This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1-j8C1SWthn4lMptEUWE5PK-pFzQ.roa File: 1-j8C1SWthn4lMptEUWE5PK-pFzQ.roa (raw, json) Hash identifier: pwvVCQXGPHRT5GVpkwb90wUCtelpZ5BB6jdSj8qcceQ= Subject key identifier: FA:3F:02:D5:25:AD:86:7E:25:32:9B:44:51:61:39:3C:AF:A9:17:34 Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a Certificate serial: 019B77C7338BB816258FEFFBCC18EDA0AD3F Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1-j8C1SWthn4lMptEUWE5PK-pFzQ.roa Signing time: Thu 01 Jan 2026 04:18:22 +0000 ROA not before: Thu 01 Jan 2026 04:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42139 IP address blocks: 193.232.240.0/24 maxlen: 24 2a0c:a9c7:240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:33:8b:b8:16:25:8f:ef:fb:cc:18:ed:a0:ad:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a Validity Not Before: Jan 1 04:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa3f02d525ad867e25329b445161393cafa91734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:41:40:a1:0f:e4:a8:7b:6c:51:03:03:b9:0a: 26:04:b6:c4:0d:10:f2:57:af:ac:c5:1f:ff:8d:e2: f9:5f:69:2a:70:d7:42:6a:fd:a2:1b:b9:71:6d:76: b3:25:5a:31:56:88:62:86:32:94:cd:91:96:5a:a7: c0:93:8e:45:51:04:b4:25:02:4d:73:db:46:28:ca: 43:a5:df:81:97:15:5a:21:bc:b5:7b:dc:56:c0:f6: a8:9c:78:91:7b:12:59:85:aa:75:1e:a9:2e:cd:a8: 35:3d:59:8b:4c:08:a1:fb:e2:38:8a:0a:65:5b:7a: 86:ff:74:df:a2:4b:6c:2c:32:99:b1:8a:01:b1:e6: 25:8b:f6:36:d8:d0:0c:58:f8:0d:cb:d6:2f:ff:29: 21:8d:f7:90:88:65:ca:09:48:39:f0:b6:19:5d:44: 80:69:79:1d:aa:aa:ae:75:40:55:65:64:5c:43:b2: 47:c5:75:f4:60:4a:0e:ad:dc:0c:41:35:e5:ed:78: 13:89:a8:ae:18:c5:5d:5c:05:ad:30:14:72:20:0f: 74:da:b8:67:9e:29:95:08:82:bb:f9:76:62:d3:88: bd:c4:1f:a8:d2:48:34:e5:f6:6d:44:21:f7:ff:4d: 00:11:2c:24:35:da:00:ba:dd:3d:58:cf:70:9f:c2: 73:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:3F:02:D5:25:AD:86:7E:25:32:9B:44:51:61:39:3C:AF:A9:17:34 X509v3 Authority Key Identifier: keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/1-j8C1SWthn4lMptEUWE5PK-pFzQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.232.240.0/24 IPv6: 2a0c:a9c7:240::/48 Signature Algorithm: sha256WithRSAEncryption 46:83:95:17:73:04:df:f6:f1:91:6a:0a:a8:c5:bf:b8:b5:1b: fe:e7:1f:aa:73:7e:2c:e2:8d:a4:4f:09:ae:86:77:6c:36:43: d3:00:54:80:4c:1b:27:e7:bb:71:f4:4d:b8:ac:46:9c:e8:01: 08:55:8b:6c:0b:12:3b:bf:18:81:31:82:9e:d4:00:6f:62:1e: c2:0a:3b:76:ed:e7:e2:d0:fa:b9:9d:d4:2b:73:1e:51:96:01: 69:d8:99:f9:e3:7f:df:28:d6:b7:2f:4a:b1:4c:ba:df:40:79: ce:fe:65:fe:de:e4:50:44:bb:bd:67:70:8e:ae:6f:92:f3:e1: 3b:5a:62:d6:a8:b2:8d:c4:31:d8:19:d6:91:04:2d:06:aa:2a: 15:de:95:48:aa:bd:26:e5:09:3d:98:86:e6:a9:9a:3d:56:d7: 59:b0:33:20:3f:1f:6b:ba:95:ec:77:a8:c7:58:88:bc:ad:94: 24:82:06:10:5a:81:eb:e5:77:95:c5:92:d8:ca:5b:62:5c:42: 22:f6:e2:f3:cd:9d:6a:b7:cf:28:ad:c8:1a:86:33:12:ce:44: 0f:6e:2e:69:37:cb:7b:e8:fc:ed:bd:4c:93:9e:29:5e:2b:10: 7b:5f:e5:1c:4f:f0:62:b0:92:d2:d7:d8:55:40:ae:6d:54:ca: 46:a1:95:84 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt3xzOLuBYlj+/7zBjtoK0/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx NjQ2NGEwHhcNMjYwMTAxMDQxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTNmMDJkNTI1YWQ4NjdlMjUzMjliNDQ1MTYxMzkzY2FmYTkxNzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvkFAoQ/kqHtsUQMDuQomBLbEDRDy V6+sxR//jeL5X2kqcNdCav2iG7lxbXazJVoxVohihjKUzZGWWqfAk45FUQS0JQJN c9tGKMpDpd+BlxVaIby1e9xWwPaonHiRexJZhap1Hqkuzag1PVmLTAih++I4igpl W3qG/3TfoktsLDKZsYoBseYli/Y22NAMWPgNy9Yv/ykhjfeQiGXKCUg58LYZXUSA aXkdqqqudUBVZWRcQ7JHxXX0YEoOrdwMQTXl7XgTiaiuGMVdXAWtMBRyIA902rhn nimVCIK7+XZi04i9xB+o0kg05fZtRCH3/00AESwkNdoAut09WM9wn8JzfQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFPo/AtUlrYZ+JTKbRFFhOTyvqRc0MB8GA1UdIwQY MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt OWU5YTFlMDM3MzhlLzEvMS1qOEMxU1d0aG40bE1wdEVVV0U1UEstcEZ6US5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYTEvOTc0NzRjLTFkYzItNDYyYy1hYWRkLTllOWExZTAzNzM4 ZS8xL0pUbzdYMUdBZ1dqQ0VzQ1VvcnF2ODQ0V1Jrby5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAwBggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAMHo8DAP BAIAAjAJAwcAKgypxwJAMA0GCSqGSIb3DQEBCwUAA4IBAQBGg5UXcwTf9vGRagqo xb+4tRv+5x+qc34s4o2kTwmuhndsNkPTAFSATBsn57tx9E24rEac6AEIVYtsCxI7 vxiBMYKe1ABvYh7CCjt27efi0Pq5ndQrcx5RlgFp2Jn543/fKNa3L0qxTLrfQHnO /mX+3uRQRLu9Z3COrm+S8+E7WmLWqLKNxDHYGdaRBC0GqioV3pVIqr0m5Qk9mIbm qZo9VtdZsDMgPx9rupXsd6jHWIi8rZQkggYQWoHr5XeVxZLYyltiXEIi9uLzzZ1q t88orcgahjMSzkQPbi5pN8t76PztvUyTnileKxB7X+UcT/BisJLS19hVQK5tVMpG oZWE -----END CERTIFICATE-----Generated at Sun Jan 25 14:38:42 2026 by rpki-client