16:82:f5:e1:9f:53:8d: 82:08:0b:d0:86:d8:49:2f:b1:de:4b:01:7f:5d:20:48:7b:3a: c1:ca:dd:bc:7e:c9:f6:46:b8:0f:a5:4a:13:9d:c0:2a:26:7c: 71:41:5d:f1:a5:bc:3e:b4:2e:b5:1c:a0:b1:44:16:06:f4:05: 14:2e:74:bc:9e:da:5f:d8:be:8d:58:1c:b9:32:d5:90:e8:63: b9:12:0d:3d:fb:ea:6c:be:18:10:5d:03:da:6d:48:6c:08:ae: 21:47:ae:d9:b2:65:89:fa:05:6e:47:51:98:e8:e2:39:0b:45: 65:34:82:f2:69:1d:9b:16:d0:94:12:d9:ec:59:24:1f:c9:3a: 8f:1d:66:98:dd:ff:87:61:9d:49:86:93:c9:e2:71:fc:fe:ff: 19:fc:d8:1c:fc:e4:2f:a1:e0:02:df:59:af:47:8d:c6:11:1c: d3:4f:20:0a:7f:f0:98:9f:8d:69:81:63:f8:94:69:17:12:aa: 5a:55:ec:ed:12:ba:1b:19:e8:24:76:b6:af:4f:dc:06:30:0d: 63:19:00:e3:fa:5c:70:91:17:9a:93:7e:6a:3a:d4:ed:da:26: 02:d4:86:e4:a9:43:90:97:b7:cc:c3:a6:89:53:b6:d8:d2:4a: fd:6f:fe:c9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x0BFT73WZom2TI1FyQEFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx NjQ2NGEwHhcNMjYwMTAxMDQxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmJhNGFkOWEwY2NmNDE1OTdlMjE5MTdmZDk3Yzk1Nzg0Mzk1M2Q0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6wwJX20KQPFFZsLH4XVjjIw8RcT NY9RC/pnhh2TFAUb5xbdCUjJdqoHVBeWLEf3O+SbIIbOtV7RurRzAwiJ0sk+3+QC /gqKL0YqBgDgm0c6eCIDH58x90sXgngTRxpKl7fyKfNdhkzjchGhps3uGW5eNZy2 SacrFGB98IuGi/k+YWv9BqQYx93UEWjHPSwQL5ZSX3yAqFxv7f2H5oi66SRy58Wg eMGjfh76atNOtV4eEZruQuFv5cgroTfyHq2NM2rZeeQuORJ0xWWARcntTTH9PgF/ iBtERAEcKvoD3HVhoNxldMx9ISBMpyDN+swhezMwirXf2dlvKuducDF26QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFK6StmgzPQVl+IZF/2XyVeEOVPUMB8GA1UdIwQY MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt OWU5YTFlMDM3MzhlLzEvVXJwSzJhRE05QldYNGhrWF9aZkpWNFE1VTlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1MGvMA0G CSqGSIb3DQEBCwUAA4IBAQB20gDsGMv4JwnWHxaC9eGfU42CCAvQhthJL7HeSwF/ XSBIezrByt28fsn2RrgPpUoTncAqJnxxQV3xpbw+tC61HKCxRBYG9AUULnS8ntpf 2L6NWBy5MtWQ6GO5Eg09++psvhgQXQPabUhsCK4hR67ZsmWJ+gVuR1GY6OI5C0Vl NILyaR2bFtCUEtnsWSQfyTqPHWaY3f+HYZ1JhpPJ4nH8/v8Z/Ngc/OQvoeAC31mv R43GERzTTyAKf/CYn41pgWP4lGkXEqpaVeztErobGegkdravT9wGMA1jGQDj+lxw kReak35qOtTt2iYC1IbkqUOQl7fMw6aJU7bY0kr9b/7J -----END CERTIFICATE-----Generated at Sun Jan 25 21:16:03 2026 by rpki-client