This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/1-1b9kIdAlblnsi3fi8wMUDdRXmQ.roa File: 1-1b9kIdAlblnsi3fi8wMUDdRXmQ.roa (raw, json) Hash identifier: EHBhiVunuwqspkFW8sGSqvBOxHJnouc2J5HPWr1aeGw= Subject key identifier: FB:56:FD:90:87:40:95:B9:67:B2:2D:DF:8B:CC:0C:50:37:51:5E:64 Certificate issuer: /CN=99d35619ed210be0ac29d170a2bb5cd7455693bc Certificate serial: 019B79112017AA25C595B52DEAAD7E8C7A68 Authority key identifier: 99:D3:56:19:ED:21:0B:E0:AC:29:D1:70:A2:BB:5C:D7:45:56:93:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdNWGe0hC-CsKdFwortc10VWk7w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/1-1b9kIdAlblnsi3fi8wMUDdRXmQ.roa Signing time: Thu 01 Jan 2026 10:18:43 +0000 ROA not before: Thu 01 Jan 2026 10:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60798 IP address blocks: 195.39.194.0/23 maxlen: 24 195.39.202.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/mdNWGe0hC-CsKdFwortc10VWk7w.crl rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/mdNWGe0hC-CsKdFwortc10VWk7w.mft rsync://rpki.ripe.net/repository/DEFAULT/mdNWGe0hC-CsKdFwortc10VWk7w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:20:17:aa:25:c5:95:b5:2d:ea:ad:7e:8c:7a:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99d35619ed210be0ac29d170a2bb5cd7455693bc Validity Not Before: Jan 1 10:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb56fd90874095b967b22ddf8bcc0c5037515e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:51:2b:92:d7:2a:fb:69:90:5b:55:a9:c4:f7: b5:f5:bb:da:e5:ed:92:b1:58:23:7c:fc:e0:46:49: a3:2d:df:90:c2:a4:7c:21:d4:18:df:34:90:37:26: 3d:2b:a8:80:a6:e8:da:e5:18:2c:61:e8:fc:0f:dc: 11:f3:03:3d:83:07:64:6b:b6:03:74:69:28:28:07: 3c:61:f1:d3:f2:9e:af:52:29:71:4b:75:c8:67:ba: 04:4e:e4:0c:ad:4f:fc:fb:01:62:f6:52:33:05:37: 4c:e0:47:36:6b:26:07:10:7c:57:be:02:0e:e3:df: 65:fd:5d:0f:61:5a:78:52:d6:a6:20:08:ba:3a:d4: 19:4f:50:4b:34:49:0d:97:7c:3c:57:f6:a0:91:d4: 5a:f8:61:c7:81:8e:4a:1d:10:b6:3b:cc:f4:98:90: 8d:73:48:25:c6:24:d2:51:69:56:ce:e4:86:a2:08: 51:c9:c4:a2:e4:53:a5:1e:2a:52:f6:22:82:7b:bd: 1f:e7:7b:e2:2e:03:fe:bd:a0:4e:15:75:03:fe:96: 76:5c:dc:de:ba:4c:f9:4e:e8:5a:13:05:68:33:9f: ce:f8:26:e5:a1:24:66:aa:83:43:99:08:75:c9:32: 52:e3:1b:f1:eb:a1:7e:d5:99:17:28:26:c6:16:4b: 72:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:56:FD:90:87:40:95:B9:67:B2:2D:DF:8B:CC:0C:50:37:51:5E:64 X509v3 Authority Key Identifier: keyid:99:D3:56:19:ED:21:0B:E0:AC:29:D1:70:A2:BB:5C:D7:45:56:93:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdNWGe0hC-CsKdFwortc10VWk7w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/1-1b9kIdAlblnsi3fi8wMUDdRXmQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/97/34e91f-a8a9-4937-9fb5-7a01bddd6560/1/mdNWGe0hC-CsKdFwortc10VWk7w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.39.194.0/23 