This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/aXSOc-PVHMUBKt_487iYToOm7qo.roa File: aXSOc-PVHMUBKt_487iYToOm7qo.roa (raw, json) Hash identifier: TgcrpfHL47vgaiMhXn3iuqbilgXgoWpFYf29PAeU7PQ= Subject key identifier: 69:74:8E:73:E3:D5:1C:C5:01:2A:DF:F8:F3:B8:98:4E:83:A6:EE:AA Certificate issuer: /CN=4dd1b2587490ad061cb207176bdeec81a531588c Certificate serial: 019B7AC949867A217EE5A0B187FBD8703407 Authority key identifier: 4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/aXSOc-PVHMUBKt_487iYToOm7qo.roa Signing time: Thu 01 Jan 2026 18:19:30 +0000 ROA not before: Thu 01 Jan 2026 18:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8297 IP address blocks: 195.219.88.0/24 maxlen: 24 2a01:3e0:ff71::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.mft rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:49:86:7a:21:7e:e5:a0:b1:87:fb:d8:70:34:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4dd1b2587490ad061cb207176bdeec81a531588c Validity Not Before: Jan 1 18:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69748e73e3d51cc5012adff8f3b8984e83a6eeaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:07:44:6f:b4:dc:2e:2d:9e:63:7e:92:48:6b: ea:66:3e:93:2e:47:04:1d:7d:a1:cc:18:ff:fc:30: d0:18:71:45:32:34:c0:6d:06:e5:5b:30:4f:c6:bb: fd:97:7a:64:92:87:14:a8:f2:70:23:07:e3:1a:00: 57:c2:b3:cb:35:e4:14:10:98:b0:8c:b8:dd:f5:b9: 2b:86:7f:cb:4d:ef:b9:c7:65:e2:bf:d5:11:b4:7f: fb:e4:1b:df:56:5c:30:b5:a2:cd:bd:af:49:43:9e: 11:46:23:2e:47:eb:99:03:c8:95:c4:90:57:33:a9: 2e:52:9b:fb:c3:fb:51:ce:08:dd:99:20:36:19:f2: 74:76:d4:f1:a1:bf:dd:b0:13:f3:fe:40:92:7f:be: 24:28:27:52:b5:ff:af:60:ce:9b:41:95:9c:ae:f8: 2c:26:66:75:ee:c5:c7:93:77:e0:19:e8:dd:2f:9d: f1:33:77:8d:61:3b:cd:49:b0:62:76:fa:06:63:c6: e1:a3:00:b2:e5:4e:ae:8d:4d:3e:8a:02:b3:80:c3: c2:da:7b:17:60:b8:aa:19:c2:1b:c2:05:b0:5a:3e: 4e:81:00:64:e7:66:9d:4b:2c:e9:3a:ec:96:cc:7f: ef:4a:0a:58:3b:be:8e:7b:05:d9:da:35:0e:08:e2: 45:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:74:8E:73:E3:D5:1C:C5:01:2A:DF:F8:F3:B8:98:4E:83:A6:EE:AA X509v3 Authority Key Identifier: keyid:4D:D1:B2:58:74:90:AD:06:1C:B2:07:17:6B:DE:EC:81:A5:31:58:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdGyWHSQrQYcsgcXa97sgaUxWIw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/aXSOc-PVHMUBKt_487iYToOm7qo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/01d2af-1f21-4b80-b665-db463c5fb0b4/1/TdGyWHSQrQYcsgcXa97sgaUxWIw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.219.88.0/24 