This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/T64D7DIdeVevp7C-fmZ9i_3HGBI.roa File: T64D7DIdeVevp7C-fmZ9i_3HGBI.roa (raw, json) Hash identifier: kO6AaVNTX79L37zwJju08wk0fWE2dJSQ0KHv71bE1XY= Subject key identifier: 4F:AE:03:EC:32:1D:79:57:AF:A7:B0:BE:7E:66:7D:8B:FD:C7:18:12 Certificate issuer: /CN=021b3ea35edfdd138c15506d74a76022dd37694b Certificate serial: 019B7BA35D130575D73EF835FEA3CA793812 Authority key identifier: 02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/T64D7DIdeVevp7C-fmZ9i_3HGBI.roa Signing time: Thu 01 Jan 2026 22:17:42 +0000 ROA not before: Thu 01 Jan 2026 22:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34878 IP address blocks: 193.196.32.0/20 maxlen: 20 2001:7c0:2310::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/Ahs-o17f3ROMFVBtdKdgIt03aUs.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/Ahs-o17f3ROMFVBtdKdgIt03aUs.mft rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:5d:13:05:75:d7:3e:f8:35:fe:a3:ca:79:38:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=021b3ea35edfdd138c15506d74a76022dd37694b Validity Not Before: Jan 1 22:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4fae03ec321d7957afa7b0be7e667d8bfdc71812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f4:1f:8c:14:f9:88:4b:6e:71:b9:53:a3:9e: 45:d6:08:a0:68:f6:ed:1f:a6:7f:14:de:eb:16:4d: 4a:7d:8c:a3:b7:69:3c:e2:46:06:35:73:9e:50:0d: 42:27:88:d7:6c:6e:45:88:e2:d9:02:59:95:98:51: 44:53:d4:13:55:82:a1:70:1d:46:62:ee:26:08:1f: 3e:e7:94:7c:58:55:7c:45:d0:c7:bb:ae:b8:39:8d: 85:7c:67:a7:10:77:63:9b:eb:3f:45:9d:27:ce:02: 8f:33:2d:52:93:3e:6f:03:3e:51:a9:02:fc:33:e2: 3d:cc:e3:0c:e0:bd:7b:2d:75:57:6b:c0:ad:50:18: eb:73:c7:f7:76:94:3e:ae:5d:e5:c8:f2:31:b5:e7: 45:3c:34:74:b3:b4:21:bc:75:48:85:40:2a:8d:e2: 48:ea:e3:bf:3a:1c:0d:4a:0f:1d:32:fc:81:12:c5: 42:26:e1:33:8e:45:25:aa:ac:78:d0:f3:1d:a2:5b: b0:7f:44:96:fd:a0:48:aa:44:b4:53:67:ef:fa:52: cb:75:cf:e2:a1:95:b3:43:06:fb:e9:17:e1:64:b7: 4d:eb:15:c1:c5:a8:d5:6d:be:0d:12:6a:96:a4:19: 8b:8a:e6:22:1d:91:af:4f:4e:fe:c3:ef:22:d0:0a: 31:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:AE:03:EC:32:1D:79:57:AF:A7:B0:BE:7E:66:7D:8B:FD:C7:18:12 X509v3 Authority Key Identifier: keyid:02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/T64D7DIdeVevp7C-fmZ9i_3HGBI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/Ahs-o17f3ROMFVBtdKdgIt03aUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.196.32.0/20 IPv6: 2001:7c0:2310::/44 Signature Algorithm: sha256WithRSAEncryption 