This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/b1ca51-75dd-41c9-9484-2bc1ae3dbdbe/1/SkhFbOk8Q8jf5sneshEiRz3bSQA.roa File: SkhFbOk8Q8jf5sneshEiRz3bSQA.roa (raw, json) Hash identifier: RJ9KM//Nku3tlDNUzKokzT0RDJoaE+avUqxbNPNx9lI= Subject key identifier: 4A:48:45:6C:E9:3C:43:C8:DF:E6:C9:DE:B2:11:22:47:3D:DB:49:00 Certificate issuer: /CN=f58e0c3b9333cb6fd4139e455a5abbafd569532a Certificate serial: 019B78350D966236846DA5FF267D0F8E8205 Authority key identifier: F5:8E:0C:3B:93:33:CB:6F:D4:13:9E:45:5A:5A:BB:AF:D5:69:53:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Y4MO5Mzy2_UE55FWlq7r9VpUyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/b1ca51-75dd-41c9-9484-2bc1ae3dbdbe/1/SkhFbOk8Q8jf5sneshEiRz3bSQA.roa Signing time: Thu 01 Jan 2026 06:18:21 +0000 ROA not before: Thu 01 Jan 2026 06:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 193.143.16.0/23 maxlen: 24 2a14:b000::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/b1ca51-75dd-41c9-9484-2bc1ae3dbdbe/1/9Y4MO5Mzy2_UE55FWlq7r9VpUyo.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/b1ca51-75dd-41c9-9484-2bc1ae3dbdbe/1/9Y4MO5Mzy2_UE55FWlq7r9VpUyo.mft rsync://rpki.ripe.net/repository/DEFAULT/9Y4MO5Mzy2_UE55FWlq7r9VpUyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:0d:96:62:36:84:6d:a5:ff:26:7d:0f:8e:82:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f58e0c3b9333cb6fd4139e455a5abbafd569532a Validity Not Before: Jan 1 06:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a48456ce93c43c8dfe6c9deb21122473ddb4900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:60:ed:b9:7e:34:28:2d:8b:01:ec:36:b5:94: 53:ff:61:13:be:34:38:e6:b7:3b:2d:0a:6c:92:1a: d1:09:11:3a:32:8b:a2:98:7c:46:ae:8f:13:7d:34: 6e:0a:fc:8d:c6:eb:cb:11:d0:95:0d:23:d2:a3:77: 53:b8:02:40:ac:08:1d:70:88:c7:fd:08:c0:85:ed: ac:65:44:54:26:d4:74:f2:9e:f4:32:4f:b4:33:81: cd:0c:2b:89:73:71:aa:e2:97:cb:b8:f5:40:d6:ef: 73:90:71:b3:9e:fe:3d:09:f6:be:b6:53:0f:e3:44: c6:34:28:d9:81:6d:78:93:ef:c5:2e:18:7f:e1:18: 49:ca:da:4f:65:37:09:cd:3e:24:82:5b:30:2d:f8: c8:6e:25:06:74:11:8f:6d:fc:ca:70:80:03:9e:e7: c4:ea:5e:aa:4e:30:90:b9:1c:aa:c1:8e:cd:15:f5: 9e:00:c7:b4:d0:68:3f:7b:5d:41:44:91:e3:25:47: d0:12:44:a5:8f:44:69:9c:94:5c:1c:b5:3c:d2:bf: df:30:42:4f:44:a5:2d:a2:f5:05:29:c4:03:6e:3a: bd:3e:2d:5a:fe:4b:7d:91:4a:a3:b3:d5:2d:68:37: ea:d3:89:86:be:44:ff:88:be:2d:c3:ef:1e:70:5e: c8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:48:45:6C:E9:3C:43:C8:DF:E6:C9:DE:B2:11:22:47:3D:DB:49:00 X509v3 Authority Key Identifier: keyid:F5:8E:0C:3B:93:33:CB:6F:D4:13:9E:45:5A:5A:BB:AF:D5:69:53:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Y4MO5Mzy2_UE55FWlq7r9VpUyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b1ca51-75dd-41c9-9484-2bc1ae3dbdbe/1/SkhFbOk8Q8jf5sneshEiRz3bSQA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b1ca51-75dd-41c9-9484-2bc1ae3dbdbe/1/9Y4MO5Mzy2_UE55FWlq7r9VpUyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.143.16.0/23 