IPv6: 2a01:3e0:ff71::/48 Signature Algorithm: sha256WithRSAEncryption 01:f3:67:8e:e7:6e:12:66:93:1a:05:c0:c3:4a:4b:77:df:db: 16:ab:b4:8e:59:41:05:33:46:ae:f3:9e:a9:a0:2b:8c:88:55: 0f:ef:b4:d2:af:66:cf:7b:2e:71:99:c1:44:11:d7:37:c2:2a: 83:06:58:7b:6e:ac:1b:7f:1f:b2:51:5b:fe:a1:f3:e6:ce:a7: 39:ec:08:02:f6:c5:50:b2:02:7a:18:2f:8a:a1:7e:19:a0:5a: 3b:91:3a:9a:36:65:c5:e7:09:59:ab:91:9c:b9:b4:61:94:02: bc:c4:74:c2:11:f8:c3:e2:cf:1a:ce:14:e7:79:83:7c:3f:61: 31:ca:42:8d:96:9b:e7:c6:b0:02:46:aa:3e:e5:7e:c8:d7:72: d9:99:57:0e:f9:0d:12:16:45:10:97:01:53:74:9e:3f:54:32: 42:ff:be:ca:f0:4b:41:c3:b5:e4:6f:18:30:f7:62:89:37:dd: 45:7f:fe:9f:e1:e4:ac:92:27:a8:63:c1:19:b1:d8:3f:70:2f: 8b:ca:37:89:66:11:eb:02:c0:23:9e:f2:4b:4f:79:96:ab:6a: 66:0d:3c:0d:6f:d8:37:98:4a:ef:0c:60:0d:4a:ad:a6:f3:fa: be:b3:6a:d7:ea:70:8f:69:c1:20:53:9c:a2:96:5a:32:9f:b1: 3d:01:91:08 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6yUmGeiF+5aCxh/vYcDQHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkZDFiMjU4NzQ5MGFkMDYxY2IyMDcxNzZiZGVlYzgxYTUz MTU4OGMwHhcNMjYwMTAxMTgxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTc0OGU3M2UzZDUxY2M1MDEyYWRmZjhmM2I4OTg0ZTgzYTZlZWFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1AdEb7TcLi2eY36SSGvqZj6TLkcE HX2hzBj//DDQGHFFMjTAbQblWzBPxrv9l3pkkocUqPJwIwfjGgBXwrPLNeQUEJiw jLjd9bkrhn/LTe+5x2Xiv9URtH/75BvfVlwwtaLNva9JQ54RRiMuR+uZA8iVxJBX M6kuUpv7w/tRzgjdmSA2GfJ0dtTxob/dsBPz/kCSf74kKCdStf+vYM6bQZWcrvgs JmZ17sXHk3fgGejdL53xM3eNYTvNSbBidvoGY8bhowCy5U6ujU0+igKzgMPC2nsX YLiqGcIbwgWwWj5OgQBk52adSyzpOuyWzH/vSgpYO76OewXZ2jUOCOJFLwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFGl0jnPj1RzFASrf+PO4mE6Dpu6qMB8GA1UdIwQY MBaAFE3Rslh0kK0GHLIHF2ve7IGlMViMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUt ZGI0NjNjNWZiMGI0LzEvYVhTT2MtUFZITVVCS3RfNDg3aVlUb09tN3FvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8wMWQyYWYtMWYyMS00YjgwLWI2NjUtZGI0NjNjNWZiMGI0 LzEvVGRHeVdIU1FyUVljc2djWGE5N3NnYVV4V0l3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAw9tYMA8E AgACMAkDBwAqAQPg/3EwDQYJKoZIhvcNAQELBQADggEBAAHzZ47nbhJmkxoFwMNK S3ff2xartI5ZQQUzRq7znqmgK4yIVQ/vtNKvZs97LnGZwUQR1zfCKoMGWHturBt/ H7JRW/6h8+bOpznsCAL2xVCyAnoYL4qhfhmgWjuROpo2ZcXnCVmrkZy5tGGUArzE dMIR+MPizxrOFOd5g3w/YTHKQo2Wm+fGsAJGqj7lfsjXctmZVw75DRIWRRCXAVN0 nj9UMkL/vsrwS0HDteRvGDD3Yok33UV//p/h5KySJ6hjwRmx2D9wL4vKN4lmEesC wCOe8ktPeZaramYNPA1v2DeYSu8MYA1Krabz+r6zatfqcI9pwSBTnKKWWjKfsT0B kQg= -----END CERTIFICATE-----Generated at Sun Jan 25 15:29:05 2026 by rpki-client