This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/0rfYrVviZUVYPptqvM07XCjMZN8.roa File: 0rfYrVviZUVYPptqvM07XCjMZN8.roa (raw, json) Hash identifier: NsAvwSlgjtFhEFUQcFrnr4l17cyyPI73mz93IQlKjBw= Subject key identifier: D2:B7:D8:AD:5B:E2:65:45:58:3E:9B:6A:BC:CD:3B:5C:28:CC:64:DF Certificate issuer: /CN=a81699a5bc6487bd2f1749d133fca2e37fd4da88 Certificate serial: 019B7CED65D201A05C17DB930252ABD7B813 Authority key identifier: A8:16:99:A5:BC:64:87:BD:2F:17:49:D1:33:FC:A2:E3:7F:D4:DA:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBaZpbxkh70vF0nRM_yi43_U2og.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/0rfYrVviZUVYPptqvM07XCjMZN8.roa Signing time: Fri 02 Jan 2026 04:18:11 +0000 ROA not before: Fri 02 Jan 2026 04:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3303 IP address blocks: 149.133.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/qBaZpbxkh70vF0nRM_yi43_U2og.crl rsync://rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/qBaZpbxkh70vF0nRM_yi43_U2og.mft rsync://rpki.ripe.net/repository/DEFAULT/qBaZpbxkh70vF0nRM_yi43_U2og.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:65:d2:01:a0:5c:17:db:93:02:52:ab:d7:b8:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a81699a5bc6487bd2f1749d133fca2e37fd4da88 Validity Not Before: Jan 2 04:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2b7d8ad5be26545583e9b6abccd3b5c28cc64df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:35:50:3d:71:be:84:ff:f2:24:54:03:68:62: 31:29:3a:ba:54:45:46:bf:ed:98:34:27:0e:c2:b2: b1:43:a8:ed:fa:c6:5e:a3:3c:5c:0b:11:f0:9c:13: 9c:d0:c0:43:e4:0a:a2:7b:03:21:83:12:bc:26:a5: b5:71:8e:56:d4:77:4d:69:0a:32:f5:e4:51:b8:31: 99:9d:fa:af:7d:8f:a2:94:04:04:1b:88:61:f8:25: 02:44:39:f6:2e:dc:3d:07:c9:4c:84:54:41:e4:6f: 2d:86:d5:e5:9f:f3:0b:ac:98:1a:0d:b2:d6:f6:c8: 06:82:f9:83:ea:ef:eb:49:c1:6c:c5:e6:ae:5d:dd: 7a:24:3e:01:24:6d:69:b8:87:f3:9b:38:b3:27:1b: d1:9d:bd:a5:64:72:bf:07:8e:12:f5:ee:93:a0:7f: aa:b4:88:04:84:49:f6:72:56:df:71:96:df:ba:86: 8f:ca:0b:48:3d:a3:e4:39:d2:ab:d8:94:9b:dc:22: 3f:31:0b:07:6e:37:42:24:1e:8d:f5:8e:50:94:52: a3:67:d0:0a:6d:7b:86:43:e8:ad:1f:a1:13:ff:ac: 44:01:b5:e0:18:78:2f:c2:04:c2:35:12:6a:7e:6d: fc:b1:e6:7b:03:22:16:32:0c:f6:63:8c:92:16:1f: 12:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B7:D8:AD:5B:E2:65:45:58:3E:9B:6A:BC:CD:3B:5C:28:CC:64:DF X509v3 Authority Key Identifier: keyid:A8:16:99:A5:BC:64:87:BD:2F:17:49:D1:33:FC:A2:E3:7F:D4:DA:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBaZpbxkh70vF0nRM_yi43_U2og.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/0rfYrVviZUVYPptqvM07XCjMZN8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd7493-7599-43b6-8559-787c0632cfea/1/qBaZpbxkh70vF0nRM_yi43_U2og.