This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/sADfRLRIwEm-KVdFT8jWlHL8oSg.roa File: sADfRLRIwEm-KVdFT8jWlHL8oSg.roa (raw, json) Hash identifier: EZEYubhTSXGqlxWAm0J4OXdKM/7Z+1zdS/2lIIhyTjc= Subject key identifier: B0:00:DF:44:B4:48:C0:49:BE:29:57:45:4F:C8:D6:94:72:FC:A1:28 Certificate issuer: /CN=01292e03a731796e1d7b148b1dd235d144352f5d Certificate serial: 019B78351341F7D157EEFCA4AEC20DC5F654 Authority key identifier: 01:29:2E:03:A7:31:79:6E:1D:7B:14:8B:1D:D2:35:D1:44:35:2F:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/sADfRLRIwEm-KVdFT8jWlHL8oSg.roa Signing time: Thu 01 Jan 2026 06:18:22 +0000 ROA not before: Thu 01 Jan 2026 06:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42337 IP address blocks: 195.96.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/ASkuA6cxeW4dexSLHdI10UQ1L10.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/ASkuA6cxeW4dexSLHdI10UQ1L10.mft rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:13:41:f7:d1:57:ee:fc:a4:ae:c2:0d:c5:f6:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01292e03a731796e1d7b148b1dd235d144352f5d Validity Not Before: Jan 1 06:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b000df44b448c049be2957454fc8d69472fca128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5d:88:3b:9b:dd:04:b3:d6:c2:9f:c1:dd:d4: f5:88:c1:56:e4:94:e9:f5:2e:d0:1a:7c:8c:42:b0: f5:18:98:a2:ba:7d:41:e8:13:4a:5a:9e:33:32:4f: ef:1e:c6:ab:39:4b:b1:03:cc:2d:f1:77:f6:d4:95: f7:fd:9c:ea:32:83:35:07:2d:4f:ff:bc:62:25:52: dd:64:de:9f:5d:f8:72:44:7c:4c:a2:bf:12:9e:48: 10:97:a3:28:7e:7e:72:82:8b:ea:80:89:58:b0:18: 57:78:a7:e5:74:93:f0:c1:16:73:ac:a5:24:45:ec: d7:1f:3a:c1:f2:d0:03:45:5e:bf:6d:20:af:15:61: 48:95:3b:0c:7c:06:e7:61:9f:fa:ba:4f:09:66:22: 65:7e:f9:18:0d:ce:eb:99:20:d6:62:97:47:07:21: 09:83:ad:b4:5a:93:cb:94:4f:20:b4:44:83:dc:dd: 20:32:a4:ff:a3:f4:29:d9:e2:49:bc:92:10:60:d3: 01:2d:6c:0c:df:af:23:16:54:36:2c:71:e5:b5:61: 4a:fd:de:37:ff:8b:55:13:b6:c0:e6:c5:f3:e5:3c: a8:b3:a0:05:0c:6c:6a:b3:a9:4d:24:d9:e4:27:42: a0:9d:d8:fe:4b:02:2b:05:e0:dd:45:18:71:90:51: f5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:00:DF:44:B4:48:C0:49:BE:29:57:45:4F:C8:D6:94:72:FC:A1:28 X509v3 Authority Key Identifier: keyid:01:29:2E:03:A7:31:79:6E:1D:7B:14:8B:1D:D2:35:D1:44:35:2F:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/sADfRLRIwEm-KVdFT8jWlHL8oSg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/ASkuA6cxeW4dexSLHdI10UQ1L10.