This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/1-w8Q-F1I4Vy41impjChS3fMIIAk.roa File: 1-w8Q-F1I4Vy41impjChS3fMIIAk.roa (raw, json) Hash identifier: PVWxllXwJBpTCgl4ua9BNgJtEDKI8J3jMk9ds1kt2/o= Subject key identifier: FB:0F:10:F8:5D:48:E1:5C:B8:D6:29:A9:8C:28:52:DD:F3:08:20:09 Certificate issuer: /CN=a953f1b8e2965fd0387810a2f62cf714816d1497 Certificate serial: 019B783433899DA709D8AC370B59724BF30C Authority key identifier: A9:53:F1:B8:E2:96:5F:D0:38:78:10:A2:F6:2C:F7:14:81:6D:14:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qVPxuOKWX9A4eBCi9iz3FIFtFJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/1-w8Q-F1I4Vy41impjChS3fMIIAk.roa Signing time: Thu 01 Jan 2026 06:17:25 +0000 ROA not before: Thu 01 Jan 2026 06:17:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31445 IP address blocks: 195.137.253.0/24 maxlen: 24 2a14:2c02::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/qVPxuOKWX9A4eBCi9iz3FIFtFJc.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/qVPxuOKWX9A4eBCi9iz3FIFtFJc.mft rsync://rpki.ripe.net/repository/DEFAULT/qVPxuOKWX9A4eBCi9iz3FIFtFJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:33:89:9d:a7:09:d8:ac:37:0b:59:72:4b:f3:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a953f1b8e2965fd0387810a2f62cf714816d1497 Validity Not Before: Jan 1 06:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb0f10f85d48e15cb8d629a98c2852ddf3082009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cf:1d:f2:db:47:43:17:39:73:c7:62:65:96: 99:40:bc:12:a6:b6:52:0f:ac:a9:b3:b0:14:d8:68: e4:23:b3:ea:59:60:89:83:a5:b6:89:0b:99:3f:d2: 69:ff:fd:51:1a:d6:55:b4:60:d3:7e:54:f1:aa:0e: e2:9d:23:a2:13:fb:88:36:c2:dd:71:bc:de:05:f3: 6c:8e:6e:d2:0d:6e:54:98:a6:a3:f9:51:a6:8f:5c: a6:34:15:9e:3a:35:e3:dd:c3:01:53:bc:1b:93:6c: 07:d3:b6:3c:7c:8d:2e:9d:d8:a0:05:99:2a:48:27: a7:89:6d:a1:e7:b5:7d:e5:22:9d:46:d3:51:fe:c3: 5d:e4:69:e7:2c:23:4c:74:85:6d:60:c6:9e:c0:aa: d9:26:38:ed:44:d5:1f:58:44:3d:61:d0:ad:9d:3c: f0:2f:a7:f1:0e:11:55:a5:0d:27:ec:a3:7e:1e:d9: 26:42:53:22:2c:5e:34:ea:35:04:ec:83:7e:d5:3d: b9:ec:df:7f:56:4e:83:72:4a:cf:89:d8:49:53:c5: ac:97:2b:51:13:b7:d0:fa:59:dd:44:d0:20:e5:99: 0b:95:5a:b9:24:c2:32:bf:f2:0d:d4:76:8a:96:cf: 2f:3c:b2:35:e0:f9:97:ad:ec:71:05:38:b3:18:07: 65:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:0F:10:F8:5D:48:E1:5C:B8:D6:29:A9:8C:28:52:DD:F3:08:20:09 X509v3 Authority Key Identifier: keyid:A9:53:F1:B8:E2:96:5F:D0:38:78:10:A2:F6:2C:F7:14:81:6D:14:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qVPxuOKWX9A4eBCi9iz3FIFtFJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/1-w8Q-F1I4Vy41impjChS3fMIIAk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/4e3493-ce03-4d94-bdfd-ae8633c17b87/1/qVPxuOKWX9A4eBCi9iz3FIFtFJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.137.253.0/24 