This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/Rsd9tmeGIhGuC32RRTqMOhvYKbQ.roa File: Rsd9tmeGIhGuC32RRTqMOhvYKbQ.roa (raw, json) Hash identifier: PMC54QUfoznlYL5Dx4xudhJ86P6zIvFtq6pV3rKVTWg= Subject key identifier: 46:C7:7D:B6:67:86:22:11:AE:0B:7D:91:45:3A:8C:3A:1B:D8:29:B4 Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf Certificate serial: 019B79108419807EBB3EFA72BC054F6FE4E8 Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/Rsd9tmeGIhGuC32RRTqMOhvYKbQ.roa Signing time: Thu 01 Jan 2026 10:18:04 +0000 ROA not before: Thu 01 Jan 2026 10:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205733 IP address blocks: 194.116.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.mft rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:84:19:80:7e:bb:3e:fa:72:bc:05:4f:6f:e4:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf Validity Not Before: Jan 1 10:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=46c77db667862211ae0b7d91453a8c3a1bd829b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:db:78:a5:d0:62:8c:4e:2d:aa:a2:6b:72:56: 02:76:8f:f2:e8:65:38:ae:71:74:9a:06:b5:69:90: 97:b2:4b:d4:78:1b:df:99:79:fa:b2:fd:ba:c3:da: 5d:08:ac:c9:bd:ab:7a:10:5d:3c:4b:b9:ff:79:64: 3e:0a:a6:27:51:02:eb:75:05:e6:02:73:29:fd:25: e7:84:06:fc:ab:89:b2:f9:19:4b:77:93:68:d1:3f: 5c:4d:03:42:0c:91:87:7b:77:d2:34:3c:a2:60:98: 43:b0:12:59:0e:6f:2d:a0:9b:fe:f0:2e:cd:ee:11: 44:1e:36:15:df:d1:4b:df:72:da:68:76:92:2c:56: 7f:6c:bc:36:c7:ec:ae:a9:b7:20:ae:41:6a:91:1f: 66:d9:3e:1c:45:10:99:fb:c5:2b:83:68:67:1c:23: 8b:28:f6:e5:ed:7d:34:1e:bc:30:6b:65:98:c0:14: 2b:5e:93:c4:47:77:e7:5f:f4:83:3e:ec:68:10:52: 83:ee:e4:ef:8d:74:4b:17:14:9c:68:93:53:c6:be: 06:a3:d4:a2:9c:42:36:f0:c1:f9:e8:6c:d5:88:1a: d4:87:bd:0e:e8:c4:f0:ef:ff:36:64:41:f1:b1:06: f8:1b:b7:be:ae:36:bf:87:25:86:3c:bc:cb:16:47: f7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C7:7D:B6:67:86:22:11:AE:0B:7D:91:45:3A:8C:3A:1B:D8:29:B4 X509v3 Authority Key Identifier: keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/Rsd9tmeGIhGuC32RRTqMOhvYKbQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.116.228.0/24 Signature Algorithm: sha256WithRSAEncryption 35:93:d9:78:7c:02:1e:ce:23:4c:64:18:73:e8:8a:ec:71:c7: 4e:46:98:ef:01:73:44:c2:a6:a7:75:45:80:b5:c1:46:4d:b2: 84:a4:c7:79:25:ba:b0:da:24:7b:1f:75:26:b0:94:45:6a:f0: f3:04:c7:53:5e:9d:ea:89:6c:7d:cb:19:28:f6:a9:0e:96:5e: 2d:d0:2b:f7:3a:9e:a2:4f:83:9f:50:b4:9f:d2:3a:23:bf:74: 68:51:a5:86:6b:9a:2c:3a:63:f6:ff:39:43:9c:fb:74:f4:05: 08:73:55:76:81:9f:07:50:b2:7d:0b:3f:d0:37:1b:a6:13:68: f0:ad:ea:17:63:46:b9:fa:80:85:43:39:c0:2e:24:da:26:76: 9e:d9:9b:34:ed:c1:2b:41:34:66:00:49:52:6f:b4:71:0c:81: e3:cc:2e:bc:c7:5b:1f:4d:8e:97:1f:6d:5f:3a:05:b1:9b:91: 62:d0:dc:bd:e3:15:65:f1:94:dd:79:29:42:d0:05:ca:41:de: 56:31:e3:2d:7d:88:57:52:4c:2e:03:1f:66:bc:e8:e2:63:d7: c0:9e:d1:93:b7:8f:27:7b:a9:79:62:49:78:9a:bb:14:dd:9e: 60:2b:4c:8c:81:10:dc:33:b7:06:f9:30:e1:0e:c1:34:79:4f: 90:e0:86:2d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EIQZgH67PvpyvAVPb+ToMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl ZjVkYWYwHhcNMjYwMTAxMTAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NmM3N2RiNjY3ODYyMjExYWUwYjdkOTE0NTNhOGMzYTFiZDgyOWI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytt4pdBijE4tqqJrclYCdo/y6GU4 rnF0mga1aZCXskvUeBvfmXn6sv26w9pdCKzJvat6EF08S7n/eWQ+CqYnUQLrdQXm AnMp/SXnhAb8q4my+RlLd5No0T9cTQNCDJGHe3fSNDyiYJhDsBJZDm8toJv+8C7N 7hFEHjYV39FL33LaaHaSLFZ/bLw2x+yuqbcgrkFqkR9m2T4cRRCZ+8Urg2hnHCOL KPbl7X00Hrwwa2WYwBQrXpPER3fnX/SDPuxoEFKD7uTvjXRLFxScaJNTxr4Go9Si nEI28MH56GzViBrUh70O6MTw7/82ZEHxsQb4G7e+rja/hyWGPLzLFkf3FwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEbHfbZnhiIRrgt9kUU6jDob2Cm0MB8GA1UdIwQY MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt NWRkNmUyMmViYWIwLzEvUnNkOXRtZUdJaEd1QzMyUlJUcU1PaHZZS2JRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwnTkMA0G CSqGSIb3DQEBCwUAA4IBAQA1k9l4fAIeziNMZBhz6IrsccdORpjvAXNEwqandUWA tcFGTbKEpMd5Jbqw2iR7H3UmsJRFavDzBMdTXp3qiWx9yxko9qkOll4t0Cv3Op6i T4OfULSf0jojv3RoUaWGa5osOmP2/zlDnPt09AUIc1V2gZ8HULJ9Cz/QNxumE2jw reoXY0a5+oCFQznALiTaJnae2Zs07cErQTRmAElSb7RxDIHjzC68x1sfTY6XH21f OgWxm5Fi0Ny94xVl8ZTdeSlC0AXKQd5WMeMtfYhXUkwuAx9mvOjiY9fAntGTt48n e6l5Ykl4mrsU3Z5gK0yMgRDcM7cG+TDhDsE0eU+Q4IYt -----END CERTIFICATE-----Generated at Thu Jan 22 15:28:51 2026 by rpki-client