This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/i3DPlV7qVaiAt9ynXy5L-i3_pNQ.roa File: i3DPlV7qVaiAt9ynXy5L-i3_pNQ.roa (raw, json) Hash identifier: H17q25iF1KQuJX5z0li6UpqbGhu6sWpWMAgJ8OAGkiQ= Subject key identifier: 8B:70:CF:95:5E:EA:55:A8:80:B7:DC:A7:5F:2E:4B:FA:2D:FF:A4:D4 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C13680AFDD1F4FFE6E7405AF4CDCF03 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/i3DPlV7qVaiAt9ynXy5L-i3_pNQ.roa Signing time: Fri 02 Jan 2026 00:20:05 +0000 ROA not before: Fri 02 Jan 2026 00:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25693 IP address blocks: 193.58.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:68:0a:fd:d1:f4:ff:e6:e7:40:5a:f4:cd:cf:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b70cf955eea55a880b7dca75f2e4bfa2dffa4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7c:02:a4:1b:80:54:ca:cc:5a:5c:c9:46:bd: 5c:ba:ac:7b:98:72:1d:b9:90:11:2d:d1:d3:f2:c9: b1:27:3f:f4:49:c1:5b:84:c2:9a:f0:4f:01:a8:9f: d0:32:27:34:e8:d9:34:be:59:e3:eb:8c:05:d8:2d: 1f:b8:f0:45:6c:ac:ad:a2:d6:70:bc:9d:4e:76:ff: 86:66:cd:92:c3:7e:c8:c5:e0:9d:32:b9:28:60:fd: 85:8e:92:ed:47:6e:c4:e7:ec:00:b0:be:50:a3:cc: 8f:aa:db:f9:d2:36:a4:6c:e6:0a:bc:49:2b:ff:62: a1:27:00:ee:37:bd:f0:03:fe:a0:3b:d0:0f:10:6c: 6d:46:da:37:a1:d0:30:94:92:2a:47:80:d4:91:ea: 91:44:e4:af:9e:da:12:ad:eb:48:da:84:a6:29:fb: 5e:ce:e7:e1:8b:f6:a3:2d:7f:5c:d2:21:54:cd:d4: 36:f1:86:8a:a7:d2:4f:e7:e7:61:53:28:fa:e2:ee: 2b:88:91:8a:0e:d7:6a:9e:7f:21:d5:56:41:3a:29: 59:74:a1:76:36:c2:5e:ba:a7:76:56:14:eb:8c:2c: 90:14:60:b2:b9:7f:01:0a:56:e7:4c:a5:84:09:91: 2f:c3:84:bf:0c:4b:12:ef:eb:61:6c:55:8e:d1:b7: 03:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:70:CF:95:5E:EA:55:A8:80:B7:DC:A7:5F:2E:4B:FA:2D:FF:A4:D4 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/i3DPlV7qVaiAt9ynXy5L-i3_pNQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.58.147.0/24 Signature Algorithm: sha256WithRSAEncryption 46:02:5e:82:6f:02:c8:b5:11:f0:b4:73:7b:50:41:c9:30:ec: f1:9a:74:a8:dd:2f:9b:3b:83:6a:4a:2d:79:a1:00:6e:ea:04: 42:bb:23:5b:4d:22:93:0b:7d:a0:01:7e:1c:55:e7:da:9e:1c: 5a:cf:74:a0:b6:4e:95:da:1a:a5:6d:d9:cb:f6:8c:c9:84:59: a7:f6:68:ca:56:b8:d0:c3:76:9f:80:79:0c:c9:17:d9:63:21: 01:14:49:67:b5:6a:27:59:b0:c0:ed:e8:a1:73:c5:99:f5:f9: 33:da:d3:0f:df:eb:1c:47:74:19:c7:21:11:f7:d8:da:48:df: c2:65:0a:fc:7a:3b:7c:a1:e4:25:e2:a4:39:f2:a2:32:24:ab: 3f:09:54:15:00:b0:a4:dc:bb:d6:19:35:4f:84:41:ed:56:ec: 7d:c3:e9:70:99:44:66:f9:3e:c4:86:b0:a5:bc:85:ef:f4:5d: 47:d0:c0:85:54:58:97:c2:27:d3:f8:2c:17:29:b1:1a:88:f8: e8:75:b9:b3:1e:c7:da:3c:2a:2c:a7:9f:78:ea:b1:ae:a3:63: ca:af:f8:e1:eb:45:08:e7:74:84:dd:24:f8:3d:25:1b:17:aa: 33:75:b4:84:12:b8:e0:3a:cc:b2:9f:7d:c5:ff:52:c2:11:b3: 08:8c:5e:d4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E2gK/dH0/+bnQFr0zc8DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjcwY2Y5NTVlZWE1NWE4ODBiN2RjYTc1ZjJlNGJmYTJkZmZhNGQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXwCpBuAVMrMWlzJRr1cuqx7mHId uZARLdHT8smxJz/0ScFbhMKa8E8BqJ/QMic06Nk0vlnj64wF2C0fuPBFbKytotZw vJ1Odv+GZs2Sw37IxeCdMrkoYP2FjpLtR27E5+wAsL5Qo8yPqtv50jakbOYKvEkr /2KhJwDuN73wA/6gO9APEGxtRto3odAwlJIqR4DUkeqRROSvntoSretI2oSmKfte zufhi/ajLX9c0iFUzdQ28YaKp9JP5+dhUyj64u4riJGKDtdqnn8h1VZBOilZdKF2 NsJeuqd2VhTrjCyQFGCyuX8BClbnTKWECZEvw4S/DEsS7+thbFWO0bcDuwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFItwz5Ve6lWogLfcp18uS/ot/6TUMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvaTNEUGxWN3FWYWlBdDl5blh5NUwtaTNfcE5RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTqTMA0G CSqGSIb3DQEBCwUAA4IBAQBGAl6CbwLItRHwtHN7UEHJMOzxmnSo3S+bO4NqSi15 oQBu6gRCuyNbTSKTC32gAX4cVefanhxaz3Sgtk6V2hqlbdnL9ozJhFmn9mjKVrjQ w3afgHkMyRfZYyEBFElntWonWbDA7eihc8WZ9fkz2tMP3+scR3QZxyER99jaSN/C ZQr8ejt8oeQl4qQ58qIyJKs/CVQVALCk3LvWGTVPhEHtVux9w+lwmURm+T7EhrCl vIXv9F1H0MCFVFiXwifT+CwXKbEaiPjodbmzHsfaPCosp5946rGuo2PKr/jh60UI 53SE3ST4PSUbF6ozdbSEErjgOsyyn33F/1LCEbMIjF7U -----END CERTIFICATE-----Generated at Fri Jan 2 23:53:24 2026 by rpki-client