This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/LsW7E92fgqyb4h0SFoyQ1iS_A-A.roa File: LsW7E92fgqyb4h0SFoyQ1iS_A-A.roa (raw, json) Hash identifier: lZdLHI5/Pom2chJvXWn7/eiTGrnfbJ5HoDaiu046MUw= Subject key identifier: 2E:C5:BB:13:DD:9F:82:AC:9B:E2:1D:12:16:8C:90:D6:24:BF:03:E0 Certificate issuer: /CN=ddd9770c307ea3960c8da268a8865a4a9fa634c9 Certificate serial: 019B77C72DAB844D498A1E425B902FD1E0CE Authority key identifier: DD:D9:77:0C:30:7E:A3:96:0C:8D:A2:68:A8:86:5A:4A:9F:A6:34:C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3dl3DDB-o5YMjaJoqIZaSp-mNMk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/LsW7E92fgqyb4h0SFoyQ1iS_A-A.roa Signing time: Thu 01 Jan 2026 04:18:20 +0000 ROA not before: Thu 01 Jan 2026 04:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41923 IP address blocks: 193.34.56.0/23 maxlen: 23 193.34.56.0/24 maxlen: 24 193.34.57.0/24 maxlen: 24 193.34.58.0/23 maxlen: 23 193.34.58.0/24 maxlen: 24 193.34.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/3dl3DDB-o5YMjaJoqIZaSp-mNMk.crl rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/3dl3DDB-o5YMjaJoqIZaSp-mNMk.mft rsync://rpki.ripe.net/repository/DEFAULT/3dl3DDB-o5YMjaJoqIZaSp-mNMk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:2d:ab:84:4d:49:8a:1e:42:5b:90:2f:d1:e0:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ddd9770c307ea3960c8da268a8865a4a9fa634c9 Validity Not Before: Jan 1 04:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ec5bb13dd9f82ac9be21d12168c90d624bf03e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d4:2c:79:13:ae:c3:3e:a2:30:82:bb:84:bd: c7:3a:91:ab:2c:b5:c8:f0:87:1c:ec:2e:6f:55:1c: d7:db:f2:3c:eb:76:0e:5e:ff:7d:08:74:e9:01:be: ae:ab:bb:fa:c0:2d:59:6c:0c:47:0a:68:c4:32:af: 99:ae:e5:af:71:eb:bc:69:3b:ac:0c:95:66:6a:5c: ac:a0:8d:53:ff:50:5c:f1:90:13:9d:21:08:f4:f7: 00:8e:2d:9d:25:5f:56:4d:bd:e8:d1:24:fd:87:18: 75:e6:1d:f8:cf:4e:02:2e:c0:08:02:53:73:ae:ea: bc:c5:60:50:2c:88:f8:bd:51:69:9e:e8:fc:e5:06: 34:31:e9:bc:63:ff:06:39:6d:3c:b8:00:47:90:69: ca:60:4e:a7:3e:2f:82:0f:ab:ca:d8:63:5c:17:25: d0:10:52:49:cf:19:27:79:1b:ff:a4:69:e7:52:a8: 88:b1:cb:4d:fb:92:80:3b:1b:48:aa:9b:7e:4d:17: 43:c5:ca:d3:90:c3:f7:9d:8b:83:7c:ac:43:67:2d: 26:48:40:ef:36:43:a2:1f:a0:75:01:16:51:e0:28: cf:8d:f7:96:de:95:de:fc:4e:fe:34:35:73:ea:77: e9:09:1e:b7:82:4d:b5:07:5e:64:dc:40:92:6d:e3: d8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C5:BB:13:DD:9F:82:AC:9B:E2:1D:12:16:8C:90:D6:24:BF:03:E0 X509v3 Authority Key Identifier: keyid:DD:D9:77:0C:30:7E:A3:96:0C:8D:A2:68:A8:86:5A:4A:9F:A6:34:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3dl3DDB-o5YMjaJoqIZaSp-mNMk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/LsW7E92fgqyb4h0SFoyQ1iS_A-A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/4444ab-3da3-418b-a105-f2fe0d04bfbf/1/3dl3DDB-o5YMjaJoqIZaSp-mNMk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.34.56.0/22 