This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/354c83-3061-4240-8afe-7dfa2ecd8610/1/SHM9R3kXlAO8-e-rYuN_jsGmG6M.roa File: SHM9R3kXlAO8-e-rYuN_jsGmG6M.roa (raw, json) Hash identifier: X06rQu41FDn+MhiPC2VMwGHMTFpmXVd6mlDBUP0P6FE= Subject key identifier: 48:73:3D:47:79:17:94:03:BC:F9:EF:AB:62:E3:7F:8E:C1:A6:1B:A3 Certificate issuer: /CN=7aef7b364935ae2deb4b86d443ea8432b62cc520 Certificate serial: 019B7CEDA46DE8502FCA2BA57F3989F9175F Authority key identifier: 7A:EF:7B:36:49:35:AE:2D:EB:4B:86:D4:43:EA:84:32:B6:2C:C5:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eu97Nkk1ri3rS4bUQ-qEMrYsxSA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/354c83-3061-4240-8afe-7dfa2ecd8610/1/SHM9R3kXlAO8-e-rYuN_jsGmG6M.roa Signing time: Fri 02 Jan 2026 04:18:27 +0000 ROA not before: Fri 02 Jan 2026 04:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 193.187.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/354c83-3061-4240-8afe-7dfa2ecd8610/1/eu97Nkk1ri3rS4bUQ-qEMrYsxSA.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/354c83-3061-4240-8afe-7dfa2ecd8610/1/eu97Nkk1ri3rS4bUQ-qEMrYsxSA.mft rsync://rpki.ripe.net/repository/DEFAULT/eu97Nkk1ri3rS4bUQ-qEMrYsxSA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 07:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:a4:6d:e8:50:2f:ca:2b:a5:7f:39:89:f9:17:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7aef7b364935ae2deb4b86d443ea8432b62cc520 Validity Not Before: Jan 2 04:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48733d4779179403bcf9efab62e37f8ec1a61ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ba:fe:d7:b6:53:c9:48:d0:33:36:e8:65:1b: 25:6a:4f:73:6a:14:1f:0f:b9:5b:71:40:8c:97:ca: 8e:9e:6d:eb:ec:de:14:9b:11:1a:8e:f4:fa:e8:47: c1:7f:39:e1:bf:f4:b2:34:40:e5:92:6b:ec:9a:28: 13:67:2f:5b:26:6b:92:7d:69:3d:ca:f4:67:03:37: b8:79:38:74:bc:db:2c:16:5f:4f:1a:eb:cd:d1:41: 51:d7:5f:8c:4c:f0:49:53:bf:ce:9a:5d:ca:a8:4c: db:ca:56:72:4f:99:b2:45:da:87:4e:36:c3:3d:80: f9:7c:fa:b2:c5:3f:85:86:de:64:20:66:b1:1e:1e: 0d:8b:49:85:80:fe:f0:4e:0a:c1:a8:e7:ad:9b:fb: c4:0c:f8:4d:7a:08:74:a4:e7:98:32:e0:6b:e2:78: 7e:d2:e2:40:de:ed:0b:29:3c:94:e7:54:33:60:d6: 49:2f:4d:34:21:be:5a:d7:db:45:48:15:01:7d:5e: 94:39:e5:28:ef:91:4d:a1:3e:18:0e:b8:0e:64:4c: b6:a7:07:cb:d0:c7:02:ff:7d:a4:3e:18:ad:9c:22: 6c:04:ab:07:c1:8c:dc:d3:e3:2f:ed:d4:cf:f6:c1: f6:fa:67:f3:46:7c:6c:f8:0b:0d:03:a2:ae:71:7e: e1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:73:3D:47:79:17:94:03:BC:F9:EF:AB:62:E3:7F:8E:C1:A6:1B:A3 X509v3 Authority Key Identifier: keyid:7A:EF:7B:36:49:35:AE:2D:EB:4B:86:D4:43:EA:84:32:B6:2C:C5:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eu97Nkk1ri3rS4bUQ-qEMrYsxSA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/354c83-3061-4240-8afe-7dfa2ecd8610/1/SHM9R3kXlAO8-e-rYuN_jsGmG6M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/354c83-3061-4240-8afe-7dfa2ecd8610/1/eu97Nkk1ri3rS4bUQ-qEMrYsxSA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.187.72.0/24 