IPv6: 2a14:2c02::/32 Signature Algorithm: sha256WithRSAEncryption 93:3e:02:43:14:5f:8f:c4:07:b8:85:ba:44:6b:ba:ed:df:4f: c0:38:ea:a6:4b:e4:76:76:35:5f:ff:45:7e:a8:33:15:b2:c1: c2:ae:cc:1b:9b:80:49:3f:20:f0:bc:0f:0c:d8:4f:70:a4:c0: 49:79:c0:d3:b2:94:20:5f:d0:cc:cd:22:28:f7:da:2c:4a:f9: e8:75:72:1e:71:b6:a6:44:36:84:93:59:87:b3:9e:60:b2:99: d9:07:3e:be:86:cc:0b:c0:ca:c7:e7:bb:6a:2d:61:f7:f5:18: 11:1d:b7:8d:55:d6:3d:60:c0:b5:36:a7:bd:b7:f1:29:cd:44: 9a:18:c1:04:30:16:54:70:a1:1c:aa:d5:41:77:f4:40:23:e3: 51:26:26:46:1e:4c:c2:ef:6a:d8:2e:f7:e3:db:c6:e4:86:d0: ac:b7:fb:b8:9d:54:64:46:58:89:1d:1e:0c:a9:a7:47:21:18: 60:b3:2d:f3:9e:f3:fe:22:7c:97:e2:ee:08:c3:65:23:ad:58: 43:7d:a9:23:a4:e2:3c:43:a0:df:9f:ee:79:dc:fd:1c:a0:b0: 7c:44:23:57:02:88:30:ab:6c:c4:8d:1a:d9:9d:e7:34:bb:ef: 44:29:1f:02:b1:62:00:18:af:df:ef:ba:db:85:15:e3:5c:30: 25:78:7b:cb -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4NDOJnacJ2Kw3C1lyS/MMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5NTNmMWI4ZTI5NjVmZDAzODc4MTBhMmY2MmNmNzE0ODE2 ZDE0OTcwHhcNMjYwMTAxMDYxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjBmMTBmODVkNDhlMTVjYjhkNjI5YTk4YzI4NTJkZGYzMDgyMDA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvs8d8ttHQxc5c8diZZaZQLwSprZS D6yps7AU2GjkI7PqWWCJg6W2iQuZP9Jp//1RGtZVtGDTflTxqg7inSOiE/uINsLd cbzeBfNsjm7SDW5UmKaj+VGmj1ymNBWeOjXj3cMBU7wbk2wH07Y8fI0undigBZkq SCeniW2h57V95SKdRtNR/sNd5GnnLCNMdIVtYMaewKrZJjjtRNUfWEQ9YdCtnTzw L6fxDhFVpQ0n7KN+HtkmQlMiLF406jUE7IN+1T257N9/Vk6DckrPidhJU8WslytR E7fQ+lndRNAg5ZkLlVq5JMIyv/IN1HaKls8vPLI14PmXrexxBTizGAdlKwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFPsPEPhdSOFcuNYpqYwoUt3zCCAJMB8GA1UdIwQY MBaAFKlT8bjill/QOHgQovYs9xSBbRSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVZQeHVPS1dYOUE0ZUJDaTlpejNGSUZ0RkpjLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi80ZTM0OTMtY2UwMy00ZDk0LWJkZmQt YWU4NjMzYzE3Yjg3LzEvMS13OFEtRjFJNFZ5NDFpbXBqQ2hTM2ZNSUlBay5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYTYvNGUzNDkzLWNlMDMtNGQ5NC1iZGZkLWFlODYzM2MxN2I4 Ny8xL3FWUHh1T0tXWDlBNGVCQ2k5aXozRklGdEZKYy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMOJ/TAN BAIAAjAHAwUAKhQsAjANBgkqhkiG9w0BAQsFAAOCAQEAkz4CQxRfj8QHuIW6RGu6 7d9PwDjqpkvkdnY1X/9FfqgzFbLBwq7MG5uAST8g8LwPDNhPcKTASXnA07KUIF/Q zM0iKPfaLEr56HVyHnG2pkQ2hJNZh7OeYLKZ2Qc+vobMC8DKx+e7ai1h9/UYER23 jVXWPWDAtTanvbfxKc1EmhjBBDAWVHChHKrVQXf0QCPjUSYmRh5Mwu9q2C7349vG 5IbQrLf7uJ1UZEZYiR0eDKmnRyEYYLMt857z/iJ8l+LuCMNlI61YQ32pI6TiPEOg 35/uedz9HKCwfEQjVwKIMKtsxI0a2Z3nNLvvRCkfArFiABiv3++624UV41wwJXh7 yw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:23:40 2026 by rpki-client