This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/DBYlZz1IL2QPx9fxj7VYOz0421k.roa File: DBYlZz1IL2QPx9fxj7VYOz0421k.roa (raw, json) Hash identifier: 88GcYnjzdQqajLtVXMmGwdE0/hXNYbcJvP3pDA4Q2J4= Subject key identifier: 0C:16:25:67:3D:48:2F:64:0F:C7:D7:F1:8F:B5:58:3B:3D:38:DB:59 Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a Certificate serial: 019B77C72B7031B42EEEDF074736B26ED165 Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/DBYlZz1IL2QPx9fxj7VYOz0421k.roa Signing time: Thu 01 Jan 2026 04:18:20 +0000 ROA not before: Thu 01 Jan 2026 04:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5429 IP address blocks: 193.232.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:2b:70:31:b4:2e:ee:df:07:47:36:b2:6e:d1:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a Validity Not Before: Jan 1 04:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c1625673d482f640fc7d7f18fb5583b3d38db59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:15:33:fa:08:87:3a:d1:58:52:75:14:fc:a2: cc:b4:7a:23:37:37:83:96:38:57:04:67:9f:61:51: 5e:e5:67:7b:19:98:2d:f0:ad:5c:a0:42:b2:31:a7: e9:73:39:de:7b:07:a4:76:f0:73:03:bb:66:94:a0: 39:68:80:40:05:86:10:fb:7d:14:38:96:e3:07:50: d3:c2:a0:64:91:12:82:2d:26:c7:16:ab:42:f4:76: 06:2f:d6:1e:9f:47:2d:10:f9:90:cf:71:f9:03:5c: d7:43:5b:74:f2:8d:ae:58:a2:c4:63:30:fa:b4:57: 91:e9:f3:d1:0e:68:3e:90:ad:60:bc:4b:d7:9f:99: 7b:aa:7f:5a:4f:9a:a9:18:f8:70:31:0e:15:55:e1: 57:8b:68:d6:e7:f2:85:2d:da:59:7c:7f:ea:47:fc: ef:72:4f:8e:04:a8:0a:f8:87:6f:a7:02:f6:b0:7e: 2f:95:94:37:0c:5d:fc:76:41:45:fc:3a:42:1f:bf: d6:11:f6:2a:90:49:19:42:47:52:c9:83:ff:eb:93: 47:f3:64:f5:fb:5c:98:22:16:9e:f5:52:18:9c:a7: ef:b5:ae:12:d5:74:88:76:d6:c5:a5:36:cf:b8:70: 94:42:49:7d:a1:9b:34:8d:94:c2:31:ba:de:67:52: 11:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:16:25:67:3D:48:2F:64:0F:C7:D7:F1:8F:B5:58:3B:3D:38:DB:59 X509v3 Authority Key Identifier: keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/DBYlZz1IL2QPx9fxj7VYOz0421k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.232.7.0/24 Signature Algorithm: sha256WithRSAEncryption 62:95:c7:ab:df:9c:ca:a4:25:c7:9c:92:92:a9:95:c8:46:1d: 20:f0:2e:5e:af:f6:0b:f9:5f:71:bf:55:fc:c6:cf:35:bb:67: d2:c8:aa:1d:73:c7:b1:28:71:58:14:bb:2b:32:13:61:63:88: c4:59:1e:4c:9e:e7:5d:9b:dc:e7:6e:b6:2a:b7:8c:36:81:67: 8a:e9:53:b7:b7:b3:89:a0:73:2a:f0:a5:8b:e0:56:25:b6:f4: d4:0d:90:43:78:b7:29:f0:d2:91:65:ed:3c:3a:99:fd:93:74: 2d:61:fb:ba:4c:74:0a:78:56:ab:3b:d4:60:fe:66:8f:46:1d: 02:16:87:3c:be:30:1b:b8:3d:2d:f4:4a:a1:c2:7f:cf:37:2d: 32:a5:0c:99:48:1e:d0:51:53:9f:3f:75:11:6b:af:d6:46:ab: 1a:47:56:e4:45:ed:8a:41:e8:d3:f3:1a:dc:57:36:23:8a:17: 9c:f9:24:53:03:9e:02:3b:0c:e1:77:01:63:76:18:d7:85:ed: d6:78:46:80:30:93:6b:89:47:10:36:9a:29:81:e9:a9:81:be: 8d:8b:bc:98:06:10:cb:54:1a:8a:99:f1:7c:06:c0:d3:89:d8: 6b:76:df:a4:fa:9d:1f:7c:1b:f8:63:ed:1b:ef:87:fd:2f:29: 1e:d6:28:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xytwMbQu7t8HRzaybtFlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx NjQ2NGEwHhcNMjYwMTAxMDQxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzE2MjU2NzNkNDgyZjY0MGZjN2Q3ZjE4ZmI1NTgzYjNkMzhkYjU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxUz+giHOtFYUnUU/KLMtHojNzeD ljhXBGefYVFe5Wd7GZgt8K1coEKyMafpczneewekdvBzA7tmlKA5aIBABYYQ+30U OJbjB1DTwqBkkRKCLSbHFqtC9HYGL9Yen0ctEPmQz3H5A1zXQ1t08o2uWKLEYzD6 tFeR6fPRDmg+kK1gvEvXn5l7qn9aT5qpGPhwMQ4VVeFXi2jW5/KFLdpZfH/qR/zv ck+OBKgK+IdvpwL2sH4vlZQ3DF38dkFF/DpCH7/WEfYqkEkZQkdSyYP/65NH82T1 +1yYIhae9VIYnKfvta4S1XSIdtbFpTbPuHCUQkl9oZs0jZTCMbreZ1IR9QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAwWJWc9SC9kD8fX8Y+1WDs9ONtZMB8GA1UdIwQY MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt OWU5YTFlMDM3MzhlLzEvREJZbFp6MUlMMlFQeDlmeGo3VllPejA0MjFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwegHMA0G CSqGSIb3DQEBCwUAA4IBAQBilcer35zKpCXHnJKSqZXIRh0g8C5er/YL+V9xv1X8 xs81u2fSyKodc8exKHFYFLsrMhNhY4jEWR5Mnuddm9znbrYqt4w2gWeK6VO3t7OJ oHMq8KWL4FYltvTUDZBDeLcp8NKRZe08Opn9k3QtYfu6THQKeFarO9Rg/maPRh0C Foc8vjAbuD0t9Eqhwn/PNy0ypQyZSB7QUVOfP3URa6/WRqsaR1bkRe2KQejT8xrc VzYjihec+SRTA54COwzhdwFjdhjXhe3WeEaAMJNriUcQNpopgempgb6Ni7yYBhDL VBqKmfF8BsDTidhrdt+k+p0ffBv4Y+0b74f9Lyke1ijs -----END CERTIFICATE-----Generated at Sun Jan 25 13:03:36 2026 by rpki-client