This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/sZxrSzhn7wD6WFSw7UC6NwZuEFk.roa File: sZxrSzhn7wD6WFSw7UC6NwZuEFk.roa (raw, json) Hash identifier: kEkaa7N2aenPpjJ1vqccMcmAKJMsk4dI56LBorB67HM= Subject key identifier: B1:9C:6B:4B:38:67:EF:00:FA:58:54:B0:ED:40:BA:37:06:6E:10:59 Certificate issuer: /CN=e58069748748e9aebd7be40587d8140efde55b6b Certificate serial: 019B79101F37BA41582D984DCA513920BC1F Authority key identifier: E5:80:69:74:87:48:E9:AE:BD:7B:E4:05:87:D8:14:0E:FD:E5:5B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YBpdIdI6a69e-QFh9gUDv3lW2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/sZxrSzhn7wD6WFSw7UC6NwZuEFk.roa Signing time: Thu 01 Jan 2026 10:17:38 +0000 ROA not before: Thu 01 Jan 2026 10:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12843 IP address blocks: 193.47.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/5YBpdIdI6a69e-QFh9gUDv3lW2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/5YBpdIdI6a69e-QFh9gUDv3lW2s.mft rsync://rpki.ripe.net/repository/DEFAULT/5YBpdIdI6a69e-QFh9gUDv3lW2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:1f:37:ba:41:58:2d:98:4d:ca:51:39:20:bc:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e58069748748e9aebd7be40587d8140efde55b6b Validity Not Before: Jan 1 10:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b19c6b4b3867ef00fa5854b0ed40ba37066e1059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:09:2c:bb:0b:05:25:ab:bc:36:1d:f0:ec:49: 06:24:c2:a1:e2:bf:79:07:75:3b:96:b5:9e:52:f1: 88:dc:70:ad:8a:6d:33:0a:51:f2:f0:99:5f:4a:a3: b5:19:df:d0:60:01:4c:09:e2:47:9b:1d:89:80:64: 11:c7:4f:d8:7b:f0:ea:9c:85:e5:fa:ac:d0:02:c0: 8e:2d:5f:ff:51:84:91:09:db:c3:e6:1b:7a:33:36: 6f:41:2b:ba:cb:17:68:2e:c1:b4:9e:4c:6d:ca:b2: a4:88:e9:ed:f9:ed:dc:df:70:07:b6:f2:1f:c5:fb: bd:c3:1f:7e:00:3b:ed:f8:17:48:45:ff:3d:a1:7d: 56:e9:88:9b:d7:d2:17:55:20:c9:b7:04:a9:96:23: d0:e6:ee:14:e2:db:4a:99:b9:86:bb:db:58:90:11: a1:df:58:a3:0c:06:30:b6:7a:98:19:6f:c0:6c:26: 73:fb:7e:88:86:0f:b3:01:08:00:4a:68:3e:f5:4f: 54:15:d6:b1:0b:46:87:cf:91:b4:79:08:a2:74:df: 5c:87:ca:ef:03:64:ee:19:e2:fe:1f:68:1d:a8:27: 09:75:bd:9c:2b:c0:31:f4:5a:08:e1:0c:fc:25:91: 97:11:d4:ae:3e:0f:21:4f:40:62:46:25:6b:4e:33: e7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:9C:6B:4B:38:67:EF:00:FA:58:54:B0:ED:40:BA:37:06:6E:10:59 X509v3 Authority Key Identifier: keyid:E5:80:69:74:87:48:E9:AE:BD:7B:E4:05:87:D8:14:0E:FD:E5:5B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YBpdIdI6a69e-QFh9gUDv3lW2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/sZxrSzhn7wD6WFSw7UC6NwZuEFk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/5YBpdIdI6a69e-QFh9gUDv3lW2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.47.152.0/24 