This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cA6GYxFNrQzJXvnUUCTkZ74uPLY.roa File: cA6GYxFNrQzJXvnUUCTkZ74uPLY.roa (raw, json) Hash identifier: 9ZlPADtkA5tNsCz6vf4xeuKDXE0oMu2t/mqNk4DDlVc= Subject key identifier: 70:0E:86:63:11:4D:AD:0C:C9:5E:F9:D4:50:24:E4:67:BE:2E:3C:B6 Certificate issuer: /CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea Certificate serial: 019B7C129BBD9F1B606D2CE6E2950BC7BF55 Authority key identifier: 72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cA6GYxFNrQzJXvnUUCTkZ74uPLY.roa Signing time: Fri 02 Jan 2026 00:19:12 +0000 ROA not before: Fri 02 Jan 2026 00:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35616 IP address blocks: 193.23.29.0/24 maxlen: 24 2a04:9ac1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.mft rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:9b:bd:9f:1b:60:6d:2c:e6:e2:95:0b:c7:bf:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72ed2fbb7213fbf32ad4c087f8b0b22cecef4fea Validity Not Before: Jan 2 00:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=700e8663114dad0cc95ef9d45024e467be2e3cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:09:30:89:00:9f:02:ed:62:06:3a:f6:1f:eb: 1f:57:94:e6:8c:e1:ed:c9:e0:c1:13:85:33:79:be: 8f:31:6a:61:1d:e6:88:f3:2c:52:2b:da:c6:3c:aa: 40:e1:aa:20:1f:6b:1f:f6:7f:8d:b5:de:23:d3:e5: fd:56:0e:8a:5a:21:c1:84:59:3e:8c:cd:29:5b:ec: df:58:f1:ed:74:cc:f7:2f:35:e6:21:63:70:56:f6: 3f:3a:c3:a5:9b:6d:c4:c0:8c:38:c4:25:51:74:b2: fc:5d:25:6b:69:c4:5c:25:d9:51:6f:e9:0a:5f:83: c4:b9:83:20:f4:5c:03:0b:d3:7c:92:cb:61:11:8f: c7:fc:6d:42:3e:15:c0:2e:b2:b4:be:14:5b:36:3d: 2a:61:4f:9d:ad:03:bd:7e:ac:e9:01:0b:26:3a:b3: 17:7b:16:f3:28:ff:6e:d1:a0:09:36:46:21:8d:7e: 8d:10:69:3c:ad:43:f3:6d:2f:97:49:ff:93:87:ed: e8:c9:d3:ff:45:ff:9f:1a:6f:97:85:64:a6:89:2c: c4:3d:3c:49:e1:8f:51:94:e7:f9:43:47:80:ec:3e: 74:fa:39:67:a0:0a:4d:8e:a7:17:fb:7e:ae:cf:17: 19:b2:e7:47:b0:9e:46:2f:9d:33:e0:b2:4e:38:05: 41:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0E:86:63:11:4D:AD:0C:C9:5E:F9:D4:50:24:E4:67:BE:2E:3C:B6 X509v3 Authority Key Identifier: keyid:72:ED:2F:BB:72:13:FB:F3:2A:D4:C0:87:F8:B0:B2:2C:EC:EF:4F:EA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cA6GYxFNrQzJXvnUUCTkZ74uPLY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/e5a892-23f5-49fa-b6a9-a65233b3e975/1/cu0vu3IT-_Mq1MCH-LCyLOzvT-o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.23.29.0/24 IPv6: 2a04:9ac1::/32 Signature Algorithm: sha256WithRSAEncryption 