This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/Ih_bDVPWPg40meMVUQH52Q_SiqE.roa File: Ih_bDVPWPg40meMVUQH52Q_SiqE.roa (raw, json) Hash identifier: WQr9CRYz6MHyRZSZGa17nV7pgtE8mhzsKExO1LfYlFY= Subject key identifier: 22:1F:DB:0D:53:D6:3E:0E:34:99:E3:15:51:01:F9:D9:0F:D2:8A:A1 Certificate issuer: /CN=833e0e480411b9c88e916def90fc3a901026394a Certificate serial: 019BC26860F86F6D869271BD3AFB448DF65A Authority key identifier: 83:3E:0E:48:04:11:B9:C8:8E:91:6D:EF:90:FC:3A:90:10:26:39:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4OSAQRuciOkW3vkPw6kBAmOUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/Ih_bDVPWPg40meMVUQH52Q_SiqE.roa Signing time: Thu 15 Jan 2026 16:06:19 +0000 ROA not before: Thu 15 Jan 2026 16:06:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196763 IP address blocks: 193.105.43.0/24 maxlen: 24 195.64.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/gz4OSAQRuciOkW3vkPw6kBAmOUo.crl rsync://rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/gz4OSAQRuciOkW3vkPw6kBAmOUo.mft rsync://rpki.ripe.net/repository/DEFAULT/gz4OSAQRuciOkW3vkPw6kBAmOUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c2:68:60:f8:6f:6d:86:92:71:bd:3a:fb:44:8d:f6:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833e0e480411b9c88e916def90fc3a901026394a Validity Not Before: Jan 15 16:06:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=221fdb0d53d63e0e3499e3155101f9d90fd28aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:19:11:a1:4a:5b:4d:04:2e:06:50:6c:f8:2b: 3c:ea:a6:91:e0:f9:ca:44:79:95:54:86:9d:3f:12: c7:f3:9f:83:95:88:18:9d:3d:82:e5:a3:e3:79:49: 2b:b3:31:cb:5a:1b:c9:90:94:47:dc:44:32:a6:be: e4:9c:e4:3d:60:8d:70:93:89:b3:12:f1:eb:ab:e4: 32:1d:2f:2b:16:a3:97:de:41:ee:d6:77:fe:04:e8: 9f:98:86:9b:a0:1f:3a:c7:be:05:0a:14:33:d4:09: 86:d2:9b:cb:ee:38:96:40:74:51:3c:9c:bd:28:f2: 13:67:ef:4d:05:e5:04:e6:f2:10:77:e4:07:53:fd: 07:b2:18:35:4c:0f:27:18:06:92:5a:6d:8a:d9:59: a7:91:76:3e:6d:4b:40:2e:59:76:f1:c3:d7:68:0e: 45:12:62:e6:f3:f9:e4:16:0c:68:3a:01:a3:6d:89: b3:6a:91:a6:da:b5:36:23:ce:10:b8:83:45:f9:54: fd:24:5d:5d:c5:e3:dd:4c:64:8f:59:6c:f9:81:55: 16:81:dc:4b:e8:38:18:dd:aa:4a:7b:d9:27:f1:dd: 78:f3:81:ec:c4:e2:b5:44:a9:f1:ff:34:34:5e:4f: 43:46:c0:b1:aa:b5:b0:86:35:a6:f2:f1:fd:ee:6d: cf:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1F:DB:0D:53:D6:3E:0E:34:99:E3:15:51:01:F9:D9:0F:D2:8A:A1 X509v3 Authority Key Identifier: keyid:83:3E:0E:48:04:11:B9:C8:8E:91:6D:EF:90:FC:3A:90:10:26:39:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4OSAQRuciOkW3vkPw6kBAmOUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/Ih_bDVPWPg40meMVUQH52Q_SiqE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a782cc-1e09-4480-a6dc-6c20ebaf30a9/1/gz4OSAQRuciOkW3vkPw6kBAmOUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.105.43.0/24 