This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/fQpqOd1l93-P-yMVY0liF15r3FA.roa File: fQpqOd1l93-P-yMVY0liF15r3FA.roa (raw, json) Hash identifier: fe669y4X3Xx1cDS4i66TQBvbP8wPt7PZfJZDiZ3TAoM= Subject key identifier: 7D:0A:6A:39:DD:65:F7:7F:8F:FB:23:15:63:49:62:17:5E:6B:DC:50 Certificate issuer: /CN=e24bc2870de2599daf66497f5729c74b33ef993a Certificate serial: 019B78A2EE9F8A0E6D4D224DCAF563C3AAF8 Authority key identifier: E2:4B:C2:87:0D:E2:59:9D:AF:66:49:7F:57:29:C7:4B:33:EF:99:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4kvChw3iWZ2vZkl_VynHSzPvmTo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/fQpqOd1l93-P-yMVY0liF15r3FA.roa Signing time: Thu 01 Jan 2026 08:18:22 +0000 ROA not before: Thu 01 Jan 2026 08:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 193.178.185.0/24 maxlen: 24 2001:7f8:19::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/4kvChw3iWZ2vZkl_VynHSzPvmTo.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/4kvChw3iWZ2vZkl_VynHSzPvmTo.mft rsync://rpki.ripe.net/repository/DEFAULT/4kvChw3iWZ2vZkl_VynHSzPvmTo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:ee:9f:8a:0e:6d:4d:22:4d:ca:f5:63:c3:aa:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e24bc2870de2599daf66497f5729c74b33ef993a Validity Not Before: Jan 1 08:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d0a6a39dd65f77f8ffb2315634962175e6bdc50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b5:18:af:a2:ae:92:d0:fd:37:a1:9a:2d:4d: c8:fb:98:fe:ed:17:e4:a6:ba:9c:d3:10:08:50:f0: 35:5f:20:21:78:d4:8f:dd:67:1c:b9:b4:1e:c8:d7: 7c:e0:96:15:6a:8d:50:80:70:6d:26:bc:74:aa:0a: 87:1e:9a:4e:e3:bf:8d:57:77:f2:40:e1:86:de:ad: d6:8e:0c:76:b5:77:ca:6e:30:80:2b:c0:4c:95:a8: fb:a4:97:db:5b:75:0f:a1:e9:75:0f:53:26:e2:03: 1a:2a:da:32:5b:35:1f:c4:8d:36:7a:87:c8:f2:a3: 00:83:70:8e:90:e3:ad:a1:44:e7:03:6f:b6:76:26: 0b:6b:34:89:93:c9:93:d4:00:fd:9c:4f:96:6b:c6: b9:f8:f4:eb:c0:17:0a:29:88:cf:54:3b:bf:9a:4b: e6:ea:a9:19:7f:24:16:4b:cc:f4:45:c5:2b:17:74: d0:42:0e:3f:82:b9:c7:ed:9e:7b:2b:69:01:c9:c9: 0e:ea:b3:9f:c4:f0:69:7a:9a:d3:84:5f:d7:f2:81: 1f:05:c1:9e:4b:54:23:0d:e1:f6:55:2c:50:32:4d: 69:a0:c7:a0:53:c8:4d:3e:51:c8:02:92:e9:1d:3d: 20:c5:78:dd:af:b7:b9:ac:ea:df:ba:01:ad:39:dc: 77:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0A:6A:39:DD:65:F7:7F:8F:FB:23:15:63:49:62:17:5E:6B:DC:50 X509v3 Authority Key Identifier: keyid:E2:4B:C2:87:0D:E2:59:9D:AF:66:49:7F:57:29:C7:4B:33:EF:99:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4kvChw3iWZ2vZkl_VynHSzPvmTo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/fQpqOd1l93-P-yMVY0liF15r3FA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/be1720-801e-4f9e-a5c1-68a2f0bb5b7a/1/4kvChw3iWZ2vZkl_VynHSzPvmTo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.178.185.0/24 