This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/r324-VfRHsFQcr2m4q-mBz6Y0JM.roa File: r324-VfRHsFQcr2m4q-mBz6Y0JM.roa (raw, json) Hash identifier: aRnvwA3rqagvjC887OkR1ln1/3qu1VYkAb5Y/bo+y1Y= Subject key identifier: AF:7D:B8:F9:57:D1:1E:C1:50:72:BD:A6:E2:AF:A6:07:3E:98:D0:93 Certificate issuer: /CN=6b6e969fe8fb7b2a6b6e464426a4a703d37eb554 Certificate serial: 019B7CED2E8043E7E5083707E68D90FC6F9F Authority key identifier: 6B:6E:96:9F:E8:FB:7B:2A:6B:6E:46:44:26:A4:A7:03:D3:7E:B5:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a26Wn-j7eyprbkZEJqSnA9N-tVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/r324-VfRHsFQcr2m4q-mBz6Y0JM.roa Signing time: Fri 02 Jan 2026 04:17:57 +0000 ROA not before: Fri 02 Jan 2026 04:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61978 IP address blocks: 193.203.116.0/23 maxlen: 23 2001:67c:a08::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/a26Wn-j7eyprbkZEJqSnA9N-tVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/a26Wn-j7eyprbkZEJqSnA9N-tVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/a26Wn-j7eyprbkZEJqSnA9N-tVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:2e:80:43:e7:e5:08:37:07:e6:8d:90:fc:6f:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6b6e969fe8fb7b2a6b6e464426a4a703d37eb554 Validity Not Before: Jan 2 04:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af7db8f957d11ec15072bda6e2afa6073e98d093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c0:fe:ec:bb:4d:7e:3f:4c:8a:58:ce:99:12: 3c:d8:4c:b4:9d:ad:7d:4d:44:1a:4b:a4:23:b6:05: ae:32:09:ae:28:86:58:26:47:2a:35:4c:16:e7:b7: fd:62:a9:83:5e:88:b8:77:21:2b:9e:7b:d0:97:83: 61:bb:71:c5:8d:ed:e3:2c:a2:3c:56:25:cc:29:8e: b1:29:b7:b8:e1:f9:7b:1e:c7:de:a8:b5:55:94:ac: 20:a3:79:91:d6:0c:f2:d8:c2:c6:e6:a9:41:9c:b7: b9:82:7a:92:2e:de:0e:b5:0f:e1:f2:3d:58:bd:c2: 30:07:9b:31:05:d5:84:11:34:87:7f:f0:be:34:b0: d8:96:3c:2b:ba:1c:6a:c9:e2:a7:b5:3b:c6:86:2b: 36:4d:ef:f7:c2:c0:30:a3:c9:71:4e:69:57:78:97: df:a9:0c:d9:54:73:04:d7:08:43:a2:43:78:e8:66: a8:49:06:1a:9a:49:02:e0:00:59:d9:64:20:0c:65: 7d:22:69:fd:53:cd:25:c4:71:89:32:31:e5:ce:be: 91:90:17:7d:78:02:91:05:0b:4e:61:3c:1b:56:bb: 5d:11:06:4b:78:bd:4c:4b:43:ab:ac:15:fd:63:d3: c0:de:bf:39:00:72:42:f2:e3:2a:f6:6b:7e:92:c3: 30:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7D:B8:F9:57:D1:1E:C1:50:72:BD:A6:E2:AF:A6:07:3E:98:D0:93 X509v3 Authority Key Identifier: keyid:6B:6E:96:9F:E8:FB:7B:2A:6B:6E:46:44:26:A4:A7:03:D3:7E:B5:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a26Wn-j7eyprbkZEJqSnA9N-tVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/r324-VfRHsFQcr2m4q-mBz6Y0JM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/a97926-410c-466b-8bf4-ab16b69e6ad5/1/a26Wn-j7eyprbkZEJqSnA9N-tVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.203.116.0/23 