9d:3d:86:55:77:38:2e:b5:68:8c:2b:9c:bb:4d:53:fa:94:03: c6:45:81:99:fd:55:36:7b:6a:b7:fc:5a:cd:bb:34:fd:48:49: 03:27:77:aa:93:17:fc:90:16:a2:56:84:61:18:1a:68:00:ad: bb:08:35:9e:8c:9a:1a:97:e7:91:2f:dd:21:02:82:b3:57:6a: ad:e0:e0:9b:a8:a0:3a:a2:bd:93:f7:cd:5b:95:93:0e:3c:4a: c6:6c:b1:2f:cc:a9:ae:49:af:0f:e8:3d:02:0b:ce:a9:31:bd: 51:ef:4a:5d:bb:9d:15:51:31:29:90:e4:af:6c:21:f0:22:f4: b8:db:69:6b:70:35:fb:9b:98:aa:b1:2b:49:b9:a2:da:e5:cc: 09:74:d5:62:b7:d0:e7:5b:69:ea:0c:91:e1:2d:8d:ed:7d:e4: fb:a0:91:9b:6e:87:fd:54:eb:79:25:ad:cf:24:84:09:28:33: f2:90:a2:1e:c9:4c:ae:3c:e7:d4:1a:40:63:51:24:5c:32:44: 49:62:4e:ab:02:27:ff:37:4b:ef:00:44:d0:01:5b:1e:7f:af: d2:f4:78:34:6d:be:e8:da:4d:be:3c:be:39:0a:7d:dc:dd:0f: b2:ce:0a:22:eb:a8:72:fd:a3:71:e6:12:76:ca:ae:44:a4:5e: fd:2f:c2:36 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7o10TBXXXPvg1/qPKeTgSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyMWIzZWEzNWVkZmRkMTM4YzE1NTA2ZDc0YTc2MDIyZGQz NzY5NGIwHhcNMjYwMTAxMjIxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZmFlMDNlYzMyMWQ3OTU3YWZhN2IwYmU3ZTY2N2Q4YmZkYzcxODEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6vQfjBT5iEtucblTo55F1gigaPbt H6Z/FN7rFk1KfYyjt2k84kYGNXOeUA1CJ4jXbG5FiOLZAlmVmFFEU9QTVYKhcB1G Yu4mCB8+55R8WFV8RdDHu664OY2FfGenEHdjm+s/RZ0nzgKPMy1Skz5vAz5RqQL8 M+I9zOMM4L17LXVXa8CtUBjrc8f3dpQ+rl3lyPIxtedFPDR0s7QhvHVIhUAqjeJI 6uO/OhwNSg8dMvyBEsVCJuEzjkUlqqx40PMdoluwf0SW/aBIqkS0U2fv+lLLdc/i oZWzQwb76RfhZLdN6xXBxajVbb4NEmqWpBmLiuYiHZGvT07+w+8i0AoxZQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFE+uA+wyHXlXr6ewvn5mfYv9xxgSMB8GA1UdIwQY MBaAFAIbPqNe390TjBVQbXSnYCLdN2lLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWhzLW8xN2YzUk9NRlZCdGRLZGdJdDAzYVVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9mODliNjQtODdiNy00OGY0LThiNjAt YzMyMDRiZGU3NzczLzEvVDY0RDdESWRlVmV2cDdDLWZtWjlpXzNIR0JJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9mODliNjQtODdiNy00OGY0LThiNjAtYzMyMDRiZGU3Nzcz LzEvQWhzLW8xN2YzUk9NRlZCdGRLZGdJdDAzYVVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQEwcQgMA8E AgACMAkDBwQgAQfAIxAwDQYJKoZIhvcNAQELBQADggEBAJ09hlV3OC61aIwrnLtN U/qUA8ZFgZn9VTZ7arf8Ws27NP1ISQMnd6qTF/yQFqJWhGEYGmgArbsINZ6MmhqX 55Ev3SECgrNXaq3g4JuooDqivZP3zVuVkw48SsZssS/Mqa5Jrw/oPQILzqkxvVHv Sl27nRVRMSmQ5K9sIfAi9LjbaWtwNfubmKqxK0m5otrlzAl01WK30OdbaeoMkeEt je195PugkZtuh/1U63klrc8khAkoM/KQoh7JTK4859QaQGNRJFwyREliTqsCJ/83 S+8ARNABWx5/r9L0eDRtvujaTb48vjkKfdzdD7LOCiLrqHL9o3HmEnbKrkSkXv0v wjY= -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:19 2026 by rpki-client