This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/sXWO_DWD7Ah_vMjGm35nvHivxBc.roa File: sXWO_DWD7Ah_vMjGm35nvHivxBc.roa (raw, json) Hash identifier: X3aJAsZQv/GuZjI5kdAfg34ET6Ft+aEdJbJSgzuBpEY= Subject key identifier: B1:75:8E:FC:35:83:EC:08:7F:BC:C8:C6:9B:7E:67:BC:78:AF:C4:17 Certificate issuer: /CN=e8cbbff218a437df8f80a98cd2faeb9c2418fd00 Certificate serial: 019B7C134A650169B487DBD27873C967C1B3 Authority key identifier: E8:CB:BF:F2:18:A4:37:DF:8F:80:A9:8C:D2:FA:EB:9C:24:18:FD:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Mu_8hikN9-PgKmM0vrrnCQY_QA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/sXWO_DWD7Ah_vMjGm35nvHivxBc.roa Signing time: Fri 02 Jan 2026 00:19:57 +0000 ROA not before: Fri 02 Jan 2026 00:19:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34953 IP address blocks: 193.32.64.0/24 maxlen: 24 2001:67c:2054::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/6Mu_8hikN9-PgKmM0vrrnCQY_QA.crl rsync://rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/6Mu_8hikN9-PgKmM0vrrnCQY_QA.mft rsync://rpki.ripe.net/repository/DEFAULT/6Mu_8hikN9-PgKmM0vrrnCQY_QA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:4a:65:01:69:b4:87:db:d2:78:73:c9:67:c1:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e8cbbff218a437df8f80a98cd2faeb9c2418fd00 Validity Not Before: Jan 2 00:19:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1758efc3583ec087fbcc8c69b7e67bc78afc417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a7:0c:61:68:ef:9f:d0:10:04:fb:d4:b5:ac: 1e:26:2f:1c:46:81:38:03:22:57:0f:24:64:39:bf: 9b:f5:e1:bc:2d:59:f9:0b:3b:a2:22:4e:3f:84:1e: 67:2a:6a:d4:50:67:54:70:cf:6b:28:f5:29:93:9f: 42:77:74:c1:b3:05:99:27:4f:b1:73:5e:6f:b0:99: 72:36:1f:aa:2a:d4:d8:fb:82:64:f0:7d:24:9f:36: 02:b0:de:ce:0b:77:9b:95:f1:3b:17:a8:8d:fd:03: a6:ac:4f:72:a8:b1:43:03:0d:38:72:cf:92:c1:27: 01:7b:c2:36:51:26:ef:0a:96:f9:c3:f8:50:09:6e: 52:2a:47:f6:27:e0:e4:8d:c1:d1:b4:52:db:dc:25: 18:e8:4a:89:a4:67:7b:08:68:b8:fe:b5:7e:5b:c0: a8:16:bb:6b:db:57:10:5a:78:67:79:c1:5a:68:0c: 8b:b7:be:e4:c6:fa:ee:23:6b:aa:f5:8d:cb:55:40: 60:72:fd:49:c2:03:53:6b:b3:b7:7c:0e:df:65:87: d9:ef:43:03:ab:4f:62:34:bf:ad:e3:7d:ad:29:fe: 99:dc:64:5d:27:6d:20:1f:23:47:03:50:4b:10:33: de:8f:17:4e:d3:a2:3c:67:2a:3b:97:e9:e9:ed:01: e8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:75:8E:FC:35:83:EC:08:7F:BC:C8:C6:9B:7E:67:BC:78:AF:C4:17 X509v3 Authority Key Identifier: keyid:E8:CB:BF:F2:18:A4:37:DF:8F:80:A9:8C:D2:FA:EB:9C:24:18:FD:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Mu_8hikN9-PgKmM0vrrnCQY_QA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/sXWO_DWD7Ah_vMjGm35nvHivxBc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/1fd6bc-57e2-4f50-98b7-cc7635de6e7a/1/6Mu_8hikN9-PgKmM0vrrnCQY_QA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.32.64.0/24 