This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/r99rOOaMkroRtHNbl2UPuFgp7DY.roa File: r99rOOaMkroRtHNbl2UPuFgp7DY.roa (raw, json) Hash identifier: NX5vhg+l01K0I1XIeq5Y/RGJiIN8n7JnSu9Mdl8VFng= Subject key identifier: AF:DF:6B:38:E6:8C:92:BA:11:B4:73:5B:97:65:0F:B8:58:29:EC:36 Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725 Certificate serial: 019B79EBDDE246F0380D7F8F28947F121A39 Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/r99rOOaMkroRtHNbl2UPuFgp7DY.roa Signing time: Thu 01 Jan 2026 14:17:39 +0000 ROA not before: Thu 01 Jan 2026 14:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47477 IP address blocks: 193.83.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.mft rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 17:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:dd:e2:46:f0:38:0d:7f:8f:28:94:7f:12:1a:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725 Validity Not Before: Jan 1 14:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=afdf6b38e68c92ba11b4735b97650fb85829ec36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:07:3e:3b:00:49:95:f6:82:74:cc:fd:b5:3a: be:48:7c:18:00:74:15:4a:9b:90:78:3c:b2:a1:13: 0e:01:1d:e6:dc:e7:76:04:5d:72:fc:57:92:8d:22: 67:e5:74:30:60:16:9d:88:4a:d2:28:f4:44:a8:89: 0c:b9:9a:34:3f:49:aa:9d:f0:74:d8:6b:d5:e7:c2: 60:4c:41:ab:37:a9:ef:e8:c6:41:98:80:80:a4:c2: cb:9d:c1:64:7a:38:06:09:c1:93:ca:b8:30:4a:c6: ac:5f:9f:f5:0f:6f:ec:bb:25:9e:f9:c8:c5:5d:e2: 28:4f:00:f6:8b:28:b1:2b:02:ff:c6:33:6d:6e:ce: de:19:41:3b:82:67:7d:53:95:ab:df:08:b6:0e:50: 58:64:34:80:63:da:c1:04:f9:e6:16:6e:8b:1d:1a: 37:e1:c8:45:d1:94:51:db:b2:ea:18:70:f7:bf:31: bb:88:84:d6:27:3f:f8:d7:34:0c:d3:02:74:e8:30: 40:74:fa:b5:3d:3a:23:ce:09:3d:a9:cb:bd:3c:23: df:cc:01:18:ee:42:2b:aa:62:3a:7e:95:7a:d3:5f: ae:d7:69:e6:67:0c:24:df:5c:a1:9a:e8:a1:f4:b5: e0:ab:d3:af:0f:29:ca:a8:51:53:fc:6c:3e:74:a5: 86:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:DF:6B:38:E6:8C:92:BA:11:B4:73:5B:97:65:0F:B8:58:29:EC:36 X509v3 Authority Key Identifier: keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/r99rOOaMkroRtHNbl2UPuFgp7DY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.83.204.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:b5:1a:dc:10:3b:46:eb:f0:99:db:a1:b6:69:1e:2a:c8:57: 9d:56:9d:0d:30:5e:4a:fb:0d:c2:a3:de:89:0b:c2:58:ab:a9: 66:c9:53:b8:71:d4:a3:a6:b1:44:32:ce:31:62:fd:f0:fd:3b: b5:48:9a:05:21:99:f8:c3:b7:aa:68:1d:b0:a8:71:cd:db:7a: fb:21:7f:fd:d9:c4:d6:3d:8f:9c:c1:e8:d6:71:05:48:e6:4c: 96:5e:0b:39:a1:6d:c8:8f:1a:3f:c2:b8:6a:30:7f:0e:f7:64: a4:35:76:e7:3b:03:f7:53:ee:35:f2:ba:63:21:1f:7c:73:34: 66:5a:6e:04:f5:e6:b0:a4:c3:6e:78:d7:55:bf:7d:de:90:f6: 9d:18:03:84:2a:77:4b:28:28:f2:c1:e8:71:a5:32:11:59:d2: 3f:f9:35:b1:1f:4a:32:2e:96:cf:f1:d7:f7:bd:33:96:7a:0a: fa:28:a2:fd:a8:fe:da:88:dd:bf:d0:45:06:44:62:74:f3:45: 81:d5:c0:35:f1:2e:9b:3e:bc:f9:f8:63:3a:0c:fd:c0:74:a3: 15:39:95:e1:c2:a2:2c:52:b8:c9:ba:cd:1a:3d:1a:dd:7b:2d: 6c:f8:44:ff:89:05:4c:7a:67:e8:29:36:64:bb:97:7b:2a:63: 02:8b:8b:52 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5693iRvA4DX+PKJR/Eho5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MGM1ODlhNGYyMmE5Y2EyZmY5OWI0YzQ4ZjhiZGY0OTI4 NzE3MjUwHhcNMjYwMTAxMTQxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZmRmNmIzOGU2OGM5MmJhMTFiNDczNWI5NzY1MGZiODU4MjllYzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgc+OwBJlfaCdMz9tTq+SHwYAHQV SpuQeDyyoRMOAR3m3Od2BF1y/FeSjSJn5XQwYBadiErSKPREqIkMuZo0P0mqnfB0 2GvV58JgTEGrN6nv6MZBmICApMLLncFkejgGCcGTyrgwSsasX5/1D2/suyWe+cjF XeIoTwD2iyixKwL/xjNtbs7eGUE7gmd9U5Wr3wi2DlBYZDSAY9rBBPnmFm6LHRo3 4chF0ZRR27LqGHD3vzG7iITWJz/41zQM0wJ06DBAdPq1PTojzgk9qcu9PCPfzAEY 7kIrqmI6fpV601+u12nmZwwk31yhmuih9LXgq9OvDynKqFFT/Gw+dKWG8QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK/fazjmjJK6EbRzW5dlD7hYKew2MB8GA1UdIwQY MBaAFIcMWJpPIqnKL/mbTEj4vfSShxclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWIt ODQ5ZDNhNmI5YzJkLzEvcjk5ck9PYU1rcm9SdEhOYmwyVVB1RmdwN0RZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWItODQ5ZDNhNmI5YzJk LzEvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwVPMMA0G CSqGSIb3DQEBCwUAA4IBAQBLtRrcEDtG6/CZ26G2aR4qyFedVp0NMF5K+w3Co96J C8JYq6lmyVO4cdSjprFEMs4xYv3w/Tu1SJoFIZn4w7eqaB2wqHHN23r7IX/92cTW PY+cwejWcQVI5kyWXgs5oW3Ijxo/wrhqMH8O92SkNXbnOwP3U+418rpjIR98czRm Wm4E9eawpMNueNdVv33ekPadGAOEKndLKCjywehxpTIRWdI/+TWxH0oyLpbP8df3 vTOWegr6KKL9qP7aiN2/0EUGRGJ080WB1cA18S6bPrz5+GM6DP3AdKMVOZXhwqIs UrjJus0aPRrdey1s+ET/iQVMemfoKTZku5d7KmMCi4tS -----END CERTIFICATE-----Generated at Tue Jan 27 02:50:31 2026 by rpki-client