This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/rkgYpLaSooeAeaPc6HeDMNwsGSE.roa File: rkgYpLaSooeAeaPc6HeDMNwsGSE.roa (raw, json) Hash identifier: dwK5xzYUrSSoaqAtejdAj3gsVAadyZPLwc0zD6SmFNo= Subject key identifier: AE:48:18:A4:B6:92:A2:87:80:79:A3:DC:E8:77:83:30:DC:2C:19:21 Certificate issuer: /CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce Certificate serial: 019B78A30BCADBC20B50ACC48031C83ACD68 Authority key identifier: 9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/rkgYpLaSooeAeaPc6HeDMNwsGSE.roa Signing time: Thu 01 Jan 2026 08:18:29 +0000 ROA not before: Thu 01 Jan 2026 08:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212352 IP address blocks: 193.243.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.mft rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:0b:ca:db:c2:0b:50:ac:c4:80:31:c8:3a:cd:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c73d9453fbedfb80c4543bb529fc330c1f8c1ce Validity Not Before: Jan 1 08:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae4818a4b692a2878079a3dce8778330dc2c1921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:aa:06:8e:40:6b:27:d3:b7:6b:49:c0:10:2c: 3d:af:26:46:c9:84:72:1b:28:30:42:a7:28:01:ca: b6:98:8b:ad:eb:3f:28:49:d7:4f:9b:1a:a7:8a:ba: cc:7f:da:df:5c:ce:c8:47:0d:f4:71:3e:16:6d:6b: 09:ea:94:e0:ed:ef:76:09:6c:97:f1:52:c9:e6:92: ec:14:a6:02:34:e9:1a:d5:51:43:2a:12:c1:0b:5a: 26:a6:0f:b2:a5:e0:61:bd:8a:e7:81:4d:42:3b:87: 99:39:44:35:28:9c:eb:47:a8:2b:28:5f:b6:5d:e0: 6c:8a:54:1c:54:0f:ab:cb:90:13:32:f5:d6:ce:70: f2:aa:8c:1c:88:82:f2:d5:86:7a:63:5e:94:14:4c: c5:16:2e:d4:1e:2d:e3:92:b6:bd:0c:b8:94:75:13: 1b:fd:6d:00:4f:36:b3:6c:95:69:f9:a8:7b:f7:fe: 8a:a1:a3:0d:eb:18:d4:df:a9:c4:48:5b:39:8b:61: eb:9c:1c:a2:87:da:2c:70:57:f6:04:94:3f:be:0f: 51:31:79:cd:e7:54:c7:de:31:d8:7d:0f:9e:de:70: 9e:9b:d5:51:83:fe:dd:40:2b:fb:19:84:39:53:31: ef:4e:64:45:f4:3b:6d:45:49:82:75:f4:f3:7c:f4: d9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:48:18:A4:B6:92:A2:87:80:79:A3:DC:E8:77:83:30:DC:2C:19:21 X509v3 Authority Key Identifier: keyid:9C:73:D9:45:3F:BE:DF:B8:0C:45:43:BB:52:9F:C3:30:C1:F8:C1:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nHPZRT--37gMRUO7Up_DMMH4wc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/rkgYpLaSooeAeaPc6HeDMNwsGSE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b35379-2122-4191-8821-c47e18df0371/1/nHPZRT--37gMRUO7Up_DMMH4wc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.243.166.0/24 Signature Algorithm: sha256WithRSAEncryption 