195.64.164.0/23 Signature Algorithm: sha256WithRSAEncryption 63:c2:fa:41:e4:3f:75:50:6a:33:00:4a:02:b9:62:3a:ef:d4: 33:26:8b:29:17:05:18:0b:bc:81:4b:bb:8b:93:44:c7:f0:2b: 35:b9:8b:23:94:ab:d4:43:23:ec:4c:c0:9e:d8:14:3f:f4:1d: bc:62:05:75:95:f8:67:c4:59:ae:2d:04:33:dd:62:e9:0d:4a: ca:64:b9:61:f2:2e:a9:c4:89:32:4c:3c:ac:3f:fc:2e:4f:a3: 52:20:44:27:f7:1d:bc:41:c9:53:7a:a6:f8:09:9f:b8:a2:73: bf:f3:1e:dd:ed:23:e3:9f:56:6b:ab:45:bd:11:d1:fd:73:33: 7d:0e:48:92:89:b1:0e:50:00:20:20:7e:71:01:ab:b1:cc:4f: 2d:8f:2b:89:40:95:76:b1:9e:ee:c2:0e:0e:c2:f1:6f:67:ba: f8:62:7f:6f:af:4d:19:59:56:4f:d0:80:43:9f:ae:6f:53:99: d0:d5:9b:86:63:7d:97:e4:a4:87:47:2a:a7:b4:66:35:65:e8: 34:65:1a:11:83:b4:62:88:57:06:4e:bb:03:da:9b:6e:d7:90: b2:d4:0f:91:63:30:13:89:0d:a2:05:dc:f1:89:dd:b2:a2:ae: ab:27:22:5f:6e:1f:b2:cb:05:f1:e1:4a:ca:5f:56:46:a6:83: ac:4b:71:2b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvCaGD4b22GknG9OvtEjfZaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzM2UwZTQ4MDQxMWI5Yzg4ZTkxNmRlZjkwZmMzYTkwMTAy NjM5NGEwHhcNMjYwMTE1MTYwNjE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjFmZGIwZDUzZDYzZTBlMzQ5OWUzMTU1MTAxZjlkOTBmZDI4YWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAshkRoUpbTQQuBlBs+Cs86qaR4PnK RHmVVIadPxLH85+DlYgYnT2C5aPjeUkrszHLWhvJkJRH3EQypr7knOQ9YI1wk4mz EvHrq+QyHS8rFqOX3kHu1nf+BOifmIaboB86x74FChQz1AmG0pvL7jiWQHRRPJy9 KPITZ+9NBeUE5vIQd+QHU/0Hshg1TA8nGAaSWm2K2VmnkXY+bUtALll28cPXaA5F EmLm8/nkFgxoOgGjbYmzapGm2rU2I84QuINF+VT9JF1dxePdTGSPWWz5gVUWgdxL 6DgY3apKe9kn8d1484HsxOK1RKnx/zQ0Xk9DRsCxqrWwhjWm8vH97m3PLQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCIf2w1T1j4ONJnjFVEB+dkP0oqhMB8GA1UdIwQY MBaAFIM+DkgEEbnIjpFt75D8OpAQJjlKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3o0T1NBUVJ1Y2lPa1czdmtQdzZrQkFtT1VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9hNzgyY2MtMWUwOS00NDgwLWE2ZGMt NmMyMGViYWYzMGE5LzEvSWhfYkRWUFdQZzQwbWVNVlVRSDUyUV9TaXFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9hNzgyY2MtMWUwOS00NDgwLWE2ZGMtNmMyMGViYWYzMGE5 LzEvZ3o0T1NBUVJ1Y2lPa1czdmtQdzZrQkFtT1VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwWkrAwQB w0CkMA0GCSqGSIb3DQEBCwUAA4IBAQBjwvpB5D91UGozAEoCuWI679QzJospFwUY C7yBS7uLk0TH8Cs1uYsjlKvUQyPsTMCe2BQ/9B28YgV1lfhnxFmuLQQz3WLpDUrK ZLlh8i6pxIkyTDysP/wuT6NSIEQn9x28QclTeqb4CZ+4onO/8x7d7SPjn1Zrq0W9 EdH9czN9DkiSibEOUAAgIH5xAauxzE8tjyuJQJV2sZ7uwg4OwvFvZ7r4Yn9vr00Z WVZP0IBDn65vU5nQ1ZuGY32X5KSHRyqntGY1Zeg0ZRoRg7RiiFcGTrsD2ptu15Cy 1A+RYzATiQ2iBdzxid2yoq6rJyJfbh+yywXx4UrKX1ZGpoOsS3Er -----END CERTIFICATE-----Generated at Mon Jan 26 06:33:22 2026 by rpki-client