This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/AwKBOhlF9uaXHOgDwaWxiRTycC8.roa File: AwKBOhlF9uaXHOgDwaWxiRTycC8.roa (raw, json) Hash identifier: ulOM++8A5dnNmN9Kuzc/O4/HWsO5q48Fbn6dGRtakzw= Subject key identifier: 03:02:81:3A:19:45:F6:E6:97:1C:E8:03:C1:A5:B1:89:14:F2:70:2F Certificate issuer: /CN=b8207697d0b7c24199e6dd1282b49b56cef0244f Certificate serial: 019B7EA55D25978271D73BA9863DA83C9F90 Authority key identifier: B8:20:76:97:D0:B7:C2:41:99:E6:DD:12:82:B4:9B:56:CE:F0:24:4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/AwKBOhlF9uaXHOgDwaWxiRTycC8.roa Signing time: Fri 02 Jan 2026 12:18:45 +0000 ROA not before: Fri 02 Jan 2026 12:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12389 IP address blocks: 194.38.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.mft rsync://rpki.ripe.net/repository/DEFAULT/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:5d:25:97:82:71:d7:3b:a9:86:3d:a8:3c:9f:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8207697d0b7c24199e6dd1282b49b56cef0244f Validity Not Before: Jan 2 12:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0302813a1945f6e6971ce803c1a5b18914f2702f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e4:24:fd:a9:d1:34:b8:b4:2a:5f:5b:f4:61: 0b:d4:6c:c0:c8:85:98:ad:15:ea:2c:af:33:20:ad: 23:27:72:fc:3d:92:99:97:d7:72:b5:f5:ce:0e:56: b0:46:4f:b0:88:36:c9:93:a9:0b:e0:9e:d9:fe:05: 6d:9e:00:9f:13:97:7d:84:78:86:00:6a:30:d4:74: c5:32:68:2f:d7:f6:e6:4d:8c:03:10:9c:8e:0a:cc: f2:53:2e:24:75:ae:87:1b:40:81:64:31:fe:b7:50: 3f:a9:55:b7:8b:3c:3e:f1:f4:bf:56:11:6a:48:63: 0e:3f:29:50:00:ce:61:5b:39:b7:86:0f:4c:69:13: 4a:a8:06:31:f1:cc:7f:29:62:59:25:17:a7:0b:8d: 98:e3:6c:75:22:68:c8:61:16:aa:14:21:28:d0:84: 0b:1d:65:8f:f4:80:ae:1e:90:5a:6b:43:85:83:6e: 13:a5:c4:79:fe:01:9d:bc:a0:04:a6:c9:f5:a4:dd: eb:cc:17:c2:e9:46:0b:ac:a5:cb:fe:09:80:bb:4a: 4a:b6:8f:e9:24:49:5a:6e:e7:81:ff:03:c5:da:9a: 89:2e:e2:18:c8:97:b7:7f:ad:83:72:b7:74:a8:17: 69:0d:09:ac:28:39:99:2c:8e:e1:2b:e8:b8:a0:32: 87:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:02:81:3A:19:45:F6:E6:97:1C:E8:03:C1:A5:B1:89:14:F2:70:2F X509v3 Authority Key Identifier: keyid:B8:20:76:97:D0:B7:C2:41:99:E6:DD:12:82:B4:9B:56:CE:F0:24:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/AwKBOhlF9uaXHOgDwaWxiRTycC8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.38.9.0/24 Signature Algorithm: sha256WithRSAEncryption bb:17:a6:3d:af:1a:c4:24:ba:20:6e:e0:12:23:b2:28:1f:e6: d1:6b:2d:8e:af:93:76:9e:ea:dd:3c:c0:d6:e8:4c:5e:6e:05: 13:85:94:36:fb:0c:c4:81:7e:2b:b4:bc:43:a7:2d:2b:ec:7c: 4a:24:0c:d2:64:d2:a7:6f:96:91:4d:f9:75:6f:e2:4b:86:f8: 9a:f0:e2:2a:65:de:c6:f6:e9:e9:d9:37:35:d9:74:f5:04:ee: e8:11:d3:dd:94:b4:2f:d5:6f:c8:1c:2a:f3:ce:e4:d8:d0:50: 43:42:01:96:a8:6e:8c:fc:d3:b4:f7:b2:85:9b:24:ab:54:0f: ce:b3:56:02:6b:f5:47:0a:30:86:e7:32:1b:3d:a0:5d:28:cd: 04:47:40:4a:a2:c1:8f:55:e8:41:e5:9a:4d:9b:17:5e:6f:ba: 6d:22:14:5f:9a:44:1b:bb:d3:2f:93:e2:f9:91:5b:72:0c:9b: fe:43:aa:59:83:56:2c:7c:a2:97:ac:f0:94:b7:ea:ea:ac:9e: b2:a0:ac:6a:2a:38:5d:3c:fd:14:4f:d9:e5:8f:51:7e:38:3e: 0f:99:25:89:83:12:cf:b0:90:05:ea:a4:29:36:8d:40:74:85: c8:eb:89:f7:37:22:7a:3a:f4:78:11:49:75:81:fc:42:67:fc: 22:e0:66:1c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pV0ll4Jx1zuphj2oPJ+QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4MjA3Njk3ZDBiN2MyNDE5OWU2ZGQxMjgyYjQ5YjU2Y2Vm MDI0NGYwHhcNMjYwMTAyMTIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzAyODEzYTE5NDVmNmU2OTcxY2U4MDNjMWE1YjE4OTE0ZjI3MDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuQk/anRNLi0Kl9b9GEL1GzAyIWY rRXqLK8zIK0jJ3L8PZKZl9dytfXODlawRk+wiDbJk6kL4J7Z/gVtngCfE5d9hHiG AGow1HTFMmgv1/bmTYwDEJyOCszyUy4kda6HG0CBZDH+t1A/qVW3izw+8fS/VhFq SGMOPylQAM5hWzm3hg9MaRNKqAYx8cx/KWJZJRenC42Y42x1ImjIYRaqFCEo0IQL HWWP9ICuHpBaa0OFg24TpcR5/gGdvKAEpsn1pN3rzBfC6UYLrKXL/gmAu0pKto/p JElabueB/wPF2pqJLuIYyJe3f62Dcrd0qBdpDQmsKDmZLI7hK+i4oDKHEQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAMCgToZRfbmlxzoA8GlsYkU8nAvMB8GA1UdIwQY MBaAFLggdpfQt8JBmebdEoK0m1bO8CRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUNCMmw5QzN3a0daNXQwU2dyU2JWczd3SkU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9iOTkzZWYtYWFhNy00MDBjLThkYjct OTZkMzA0YzhkYjAyLzEvQXdLQk9obEY5dWFYSE9nRHdhV3hpUlR5Y0M4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi9iOTkzZWYtYWFhNy00MDBjLThkYjctOTZkMzA0YzhkYjAy LzEvdUNCMmw5QzN3a0daNXQwU2dyU2JWczd3SkU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiYJMA0G CSqGSIb3DQEBCwUAA4IBAQC7F6Y9rxrEJLogbuASI7IoH+bRay2Or5N2nurdPMDW 6ExebgUThZQ2+wzEgX4rtLxDpy0r7HxKJAzSZNKnb5aRTfl1b+JLhvia8OIqZd7G 9unp2Tc12XT1BO7oEdPdlLQv1W/IHCrzzuTY0FBDQgGWqG6M/NO097KFmySrVA/O s1YCa/VHCjCG5zIbPaBdKM0ER0BKosGPVehB5ZpNmxdeb7ptIhRfmkQbu9Mvk+L5 kVtyDJv+Q6pZg1YsfKKXrPCUt+rqrJ6yoKxqKjhdPP0UT9nlj1F+OD4PmSWJgxLP sJAF6qQpNo1AdIXI64n3NyJ6OvR4EUl1gfxCZ/wi4GYc -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:24 2026 by rpki-client