Signature Algorithm: sha256WithRSAEncryption 19:f9:2b:51:57:7d:54:e1:40:b6:b8:bf:b7:cf:ff:52:62:d6: b7:0d:8f:11:0b:6d:c3:0b:c0:37:7d:72:d3:c6:78:6d:4e:52: 35:cd:e1:38:71:7c:c3:28:3b:ea:36:d4:9e:73:ef:e0:a6:dd: 11:89:c0:b0:dc:65:7a:f1:33:0d:c1:8c:51:21:fd:84:b1:0a: 79:79:5a:e9:30:15:49:c7:08:b2:79:fa:c6:a0:2d:d5:8a:97: 61:f0:12:13:f6:98:d1:72:fa:3e:63:75:3a:87:4c:e2:db:00: 59:d5:43:41:11:8c:cd:f5:6d:76:e7:40:c9:1b:6d:99:e5:6d: 76:e0:d6:af:a9:81:f7:95:a4:53:0c:e4:46:74:11:4a:23:ea: bf:a8:59:ed:ec:12:7e:5a:1e:d0:32:05:0f:93:a3:aa:b1:8b: 93:d2:2e:11:14:4e:2c:e3:84:66:25:3e:e8:b2:9c:6c:05:77: 2a:c8:d0:fb:b0:5d:9d:f4:f1:f9:6c:94:88:d6:e0:ac:e0:8b: e3:d7:29:5b:f6:c2:55:b4:0f:d6:f3:e4:5c:cb:95:f6:ce:96: 6d:34:47:aa:2b:f5:ee:a4:86:41:fd:47:f2:16:94:70:3b:de: 66:e1:98:b7:3c:92:10:44:cc:de:9c:d6:c1:d1:0d:0f:20:56: dd:a3:1f:22 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xy2rhE1Jih5CW5Av0eDOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRkZDk3NzBjMzA3ZWEzOTYwYzhkYTI2OGE4ODY1YTRhOWZh NjM0YzkwHhcNMjYwMTAxMDQxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZWM1YmIxM2RkOWY4MmFjOWJlMjFkMTIxNjhjOTBkNjI0YmYwM2UwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutQseROuwz6iMIK7hL3HOpGrLLXI 8Icc7C5vVRzX2/I863YOXv99CHTpAb6uq7v6wC1ZbAxHCmjEMq+ZruWvceu8aTus DJVmalysoI1T/1Bc8ZATnSEI9PcAji2dJV9WTb3o0ST9hxh15h34z04CLsAIAlNz ruq8xWBQLIj4vVFpnuj85QY0Mem8Y/8GOW08uABHkGnKYE6nPi+CD6vK2GNcFyXQ EFJJzxkneRv/pGnnUqiIsctN+5KAOxtIqpt+TRdDxcrTkMP3nYuDfKxDZy0mSEDv NkOiH6B1ARZR4CjPjfeW3pXe/E7+NDVz6nfpCR63gk21B15k3ECSbePYcwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFC7FuxPdn4Ksm+IdEhaMkNYkvwPgMB8GA1UdIwQY MBaAFN3ZdwwwfqOWDI2iaKiGWkqfpjTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM2RsM0REQi1vNVlNamFKb3FJWmFTcC1tTk1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My80NDQ0YWItM2RhMy00MThiLWExMDUt ZjJmZTBkMDRiZmJmLzEvTHNXN0U5MmZncXliNGgwU0ZveVExaVNfQS1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My80NDQ0YWItM2RhMy00MThiLWExMDUtZjJmZTBkMDRiZmJm LzEvM2RsM0REQi1vNVlNamFKb3FJWmFTcC1tTk1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwSI4MA0G CSqGSIb3DQEBCwUAA4IBAQAZ+StRV31U4UC2uL+3z/9SYta3DY8RC23DC8A3fXLT xnhtTlI1zeE4cXzDKDvqNtSec+/gpt0RicCw3GV68TMNwYxRIf2EsQp5eVrpMBVJ xwiyefrGoC3Vipdh8BIT9pjRcvo+Y3U6h0zi2wBZ1UNBEYzN9W1250DJG22Z5W12 4NavqYH3laRTDORGdBFKI+q/qFnt7BJ+Wh7QMgUPk6OqsYuT0i4RFE4s44RmJT7o spxsBXcqyND7sF2d9PH5bJSI1uCs4Ivj1ylb9sJVtA/W8+Rcy5X2zpZtNEeqK/Xu pIZB/UfyFpRwO95m4Zi3PJIQRMzenNbB0Q0PIFbdox8i -----END CERTIFICATE-----Generated at Sun Jan 25 22:42:19 2026 by rpki-client