This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/55I-KJfDZCQf3-WIzaOmHLDw0UA.roa File: 55I-KJfDZCQf3-WIzaOmHLDw0UA.roa (raw, json) Hash identifier: CHL8cZMB7OLAW5NGioo9AKdHll+9RPJn2SB7b3DCiOk= Subject key identifier: E7:92:3E:28:97:C3:64:24:1F:DF:E5:88:CD:A3:A6:1C:B0:F0:D1:40 Certificate issuer: /CN=d8a3cacdf8f33514be3abdc52c50ec864675e955 Certificate serial: 019B797F293315402E6D5A9F64ADBFFD4EEB Authority key identifier: D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/55I-KJfDZCQf3-WIzaOmHLDw0UA.roa Signing time: Thu 01 Jan 2026 12:18:55 +0000 ROA not before: Thu 01 Jan 2026 12:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15380 IP address blocks: 193.0.231.0/24 maxlen: 24 2001:678:a20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.mft rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:29:33:15:40:2e:6d:5a:9f:64:ad:bf:fd:4e:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8a3cacdf8f33514be3abdc52c50ec864675e955 Validity Not Before: Jan 1 12:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7923e2897c364241fdfe588cda3a61cb0f0d140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5c:0d:c3:bf:a4:98:d9:ab:7d:85:b4:4f:f7: 6e:90:a2:1b:9d:24:70:74:ea:37:40:16:28:8a:3e: fd:2f:6a:48:d2:86:3f:e9:34:25:5f:34:3e:18:c5: 14:1e:5c:09:5e:5e:1b:53:aa:58:7f:b7:6b:8e:40: 66:54:aa:ae:12:e4:83:a8:dc:8b:e2:b7:a8:87:b8: 98:15:a2:8e:73:d3:06:ce:7d:ab:91:5e:7b:aa:a9: b1:f3:c5:4f:3e:33:be:27:fd:69:b3:7b:e7:32:b1: 06:f9:23:80:89:d6:e7:f0:4a:3c:e7:29:3f:d7:35: f2:4f:18:89:c0:dc:e9:53:bf:c5:1c:8a:ea:e9:f4: 99:7d:af:e3:fe:1c:43:78:0a:59:0c:33:4b:bc:d1: d1:06:d4:7f:95:fb:82:0d:19:e5:1d:db:89:ae:6a: 55:23:55:3c:ed:50:ed:f1:88:87:b1:2e:b9:5b:1f: a5:b8:94:c6:82:42:96:84:b2:1d:30:40:b6:17:09: f9:9f:3b:57:11:b0:7f:57:01:d1:66:35:5c:93:9d: de:e0:bc:fe:80:4a:d1:f9:b1:d3:26:2f:a3:8c:a2: 57:54:ed:fb:94:da:c7:b4:d6:4c:2f:3f:19:94:a5: 41:5f:5f:2b:12:30:e8:f5:e3:13:fd:97:ee:74:3d: 58:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:92:3E:28:97:C3:64:24:1F:DF:E5:88:CD:A3:A6:1C:B0:F0:D1:40 X509v3 Authority Key Identifier: keyid:D8:A3:CA:CD:F8:F3:35:14:BE:3A:BD:C5:2C:50:EC:86:46:75:E9:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KPKzfjzNRS-Or3FLFDshkZ16VU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/55I-KJfDZCQf3-WIzaOmHLDw0UA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/333c1a-e4a5-496d-9a81-b791b989af29/1/2KPKzfjzNRS-Or3FLFDshkZ16VU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.0.231.0/24 