Signature Algorithm: sha256WithRSAEncryption 81:3a:3f:cb:2a:ee:5b:1e:c1:2f:0a:fd:ae:67:eb:a3:33:0f: 22:a9:04:2d:60:85:ce:35:4d:01:52:23:1d:35:41:17:17:c6: 8e:3c:cd:57:7b:9c:1b:3d:70:cf:fb:4c:21:a0:a8:6f:6b:b4: 12:a9:37:10:5d:61:5d:bb:ba:ff:54:64:f5:f4:e0:8e:3e:4a: ef:83:40:32:0e:04:d9:0c:36:5a:51:79:4b:a8:e4:07:58:84: 7a:38:d2:a6:3a:a0:7b:8d:0e:8f:6d:4b:7f:b0:76:21:1e:6e: c6:96:6d:d5:17:14:e8:f2:3d:ee:f7:1a:f5:71:76:b8:0b:91: f6:94:a1:92:be:14:c0:f6:16:69:4e:54:21:fb:3a:28:1b:e6: 1a:19:42:84:9b:23:e2:8f:74:99:cb:0e:ae:3e:71:4c:f6:93: 71:79:35:e2:30:f6:c3:72:37:38:01:f9:42:50:01:17:0e:8b: 40:01:1f:b5:d6:63:16:de:d0:5a:01:19:e4:10:e6:59:b5:84: 14:95:0f:b6:f1:64:a4:25:8e:1a:e7:93:d5:64:89:d3:96:f4: e1:fc:b3:ab:8e:7c:eb:e1:50:f1:0e:87:f5:ab:a9:d8:d3:17: 0b:b3:fe:0a:0e:95:3d:55:87:a8:3f:bb:f6:b4:b0:44:55:99: 9d:59:18:fd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87aRt6FAvyiulfzmJ+RdfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdhZWY3YjM2NDkzNWFlMmRlYjRiODZkNDQzZWE4NDMyYjYy Y2M1MjAwHhcNMjYwMTAyMDQxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ODczM2Q0Nzc5MTc5NDAzYmNmOWVmYWI2MmUzN2Y4ZWMxYTYxYmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7r+17ZTyUjQMzboZRslak9zahQf D7lbcUCMl8qOnm3r7N4UmxEajvT66EfBfznhv/SyNEDlkmvsmigTZy9bJmuSfWk9 yvRnAze4eTh0vNssFl9PGuvN0UFR11+MTPBJU7/Oml3KqEzbylZyT5myRdqHTjbD PYD5fPqyxT+Fht5kIGaxHh4Ni0mFgP7wTgrBqOetm/vEDPhNegh0pOeYMuBr4nh+ 0uJA3u0LKTyU51QzYNZJL000Ib5a19tFSBUBfV6UOeUo75FNoT4YDrgOZEy2pwfL 0McC/32kPhitnCJsBKsHwYzc0+Mv7dTP9sH2+mfzRnxs+AsNA6KucX7hAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEhzPUd5F5QDvPnvq2Ljf47BphujMB8GA1UdIwQY MBaAFHrvezZJNa4t60uG1EPqhDK2LMUgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZXU5N05razFyaTNyUzRiVVEtcUVNcllzeFNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8zNTRjODMtMzA2MS00MjQwLThhZmUt N2RmYTJlY2Q4NjEwLzEvU0hNOVIza1hsQU84LWUtcll1Tl9qc0dtRzZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8zNTRjODMtMzA2MS00MjQwLThhZmUtN2RmYTJlY2Q4NjEw LzEvZXU5N05razFyaTNyUzRiVVEtcUVNcllzeFNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbtIMA0G CSqGSIb3DQEBCwUAA4IBAQCBOj/LKu5bHsEvCv2uZ+ujMw8iqQQtYIXONU0BUiMd NUEXF8aOPM1Xe5wbPXDP+0whoKhva7QSqTcQXWFdu7r/VGT19OCOPkrvg0AyDgTZ DDZaUXlLqOQHWIR6ONKmOqB7jQ6PbUt/sHYhHm7Glm3VFxTo8j3u9xr1cXa4C5H2 lKGSvhTA9hZpTlQh+zooG+YaGUKEmyPij3SZyw6uPnFM9pNxeTXiMPbDcjc4AflC UAEXDotAAR+11mMW3tBaARnkEOZZtYQUlQ+28WSkJY4a55PVZInTlvTh/LOrjnzr 4VDxDof1q6nY0xcLs/4KDpU9VYeoP7v2tLBEVZmdWRj9 -----END CERTIFICATE-----Generated at Sun Jan 18 16:38:02 2026 by rpki-client