56:02:07:24:28:45:81:27:b7:54:e0:b5:0e:34:fc:65:4b:1a: d3:f8:01:a0:d2:b2:45:b9:4d:46:86:33:d5:19:ec:8a:8b:82: 75:36:52:99:56:99:c3:4b:49:b2:13:5c:d7:20:53:98:e1:85: 6e:91:bb:65:a3:3a:f6:a5:26:36:92:57:62:fc:69:a1:2a:b2: c2:ec:ad:20:a5:63:66:17:ae:8a:f4:e3:99:e7:ae:c5:89:a3: 19:54:c6:c5:8c:17:d4:4d:0b:08:91:37:89:0f:07:c4:86:b0: 44:a7:07:78:83:03:56:ef:52:c0:7c:93:83:44:00:9e:3c:cb: ab:a4:41:4e:cd:c3:b0:c5:e3:78:62:96:21:88:33:de:fd:f3: cc:1e:75:62:16:46:19:f0:13:3c:3d:5c:88:29:3c:e9:e1:0e: 3e:02:2e:47:85:90:99:d2:94:26:9a:9f:df:54:51:ac:89:36: 9d:37:e4:5a:5c:89:fa:d6:92:7e:82:4b:f1:39:c7:7d:1d:97: 8d:49:eb:d5:0a:96:14:a0:0b:25:f7:a1:8e:5e:92:40:4f:65: bb:91:21:12:01:02:bc:64:e9:61:55:b7:4e:f3:51:79:37:75: 4a:78:1d:3a:db:2f:9b:14:d9:bc:e7:5a:d1:a3:a7:8c:de:0f: 52:d8:03:5d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4owvK28ILUKzEgDHIOs1oMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNzNkOTQ1M2ZiZWRmYjgwYzQ1NDNiYjUyOWZjMzMwYzFm OGMxY2UwHhcNMjYwMTAxMDgxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTQ4MThhNGI2OTJhMjg3ODA3OWEzZGNlODc3ODMzMGRjMmMxOTIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaoGjkBrJ9O3a0nAECw9ryZGyYRy GygwQqcoAcq2mIut6z8oSddPmxqnirrMf9rfXM7IRw30cT4WbWsJ6pTg7e92CWyX 8VLJ5pLsFKYCNOka1VFDKhLBC1ompg+ypeBhvYrngU1CO4eZOUQ1KJzrR6grKF+2 XeBsilQcVA+ry5ATMvXWznDyqowciILy1YZ6Y16UFEzFFi7UHi3jkra9DLiUdRMb /W0ATzazbJVp+ah79/6KoaMN6xjU36nESFs5i2HrnByih9oscFf2BJQ/vg9RMXnN 51TH3jHYfQ+e3nCem9VRg/7dQCv7GYQ5UzHvTmRF9DttRUmCdfTzfPTZJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK5IGKS2kqKHgHmj3Oh3gzDcLBkhMB8GA1UdIwQY MBaAFJxz2UU/vt+4DEVDu1KfwzDB+MHOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkhQWlJULS0zN2dNUlVPN1VwX0RNTUg0d2M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC9iMzUzNzktMjEyMi00MTkxLTg4MjEt YzQ3ZTE4ZGYwMzcxLzEvcmtnWXBMYVNvb2VBZWFQYzZIZURNTndzR1NFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC9iMzUzNzktMjEyMi00MTkxLTg4MjEtYzQ3ZTE4ZGYwMzcx LzEvbkhQWlJULS0zN2dNUlVPN1VwX0RNTUg0d2M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwfOmMA0G CSqGSIb3DQEBCwUAA4IBAQBWAgckKEWBJ7dU4LUONPxlSxrT+AGg0rJFuU1GhjPV GeyKi4J1NlKZVpnDS0myE1zXIFOY4YVukbtlozr2pSY2kldi/GmhKrLC7K0gpWNm F66K9OOZ567FiaMZVMbFjBfUTQsIkTeJDwfEhrBEpwd4gwNW71LAfJODRACePMur pEFOzcOwxeN4YpYhiDPe/fPMHnViFkYZ8BM8PVyIKTzp4Q4+Ai5HhZCZ0pQmmp/f VFGsiTadN+RaXIn61pJ+gkvxOcd9HZeNSevVCpYUoAsl96GOXpJAT2W7kSESAQK8 ZOlhVbdO81F5N3VKeB062y+bFNm851rRo6eM3g9S2ANd -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:19 2026 by rpki-client