IPv6: 2001:67c:a08::/48 Signature Algorithm: sha256WithRSAEncryption 87:15:4f:6d:ae:fa:30:07:16:81:fe:fe:8f:db:25:5f:20:97: f7:30:6a:5f:da:12:09:77:a1:80:0a:ca:fe:39:47:6c:95:4b: 11:e1:d0:33:01:07:07:f7:f1:ba:6a:12:8e:6e:02:45:f3:ce: bc:1f:0f:38:eb:b6:81:ed:cd:65:30:b8:23:bd:77:b3:11:b3: 98:2e:cf:d5:41:fa:63:6a:d8:7b:d4:2f:aa:e1:32:e0:a4:7a: cc:46:10:df:65:0f:a7:d1:f8:0f:df:91:2b:d3:6f:59:88:2e: 95:64:01:4f:60:e4:38:6b:dd:d2:43:54:aa:3c:81:c6:e4:e1: b1:a9:8a:b2:9c:f8:20:62:ec:3c:90:bd:63:29:96:bf:52:ef: aa:bb:2f:c4:5e:ed:17:cf:68:9a:d4:5b:58:cf:a5:dd:18:77: 42:f6:47:6d:01:68:93:e0:48:43:37:0f:7c:6a:c6:7b:4a:8f: 27:1e:1f:40:3e:de:bf:35:b4:cf:e2:38:6c:5c:75:c8:32:89: 12:73:f0:e8:27:a4:a7:de:66:33:3c:e6:a7:61:b5:8b:61:c5: a1:17:31:f8:b9:bf:59:96:24:e2:24:a4:ee:c2:74:a7:e0:ad: 8e:5f:8f:98:49:ac:64:2d:73:66:ab:74:12:2a:a7:18:99:bd: 65:af:9a:da -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt87S6AQ+flCDcH5o2Q/G+fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiNmU5NjlmZThmYjdiMmE2YjZlNDY0NDI2YTRhNzAzZDM3 ZWI1NTQwHhcNMjYwMTAyMDQxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjdkYjhmOTU3ZDExZWMxNTA3MmJkYTZlMmFmYTYwNzNlOThkMDkzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA08D+7LtNfj9MiljOmRI82Ey0na19 TUQaS6QjtgWuMgmuKIZYJkcqNUwW57f9YqmDXoi4dyErnnvQl4Nhu3HFje3jLKI8 ViXMKY6xKbe44fl7HsfeqLVVlKwgo3mR1gzy2MLG5qlBnLe5gnqSLt4OtQ/h8j1Y vcIwB5sxBdWEETSHf/C+NLDYljwruhxqyeKntTvGhis2Te/3wsAwo8lxTmlXeJff qQzZVHME1whDokN46GaoSQYamkkC4ABZ2WQgDGV9Imn9U80lxHGJMjHlzr6RkBd9 eAKRBQtOYTwbVrtdEQZLeL1MS0OrrBX9Y9PA3r85AHJC8uMq9mt+ksMwhwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFK99uPlX0R7BUHK9puKvpgc+mNCTMB8GA1UdIwQY MBaAFGtulp/o+3sqa25GRCakpwPTfrVUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYTI2V24tajdleXByYmtaRUpxU25BOU4tdFZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9hOTc5MjYtNDEwYy00NjZiLThiZjQt YWIxNmI2OWU2YWQ1LzEvcjMyNC1WZlJIc0ZRY3IybTRxLW1CejZZMEpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi9hOTc5MjYtNDEwYy00NjZiLThiZjQtYWIxNmI2OWU2YWQ1 LzEvYTI2V24tajdleXByYmtaRUpxU25BOU4tdFZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBwct0MA8E AgACMAkDBwAgAQZ8CggwDQYJKoZIhvcNAQELBQADggEBAIcVT22u+jAHFoH+/o/b JV8gl/cwal/aEgl3oYAKyv45R2yVSxHh0DMBBwf38bpqEo5uAkXzzrwfDzjrtoHt zWUwuCO9d7MRs5guz9VB+mNq2HvUL6rhMuCkesxGEN9lD6fR+A/fkSvTb1mILpVk AU9g5Dhr3dJDVKo8gcbk4bGpirKc+CBi7DyQvWMplr9S76q7L8Re7RfPaJrUW1jP pd0Yd0L2R20BaJPgSEM3D3xqxntKjyceH0A+3r81tM/iOGxcdcgyiRJz8OgnpKfe ZjM85qdhtYthxaEXMfi5v1mWJOIkpO7CdKfgrY5fj5hJrGQtc2ardBIqpxiZvWWv mto= -----END CERTIFICATE-----Generated at Sun Jan 25 14:04:36 2026 by rpki-client