This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/D6FT3UwTdLs9gC1WiQiwIa_7mEs.roa File: D6FT3UwTdLs9gC1WiQiwIa_7mEs.roa (raw, json) Hash identifier: Jy9CPzSOcDSc04gWq+va5Hkkp73DOKaunLfx7olDL2k= Subject key identifier: 0F:A1:53:DD:4C:13:74:BB:3D:80:2D:56:89:08:B0:21:AF:FB:98:4B Certificate issuer: /CN=bd8a8557df7fb2c418f8ebf17c0a1ef0625d74a3 Certificate serial: 019B7910D99233C6A176E80BBC3403E56144 Authority key identifier: BD:8A:85:57:DF:7F:B2:C4:18:F8:EB:F1:7C:0A:1E:F0:62:5D:74:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYqFV99_ssQY-OvxfAoe8GJddKM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/D6FT3UwTdLs9gC1WiQiwIa_7mEs.roa Signing time: Thu 01 Jan 2026 10:18:26 +0000 ROA not before: Thu 01 Jan 2026 10:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16189 IP address blocks: 193.41.222.0/23 maxlen: 23 195.254.146.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/vYqFV99_ssQY-OvxfAoe8GJddKM.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/vYqFV99_ssQY-OvxfAoe8GJddKM.mft rsync://rpki.ripe.net/repository/DEFAULT/vYqFV99_ssQY-OvxfAoe8GJddKM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:d9:92:33:c6:a1:76:e8:0b:bc:34:03:e5:61:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd8a8557df7fb2c418f8ebf17c0a1ef0625d74a3 Validity Not Before: Jan 1 10:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0fa153dd4c1374bb3d802d568908b021affb984b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:15:d2:fb:89:3c:6d:4c:7a:e2:11:bb:b3:e1: 91:1d:44:47:be:30:f4:f0:f8:37:71:7c:b4:97:08: 9c:61:94:ea:c4:3e:47:79:1e:a5:50:f7:14:c8:10: 35:ba:18:c7:be:ec:0d:af:21:c4:a0:d9:f0:af:f5: dc:cb:f6:c8:35:b0:68:5e:81:bf:ac:6c:0c:58:20: 71:02:9c:90:d8:48:d0:8f:4c:74:d5:d3:91:93:4e: 5b:d2:80:b2:88:4e:46:de:16:54:c9:9c:64:1b:01: 66:f8:c3:24:5e:0f:af:8f:bd:be:9c:7d:48:5b:c5: 76:a0:be:f4:a7:ac:5f:92:74:cc:99:4d:5b:dc:c0: 26:e4:3d:93:51:4c:e7:1a:05:b4:86:3f:b6:8e:29: d2:d4:23:bf:d8:0a:03:e1:86:1c:a4:3a:ec:c8:a5: 9a:61:90:fb:d2:0b:78:6c:ae:a6:53:09:3f:87:24: 78:d4:94:fb:ba:a9:79:1a:50:7c:8b:96:1d:4e:6a: 0d:25:17:38:5b:5b:f1:c2:c3:f3:cf:ec:98:c0:9f: 52:c2:4c:09:7e:9f:f5:e0:da:9c:48:16:d3:1f:0e: d1:6f:ec:02:f9:9b:98:d1:35:0e:43:41:41:7a:10: 57:6d:e5:a6:e1:76:d3:0b:02:b7:57:1f:f9:03:21: 70:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A1:53:DD:4C:13:74:BB:3D:80:2D:56:89:08:B0:21:AF:FB:98:4B X509v3 Authority Key Identifier: keyid:BD:8A:85:57:DF:7F:B2:C4:18:F8:EB:F1:7C:0A:1E:F0:62:5D:74:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYqFV99_ssQY-OvxfAoe8GJddKM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/D6FT3UwTdLs9gC1WiQiwIa_7mEs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/296972-a1b9-4517-82cb-f2cdb7f575e9/1/vYqFV99_ssQY-OvxfAoe8GJddKM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.41.222.0/23 