9e:0c:de:f0:d8:88:34:29:a1:46:9e:1c:52:34:ec:4e:84:a6: 9c:68:9d:a5:c8:d3:b8:74:3a:c0:0f:da:28:fd:53:66:e6:ae: 43:b0:87:9a:1a:d3:ac:9f:ab:ff:33:d3:4e:f9:4b:5c:df:ed: 93:0b:14:d6:13:ad:fb:eb:4e:63:f6:04:11:48:eb:d3:3b:bb: 3a:26:ac:f8:2b:d1:3b:8f:56:14:a2:7c:bb:af:6d:2c:7c:79: d9:1a:6f:23:bd:37:fc:7a:75:3a:03:b8:3d:9f:7e:48:c2:3a: da:47:38:e1:22:13:51:26:c2:d4:0b:8e:a3:5e:19:1c:de:58: b9:e5:8c:82:78:2d:34:d7:a3:3a:04:3b:4d:44:34:f3:59:17: bd:dd:d7:28:3d:45:5d:9b:ee:8b:e6:77:e1:70:c5:c3:de:e8: 00:dd:be:d5:13:7d:9e:b9:e7:e6:e6:68:08:66:3a:e3:ea:bc: f4:ff:eb:6c:dc:5d:ca:95:c3:73:cb:d6:0e:37:f1:c4:23:40: 7a:35:c2:74:b2:64:84:af:f6:ce:0b:30:b3:bc:b7:19:54:56: d3:55:c0:67:d6:f2:de:8a:7c:7b:dc:f0:51:da:37:14:a1:b2: c7:87:4a:03:b1:0e:18:3f:d1:a6:2a:ba:42:4a:f0:ee:f0:67: c0:48:38:25 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8Epu9nxtgbSzm4pULx79VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZWQyZmJiNzIxM2ZiZjMyYWQ0YzA4N2Y4YjBiMjJjZWNl ZjRmZWEwHhcNMjYwMTAyMDAxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDBlODY2MzExNGRhZDBjYzk1ZWY5ZDQ1MDI0ZTQ2N2JlMmUzY2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQkwiQCfAu1iBjr2H+sfV5TmjOHt yeDBE4Uzeb6PMWphHeaI8yxSK9rGPKpA4aogH2sf9n+Ntd4j0+X9Vg6KWiHBhFk+ jM0pW+zfWPHtdMz3LzXmIWNwVvY/OsOlm23EwIw4xCVRdLL8XSVracRcJdlRb+kK X4PEuYMg9FwDC9N8ksthEY/H/G1CPhXALrK0vhRbNj0qYU+drQO9fqzpAQsmOrMX exbzKP9u0aAJNkYhjX6NEGk8rUPzbS+XSf+Th+3oydP/Rf+fGm+XhWSmiSzEPTxJ 4Y9RlOf5Q0eA7D50+jlnoApNjqcX+36uzxcZsudHsJ5GL50z4LJOOAVBPwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHAOhmMRTa0MyV751FAk5Ge+Ljy2MB8GA1UdIwQY MBaAFHLtL7tyE/vzKtTAh/iwsizs70/qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3UwdnUzSVQtX01xMU1DSC1MQ3lMT3p2VC1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy9lNWE4OTItMjNmNS00OWZhLWI2YTkt YTY1MjMzYjNlOTc1LzEvY0E2R1l4Rk5yUXpKWHZuVVVDVGtaNzR1UExZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy9lNWE4OTItMjNmNS00OWZhLWI2YTktYTY1MjMzYjNlOTc1 LzEvY3UwdnUzSVQtX01xMU1DSC1MQ3lMT3p2VC1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwRcdMA0E AgACMAcDBQAqBJrBMA0GCSqGSIb3DQEBCwUAA4IBAQCeDN7w2Ig0KaFGnhxSNOxO hKacaJ2lyNO4dDrAD9oo/VNm5q5DsIeaGtOsn6v/M9NO+Utc3+2TCxTWE637605j 9gQRSOvTO7s6Jqz4K9E7j1YUony7r20sfHnZGm8jvTf8enU6A7g9n35IwjraRzjh IhNRJsLUC46jXhkc3li55YyCeC0016M6BDtNRDTzWRe93dcoPUVdm+6L5nfhcMXD 3ugA3b7VE32euefm5mgIZjrj6rz0/+ts3F3KlcNzy9YON/HEI0B6NcJ0smSEr/bO CzCzvLcZVFbTVcBn1vLeinx73PBR2jcUobLHh0oDsQ4YP9GmKrpCSvDu8GfASDgl -----END CERTIFICATE-----Generated at Mon Jan 26 08:57:37 2026 by rpki-client