Signature Algorithm: sha256WithRSAEncryption 16:7b:c3:08:2d:4c:25:53:d7:fa:b7:1b:bd:18:0a:07:8a:de: e1:5b:f3:53:25:37:2c:55:d5:e0:0a:09:90:a2:23:e4:6a:6c: 8f:ad:22:63:d7:ea:6b:65:fb:99:94:5a:7f:ad:e1:83:33:f9: be:a7:fb:6e:ca:94:0d:c4:8f:a1:bf:a7:dd:94:7c:ad:71:27: 55:b3:37:61:51:d4:76:97:fd:54:d6:e6:7d:09:13:19:9a:2f: 17:3f:74:0f:19:54:aa:b1:87:73:da:f4:8f:53:73:b7:8e:5b: 6a:00:80:db:77:54:bb:0d:3d:75:e5:d4:a0:5e:9e:a0:49:97: 4e:8b:ee:4c:b5:0e:ce:ce:c3:86:59:49:20:64:11:c8:56:85: dd:8f:c0:66:39:b0:a9:c4:7e:27:4a:7a:44:18:f2:3c:03:48: 26:80:75:02:6e:43:f5:a8:df:bf:a8:ea:69:e8:27:a3:78:f0: e4:ab:a8:12:de:7e:aa:f4:5a:d3:df:7d:5b:6c:6c:11:14:22: 93:af:b9:fa:e3:a1:c7:b8:30:06:a3:ba:4b:57:4c:62:44:96: dc:46:7d:a9:05:05:81:3f:0f:55:24:50:eb:09:8d:9e:a8:4c: 46:2a:97:83:3f:42:de:ca:55:4e:8b:fe:7f:24:e1:0b:3c:ea: da:89:83:9c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EB83ukFYLZhNylE5ILwfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ODA2OTc0ODc0OGU5YWViZDdiZTQwNTg3ZDgxNDBlZmRl NTViNmIwHhcNMjYwMTAxMTAxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTljNmI0YjM4NjdlZjAwZmE1ODU0YjBlZDQwYmEzNzA2NmUxMDU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgksuwsFJau8Nh3w7EkGJMKh4r95 B3U7lrWeUvGI3HCtim0zClHy8JlfSqO1Gd/QYAFMCeJHmx2JgGQRx0/Ye/DqnIXl +qzQAsCOLV//UYSRCdvD5ht6MzZvQSu6yxdoLsG0nkxtyrKkiOnt+e3c33AHtvIf xfu9wx9+ADvt+BdIRf89oX1W6Yib19IXVSDJtwSpliPQ5u4U4ttKmbmGu9tYkBGh 31ijDAYwtnqYGW/AbCZz+36Ihg+zAQgASmg+9U9UFdaxC0aHz5G0eQiidN9ch8rv A2TuGeL+H2gdqCcJdb2cK8Ax9FoI4Qz8JZGXEdSuPg8hT0BiRiVrTjPnUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLGca0s4Z+8A+lhUsO1AujcGbhBZMB8GA1UdIwQY MBaAFOWAaXSHSOmuvXvkBYfYFA795VtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVlCcGRJZEk2YTY5ZS1RRmg5Z1VEdjNsVzJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS84ZWZkODAtN2RiMy00ZTUyLWFkNzYt MGY4OTZlYmNhNGY4LzEvc1p4clN6aG43d0Q2V0ZTdzdVQzZOd1p1RUZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS84ZWZkODAtN2RiMy00ZTUyLWFkNzYtMGY4OTZlYmNhNGY4 LzEvNVlCcGRJZEk2YTY5ZS1RRmg5Z1VEdjNsVzJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwS+YMA0G CSqGSIb3DQEBCwUAA4IBAQAWe8MILUwlU9f6txu9GAoHit7hW/NTJTcsVdXgCgmQ oiPkamyPrSJj1+prZfuZlFp/reGDM/m+p/tuypQNxI+hv6fdlHytcSdVszdhUdR2 l/1U1uZ9CRMZmi8XP3QPGVSqsYdz2vSPU3O3jltqAIDbd1S7DT115dSgXp6gSZdO i+5MtQ7OzsOGWUkgZBHIVoXdj8BmObCpxH4nSnpEGPI8A0gmgHUCbkP1qN+/qOpp 6CejePDkq6gS3n6q9FrT331bbGwRFCKTr7n646HHuDAGo7pLV0xiRJbcRn2pBQWB Pw9VJFDrCY2eqExGKpeDP0LeylVOi/5/JOELPOraiYOc -----END CERTIFICATE-----Generated at Mon Jan 26 19:33:25 2026 by rpki-client