IPv6: 2001:678:a20::/48 Signature Algorithm: sha256WithRSAEncryption 11:96:98:7c:1a:77:e4:60:0c:9a:8b:d5:54:7e:61:4a:c2:92: 8d:c4:7a:91:13:bd:63:68:88:37:00:c1:04:7a:9e:35:2f:37: cb:b5:69:4d:4f:89:dc:eb:55:60:d2:a3:ab:92:7f:28:4d:98: 9f:ea:8d:88:fd:f0:46:d1:e9:10:78:c7:57:6e:de:43:9a:2a: ad:3f:48:c3:79:d9:54:f9:c5:9f:9f:04:23:2d:62:22:70:d4: ad:31:7d:72:84:61:16:ab:90:a3:09:58:2e:26:63:34:c7:dc: a8:6a:64:8b:6a:88:f3:14:df:a3:7b:45:f4:0b:be:f3:d4:2a: 30:09:4e:08:d4:7e:4c:49:0b:78:00:eb:fb:01:03:95:b6:0e: 57:bc:64:8b:bc:09:e0:98:79:f8:f1:9e:cf:7d:35:5b:9b:c0: a7:b7:3d:d8:62:d3:3c:bc:a4:5f:92:bf:01:8e:8f:50:52:2c: 00:00:62:d6:87:2f:39:6d:96:21:f7:1f:7e:2e:a9:10:96:9a: dd:4e:51:41:75:40:11:ac:7d:04:3d:ae:54:5f:b3:f5:29:13: c4:5b:93:f9:ec:93:40:31:5a:4b:66:be:1c:5a:ed:9e:26:fb: 23:07:75:2a:30:e7:d4:84:ae:b5:d3:58:74:12:d7:26:43:e4: 75:13:d2:7c -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt5fykzFUAubVqfZK2//U7rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4YTNjYWNkZjhmMzM1MTRiZTNhYmRjNTJjNTBlYzg2NDY3 NWU5NTUwHhcNMjYwMTAxMTIxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzkyM2UyODk3YzM2NDI0MWZkZmU1ODhjZGEzYTYxY2IwZjBkMTQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VwNw7+kmNmrfYW0T/dukKIbnSRw dOo3QBYoij79L2pI0oY/6TQlXzQ+GMUUHlwJXl4bU6pYf7drjkBmVKquEuSDqNyL 4reoh7iYFaKOc9MGzn2rkV57qqmx88VPPjO+J/1ps3vnMrEG+SOAidbn8Eo85yk/ 1zXyTxiJwNzpU7/FHIrq6fSZfa/j/hxDeApZDDNLvNHRBtR/lfuCDRnlHduJrmpV I1U87VDt8YiHsS65Wx+luJTGgkKWhLIdMEC2Fwn5nztXEbB/VwHRZjVck53e4Lz+ gErR+bHTJi+jjKJXVO37lNrHtNZMLz8ZlKVBX18rEjDo9eMT/ZfudD1Y1wIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFOeSPiiXw2QkH9/liM2jphyw8NFAMB8GA1UdIwQY MBaAFNijys348zUUvjq9xSxQ7IZGdelVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEt Yjc5MWI5ODlhZjI5LzEvNTVJLUtKZkRaQ1FmMy1XSXphT21ITER3MFVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8zMzNjMWEtZTRhNS00OTZkLTlhODEtYjc5MWI5ODlhZjI5 LzEvMktQS3pmanpOUlMtT3IzRkxGRHNoa1oxNlZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwQDnMA8E AgACMAkDBwAgAQZ4CiAwDQYJKoZIhvcNAQELBQADggEBABGWmHwad+RgDJqL1VR+ YUrCko3EepETvWNoiDcAwQR6njUvN8u1aU1PidzrVWDSo6uSfyhNmJ/qjYj98EbR 6RB4x1du3kOaKq0/SMN52VT5xZ+fBCMtYiJw1K0xfXKEYRarkKMJWC4mYzTH3Khq ZItqiPMU36N7RfQLvvPUKjAJTgjUfkxJC3gA6/sBA5W2Dle8ZIu8CeCYefjxns99 NVubwKe3Pdhi0zy8pF+SvwGOj1BSLAAAYtaHLzltliH3H34uqRCWmt1OUUF1QBGs fQQ9rlRfs/UpE8Rbk/nsk0AxWktmvhxa7Z4m+yMHdSow59SErrXTWHQS1yZD5HUT 0nw= -----END CERTIFICATE-----Generated at Sun Jan 25 21:57:54 2026 by rpki-client