This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/eU85RU0taQL8h-5P8OgU9OyopXY.roa File: eU85RU0taQL8h-5P8OgU9OyopXY.roa (raw, json) Hash identifier: 9O8C8fNo7lE1aPgGPT+DIp3qar7x4bHGxqk5sLTXTcI= Subject key identifier: 79:4F:39:45:4D:2D:69:02:FC:87:EE:4F:F0:E8:14:F4:EC:A8:A5:76 Certificate issuer: /CN=b68f940f1cc577f370f28428850dc7bf7418f121 Certificate serial: 019B7EA74EFEF7DFC4742B795A3A7B068ACB Authority key identifier: B6:8F:94:0F:1C:C5:77:F3:70:F2:84:28:85:0D:C7:BF:74:18:F1:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/eU85RU0taQL8h-5P8OgU9OyopXY.roa Signing time: Fri 02 Jan 2026 12:20:52 +0000 ROA not before: Fri 02 Jan 2026 12:20:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55002 IP address blocks: 193.26.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.mft rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:4e:fe:f7:df:c4:74:2b:79:5a:3a:7b:06:8a:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b68f940f1cc577f370f28428850dc7bf7418f121 Validity Not Before: Jan 2 12:20:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=794f39454d2d6902fc87ee4ff0e814f4eca8a576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dc:dc:c9:dd:5a:c1:88:14:3d:f8:3b:27:4b: 0c:2b:02:27:a9:c5:fc:e2:bb:e5:49:62:60:ea:0c: 28:a0:2e:94:0e:a0:51:a4:71:1a:b9:85:72:c2:d2: ba:ff:af:c8:24:9d:6e:15:10:14:f9:cb:37:c9:11: a9:39:97:ee:5c:30:2b:3c:e4:49:22:90:4e:dc:86: 77:91:98:46:31:8a:eb:cb:cd:b7:2f:93:7e:d7:a2: 7a:e9:ab:a4:b7:dc:51:f2:05:0e:5e:d1:77:47:b6: a6:22:70:f4:d2:93:96:3a:08:86:1b:d0:4d:7c:c0: 4d:f9:75:a4:8c:1a:21:2f:51:00:98:2d:f3:88:fd: 2e:75:aa:84:91:a1:1b:d0:b5:d8:df:b1:83:b6:82: eb:23:28:ed:d4:31:be:76:ee:3b:e7:68:df:95:97: de:5f:49:26:90:ed:42:22:41:be:36:dd:d7:3d:20: a2:c2:45:69:2c:85:3f:d3:15:e9:8b:b7:d2:81:e2: 47:b2:fd:44:a3:c1:39:0e:06:d9:e3:49:e0:73:3a: 64:40:26:0e:dd:61:e9:41:01:9e:7c:ea:e7:15:44: 56:02:ec:38:97:14:f2:b6:de:f0:8a:1b:be:9f:f1: b7:09:c4:a1:d1:8d:66:53:45:8f:f2:64:35:7f:a7: d7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:4F:39:45:4D:2D:69:02:FC:87:EE:4F:F0:E8:14:F4:EC:A8:A5:76 X509v3 Authority Key Identifier: keyid:B6:8F:94:0F:1C:C5:77:F3:70:F2:84:28:85:0D:C7:BF:74:18:F1:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/eU85RU0taQL8h-5P8OgU9OyopXY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.26.125.0/24 Signature Algorithm: sha256WithRSAEncryption 11:a8:05:8f:5d:18:41:0c:a8:e3:ee:f3:1b:8a:79:21:19:20: 