This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/1-xuFkRRYNkNx6K_y3gpKzk8bpNU.roa File: 1-xuFkRRYNkNx6K_y3gpKzk8bpNU.roa (raw, json) Hash identifier: DSnPrHXS1D+ilU9Cyi7GMDMNOZU+oSTK260zTbsfVyU= Subject key identifier: FB:1B:85:91:14:58:36:43:71:E8:AF:F2:DE:0A:4A:CE:4F:1B:A4:D5 Certificate issuer: /CN=870e2a207f6977214a957a8e148d1f8b5a5cd082 Certificate serial: 019B7F15FBF23656665C7CDCEDB8176BECA1 Authority key identifier: 87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/1-xuFkRRYNkNx6K_y3gpKzk8bpNU.roa Signing time: Fri 02 Jan 2026 14:21:45 +0000 ROA not before: Fri 02 Jan 2026 14:21:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15704 IP address blocks: 193.163.93.0/24 maxlen: 24 2a11:1f40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.mft rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:fb:f2:36:56:66:5c:7c:dc:ed:b8:17:6b:ec:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=870e2a207f6977214a957a8e148d1f8b5a5cd082 Validity Not Before: Jan 2 14:21:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb1b85911458364371e8aff2de0a4ace4f1ba4d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:70:a4:f0:65:3c:39:0a:5d:77:81:12:2b:3e: 89:e0:a8:44:85:94:91:3b:79:db:2f:7d:5e:67:4c: 6a:d9:2b:28:75:82:da:80:da:28:5d:23:62:5a:e6: c0:ec:7c:4b:22:86:67:ca:77:18:d5:4c:32:d5:c9: ea:bb:2c:2a:4e:2b:5d:ea:50:ca:d7:65:b2:63:38: 4f:1f:8f:73:0f:b5:2b:b9:fc:fa:e8:c8:ae:c7:ff: 54:84:c4:4b:e8:35:b2:55:f6:32:29:94:4e:47:98: 73:6b:a9:a6:af:8d:89:f3:12:2e:95:f8:f1:1a:20: 5f:80:4b:f9:fa:a2:e6:4d:a1:3f:af:54:10:0c:79: 58:7a:8d:03:c0:24:2b:90:9c:06:7a:e5:c1:8c:0e: 44:e6:b4:3b:10:d1:43:19:ff:99:d2:9c:10:e4:11: af:39:8d:98:7e:53:c6:02:6d:dc:f9:81:58:7b:3e: 69:61:12:51:ea:92:9a:51:84:c7:a2:85:60:d4:76: 7e:6f:ca:63:f6:9a:28:4d:b5:45:6d:fc:2a:6a:d1: de:af:b0:d1:30:15:39:b2:02:27:8d:59:6e:fb:71: c4:c9:93:b4:3c:3a:db:cb:24:64:81:95:7d:ee:9f: 6d:c2:60:1f:1f:8d:29:d8:94:94:b5:20:db:c9:a6: a6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:1B:85:91:14:58:36:43:71:E8:AF:F2:DE:0A:4A:CE:4F:1B:A4:D5 X509v3 Authority Key Identifier: keyid:87:0E:2A:20:7F:69:77:21:4A:95:7A:8E:14:8D:1F:8B:5A:5C:D0:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hw4qIH9pdyFKlXqOFI0fi1pc0II.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/1-xuFkRRYNkNx6K_y3gpKzk8bpNU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/421158-f0c6-4619-afa5-8a94687dba6f/1/hw4qIH9pdyFKlXqOFI0fi1pc0II.