This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/x9XvcEb132sNTP_aziLgl4Oyq-w.roa File: x9XvcEb132sNTP_aziLgl4Oyq-w.roa (raw, json) Hash identifier: 2zFsnhd6KbCf6pKJYFtG3HqhnOzsSOphQ4DGtnkA/5E= Subject key identifier: C7:D5:EF:70:46:F5:DF:6B:0D:4C:FF:DA:CE:22:E0:97:83:B2:AB:EC Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a Certificate serial: 019B77C74A5F02FB78A044CB7842E1252267 Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/x9XvcEb132sNTP_aziLgl4Oyq-w.roa Signing time: Thu 01 Jan 2026 04:18:27 +0000 ROA not before: Thu 01 Jan 2026 04:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203597 IP address blocks: 194.190.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:4a:5f:02:fb:78:a0:44:cb:78:42:e1:25:22:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a Validity Not Before: Jan 1 04:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c7d5ef7046f5df6b0d4cffdace22e09783b2abec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:aa:af:75:41:3c:c0:48:a7:67:72:34:b9:bf: 39:63:c3:6b:af:5d:01:c4:69:0f:34:7f:86:3d:e8: 32:f1:9d:29:cf:4b:eb:5e:cb:00:fa:9a:27:2b:bc: e4:1e:5f:24:5d:e5:87:a1:fb:cc:6a:dc:1e:05:fa: 1b:15:47:7f:13:f5:3f:5e:ee:a1:f0:29:47:18:07: 99:0f:12:f7:5c:e4:49:3b:1e:79:bc:86:1d:65:5c: 79:cb:02:39:22:b5:69:cd:cd:e4:50:18:cd:a0:a1: 7a:e1:c5:8b:43:ea:4d:55:8e:98:4b:20:db:4f:bd: d9:ba:bc:24:07:c6:76:e3:af:ec:3d:1a:d6:73:ad: 75:37:66:f9:fc:5e:71:35:3b:32:f1:0f:06:bc:1e: 69:3e:71:91:3e:89:e3:0d:27:7a:65:c6:56:9d:b9: d3:d4:a9:cf:b0:7f:75:94:9f:80:e1:0a:1c:4e:b7: 0d:e9:d9:e1:86:9b:56:7a:b8:36:55:94:cf:cb:2b: 38:87:00:2b:23:4d:a6:b5:eb:34:4d:16:2a:41:98: ba:33:81:da:e1:27:9f:0d:87:59:66:4e:60:61:af: 78:37:a4:85:f4:6f:a5:29:21:13:55:78:41:e7:4b: 56:6e:60:d4:18:bf:4d:fe:02:ab:86:4e:d4:7b:d1: 8d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D5:EF:70:46:F5:DF:6B:0D:4C:FF:DA:CE:22:E0:97:83:B2:AB:EC X509v3 Authority Key Identifier: keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/x9XvcEb132sNTP_aziLgl4Oyq-w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.190.151.0/24 Signature Algorithm: sha256WithRSAEncryption 83:06:ef:df:24:57:01:59:e5:e7:b0:20:35:2a:a4:9e:48:b0: 0e:31:f4:dc:ed:25:d9:55:0a:d7:05:18:0c:6e:9b:65:c2:ba: 29:e2:b0:2f:ad:36:5c:46:ee:20:84:22:ba:e7:61:73:c7:a2: 4f:8c:d6:e3:04:5e:00:27:22:5e:8c:22:6b:5b:59:7b:69:5f: b2:4d:9d:4b:1b:56:6c:f3:a4:48:e1:1a:b4:be:ed:01:cf:57: 96:23:87:13:17:dc:34:ae:2d:e5:8c:0c:81:9f:f2:c9:b8:6a: 48:78:ff:4e:95:5c:ef:2e:01:54:87:0d:8b:e8:37:8d:47:6b: 87:31:67:c8:cc:ee:a2:74:35:e3:e5:50:f8:67:72:46:72:aa: 6e:21:d7:9a:01:18:65:4d:b1:b9:5d:fc:6c:c3:3a:28:f6:29: 18:32:b3:c3:9c:59:b4:df:d7:58:cc:b8:82:50:78:fd:a8:09: b7:f9:ca:5b:bd:02:b6:27:0f:b7:74:68:6c:2f:90:d5:2a:c1: b2:2a:85:c1:35:fd:f9:27:e8:d1:73:f6:92:4c:a7:fb:e8:dc: 12:9b:4b:df:02:38:67:04:ce:d6:1d:5b:d7:56:18:49:ab:96: 4f:46:38:c9:1a:bb:03:48:4d:0c:c7:50:c4:b9:b7:9d:db:dc: 92:1e:ce:8a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x0pfAvt4oETLeELhJSJnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx NjQ2NGEwHhcNMjYwMTAxMDQxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjN2Q1ZWY3MDQ2ZjVkZjZiMGQ0Y2ZmZGFjZTIyZTA5NzgzYjJhYmVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvaqvdUE8wEinZ3I0ub85Y8Nrr10B xGkPNH+GPegy8Z0pz0vrXssA+ponK7zkHl8kXeWHofvMatweBfobFUd/E/U/Xu6h 8ClHGAeZDxL3XORJOx55vIYdZVx5ywI5IrVpzc3kUBjNoKF64cWLQ+pNVY6YSyDb T73ZurwkB8Z246/sPRrWc611N2b5/F5xNTsy8Q8GvB5pPnGRPonjDSd6ZcZWnbnT 1KnPsH91lJ+A4QocTrcN6dnhhptWerg2VZTPyys4hwArI02mtes0TRYqQZi6M4Ha 4SefDYdZZk5gYa94N6SF9G+lKSETVXhB50tWbmDUGL9N/gKrhk7Ue9GNIQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMfV73BG9d9rDUz/2s4i4JeDsqvsMB8GA1UdIwQY MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt OWU5YTFlMDM3MzhlLzEveDlYdmNFYjEzMnNOVFBfYXppTGdsNE95cS13LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwr6XMA0G CSqGSIb3DQEBCwUAA4IBAQCDBu/fJFcBWeXnsCA1KqSeSLAOMfTc7SXZVQrXBRgM bptlwrop4rAvrTZcRu4ghCK652Fzx6JPjNbjBF4AJyJejCJrW1l7aV+yTZ1LG1Zs 86RI4Rq0vu0Bz1eWI4cTF9w0ri3ljAyBn/LJuGpIeP9OlVzvLgFUhw2L6DeNR2uH MWfIzO6idDXj5VD4Z3JGcqpuIdeaARhlTbG5Xfxswzoo9ikYMrPDnFm039dYzLiC UHj9qAm3+cpbvQK2Jw+3dGhsL5DVKsGyKoXBNf35J+jRc/aSTKf76NwSm0vfAjhn BM7WHVvXVhhJq5ZPRjjJGrsDSE0Mx1DEubed29ySHs6K -----END CERTIFICATE-----Generated at Sun Jan 25 13:05:06 2026 by rpki-client