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.96.153.0/24 Signature Algorithm: sha256WithRSAEncryption 88:c7:5d:ac:13:7d:23:0e:8e:08:90:f4:ac:20:b7:1f:61:d8: 67:a0:60:32:12:f3:58:ee:a4:0d:5a:93:62:2e:89:e9:e1:f5: ef:ce:28:88:d4:a9:fa:43:df:15:0e:d7:3e:9a:1d:de:34:38: 3e:a1:d8:45:c9:71:12:7b:49:11:02:a1:5c:3f:a6:65:f1:b2: 81:f9:87:5d:c0:46:41:7b:4c:46:0d:be:af:7a:e5:53:71:33: 22:54:da:70:31:32:c2:8d:d6:0a:f5:0f:ea:92:f2:5d:b6:62: ad:8e:bb:c4:e1:02:a9:29:7c:31:16:0f:bd:ec:03:24:77:f1: 0e:c8:ae:22:31:7d:05:eb:41:a2:c0:39:04:09:92:87:68:c7: 7a:b2:2f:56:d2:e1:b9:c4:17:14:a2:ea:1f:2b:fc:33:e2:5e: f1:f4:a4:d3:8f:a9:1f:c9:96:11:29:20:16:b6:d9:32:b3:13: 32:67:5b:73:e9:03:96:d6:14:07:8a:1e:0d:f7:0e:9b:bb:37: 1c:7e:97:aa:de:36:ea:9e:4f:4e:4a:fa:9c:d9:ac:a5:5c:8d: 39:f5:26:94:23:01:d6:85:c4:ad:aa:72:7b:52:cb:b8:ec:ac: 8a:e7:bd:fb:16:19:c5:c8:0f:46:18:87:e9:54:30:72:6b:d3: 35:3c:63:42 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NRNB99FX7vykrsINxfZUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxMjkyZTAzYTczMTc5NmUxZDdiMTQ4YjFkZDIzNWQxNDQz NTJmNWQwHhcNMjYwMTAxMDYxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDAwZGY0NGI0NDhjMDQ5YmUyOTU3NDU0ZmM4ZDY5NDcyZmNhMTI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy12IO5vdBLPWwp/B3dT1iMFW5JTp 9S7QGnyMQrD1GJiiun1B6BNKWp4zMk/vHsarOUuxA8wt8Xf21JX3/ZzqMoM1By1P /7xiJVLdZN6fXfhyRHxMor8SnkgQl6Mofn5ygovqgIlYsBhXeKfldJPwwRZzrKUk RezXHzrB8tADRV6/bSCvFWFIlTsMfAbnYZ/6uk8JZiJlfvkYDc7rmSDWYpdHByEJ g620WpPLlE8gtESD3N0gMqT/o/Qp2eJJvJIQYNMBLWwM368jFlQ2LHHltWFK/d43 /4tVE7bA5sXz5Tyos6AFDGxqs6lNJNnkJ0Kgndj+SwIrBeDdRRhxkFH1TQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLAA30S0SMBJvilXRU/I1pRy/KEoMB8GA1UdIwQY MBaAFAEpLgOnMXluHXsUix3SNdFENS9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQVNrdUE2Y3hlVzRkZXhTTEhkSTEwVVExTDEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zYWEwZjUtZWFlNS00OWEzLThlZTkt MGRmN2RmNGQ1YjAxLzEvc0FEZlJMUkl3RW0tS1ZkRlQ4aldsSEw4b1NnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8zYWEwZjUtZWFlNS00OWEzLThlZTktMGRmN2RmNGQ1YjAx LzEvQVNrdUE2Y3hlVzRkZXhTTEhkSTEwVVExTDEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw2CZMA0G CSqGSIb3DQEBCwUAA4IBAQCIx12sE30jDo4IkPSsILcfYdhnoGAyEvNY7qQNWpNi Lonp4fXvziiI1Kn6Q98VDtc+mh3eNDg+odhFyXESe0kRAqFcP6Zl8bKB+YddwEZB e0xGDb6veuVTcTMiVNpwMTLCjdYK9Q/qkvJdtmKtjrvE4QKpKXwxFg+97AMkd/EO yK4iMX0F60GiwDkECZKHaMd6si9W0uG5xBcUouofK/wz4l7x9KTTj6kfyZYRKSAW ttkysxMyZ1tz6QOW1hQHih4N9w6buzccfpeq3jbqnk9OSvqc2aylXI059SaUIwHW hcStqnJ7Usu47KyK5737FhnFyA9GGIfpVDBya9M1PGNC -----END CERTIFICATE-----Generated at Mon Jan 26 21:04:46 2026 by rpki-client