This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/Sozb0mBjd1VpRMeQfzzDEX1Nqbc.roa File: Sozb0mBjd1VpRMeQfzzDEX1Nqbc.roa (raw, json) Hash identifier: tt3YVOI88Qv/1ZNyGYonfAo/TKHCa8OFHVuJXMdS3yo= Subject key identifier: 4A:8C:DB:D2:60:63:77:55:69:44:C7:90:7F:3C:C3:11:7D:4D:A9:B7 Certificate issuer: /CN=036aac34c66fda64b67eb96b02d819789febe861 Certificate serial: 019B7CECE219209A20B1A0D234DDF767946B Authority key identifier: 03:6A:AC:34:C6:6F:DA:64:B6:7E:B9:6B:02:D8:19:78:9F:EB:E8:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2qsNMZv2mS2frlrAtgZeJ_r6GE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/Sozb0mBjd1VpRMeQfzzDEX1Nqbc.roa Signing time: Fri 02 Jan 2026 04:17:37 +0000 ROA not before: Fri 02 Jan 2026 04:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41847 IP address blocks: 193.34.170.0/23 maxlen: 24 2001:67c:2f1c::/48 maxlen: 120 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/A2qsNMZv2mS2frlrAtgZeJ_r6GE.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/A2qsNMZv2mS2frlrAtgZeJ_r6GE.mft rsync://rpki.ripe.net/repository/DEFAULT/A2qsNMZv2mS2frlrAtgZeJ_r6GE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 15:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:e2:19:20:9a:20:b1:a0:d2:34:dd:f7:67:94:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=036aac34c66fda64b67eb96b02d819789febe861 Validity Not Before: Jan 2 04:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a8cdbd2606377556944c7907f3cc3117d4da9b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ba:95:76:8c:b3:df:2f:6c:88:6a:82:9a:a0: d2:26:dc:32:9f:47:bd:55:9c:06:b3:9d:f2:63:a3: 3f:9e:ad:16:32:a9:0c:05:83:ea:56:a0:14:97:7a: a4:44:97:f6:97:84:0e:6f:05:aa:6f:9d:b6:34:eb: d8:65:a7:21:7c:bb:0b:78:46:f5:34:3a:30:c8:07: 97:d5:3b:7f:fb:d6:c1:b1:0a:20:54:e8:a5:ad:5f: 41:45:bd:f8:bf:7a:a3:f4:f2:9c:2a:a1:b0:17:48: a0:2f:45:db:ae:2d:e4:2b:f9:e3:ad:98:64:74:7f: 8d:70:3c:46:95:69:9d:b3:fb:ec:44:1e:94:b9:07: 7c:07:cd:72:6a:eb:cc:7d:61:d1:31:6a:60:ea:0e: cf:cc:aa:cd:70:32:df:9d:bc:03:39:25:3e:9b:ed: ce:ac:30:24:d2:d9:c7:42:98:9e:14:57:77:7f:04: ab:0b:b0:92:82:fa:bd:1f:14:ad:a8:1d:d1:ea:8d: 54:0b:15:cd:3e:82:c5:77:6e:b4:86:05:5f:f0:c6: 01:05:49:1f:ca:88:b0:5d:c8:11:04:08:e3:f3:0f: f9:31:f5:45:65:b5:40:36:cc:27:16:c8:98:b1:1e: 6f:70:4c:f9:45:74:5d:51:ee:fd:b5:3e:6a:7b:53: 1a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8C:DB:D2:60:63:77:55:69:44:C7:90:7F:3C:C3:11:7D:4D:A9:B7 X509v3 Authority Key Identifier: keyid:03:6A:AC:34:C6:6F:DA:64:B6:7E:B9:6B:02:D8:19:78:9F:EB:E8:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2qsNMZv2mS2frlrAtgZeJ_r6GE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/Sozb0mBjd1VpRMeQfzzDEX1Nqbc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/5a3bda-c688-4a42-946f-963993ce5181/1/A2qsNMZv2mS2frlrAtgZeJ_r6GE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.34.170.0/23 