195.39.202.0/23 Signature Algorithm: sha256WithRSAEncryption c0:54:98:4f:fa:0e:ec:35:aa:7b:b4:46:7c:1c:3b:e4:a7:db: 3d:c0:9d:67:34:f2:74:e5:e2:ee:21:f6:d5:c9:4e:06:4d:b3: 50:09:b1:57:eb:c8:24:6b:06:42:93:c8:1b:e6:8a:9a:61:fa: ae:8d:9b:c9:44:a5:7c:a8:ca:8d:78:cc:16:82:49:a1:fa:67: e4:3d:c6:f0:3a:a0:52:26:5e:cf:9f:5e:37:91:a6:7b:10:e1: 71:96:37:ac:65:c0:a3:cb:49:e8:fa:bc:72:f5:66:3c:1b:b3: ab:3e:91:ad:b9:19:5f:d4:f2:b9:92:d8:11:7e:99:59:67:8b: a0:f0:d0:3a:27:b8:87:3f:2b:e7:77:00:c7:d7:36:21:ff:9e: 74:4b:41:fe:0f:80:76:fb:41:54:32:33:5e:62:19:13:1b:6c: e5:b3:b7:fd:7c:58:b3:3c:44:13:0e:b5:c3:6f:8b:46:12:86: 5c:dd:bb:c8:fa:7e:82:05:2f:1b:b2:23:4d:66:f2:7a:65:e4: 9e:6e:49:0e:a4:ce:11:19:5e:52:a9:8e:1c:0c:45:57:ea:cc: cb:6a:a7:4a:1e:03:2c:89:59:90:40:74:26:f0:8f:a5:9e:e4: 1f:60:bb:b7:ea:a3:b8:a1:26:59:0a:23:4a:d1:e0:38:59:e4: 7a:b5:3a:0f -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZt5ESAXqiXFlbUt6q1+jHpoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZDM1NjE5ZWQyMTBiZTBhYzI5ZDE3MGEyYmI1Y2Q3NDU1 NjkzYmMwHhcNMjYwMTAxMTAxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjU2ZmQ5MDg3NDA5NWI5NjdiMjJkZGY4YmNjMGM1MDM3NTE1ZTY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA21Erktcq+2mQW1WpxPe19bva5e2S sVgjfPzgRkmjLd+QwqR8IdQY3zSQNyY9K6iApuja5RgsYej8D9wR8wM9gwdka7YD dGkoKAc8YfHT8p6vUilxS3XIZ7oETuQMrU/8+wFi9lIzBTdM4Ec2ayYHEHxXvgIO 499l/V0PYVp4UtamIAi6OtQZT1BLNEkNl3w8V/agkdRa+GHHgY5KHRC2O8z0mJCN c0glxiTSUWlWzuSGoghRycSi5FOlHipS9iKCe70f53viLgP+vaBOFXUD/pZ2XNze ukz5TuhaEwVoM5/O+CbloSRmqoNDmQh1yTJS4xvx66F+1ZkXKCbGFktyjQIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFPtW/ZCHQJW5Z7It34vMDFA3UV5kMB8GA1UdIwQY MBaAFJnTVhntIQvgrCnRcKK7XNdFVpO8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWROV0dlMGhDLUNzS2RGd29ydGMxMFZXazd3LmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny8zNGU5MWYtYThhOS00OTM3LTlmYjUt N2EwMWJkZGQ2NTYwLzEvMS0xYjlrSWRBbGJsbnNpM2ZpOHdNVURkUlhtUS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOTcvMzRlOTFmLWE4YTktNDkzNy05ZmI1LTdhMDFiZGRkNjU2 MC8xL21kTldHZTBoQy1Dc0tkRndvcnRjMTBWV2s3dy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAcMnwgME AcMnyjANBgkqhkiG9w0BAQsFAAOCAQEAwFSYT/oO7DWqe7RGfBw75KfbPcCdZzTy dOXi7iH21clOBk2zUAmxV+vIJGsGQpPIG+aKmmH6ro2byUSlfKjKjXjMFoJJofpn 5D3G8DqgUiZez59eN5GmexDhcZY3rGXAo8tJ6Pq8cvVmPBuzqz6RrbkZX9TyuZLY EX6ZWWeLoPDQOie4hz8r53cAx9c2If+edEtB/g+AdvtBVDIzXmIZExts5bO3/XxY szxEEw61w2+LRhKGXN27yPp+ggUvG7IjTWbyemXknm5JDqTOERleUqmOHAxFV+rM y2qnSh4DLIlZkEB0JvCPpZ7kH2C7t+qjuKEmWQojStHgOFnkerU6Dw== -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:11 2026 by rpki-client