This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/d2tSXbQmgx_5joDSWcoPnabG6ts.roa File: d2tSXbQmgx_5joDSWcoPnabG6ts.roa (raw, json) Hash identifier: OeDG3n8yLp+p4vWMH9BV363xFOTnKrmVdLEjiUivNwQ= Subject key identifier: 77:6B:52:5D:B4:26:83:1F:F9:8E:80:D2:59:CA:0F:9D:A6:C6:EA:DB Certificate issuer: /CN=f4e9d53310243187083fdc9609735465b1089043 Certificate serial: 019B7F15D4978ECB052AD17C1308565478BC Authority key identifier: F4:E9:D5:33:10:24:31:87:08:3F:DC:96:09:73:54:65:B1:08:90:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OnVMxAkMYcIP9yWCXNUZbEIkEM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/d2tSXbQmgx_5joDSWcoPnabG6ts.roa Signing time: Fri 02 Jan 2026 14:21:35 +0000 ROA not before: Fri 02 Jan 2026 14:21:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60793 IP address blocks: 193.19.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/9OnVMxAkMYcIP9yWCXNUZbEIkEM.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/9OnVMxAkMYcIP9yWCXNUZbEIkEM.mft rsync://rpki.ripe.net/repository/DEFAULT/9OnVMxAkMYcIP9yWCXNUZbEIkEM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:d4:97:8e:cb:05:2a:d1:7c:13:08:56:54:78:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4e9d53310243187083fdc9609735465b1089043 Validity Not Before: Jan 2 14:21:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=776b525db426831ff98e80d259ca0f9da6c6eadb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:71:54:0c:c2:ae:9b:d1:b5:e7:2d:7a:e0:51: f6:fb:9a:e8:29:22:84:03:88:61:ef:cf:44:e3:ea: 40:0a:55:0c:cb:bf:57:31:bd:0d:67:a2:1c:c1:e9: cd:50:31:73:1e:05:4b:53:bb:60:ff:4c:b7:86:22: cd:ba:9c:95:0c:c0:f4:ec:64:f9:4f:00:b9:ef:9e: 92:e3:4d:3c:06:b8:ce:53:af:97:86:86:ec:ad:d3: e3:1c:61:15:10:0e:8c:99:e0:ef:a2:9d:70:1d:52: d6:de:db:1d:bc:5f:a0:ab:1f:84:af:74:d2:9b:7b: 55:d3:09:9d:21:f6:35:c0:09:09:f4:e7:1d:37:e1: 56:3e:ac:42:c6:cf:7a:32:03:26:12:28:4a:61:b1: a5:9e:d5:16:9c:ba:ae:a2:2e:60:2a:fb:0f:88:7b: 60:ae:ec:65:3b:27:6b:29:1f:1b:f8:7d:f1:f6:e8: c4:13:b7:9a:22:30:5c:ef:22:d1:cc:57:a7:26:7d: d0:2b:ab:b5:05:7a:89:c8:74:a0:9e:2c:5a:ee:a5: c3:5d:4b:d3:eb:8c:00:b6:54:8e:bf:10:40:75:15: 8f:a7:73:28:c9:fd:97:d9:5f:b1:3f:98:ab:04:bf: 39:86:dc:7e:51:57:20:44:fc:f6:ed:1a:1f:d1:50: da:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:6B:52:5D:B4:26:83:1F:F9:8E:80:D2:59:CA:0F:9D:A6:C6:EA:DB X509v3 Authority Key Identifier: keyid:F4:E9:D5:33:10:24:31:87:08:3F:DC:96:09:73:54:65:B1:08:90:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OnVMxAkMYcIP9yWCXNUZbEIkEM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/d2tSXbQmgx_5joDSWcoPnabG6ts.