This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/R843p-38WteuOkSHzbf3qrehiDw.roa File: R843p-38WteuOkSHzbf3qrehiDw.roa (raw, json) Hash identifier: lL8mH/XViDvpJ3MkMI6sLi0P2Yyq2Vj6DtB1Dgsh4+g= Subject key identifier: 47:CE:37:A7:ED:FC:5A:D7:AE:3A:44:87:CD:B7:F7:AA:B7:A1:88:3C Certificate issuer: /CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398 Certificate serial: 019B77C6D6C7FC8AB68C3D6497DA9E9B11E5 Authority key identifier: 22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/R843p-38WteuOkSHzbf3qrehiDw.roa Signing time: Thu 01 Jan 2026 04:17:58 +0000 ROA not before: Thu 01 Jan 2026 04:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33946 IP address blocks: 193.26.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:d6:c7:fc:8a:b6:8c:3d:64:97:da:9e:9b:11:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398 Validity Not Before: Jan 1 04:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=47ce37a7edfc5ad7ae3a4487cdb7f7aab7a1883c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:38:8f:c4:d6:62:72:db:97:f5:9f:ad:ca:51: e7:e1:87:80:1a:71:ff:65:f6:73:47:b5:c5:86:5d: c9:13:36:58:98:4d:b9:8d:b9:0a:b0:5a:1d:f6:7a: 17:14:98:36:9a:e0:72:04:a4:14:a4:ed:87:71:80: 0e:dc:bc:12:08:6c:84:88:6b:2f:b3:5a:27:89:97: 05:c4:d2:d3:86:51:f1:96:fa:ad:b5:86:61:6a:2a: a4:f5:d0:9b:32:a1:d5:2e:69:9d:3d:5c:b2:9c:75: 11:d2:c2:bc:88:d0:dc:c4:32:ee:1d:14:80:b5:48: d7:69:e0:22:19:9e:52:a7:d5:a8:51:5d:de:21:2a: 24:a6:db:49:00:f0:bf:29:8b:c7:58:45:4e:2a:66: 1e:53:fe:94:05:44:d2:e6:9d:6d:e7:48:a9:32:3f: 21:64:c3:e5:20:3f:54:02:7e:e5:75:a1:86:a3:14: 97:21:23:fc:ea:72:43:b2:5c:90:0a:22:41:ae:c7: c2:a6:95:08:8d:99:f8:8f:ce:dd:62:00:2c:96:a6: 25:9b:d9:e7:92:46:70:eb:5c:a8:1d:7b:18:d1:86: 6e:e7:33:3e:eb:35:7f:63:c5:29:d9:b9:b3:95:ee: 58:a9:b2:20:fa:e8:e3:80:48:3a:1b:c2:36:5c:12: b8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:CE:37:A7:ED:FC:5A:D7:AE:3A:44:87:CD:B7:F7:AA:B7:A1:88:3C X509v3 Authority Key Identifier: keyid:22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/R843p-38WteuOkSHzbf3qrehiDw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.26.7.0/24 Signature Algorithm: sha256WithRSAEncryption 46:d4:57:b0:72:0f:e6:ee:a4:3f:8c:69:5a:e6:ef:d4:2a:83: 90:a3:63:d3:c4:86:3b:7f:e4:fb:20:9c:08:a8:1b:39:aa:51: 6a:53:fb:29:49:f6:3d:c1:88:71:85:47:ac:5c:a6:45:74:fb: 19:8e:ed:c8:df:40:0d:a6:8b:62:16:de:6e:b5:25:db:5b:83: 57:14:f7:10:61:e7:43:9f:ad:43:a8:47:72:60:66:4e:98:a7: 2f:09:c6:2b:7a:06:ce:bf:07:f3:e9:9d:18:c4:c7:57:be:0b: 08:26:88:34:ae:2e:c2:b1:e0:fa:8e:da:54:7f:06:c9:6b:d4: 8a:34:08:f9:9b:83:85:6e:2c:6f:8f:85:79:1e:af:0e:d0:f4: ed:11:cf:93:6e:e8:00:c9:c6:fe:1f:d0:4e:26:37:c8:e1:51: a4:4f:83:26:0e:5e:22:50:65:05:7a:d2:e6:cf:7d:22:eb:9f: 98:3e:c7:2e:d7:4b:5b:4a:e7:1a:2f:64:4e:6b:7f:73:33:5b: a3:21:fc:09:23:14:4a:15:0a:80:65:3e:72:58:3f:47:ca:1f: 91:08:74:ca:ea:de:a1:ff:27:e4:d7:2e:3b:67:e3:05:3c:e8: 8e:3a:7a:4e:7d:24:0e:3d:1e:61:ec:6f:6f:4c:5c:b6:eb:d8: 1f:7a:17:e4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xtbH/Iq2jD1kl9qemxHlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyZmQxYjU5ZDVjYWFmNzUwNmJjMGQ1YzM0ZjMwYzIxNTli MDQzOTgwHhcNMjYwMTAxMDQxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0N2NlMzdhN2VkZmM1YWQ3YWUzYTQ0ODdjZGI3ZjdhYWI3YTE4ODNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDiPxNZictuX9Z+tylHn4YeAGnH/ ZfZzR7XFhl3JEzZYmE25jbkKsFod9noXFJg2muByBKQUpO2HcYAO3LwSCGyEiGsv s1oniZcFxNLThlHxlvqttYZhaiqk9dCbMqHVLmmdPVyynHUR0sK8iNDcxDLuHRSA tUjXaeAiGZ5Sp9WoUV3eISokpttJAPC/KYvHWEVOKmYeU/6UBUTS5p1t50ipMj8h ZMPlID9UAn7ldaGGoxSXISP86nJDslyQCiJBrsfCppUIjZn4j87dYgAslqYlm9nn kkZw61yoHXsY0YZu5zM+6zV/Y8Up2bmzle5YqbIg+ujjgEg6G8I2XBK4PQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEfON6ft/FrXrjpEh82396q3oYg8MB8GA1UdIwQY MBaAFCL9G1nVyq91BrwNXDTzDCFZsEOYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXYwYldkWEtyM1VHdkExY05QTU1JVm13UTVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC84NTBlOTYtMTkxZi00ZGNiLTllZGIt Y2Q1OGZhMjAxNGRkLzEvUjg0M3AtMzhXdGV1T2tTSHpiZjNxcmVoaUR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC84NTBlOTYtMTkxZi00ZGNiLTllZGItY2Q1OGZhMjAxNGRk LzEvSXYwYldkWEtyM1VHdkExY05QTU1JVm13UTVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRoHMA0G CSqGSIb3DQEBCwUAA4IBAQBG1Fewcg/m7qQ/jGla5u/UKoOQo2PTxIY7f+T7IJwI qBs5qlFqU/spSfY9wYhxhUesXKZFdPsZju3I30ANpotiFt5utSXbW4NXFPcQYedD n61DqEdyYGZOmKcvCcYregbOvwfz6Z0YxMdXvgsIJog0ri7CseD6jtpUfwbJa9SK NAj5m4OFbixvj4V5Hq8O0PTtEc+TbugAycb+H9BOJjfI4VGkT4MmDl4iUGUFetLm z30i65+YPscu10tbSucaL2ROa39zM1ujIfwJIxRKFQqAZT5yWD9Hyh+RCHTK6t6h /yfk1y47Z+MFPOiOOnpOfSQOPR5h7G9vTFy269gfehfk -----END CERTIFICATE-----Generated at Mon Jan 26 00:37:24 2026 by rpki-client