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.163.93.0/24 IPv6: 2a11:1f40::/29 Signature Algorithm: sha256WithRSAEncryption 68:02:63:78:ab:10:9f:0c:69:36:8e:77:a8:6c:3b:54:6a:6a: e4:67:88:75:67:1e:14:82:0a:a9:31:7b:42:2a:d4:36:17:b5: 41:bf:61:05:a4:ff:53:b9:07:cd:54:1e:04:48:f8:cf:78:1e: 71:6e:53:0c:33:55:71:dd:5e:ed:af:6d:03:26:c2:35:ce:df: 25:f5:3c:14:ac:b9:4d:a1:60:a0:c1:78:a2:19:15:09:59:81: f3:45:58:42:7d:fe:53:2a:06:2c:53:28:08:12:ec:19:b3:67: 3e:1d:b8:0d:68:1b:d3:66:ed:d9:cf:00:a1:0c:b3:93:ca:06: 46:96:2e:be:13:3e:ab:c8:17:af:a0:e2:5a:86:de:4c:6b:05: 56:4b:db:cd:ee:88:42:af:1c:04:38:2c:d1:ca:e0:da:5f:68: 0c:15:e9:51:85:d7:4b:45:3d:ce:ca:e8:44:e9:e8:c2:fb:0a: 4f:ad:4c:81:07:9d:7b:a4:ea:b2:6f:8e:9a:bc:5c:be:b1:c9: c2:68:6f:cf:72:d6:25:00:83:5b:2f:d6:77:39:0f:a7:ba:71: 5a:b2:f7:f9:c7:79:c7:6c:a6:6c:f4:e0:f0:ef:53:e5:5e:f3: 92:91:4e:c2:6e:ac:d3:ab:d6:63:8d:5d:90:3a:0b:91:87:11: 8a:ab:08:01 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt/FfvyNlZmXHzc7bgXa+yhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MGUyYTIwN2Y2OTc3MjE0YTk1N2E4ZTE0OGQxZjhiNWE1 Y2QwODIwHhcNMjYwMTAyMTQyMTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjFiODU5MTE0NTgzNjQzNzFlOGFmZjJkZTBhNGFjZTRmMWJhNGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HCk8GU8OQpdd4ESKz6J4KhEhZSR O3nbL31eZ0xq2SsodYLagNooXSNiWubA7HxLIoZnyncY1Uwy1cnquywqTitd6lDK 12WyYzhPH49zD7Urufz66Miux/9UhMRL6DWyVfYyKZROR5hza6mmr42J8xIulfjx GiBfgEv5+qLmTaE/r1QQDHlYeo0DwCQrkJwGeuXBjA5E5rQ7ENFDGf+Z0pwQ5BGv OY2YflPGAm3c+YFYez5pYRJR6pKaUYTHooVg1HZ+b8pj9pooTbVFbfwqatHer7DR MBU5sgInjVlu+3HEyZO0PDrbyyRkgZV97p9twmAfH40p2JSUtSDbyaammwIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFPsbhZEUWDZDceiv8t4KSs5PG6TVMB8GA1UdIwQY MBaAFIcOKiB/aXchSpV6jhSNH4taXNCCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHc0cUlIOXBkeUZLbFhxT0ZJMGZpMXBjMElJLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi80MjExNTgtZjBjNi00NjE5LWFmYTUt OGE5NDY4N2RiYTZmLzEvMS14dUZrUlJZTmtOeDZLX3kzZ3BLems4YnBOVS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYWYvNDIxMTU4LWYwYzYtNDYxOS1hZmE1LThhOTQ2ODdkYmE2 Zi8xL2h3NHFJSDlwZHlGS2xYcU9GSTBmaTFwYzBJSS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAMGjXTAN BAIAAjAHAwUDKhEfQDANBgkqhkiG9w0BAQsFAAOCAQEAaAJjeKsQnwxpNo53qGw7 VGpq5GeIdWceFIIKqTF7QirUNhe1Qb9hBaT/U7kHzVQeBEj4z3gecW5TDDNVcd1e 7a9tAybCNc7fJfU8FKy5TaFgoMF4ohkVCVmB80VYQn3+UyoGLFMoCBLsGbNnPh24 DWgb02bt2c8AoQyzk8oGRpYuvhM+q8gXr6DiWobeTGsFVkvbze6IQq8cBDgs0crg 2l9oDBXpUYXXS0U9zsroROnowvsKT61MgQede6Tqsm+OmrxcvrHJwmhvz3LWJQCD Wy/WdzkPp7pxWrL3+cd5x2ymbPTg8O9T5V7zkpFOwm6s06vWY41dkDoLkYcRiqsI AQ== -----END CERTIFICATE-----Generated at Mon Jan 26 23:46:44 2026 by rpki-client