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/285f32-03ea-416e-9cb0-7e66648fc264/1/9OnVMxAkMYcIP9yWCXNUZbEIkEM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.19.88.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:e3:60:c7:45:8d:44:6d:11:6e:c8:d1:50:62:89:31:e3:41: f4:6a:f1:f5:af:38:b7:d1:05:f1:0d:e7:da:f5:02:1e:fa:46: 72:0b:ee:b5:3e:4c:2c:53:f7:9c:6b:81:d9:ba:d8:f7:67:93: 8b:ba:da:a1:b4:0f:7d:ee:2b:f8:cd:b6:9b:03:a4:a2:bd:05: fe:a8:84:de:93:49:47:46:0a:db:c5:48:cd:16:e0:29:2c:5d: 33:1d:bb:b8:b0:e9:6d:76:f1:66:50:a3:06:92:15:b3:f4:4b: ae:ed:76:74:f1:62:b8:fb:c2:b7:59:39:48:d1:33:1b:6e:14: 27:12:3b:fa:ab:29:23:f5:ed:ae:92:3b:1f:b2:d2:48:03:c6: 26:bb:26:bd:32:1c:70:40:7e:e6:0c:6f:26:68:b1:d5:47:4f: e2:01:a5:1d:15:5c:9b:54:50:ae:4c:64:eb:e4:27:6f:31:53: a8:ad:f5:e4:0b:d1:30:20:a8:c6:32:ab:bb:d2:76:0b:c1:f5: 02:92:a6:43:e0:67:26:a6:84:c4:61:4a:1b:b3:c0:68:ea:59: f0:5e:0e:e2:55:4b:98:50:03:3e:69:4c:5d:da:58:92:31:2a: b1:57:85:59:b6:6e:ac:39:b3:cf:3d:9f:bc:02:22:1e:fe:49: a5:e3:4d:6f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FdSXjssFKtF8EwhWVHi8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0ZTlkNTMzMTAyNDMxODcwODNmZGM5NjA5NzM1NDY1YjEw ODkwNDMwHhcNMjYwMTAyMTQyMTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzZiNTI1ZGI0MjY4MzFmZjk4ZTgwZDI1OWNhMGY5ZGE2YzZlYWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23FUDMKum9G15y164FH2+5roKSKE A4hh789E4+pAClUMy79XMb0NZ6IcwenNUDFzHgVLU7tg/0y3hiLNupyVDMD07GT5 TwC5756S4008BrjOU6+XhobsrdPjHGEVEA6MmeDvop1wHVLW3tsdvF+gqx+Er3TS m3tV0wmdIfY1wAkJ9OcdN+FWPqxCxs96MgMmEihKYbGlntUWnLquoi5gKvsPiHtg ruxlOydrKR8b+H3x9ujEE7eaIjBc7yLRzFenJn3QK6u1BXqJyHSgnixa7qXDXUvT 64wAtlSOvxBAdRWPp3Moyf2X2V+xP5irBL85htx+UVcgRPz27Rof0VDavwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHdrUl20JoMf+Y6A0lnKD52mxurbMB8GA1UdIwQY MBaAFPTp1TMQJDGHCD/clglzVGWxCJBDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOU9uVk14QWtNWWNJUDl5V0NYTlVaYkVJa0VNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8yODVmMzItMDNlYS00MTZlLTljYjAt N2U2NjY0OGZjMjY0LzEvZDJ0U1hiUW1neF81am9EU1djb1BuYWJHNnRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8yODVmMzItMDNlYS00MTZlLTljYjAtN2U2NjY0OGZjMjY0 LzEvOU9uVk14QWtNWWNJUDl5V0NYTlVaYkVJa0VNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRNYMA0G CSqGSIb3DQEBCwUAA4IBAQBv42DHRY1EbRFuyNFQYokx40H0avH1rzi30QXxDefa 9QIe+kZyC+61PkwsU/eca4HZutj3Z5OLutqhtA997iv4zbabA6SivQX+qITek0lH RgrbxUjNFuApLF0zHbu4sOltdvFmUKMGkhWz9Euu7XZ08WK4+8K3WTlI0TMbbhQn Ejv6qykj9e2ukjsfstJIA8Ymuya9MhxwQH7mDG8maLHVR0/iAaUdFVybVFCuTGTr 5CdvMVOorfXkC9EwIKjGMqu70nYLwfUCkqZD4GcmpoTEYUobs8Bo6lnwXg7iVUuY UAM+aUxd2liSMSqxV4VZtm6sObPPPZ+8AiIe/kml401v -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:29 2026 by rpki-client