IPv6: 2001:67c:2f1c::/48 Signature Algorithm: sha256WithRSAEncryption 17:96:e6:b7:bf:87:fb:e4:4d:ad:5e:35:99:db:7b:32:54:93: 1f:aa:7e:a4:7d:80:1d:96:b6:36:f3:e0:7a:b9:fb:4b:c5:4c: f3:21:fd:7c:ca:d2:4e:42:2a:5c:02:43:ac:70:51:4b:8c:44: 4e:26:02:0e:d3:48:12:11:30:27:ad:8f:11:47:7c:12:f0:88: d3:27:ba:e8:63:fa:da:5d:70:f6:43:a5:50:ca:1f:a6:7c:7d: f4:cf:b0:da:01:fa:76:9d:fa:1f:2d:f0:90:a3:db:02:d5:ff: af:f8:de:43:d9:58:ad:55:12:f9:4d:bc:28:94:b7:bf:25:55: 7c:8a:cd:62:fa:5d:f9:0b:40:4e:cb:7c:39:46:a2:ec:0f:00: 60:93:2c:ee:ce:3d:34:06:0b:0a:5e:5d:c0:ea:1c:19:5d:b8: b3:54:49:26:f8:34:56:bb:9f:9f:6d:bd:a8:f7:6e:26:b6:8f: 60:ef:d5:4f:39:85:d5:b4:4f:5a:44:99:56:32:44:6d:55:e8: b2:6e:b8:8f:ef:b2:46:49:c8:e5:d7:f0:84:de:f1:e0:19:b9: e5:73:0c:fb:92:7d:aa:db:59:a6:03:27:1c:b2:4e:41:9f:01: 76:ab:df:c1:d5:50:cd:8b:04:66:e7:4c:ed:45:30:11:9b:b7: 65:8a:93:4c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87OIZIJogsaDSNN33Z5RrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzNmFhYzM0YzY2ZmRhNjRiNjdlYjk2YjAyZDgxOTc4OWZl YmU4NjEwHhcNMjYwMTAyMDQxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YThjZGJkMjYwNjM3NzU1Njk0NGM3OTA3ZjNjYzMxMTdkNGRhOWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7qVdoyz3y9siGqCmqDSJtwyn0e9 VZwGs53yY6M/nq0WMqkMBYPqVqAUl3qkRJf2l4QObwWqb522NOvYZachfLsLeEb1 NDowyAeX1Tt/+9bBsQogVOilrV9BRb34v3qj9PKcKqGwF0igL0Xbri3kK/njrZhk dH+NcDxGlWmds/vsRB6UuQd8B81yauvMfWHRMWpg6g7PzKrNcDLfnbwDOSU+m+3O rDAk0tnHQpieFFd3fwSrC7CSgvq9HxStqB3R6o1UCxXNPoLFd260hgVf8MYBBUkf yoiwXcgRBAjj8w/5MfVFZbVANswnFsiYsR5vcEz5RXRdUe79tT5qe1Ma2wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFEqM29JgY3dVaUTHkH88wxF9Tam3MB8GA1UdIwQY MBaAFANqrDTGb9pktn65awLYGXif6+hhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQTJxc05NWnYybVMyZnJsckF0Z1plSl9yNkdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC81YTNiZGEtYzY4OC00YTQyLTk0NmYt OTYzOTkzY2U1MTgxLzEvU296YjBtQmpkMVZwUk1lUWZ6ekRFWDFOcWJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC81YTNiZGEtYzY4OC00YTQyLTk0NmYtOTYzOTkzY2U1MTgx LzEvQTJxc05NWnYybVMyZnJsckF0Z1plSl9yNkdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBwSKqMA8E AgACMAkDBwAgAQZ8LxwwDQYJKoZIhvcNAQELBQADggEBABeW5re/h/vkTa1eNZnb ezJUkx+qfqR9gB2Wtjbz4Hq5+0vFTPMh/XzK0k5CKlwCQ6xwUUuMRE4mAg7TSBIR MCetjxFHfBLwiNMnuuhj+tpdcPZDpVDKH6Z8ffTPsNoB+nad+h8t8JCj2wLV/6/4 3kPZWK1VEvlNvCiUt78lVXyKzWL6XfkLQE7LfDlGouwPAGCTLO7OPTQGCwpeXcDq HBlduLNUSSb4NFa7n59tvaj3bia2j2Dv1U85hdW0T1pEmVYyRG1V6LJuuI/vskZJ yOXX8ITe8eAZueVzDPuSfarbWaYDJxyyTkGfAXar38HVUM2LBGbnTO1FMBGbt2WK k0w= -----END CERTIFICATE-----Generated at Tue Feb 3 00:06:02 2026 by rpki-client