This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/s_XOUNE27Rt9EfkW6tpKIzfnB74.roa File: s_XOUNE27Rt9EfkW6tpKIzfnB74.roa (raw, json) Hash identifier: BJWU9WY8p23Wc9XLAEAvNVCPXfxDvC9l2as3ADvyFPs= Subject key identifier: B3:F5:CE:50:D1:36:ED:1B:7D:11:F9:16:EA:DA:4A:23:37:E7:07:BE Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Certificate serial: 019B7D5D1932D5AE2D5515917608A8C6BF5C Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/s_XOUNE27Rt9EfkW6tpKIzfnB74.roa Signing time: Fri 02 Jan 2026 06:20:11 +0000 ROA not before: Fri 02 Jan 2026 06:20:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30723 IP address blocks: 194.149.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:19:32:d5:ae:2d:55:15:91:76:08:a8:c6:bf:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Validity Not Before: Jan 2 06:20:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b3f5ce50d136ed1b7d11f916eada4a2337e707be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6b:08:3f:27:36:82:7e:98:69:d6:9d:24:12: 4e:01:3d:d0:9a:d1:da:80:1b:35:c9:10:c4:11:d4: 7f:7e:0e:2f:6b:71:88:4a:7d:65:1d:01:42:5b:0e: 8b:bf:24:61:ed:97:c6:99:9f:14:d0:97:c6:3a:35: 9d:81:fd:53:28:cf:29:a0:10:0e:9e:1f:98:ab:fd: 47:aa:28:a0:9e:34:1d:02:94:cb:3e:80:8e:65:07: 37:73:60:7f:ae:c9:bc:97:7d:27:34:27:fb:65:96: cc:85:19:08:6d:5d:c8:4d:87:43:03:59:b1:e1:e6: 33:5c:a7:5c:1d:5a:42:7f:3a:08:d5:45:55:b4:cc: 35:6a:44:12:23:bb:6b:95:1a:97:94:2e:e4:55:64: 45:a6:f0:19:72:f0:6b:c9:53:c0:6c:c8:5d:57:7d: a6:7f:73:f3:b9:34:c5:6a:23:16:8a:39:5c:63:93: c4:66:ec:57:c6:47:65:cd:39:d6:81:74:ae:11:2f: f3:ce:71:ec:c9:94:a5:1d:4f:29:c1:dc:c0:01:10: a7:19:d5:59:03:75:64:c3:bd:6f:a5:00:ed:df:7c: 55:2d:cc:b4:26:b0:18:2c:1f:6a:29:b6:0d:00:2e: 9f:ed:e8:f3:fc:e0:e2:c8:ee:1b:d7:d6:56:88:75: 0c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F5:CE:50:D1:36:ED:1B:7D:11:F9:16:EA:DA:4A:23:37:E7:07:BE X509v3 Authority Key Identifier: keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/s_XOUNE27Rt9EfkW6tpKIzfnB74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.149.38.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:e9:06:fc:5e:51:b9:3c:31:4a:d1:ab:30:9a:38:8b:37:78: 51:93:a2:cc:f7:50:15:73:da:78:86:16:25:71:de:64:d4:fd: 6d:09:be:e6:a2:cb:9b:02:7d:9f:a0:07:2e:30:8d:60:dd:0b: 25:37:7b:a2:3b:c4:ed:bc:ce:f2:d6:b2:d6:c2:9f:9e:c9:cd: b1:ee:9d:fc:dd:81:b4:07:d2:ea:c1:a4:91:8c:0f:61:d1:4c: cf:eb:b3:da:7e:4a:9a:fe:0e:2c:b7:7e:fe:83:f7:9f:c4:83: 67:44:f3:b0:9a:14:a4:01:e0:e2:34:7e:10:df:7b:72:73:fe: 7a:7a:fc:23:31:fa:56:e7:b4:89:c4:c4:96:fa:14:9f:a2:9e: 27:2b:9b:c1:9e:d0:e2:2f:18:3a:26:8d:16:bd:06:e6:de:6f: da:2e:a4:fb:f5:df:d1:24:b7:fe:43:51:e7:32:a9:02:98:e4: 9b:5f:35:cf:fe:cf:ed:38:fd:bf:6c:ae:c6:4d:80:34:42:d4: 55:be:0c:37:75:00:5b:3a:57:fe:e7:31:7c:08:ee:ba:7c:f5: aa:ee:88:b1:cb:8d:5f:5d:1e:54:5c:48:0e:8f:09:24:c0:1b: 04:b3:34:42:a6:10:ff:80:52:a9:82:ba:24:d0:56:0f:be:f2: 0a:22:6b:90 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XRky1a4tVRWRdgioxr9cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4 YWFlN2IwHhcNMjYwMTAyMDYyMDExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiM2Y1Y2U1MGQxMzZlZDFiN2QxMWY5MTZlYWRhNGEyMzM3ZTcwN2JlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWsIPyc2gn6YadadJBJOAT3QmtHa gBs1yRDEEdR/fg4va3GISn1lHQFCWw6LvyRh7ZfGmZ8U0JfGOjWdgf1TKM8poBAO nh+Yq/1HqiignjQdApTLPoCOZQc3c2B/rsm8l30nNCf7ZZbMhRkIbV3ITYdDA1mx 4eYzXKdcHVpCfzoI1UVVtMw1akQSI7trlRqXlC7kVWRFpvAZcvBryVPAbMhdV32m f3PzuTTFaiMWijlcY5PEZuxXxkdlzTnWgXSuES/zznHsyZSlHU8pwdzAARCnGdVZ A3Vkw71vpQDt33xVLcy0JrAYLB9qKbYNAC6f7ejz/ODiyO4b19ZWiHUM9wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLP1zlDRNu0bfRH5FuraSiM35we+MB8GA1UdIwQY MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt MjkyYWU0NmU2MzAyLzEvc19YT1VORTI3UnQ5RWZrVzZ0cEtJemZuQjc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwpUmMA0G CSqGSIb3DQEBCwUAA4IBAQBL6Qb8XlG5PDFK0aswmjiLN3hRk6LM91AVc9p4hhYl cd5k1P1tCb7mosubAn2foAcuMI1g3QslN3uiO8TtvM7y1rLWwp+eyc2x7p383YG0 B9LqwaSRjA9h0UzP67Pafkqa/g4st37+g/efxINnRPOwmhSkAeDiNH4Q33tyc/56 evwjMfpW57SJxMSW+hSfop4nK5vBntDiLxg6Jo0WvQbm3m/aLqT79d/RJLf+Q1Hn MqkCmOSbXzXP/s/tOP2/bK7GTYA0QtRVvgw3dQBbOlf+5zF8CO66fPWq7oixy41f XR5UXEgOjwkkwBsEszRCphD/gFKpgrok0FYPvvIKImuQ -----END CERTIFICATE-----Generated at Sun Jan 25 20:00:59 2026 by rpki-client