IPv6: 2a14:b000::/29 Signature Algorithm: sha256WithRSAEncryption 6d:4b:a1:cb:fd:a1:f6:5e:49:d0:73:53:37:cb:b9:8e:9d:18: a5:4c:86:48:0e:3e:2c:f9:1b:8f:1a:93:2d:8a:50:79:3b:1a: 9a:6d:cc:59:d6:d5:ad:48:db:3c:56:9e:bc:cb:0c:0f:57:6a: d4:3f:1c:26:f0:82:af:94:a0:1c:b9:b7:8d:81:3e:19:8d:24: 4e:3c:91:06:08:60:05:05:a3:20:63:e1:be:05:e9:7e:2e:46: 1b:42:fa:e9:c2:14:42:a4:f3:5c:98:26:13:95:45:a8:1e:98: 65:f6:44:20:9e:c2:e2:24:1f:35:d9:56:bb:7b:80:94:fd:5d: 59:c5:53:41:6e:cf:3d:7f:63:0a:ab:cb:8e:91:10:0a:44:db: d9:de:13:ab:62:8d:ff:6e:b8:eb:ab:a1:39:c5:0d:3e:0c:d5: dd:ea:7d:5c:33:20:28:b2:72:42:99:34:b9:19:2d:e2:63:00: da:3c:41:9b:e0:e0:e2:51:c3:a4:43:30:82:ec:9f:91:08:9e: 38:c9:48:98:e0:ea:b5:43:76:18:df:97:c9:de:ed:8c:88:ac: ef:89:4f:97:2d:c9:e9:9b:1c:5d:15:cc:10:f8:6a:98:33:8c: 8d:de:b6:df:78:fe:ae:cb:64:e4:ea:ef:d2:36:b3:31:8a:b7: 75:5d:84:2d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4NQ2WYjaEbaX/Jn0PjoIFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1OGUwYzNiOTMzM2NiNmZkNDEzOWU0NTVhNWFiYmFmZDU2 OTUzMmEwHhcNMjYwMTAxMDYxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTQ4NDU2Y2U5M2M0M2M4ZGZlNmM5ZGViMjExMjI0NzNkZGI0OTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmDtuX40KC2LAew2tZRT/2ETvjQ4 5rc7LQpskhrRCRE6MouimHxGro8TfTRuCvyNxuvLEdCVDSPSo3dTuAJArAgdcIjH /QjAhe2sZURUJtR08p70Mk+0M4HNDCuJc3Gq4pfLuPVA1u9zkHGznv49Cfa+tlMP 40TGNCjZgW14k+/FLhh/4RhJytpPZTcJzT4kglswLfjIbiUGdBGPbfzKcIADnufE 6l6qTjCQuRyqwY7NFfWeAMe00Gg/e11BRJHjJUfQEkSlj0RpnJRcHLU80r/fMEJP RKUtovUFKcQDbjq9Pi1a/kt9kUqjs9UtaDfq04mGvkT/iL4tw+8ecF7I9wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFEpIRWzpPEPI3+bJ3rIRIkc920kAMB8GA1UdIwQY MBaAFPWODDuTM8tv1BOeRVpau6/VaVMqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOVk0TU81TXp5Ml9VRTU1RldscTdyOVZwVXlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9iMWNhNTEtNzVkZC00MWM5LTk0ODQt MmJjMWFlM2RiZGJlLzEvU2toRmJPazhROGpmNXNuZXNoRWlSejNiU1FBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9iMWNhNTEtNzVkZC00MWM5LTk0ODQtMmJjMWFlM2RiZGJl LzEvOVk0TU81TXp5Ml9VRTU1RldscTdyOVZwVXlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBwY8QMA0E AgACMAcDBQMqFLAAMA0GCSqGSIb3DQEBCwUAA4IBAQBtS6HL/aH2XknQc1M3y7mO nRilTIZIDj4s+RuPGpMtilB5OxqabcxZ1tWtSNs8Vp68ywwPV2rUPxwm8IKvlKAc ubeNgT4ZjSROPJEGCGAFBaMgY+G+Bel+LkYbQvrpwhRCpPNcmCYTlUWoHphl9kQg nsLiJB812Va7e4CU/V1ZxVNBbs89f2MKq8uOkRAKRNvZ3hOrYo3/brjrq6E5xQ0+ DNXd6n1cMyAosnJCmTS5GS3iYwDaPEGb4ODiUcOkQzCC7J+RCJ44yUiY4Oq1Q3YY 35fJ3u2MiKzviU+XLcnpmxxdFcwQ+GqYM4yN3rbfeP6uy2Tk6u/SNrMxird1XYQt -----END CERTIFICATE-----Generated at Fri Jan 2 09:29:46 2026 by rpki-client