IPv6: 2001:67c:2054::/48 Signature Algorithm: sha256WithRSAEncryption 99:28:ae:eb:54:93:52:7c:41:20:7f:9e:f2:4d:39:3b:16:9d: ec:ca:9e:76:0b:f0:a0:12:1d:83:5a:3c:ee:9f:e0:70:ce:96: 5c:b6:ff:02:ca:97:82:c1:61:e9:a0:d0:fc:eb:c6:a1:d5:07: 83:8b:39:f5:0e:a7:42:a5:97:6e:bb:fc:39:59:c2:3c:6f:47: dc:b0:e2:fe:f5:06:df:b1:61:e9:12:fe:90:3a:fa:f9:1d:ef: dc:58:a1:30:7e:99:51:f2:c4:78:e2:87:7c:2b:d7:8e:03:03: c8:8f:c8:f8:70:c9:0f:34:e2:43:ce:a8:f9:64:70:ba:39:a6: d0:46:62:ef:63:12:f6:77:e5:b7:3f:ff:06:2a:95:bf:90:67: 7d:6d:37:59:b7:76:f9:48:0b:9e:9b:97:b1:d3:fa:b6:9d:06: f9:14:8d:e7:37:3d:be:54:1d:f3:11:80:2c:36:f6:4a:a6:71: 9b:bd:3a:2c:ce:e8:72:bc:0d:79:db:bb:ff:b5:b6:68:2e:6d: ba:d9:a5:f4:c0:44:5b:46:d2:f9:30:fe:b5:42:ce:e2:9c:55: a7:39:91:3c:09:e1:54:ff:ab:e0:00:6f:c8:0b:1b:66:39:c7: bb:0f:55:21:e0:5f:f6:f9:25:b8:f0:c5:c7:38:31:a9:f5:29: 67:12:fa:88 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8E0plAWm0h9vSeHPJZ8GzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU4Y2JiZmYyMThhNDM3ZGY4ZjgwYTk4Y2QyZmFlYjljMjQx OGZkMDAwHhcNMjYwMTAyMDAxOTU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTc1OGVmYzM1ODNlYzA4N2ZiY2M4YzY5YjdlNjdiYzc4YWZjNDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApacMYWjvn9AQBPvUtaweJi8cRoE4 AyJXDyRkOb+b9eG8LVn5CzuiIk4/hB5nKmrUUGdUcM9rKPUpk59Cd3TBswWZJ0+x c15vsJlyNh+qKtTY+4Jk8H0knzYCsN7OC3eblfE7F6iN/QOmrE9yqLFDAw04cs+S wScBe8I2USbvCpb5w/hQCW5SKkf2J+DkjcHRtFLb3CUY6EqJpGd7CGi4/rV+W8Co Frtr21cQWnhnecFaaAyLt77kxvruI2uq9Y3LVUBgcv1JwgNTa7O3fA7fZYfZ70MD q09iNL+t432tKf6Z3GRdJ20gHyNHA1BLEDPejxdO06I8Zyo7l+np7QHoLQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLF1jvw1g+wIf7zIxpt+Z7x4r8QXMB8GA1UdIwQY MBaAFOjLv/IYpDffj4CpjNL665wkGP0AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNk11XzhoaWtOOS1QZ0ttTTB2cnJuQ1FZX1FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8xZmQ2YmMtNTdlMi00ZjUwLTk4Yjct Y2M3NjM1ZGU2ZTdhLzEvc1hXT19EV0Q3QWhfdk1qR20zNW52SGl2eEJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS8xZmQ2YmMtNTdlMi00ZjUwLTk4YjctY2M3NjM1ZGU2ZTdh LzEvNk11XzhoaWtOOS1QZ0ttTTB2cnJuQ1FZX1FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwSBAMA8E AgACMAkDBwAgAQZ8IFQwDQYJKoZIhvcNAQELBQADggEBAJkorutUk1J8QSB/nvJN OTsWnezKnnYL8KASHYNaPO6f4HDOlly2/wLKl4LBYemg0PzrxqHVB4OLOfUOp0Kl l267/DlZwjxvR9yw4v71Bt+xYekS/pA6+vkd79xYoTB+mVHyxHjih3wr144DA8iP yPhwyQ804kPOqPlkcLo5ptBGYu9jEvZ35bc//wYqlb+QZ31tN1m3dvlIC56bl7HT +radBvkUjec3Pb5UHfMRgCw29kqmcZu9OizO6HK8DXnbu/+1tmgubbrZpfTARFtG 0vkw/rVCzuKcVac5kTwJ4VT/q+AAb8gLG2Y5x7sPVSHgX/b5Jbjwxcc4Man1KWcS +og= -----END CERTIFICATE-----Generated at Tue Jan 27 10:18:46 2026 by rpki-client