This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/RGmbCKVggdFaEV2n5n5vWdFRCzM.roa File: RGmbCKVggdFaEV2n5n5vWdFRCzM.roa (raw, json) Hash identifier: SS7nRzfO0dBngHu3IsLgcGfjod0pNS0O7g/l/TaVaqk= Subject key identifier: 44:69:9B:08:A5:60:81:D1:5A:11:5D:A7:E6:7E:6F:59:D1:51:0B:33 Certificate issuer: /CN=add261cad0dff2d9bb2f8c7ad0db26ed5730d3dd Certificate serial: 019B7834C4D22BB5CD1B7969C28A1C961E88 Authority key identifier: AD:D2:61:CA:D0:DF:F2:D9:BB:2F:8C:7A:D0:DB:26:ED:57:30:D3:DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdJhytDf8tm7L4x60Nsm7Vcw090.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/RGmbCKVggdFaEV2n5n5vWdFRCzM.roa Signing time: Thu 01 Jan 2026 06:18:02 +0000 ROA not before: Thu 01 Jan 2026 06:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3303 IP address blocks: 193.138.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/rdJhytDf8tm7L4x60Nsm7Vcw090.crl rsync://rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/rdJhytDf8tm7L4x60Nsm7Vcw090.mft rsync://rpki.ripe.net/repository/DEFAULT/rdJhytDf8tm7L4x60Nsm7Vcw090.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:c4:d2:2b:b5:cd:1b:79:69:c2:8a:1c:96:1e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=add261cad0dff2d9bb2f8c7ad0db26ed5730d3dd Validity Not Before: Jan 1 06:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=44699b08a56081d15a115da7e67e6f59d1510b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f9:f1:2f:43:20:21:3e:70:9d:69:63:40:0a: e4:f5:a7:1d:88:ef:a5:9b:99:a0:7f:9c:4e:66:7a: 81:62:73:7f:66:f6:ea:eb:f1:9e:a4:ac:ca:8f:f2: f0:1a:0f:a1:cd:ac:54:69:65:53:39:dd:c1:aa:57: 93:80:5e:ed:b0:71:a0:a0:26:85:5d:d3:58:77:ac: b7:96:90:b7:07:0d:9e:2d:9a:4d:f7:e7:c0:18:92: 7a:65:c9:98:2b:7d:8d:5a:20:45:72:fa:ad:31:fe: 1c:67:a5:00:42:37:cd:ea:84:8f:2f:a5:d5:ac:66: ab:8e:e8:14:49:15:55:70:ed:f6:97:13:0c:90:ae: fb:7a:12:7c:ae:87:da:65:2f:6b:59:04:59:da:31: 07:2b:92:76:c7:19:6a:9d:85:ec:32:e2:43:fc:53: 5c:14:56:c6:3d:6c:21:8e:08:f7:21:da:11:9e:3f: 32:93:04:7f:c2:68:1b:c5:47:f1:02:e9:c0:0c:d9: 84:10:68:f6:7e:7d:3c:2a:85:05:2a:c4:e2:9a:55: 25:2b:38:51:1a:26:34:15:9d:19:fd:14:d1:b3:74: 5c:77:ee:aa:1d:31:d7:7d:6d:5f:ce:00:7a:60:e8: 77:32:6c:5a:97:e2:3f:a8:4d:65:88:5b:c2:8f:66: 7d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:69:9B:08:A5:60:81:D1:5A:11:5D:A7:E6:7E:6F:59:D1:51:0B:33 X509v3 Authority Key Identifier: keyid:AD:D2:61:CA:D0:DF:F2:D9:BB:2F:8C:7A:D0:DB:26:ED:57:30:D3:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdJhytDf8tm7L4x60Nsm7Vcw090.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/RGmbCKVggdFaEV2n5n5vWdFRCzM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/93/0a434a-eb2f-4026-bcc8-7bc42d5d4072/1/rdJhytDf8tm7L4x60Nsm7Vcw090.