195.254.146.0/23 Signature Algorithm: sha256WithRSAEncryption 89:0f:6b:40:4a:8d:33:32:4b:99:d4:3e:74:4d:ab:ff:64:ae: 81:ac:d0:f2:1a:6f:7a:26:e3:b8:57:1c:54:4a:64:56:8a:bf: 40:5b:f5:45:f8:e6:a3:9f:c0:b1:b3:67:e6:f6:69:60:c9:2c: 1c:af:f7:23:18:11:24:11:53:0f:c3:2b:97:5b:3e:a1:ae:b9: ae:5e:19:e0:eb:0f:4d:99:23:9e:0c:a4:eb:77:df:31:fb:b6: 25:da:3c:fd:49:0c:71:c1:36:66:a2:28:ba:c7:e0:4d:2a:0c: a3:ef:d4:c8:ab:67:22:92:f3:13:ad:a9:59:49:98:75:5c:27: a3:e1:a5:0d:39:ab:c9:e4:d3:ef:40:b5:e5:4f:dc:77:a1:94: 51:eb:42:f2:4e:5c:a7:dc:22:4e:72:2c:2e:12:1d:83:3b:ec: 75:0d:f5:a2:2f:68:86:da:77:71:b6:57:2a:bb:14:82:7d:9b: 09:80:8d:9a:5f:c3:de:21:61:38:f8:03:a7:83:c9:fc:15:f0: c8:54:8a:99:16:60:27:96:43:55:0c:43:94:37:94:ed:e1:42: f5:de:98:6c:9f:5f:a3:6f:cc:79:aa:4b:72:7d:f0:1d:6e:85: ee:7c:1b:7b:52:02:56:4b:3c:88:ba:2c:60:33:48:3c:c5:97: c0:9e:7c:0f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5ENmSM8ahdugLvDQD5WFEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkOGE4NTU3ZGY3ZmIyYzQxOGY4ZWJmMTdjMGExZWYwNjI1 ZDc0YTMwHhcNMjYwMTAxMTAxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmExNTNkZDRjMTM3NGJiM2Q4MDJkNTY4OTA4YjAyMWFmZmI5ODRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRXS+4k8bUx64hG7s+GRHURHvjD0 8Pg3cXy0lwicYZTqxD5HeR6lUPcUyBA1uhjHvuwNryHEoNnwr/Xcy/bINbBoXoG/ rGwMWCBxApyQ2EjQj0x01dORk05b0oCyiE5G3hZUyZxkGwFm+MMkXg+vj72+nH1I W8V2oL70p6xfknTMmU1b3MAm5D2TUUznGgW0hj+2jinS1CO/2AoD4YYcpDrsyKWa YZD70gt4bK6mUwk/hyR41JT7uql5GlB8i5YdTmoNJRc4W1vxwsPzz+yYwJ9SwkwJ fp/14NqcSBbTHw7Rb+wC+ZuY0TUOQ0FBehBXbeWm4XbTCwK3Vx/5AyFwgwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFA+hU91ME3S7PYAtVokIsCGv+5hLMB8GA1UdIwQY MBaAFL2KhVfff7LEGPjr8XwKHvBiXXSjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdllxRlY5OV9zc1FZLU92eGZBb2U4R0pkZEtNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC8yOTY5NzItYTFiOS00NTE3LTgyY2It ZjJjZGI3ZjU3NWU5LzEvRDZGVDNVd1RkTHM5Z0MxV2lRaXdJYV83bUVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC8yOTY5NzItYTFiOS00NTE3LTgyY2ItZjJjZGI3ZjU3NWU5 LzEvdllxRlY5OV9zc1FZLU92eGZBb2U4R0pkZEtNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBwSneAwQB w/6SMA0GCSqGSIb3DQEBCwUAA4IBAQCJD2tASo0zMkuZ1D50Tav/ZK6BrNDyGm96 JuO4VxxUSmRWir9AW/VF+Oajn8Cxs2fm9mlgySwcr/cjGBEkEVMPwyuXWz6hrrmu Xhng6w9NmSOeDKTrd98x+7Yl2jz9SQxxwTZmoii6x+BNKgyj79TIq2cikvMTralZ SZh1XCej4aUNOavJ5NPvQLXlT9x3oZRR60LyTlyn3CJOciwuEh2DO+x1DfWiL2iG 2ndxtlcquxSCfZsJgI2aX8PeIWE4+AOng8n8FfDIVIqZFmAnlkNVDEOUN5Tt4UL1 3phsn1+jb8x5qktyffAdboXufBt7UgJWSzyIuixgM0g8xZfAnnwP -----END CERTIFICATE-----Generated at Mon Feb 9 21:25:44 2026 by rpki-client