IPv6: 2001:7f8:19::/48 Signature Algorithm: sha256WithRSAEncryption 1e:69:4a:75:d7:08:cf:77:5c:7e:f9:5d:1f:cf:61:c0:14:f7: 0d:80:b9:9b:8f:47:a9:67:cc:91:64:a1:f9:8c:48:12:9a:cf: 43:2d:b2:7e:18:1f:0c:4c:0a:1c:41:1d:f0:53:81:8e:bc:4c: 2d:6d:76:68:f7:04:88:f5:cd:0c:16:05:0d:6b:a2:a0:c6:cf: 4a:08:45:f3:09:34:32:8d:6e:a6:e0:9d:36:a9:6f:53:fb:31: 40:7b:30:76:57:c8:2e:60:93:85:98:3e:15:29:14:0a:7a:07: 59:6d:66:c7:25:05:55:25:42:f9:4b:68:6a:58:b4:cb:39:5a: 88:e4:65:7a:41:66:fd:28:ad:e1:b0:2c:9c:ed:20:88:52:94: a5:17:c7:51:6d:a8:3b:e9:11:35:a5:58:84:4a:f4:19:d0:eb: b6:dd:21:a8:2d:73:2b:7b:f0:f7:70:5f:b3:da:2a:82:d9:65: 47:12:2f:fd:74:15:49:21:6f:74:79:27:d3:0e:09:3d:20:30: 6b:93:c4:58:37:cd:0f:9c:81:7e:10:5f:1c:c1:bb:8b:bd:d0: 4e:be:10:3e:86:6b:22:08:29:21:b8:58:52:3f:a7:46:53:cd: db:aa:4d:49:7e:94:ff:de:c2:0b:82:df:71:16:46:b2:19:e7: b0:2a:3e:18 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4ou6fig5tTSJNyvVjw6r4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyNGJjMjg3MGRlMjU5OWRhZjY2NDk3ZjU3MjljNzRiMzNl Zjk5M2EwHhcNMjYwMTAxMDgxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDBhNmEzOWRkNjVmNzdmOGZmYjIzMTU2MzQ5NjIxNzVlNmJkYzUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6LUYr6KuktD9N6GaLU3I+5j+7Rfk prqc0xAIUPA1XyAheNSP3WccubQeyNd84JYVao1QgHBtJrx0qgqHHppO47+NV3fy QOGG3q3Wjgx2tXfKbjCAK8BMlaj7pJfbW3UPoel1D1Mm4gMaKtoyWzUfxI02eofI 8qMAg3COkOOtoUTnA2+2diYLazSJk8mT1AD9nE+Wa8a5+PTrwBcKKYjPVDu/mkvm 6qkZfyQWS8z0RcUrF3TQQg4/grnH7Z57K2kByckO6rOfxPBpeprThF/X8oEfBcGe S1QjDeH2VSxQMk1poMegU8hNPlHIApLpHT0gxXjdr7e5rOrfugGtOdx3UwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFH0KajndZfd/j/sjFWNJYhdea9xQMB8GA1UdIwQY MBaAFOJLwocN4lmdr2ZJf1cpx0sz75k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGt2Q2h3M2lXWjJ2WmtsX1Z5bkhTelB2bVRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9iZTE3MjAtODAxZS00ZjllLWE1YzEt NjhhMmYwYmI1YjdhLzEvZlFwcU9kMWw5My1QLXlNVlkwbGlGMTVyM0ZBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC9iZTE3MjAtODAxZS00ZjllLWE1YzEtNjhhMmYwYmI1Yjdh LzEvNGt2Q2h3M2lXWjJ2WmtsX1Z5bkhTelB2bVRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwbK5MA8E AgACMAkDBwAgAQf4ABkwDQYJKoZIhvcNAQELBQADggEBAB5pSnXXCM93XH75XR/P YcAU9w2AuZuPR6lnzJFkofmMSBKaz0Mtsn4YHwxMChxBHfBTgY68TC1tdmj3BIj1 zQwWBQ1roqDGz0oIRfMJNDKNbqbgnTapb1P7MUB7MHZXyC5gk4WYPhUpFAp6B1lt ZsclBVUlQvlLaGpYtMs5WojkZXpBZv0oreGwLJztIIhSlKUXx1FtqDvpETWlWIRK 9BnQ67bdIagtcyt78PdwX7PaKoLZZUcSL/10FUkhb3R5J9MOCT0gMGuTxFg3zQ+c gX4QXxzBu4u90E6+ED6GayIIKSG4WFI/p0ZTzduqTUl+lP/ewguC33EWRrIZ57Aq Phg= -----END CERTIFICATE-----Generated at Fri Jan 9 17:05:26 2026 by rpki-client