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.138.253.0/24 Signature Algorithm: sha256WithRSAEncryption 24:de:e5:da:77:68:8c:97:1f:0c:02:7c:e6:2f:e8:de:7f:09: a8:2d:f6:35:41:a1:ef:32:f4:ac:7d:7f:7c:a8:a4:6f:37:c8: 01:5d:87:b7:43:e6:42:6a:d9:36:bf:86:00:d6:6d:5e:89:2f: b2:a3:b6:c8:cd:84:7d:d0:64:cb:01:4c:bf:d4:55:58:98:8f: fc:67:bc:c5:18:db:a1:81:25:0b:b6:a3:30:ed:fa:d3:5c:d5: a8:57:68:00:9d:50:68:60:bd:fc:82:fe:18:e7:b3:82:07:4b: d9:50:a9:08:79:ba:40:0b:46:6d:14:12:dc:39:5e:5f:65:23: 17:88:15:09:17:48:21:11:ff:5b:38:b1:b0:e0:64:9b:6f:d0: 77:71:28:ce:ac:c2:45:9b:71:b9:94:ca:47:f6:98:98:c2:85: cf:2c:57:46:7a:4e:8e:ee:e6:c0:d2:b0:39:ba:31:15:0a:a1: 7f:ee:2b:a4:a6:f3:20:20:00:87:9e:7e:e0:cc:4c:1d:af:ce: 71:22:e4:4b:5a:0e:5f:95:3e:d8:b4:60:59:97:49:dc:37:09: 95:f8:86:15:79:bb:dd:ef:8a:1f:a4:bb:10:46:6c:ce:39:cc: dc:49:a0:3e:b0:53:69:a8:4e:3d:cb:4a:9d:58:f2:10:dd:79: 4d:d8:24:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NMTSK7XNG3lpwooclh6IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkZDI2MWNhZDBkZmYyZDliYjJmOGM3YWQwZGIyNmVkNTcz MGQzZGQwHhcNMjYwMTAxMDYxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDY5OWIwOGE1NjA4MWQxNWExMTVkYTdlNjdlNmY1OWQxNTEwYjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwPnxL0MgIT5wnWljQArk9acdiO+l m5mgf5xOZnqBYnN/Zvbq6/GepKzKj/LwGg+hzaxUaWVTOd3BqleTgF7tsHGgoCaF XdNYd6y3lpC3Bw2eLZpN9+fAGJJ6ZcmYK32NWiBFcvqtMf4cZ6UAQjfN6oSPL6XV rGarjugUSRVVcO32lxMMkK77ehJ8rofaZS9rWQRZ2jEHK5J2xxlqnYXsMuJD/FNc FFbGPWwhjgj3IdoRnj8ykwR/wmgbxUfxAunADNmEEGj2fn08KoUFKsTimlUlKzhR GiY0FZ0Z/RTRs3Rcd+6qHTHXfW1fzgB6YOh3Mmxal+I/qE1liFvCj2Z9FwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFERpmwilYIHRWhFdp+Z+b1nRUQszMB8GA1UdIwQY MBaAFK3SYcrQ3/LZuy+MetDbJu1XMNPdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmRKaHl0RGY4dG03TDR4NjBOc203VmN3MDkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My8wYTQzNGEtZWIyZi00MDI2LWJjYzgt N2JjNDJkNWQ0MDcyLzEvUkdtYkNLVmdnZEZhRVYybjVuNXZXZEZSQ3pNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85My8wYTQzNGEtZWIyZi00MDI2LWJjYzgtN2JjNDJkNWQ0MDcy LzEvcmRKaHl0RGY4dG03TDR4NjBOc203VmN3MDkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYr9MA0G CSqGSIb3DQEBCwUAA4IBAQAk3uXad2iMlx8MAnzmL+jefwmoLfY1QaHvMvSsfX98 qKRvN8gBXYe3Q+ZCatk2v4YA1m1eiS+yo7bIzYR90GTLAUy/1FVYmI/8Z7zFGNuh gSULtqMw7frTXNWoV2gAnVBoYL38gv4Y57OCB0vZUKkIebpAC0ZtFBLcOV5fZSMX iBUJF0ghEf9bOLGw4GSbb9B3cSjOrMJFm3G5lMpH9piYwoXPLFdGek6O7ubA0rA5 ujEVCqF/7iukpvMgIACHnn7gzEwdr85xIuRLWg5flT7YtGBZl0ncNwmV+IYVebvd 74ofpLsQRmzOOczcSaA+sFNpqE49y0qdWPIQ3XlN2CRD -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:39 2026 by rpki-client