5c:26:54:7b:ac:b8:85:a8:1c:20:fa:3d:aa:bd:3a:55:67:42: 75:39:61:4c:d0:ea:af:af:15:27:6c:15:35:1a:28:99:af:a2: ac:ab:e4:ae:89:e3:bf:45:d7:ee:f3:8e:8e:a9:4b:66:cf:fc: 6e:98:4c:16:ac:76:b9:0e:f6:e0:9d:3a:2d:06:63:55:7a:26: c9:9a:2b:1b:6c:55:73:ad:51:d1:fb:10:d1:42:f2:2f:9e:70: e3:1a:8e:c8:66:cc:42:66:9e:b5:69:00:27:66:d1:10:c5:3a: 89:65:bd:bf:ba:f3:86:59:8e:78:6a:a5:7f:87:0c:10:b4:87: 9b:ab:5f:6c:58:a1:e3:16:fc:ab:af:aa:53:65:f3:3d:2a:83: 7c:e4:45:ef:dd:56:c5:cf:66:be:4f:96:c8:22:8b:c3:76:b4: 18:d0:c8:be:3b:60:82:57:be:4e:25:ae:91:10:ad:ef:f3:b6: c6:8e:21:f0:bd:bb:2e:fe:a7:0e:46:b0:19:d8:f4:c9:9a:12: aa:fb:14:7a:51:34:cf:eb:d0:7c:40:e4:5f:84:5e:7e:d7:52: 75:50:7d:49:2c:c4:69:ce:cb:a8:f6:f3:ad:4d:77:48:0a:8e: 84:cc:41:c3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p07+99/EdCt5Wjp7BorLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OGY5NDBmMWNjNTc3ZjM3MGYyODQyODg1MGRjN2JmNzQx OGYxMjEwHhcNMjYwMTAyMTIyMDUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTRmMzk0NTRkMmQ2OTAyZmM4N2VlNGZmMGU4MTRmNGVjYThhNTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tzcyd1awYgUPfg7J0sMKwInqcX8 4rvlSWJg6gwooC6UDqBRpHEauYVywtK6/6/IJJ1uFRAU+cs3yRGpOZfuXDArPORJ IpBO3IZ3kZhGMYrry823L5N+16J66aukt9xR8gUOXtF3R7amInD00pOWOgiGG9BN fMBN+XWkjBohL1EAmC3ziP0udaqEkaEb0LXY37GDtoLrIyjt1DG+du4752jflZfe X0kmkO1CIkG+Nt3XPSCiwkVpLIU/0xXpi7fSgeJHsv1Eo8E5DgbZ40ngczpkQCYO 3WHpQQGefOrnFURWAuw4lxTytt7wihu+n/G3CcSh0Y1mU0WP8mQ1f6fXFwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHlPOUVNLWkC/IfuT/DoFPTsqKV2MB8GA1UdIwQY MBaAFLaPlA8cxXfzcPKEKIUNx790GPEhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdG8tVUR4ekZkX053OG9Rb2hRM0h2M1FZOFNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC80YjJjMjMtZjUzNS00YjZkLWE0NDUt ZTA0ZGFjNjFjZTlkLzEvZVU4NVJVMHRhUUw4aC01UDhPZ1U5T3lvcFhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC80YjJjMjMtZjUzNS00YjZkLWE0NDUtZTA0ZGFjNjFjZTlk LzEvdG8tVUR4ekZkX053OG9Rb2hRM0h2M1FZOFNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRp9MA0G CSqGSIb3DQEBCwUAA4IBAQARqAWPXRhBDKjj7vMbinkhGSBcJlR7rLiFqBwg+j2q vTpVZ0J1OWFM0OqvrxUnbBU1GiiZr6Ksq+SuieO/Rdfu846OqUtmz/xumEwWrHa5 DvbgnTotBmNVeibJmisbbFVzrVHR+xDRQvIvnnDjGo7IZsxCZp61aQAnZtEQxTqJ Zb2/uvOGWY54aqV/hwwQtIebq19sWKHjFvyrr6pTZfM9KoN85EXv3VbFz2a+T5bI IovDdrQY0Mi+O2CCV75OJa6REK3v87bGjiHwvbsu/qcORrAZ2PTJmhKq+xR6UTTP 69B8QORfhF5+11J1UH1JLMRpzsuo9vOtTXdICo6EzEHD -----END CERTIFICATE-----Generated at Tue Jan 20 11:17:18 2026 by rpki-client