This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/kO3ikc55etvofjUz54lkxBw2Zts.roa File: kO3ikc55etvofjUz54lkxBw2Zts.roa (raw, json) Hash identifier: FQtm/UjIvg0izBKVwcfTdDDZlcQWbE25eid7tWcMESM= Subject key identifier: 90:ED:E2:91:CE:79:7A:DB:E8:7E:35:33:E7:89:64:C4:1C:36:66:DB Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61 Certificate serial: 019B7D5CDABE503CC52CBB7ABC8AC15AC61E Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/kO3ikc55etvofjUz54lkxBw2Zts.roa Signing time: Fri 02 Jan 2026 06:19:55 +0000 ROA not before: Fri 02 Jan 2026 06:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201319 IP address blocks: 194.56.0.0/18 maxlen: 24 194.56.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:da:be:50:3c:c5:2c:bb:7a:bc:8a:c1:5a:c6:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61 Validity Not Before: Jan 2 06:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=90ede291ce797adbe87e3533e78964c41c3666db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:45:e8:4a:f1:83:a2:14:f0:b7:27:ac:4e:1b: 40:ee:61:73:1d:7a:21:6d:00:e7:80:bc:0b:ff:c1: f8:f4:b8:0d:68:13:ec:4c:6f:e9:e3:0f:17:c9:84: 50:86:75:37:68:3c:bd:ce:ee:c4:18:00:0f:f2:24: 48:04:69:9b:40:b4:77:72:1c:4e:34:f6:4f:e9:8e: 9e:2f:00:db:33:c0:f0:aa:ec:03:cb:75:8f:b9:aa: 00:92:57:53:19:37:a9:9d:a8:5c:46:2d:ab:e1:c5: b6:a2:89:c4:38:cb:97:91:63:a9:b9:03:6e:aa:fb: 61:22:b3:61:7c:a3:63:08:5e:19:aa:8e:4b:38:88: 02:91:41:f3:95:85:0c:77:67:ee:92:00:ce:50:9c: 79:fd:dc:50:70:9d:33:66:78:42:a1:d4:8d:24:0d: fa:a6:84:5a:7d:2e:3f:ad:38:8e:e4:38:d3:e3:cb: 50:49:8b:32:22:eb:a3:f9:9c:dd:f4:1c:5f:20:d8: 9c:70:ae:38:ef:d3:77:c3:f5:17:dc:93:fd:18:a9: 44:88:4f:06:43:bf:fa:50:02:4b:94:84:0c:76:13: c6:d0:fe:82:1f:b6:1b:c5:7f:e1:c0:c3:01:b5:2a: 71:d4:7d:5a:ff:d6:3e:41:29:7b:1c:36:cf:9d:bb: 2e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:ED:E2:91:CE:79:7A:DB:E8:7E:35:33:E7:89:64:C4:1C:36:66:DB X509v3 Authority Key Identifier: keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/kO3ikc55etvofjUz54lkxBw2Zts.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.56.0.0-194.56.71.255 Signature Algorithm: sha256WithRSAEncryption a7:63:a5:1b:0e:ef:bf:7f:52:b5:4c:38:80:3b:91:70:77:41: d1:58:c7:ae:3c:90:58:b8:fc:a1:4f:b1:75:8c:78:96:eb:39: d7:c8:5b:b7:db:e8:59:29:d9:81:4a:e1:81:8a:31:a2:a5:c0: 66:1b:09:dd:61:74:8b:f0:9f:18:7c:17:c4:de:99:86:ff:5e: 34:da:8d:d9:98:90:06:48:76:39:e8:cc:c3:ec:87:3e:25:f8: 48:43:1b:f0:0a:1b:97:69:3a:75:b0:d2:c6:82:4a:34:73:be: ac:61:f8:06:a0:17:5e:ac:5a:23:a5:22:61:47:12:70:95:05: c9:61:4a:d3:a6:59:f7:db:39:d7:31:ec:3a:84:9e:78:51:e6: 86:4e:a8:28:fd:95:46:8f:ca:68:e5:48:26:1c:3c:de:a4:d3: 4a:b3:59:e5:69:bb:83:8f:5c:71:ee:80:e6:a5:28:1f:26:d9: 20:44:f3:9b:de:4d:f2:4b:15:36:78:35:2f:cd:59:ea:ed:e4: 4a:ed:45:5e:c0:0c:3b:10:4b:ab:c3:36:99:f9:35:9b:d9:93: ac:3b:32:57:0e:60:6a:e8:36:82:73:2a:43:1b:c8:c3:c5:ef: 73:1c:4e:40:12:41:07:52:98:18:75:19:11:ea:5e:3a:88:36: d3:e4:2b:75 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZt9XNq+UDzFLLt6vIrBWsYeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MDg5OTEzMzMyOWZhYTViNTcxNmIxYzk1ZmJhZjkzMDIx ZmJjNjEwHhcNMjYwMTAyMDYxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MGVkZTI5MWNlNzk3YWRiZTg3ZTM1MzNlNzg5NjRjNDFjMzY2NmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo0XoSvGDohTwtyesThtA7mFzHXoh bQDngLwL/8H49LgNaBPsTG/p4w8XyYRQhnU3aDy9zu7EGAAP8iRIBGmbQLR3chxO NPZP6Y6eLwDbM8DwquwDy3WPuaoAkldTGTepnahcRi2r4cW2oonEOMuXkWOpuQNu qvthIrNhfKNjCF4Zqo5LOIgCkUHzlYUMd2fukgDOUJx5/dxQcJ0zZnhCodSNJA36 poRafS4/rTiO5DjT48tQSYsyIuuj+Zzd9BxfINiccK4479N3w/UX3JP9GKlEiE8G Q7/6UAJLlIQMdhPG0P6CH7YbxX/hwMMBtSpx1H1a/9Y+QSl7HDbPnbsu2wIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFJDt4pHOeXrb6H41M+eJZMQcNmbbMB8GA1UdIwQY MBaAFGYImRMzKfqltXFrHJX7r5MCH7xhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmdpWkV6TXAtcVcxY1dzY2xmdXZrd0lmdkdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9iZDc1YjEtMTc0Yi00MTdjLTg3NTAt ZWI4YTQ1M2JjNTZlLzEva08zaWtjNTVldHZvZmpVejU0bGt4QncyWnRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9iZDc1YjEtMTc0Yi00MTdjLTg3NTAtZWI4YTQ1M2JjNTZl LzEvWmdpWkV6TXAtcVcxY1dzY2xmdXZrd0lmdkdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCYGCCsGAQUFBwEHAQH/BBcwFTATBAIAATANMAsDAwPCOAME A8I4QDANBgkqhkiG9w0BAQsFAAOCAQEAp2OlGw7vv39StUw4gDuRcHdB0VjHrjyQ WLj8oU+xdYx4lus518hbt9voWSnZgUrhgYoxoqXAZhsJ3WF0i/CfGHwXxN6Zhv9e NNqN2ZiQBkh2OejMw+yHPiX4SEMb8Aobl2k6dbDSxoJKNHO+rGH4BqAXXqxaI6Ui YUcScJUFyWFK06ZZ99s51zHsOoSeeFHmhk6oKP2VRo/KaOVIJhw83qTTSrNZ5Wm7 g49cce6A5qUoHybZIETzm95N8ksVNng1L81Z6u3kSu1FXsAMOxBLq8M2mfk1m9mT rDsyVw5gaug2gnMqQxvIw8XvcxxOQBJBB1KYGHUZEepeOog20+QrdQ== -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:29 2026 by rpki-client