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.133.4.0/23 Signature Algorithm: sha256WithRSAEncryption 77:87:93:0a:dd:7f:e5:1d:62:c6:7b:30:ee:ce:00:d0:ba:e2: f2:4e:c7:94:ae:5a:1e:9e:7d:a9:9f:11:56:ef:e4:d0:1a:17: 86:20:ff:3a:28:4c:53:7d:d8:3e:71:b7:00:db:5f:10:a0:f8: 69:db:2a:88:51:fe:27:09:46:07:84:63:e5:36:32:34:25:f7: 42:dd:6d:a1:66:7f:c3:41:df:21:6a:03:a0:1a:cb:0d:65:04: 47:60:c1:83:2b:72:3f:24:ee:7f:c0:04:71:f8:51:c5:6b:b2: e1:6c:4d:d5:2c:5c:89:f4:28:b7:97:b9:5b:72:6d:d1:f6:7c: cd:09:ed:c0:e3:1b:95:18:94:d6:16:7e:f8:fc:5a:e4:79:fb: 83:e8:57:be:73:96:72:01:ab:03:54:45:7b:b3:bb:0c:fe:c1: 92:44:c2:c7:b3:a5:78:6d:15:3e:6d:35:17:5b:77:3d:b3:d5: 85:89:9b:f1:fc:d7:74:28:91:d7:8d:1b:6c:65:d3:00:9b:5a: 5e:fc:3f:72:26:18:6f:ae:62:33:e7:2f:0f:1f:d4:cb:e8:cc: 48:36:01:1f:c4:69:8c:81:a6:4b:13:4c:ea:b7:35:41:4a:b3: 44:a4:06:0e:71:17:92:bc:36:b6:2c:25:1c:77:0a:57:30:f9: 70:08:a1:78 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87WXSAaBcF9uTAlKr17gTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE4MTY5OWE1YmM2NDg3YmQyZjE3NDlkMTMzZmNhMmUzN2Zk NGRhODgwHhcNMjYwMTAyMDQxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMmI3ZDhhZDViZTI2NTQ1NTgzZTliNmFiY2NkM2I1YzI4Y2M2NGRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTVQPXG+hP/yJFQDaGIxKTq6VEVG v+2YNCcOwrKxQ6jt+sZeozxcCxHwnBOc0MBD5AqiewMhgxK8JqW1cY5W1HdNaQoy 9eRRuDGZnfqvfY+ilAQEG4hh+CUCRDn2Ltw9B8lMhFRB5G8thtXln/MLrJgaDbLW 9sgGgvmD6u/rScFsxeauXd16JD4BJG1puIfzmzizJxvRnb2lZHK/B44S9e6ToH+q tIgEhEn2clbfcZbfuoaPygtIPaPkOdKr2JSb3CI/MQsHbjdCJB6N9Y5QlFKjZ9AK bXuGQ+itH6ET/6xEAbXgGHgvwgTCNRJqfm38seZ7AyIWMgz2Y4ySFh8SywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNK32K1b4mVFWD6barzNO1wozGTfMB8GA1UdIwQY MBaAFKgWmaW8ZIe9LxdJ0TP8ouN/1NqIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcUJhWnBieGtoNzB2RjBuUk1feWk0M19VMm9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9mZDc0OTMtNzU5OS00M2I2LTg1NTkt Nzg3YzA2MzJjZmVhLzEvMHJmWXJWdmlaVVZZUHB0cXZNMDdYQ2pNWk44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9mZDc0OTMtNzU5OS00M2I2LTg1NTktNzg3YzA2MzJjZmVh LzEvcUJhWnBieGtoNzB2RjBuUk1feWk0M19VMm9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBlYUEMA0G CSqGSIb3DQEBCwUAA4IBAQB3h5MK3X/lHWLGezDuzgDQuuLyTseUrloenn2pnxFW 7+TQGheGIP86KExTfdg+cbcA218QoPhp2yqIUf4nCUYHhGPlNjI0JfdC3W2hZn/D Qd8hagOgGssNZQRHYMGDK3I/JO5/wARx+FHFa7LhbE3VLFyJ9Ci3l7lbcm3R9nzN Ce3A4xuVGJTWFn74/FrkefuD6Fe+c5ZyAasDVEV7s7sM/sGSRMLHs6V4bRU+bTUX W3c9s9WFiZvx/Nd0KJHXjRtsZdMAm1pe/D9yJhhvrmIz5y8PH9TL6MxINgEfxGmM gaZLE0zqtzVBSrNEpAYOcReSvDa2LCUcdwpXMPlwCKF4 -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:12 2026 by rpki-client