This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/u9VE3AsJAbvFLJ0PowCM343qLyY.roa File: u9VE3AsJAbvFLJ0PowCM343qLyY.roa (raw, json) Hash identifier: 3b3tdDJc9pN9IaPqaodLKjOGczFhSbd4rFFEYkjYVQY= Subject key identifier: BB:D5:44:DC:0B:09:01:BB:C5:2C:9D:0F:A3:00:8C:DF:8D:EA:2F:26 Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1 Certificate serial: 019B7F15BF4682FB6F4078CF08326DDEC4E2 Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/u9VE3AsJAbvFLJ0PowCM343qLyY.roa Signing time: Fri 02 Jan 2026 14:21:30 +0000 ROA not before: Fri 02 Jan 2026 14:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200521 IP address blocks: 195.57.163.0/24 maxlen: 24 195.76.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.mft rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:bf:46:82:fb:6f:40:78:cf:08:32:6d:de:c4:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1 Validity Not Before: Jan 2 14:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bbd544dc0b0901bbc52c9d0fa3008cdf8dea2f26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:69:9c:5f:f8:b1:d0:0b:d1:15:7c:c0:71:e2: dc:a2:dd:e2:04:96:62:a6:7c:dc:b8:23:4b:ed:b3: bf:4f:d3:76:d4:91:c2:35:ec:3e:2d:f2:ff:ed:89: 8b:d4:f1:b0:bd:9c:45:34:8e:0c:72:da:ae:7e:ef: 08:b7:77:1d:39:e8:c8:9f:6d:94:7c:b2:5c:af:a4: eb:9a:25:14:c8:59:d2:d3:48:23:da:c9:cb:bb:c8: 52:18:ce:c5:37:16:c2:03:20:71:9f:56:7e:f2:4c: 0c:ef:db:b9:00:44:c2:a0:2a:6a:d4:78:15:b0:be: 00:11:2e:ef:7f:f1:d8:11:9f:53:b6:25:cc:7b:84: c8:1e:96:96:92:65:48:57:c0:d4:30:61:de:37:6a: 2e:9e:9d:f5:2d:2e:4d:bd:80:e7:20:14:a1:e1:8b: ef:37:d3:cd:50:a2:96:c1:a8:e3:d5:8f:d8:39:2a: 17:5d:1e:1a:16:ff:5f:56:5f:85:f4:3c:5f:44:13: 03:b9:11:2b:5f:3e:ee:81:e1:c5:09:88:d6:2a:4c: e9:9c:39:a2:4c:a3:cd:63:04:68:82:b7:f3:81:16: 76:4c:f7:8a:cd:bc:f8:e2:2d:2e:f3:fa:3f:d5:6d: 12:76:b9:5b:92:09:f7:ab:46:ce:2b:6e:78:74:09: bc:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D5:44:DC:0B:09:01:BB:C5:2C:9D:0F:A3:00:8C:DF:8D:EA:2F:26 X509v3 Authority Key Identifier: keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/u9VE3AsJAbvFLJ0PowCM343qLyY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.57.163.0/24 195.76.204.0/24 Signature Algorithm: sha256WithRSAEncryption c9:28:58:24:6b:b4:7a:f3:b0:95:82:d9:ba:a5:a0:11:61:4b: c1:72:8c:99:75:a6:0d:ab:ab:e4:cd:26:66:68:86:a6:36:52: 0c:97:57:00:35:d7:1a:4c:39:f7:b4:76:e4:7f:e9:1e:4d:fc: 79:ab:9b:0f:8c:54:c8:70:af:81:9d:6a:38:95:b2:a9:08:8a: ac:c8:a4:34:66:36:95:45:bd:d8:52:0e:ce:86:ac:a9:fe:64: ca:34:ae:88:0b:ca:6f:27:3a:79:39:ce:e5:a8:ea:84:e0:fb: e9:fe:ba:5a:95:04:c3:1a:f4:3b:ca:2d:f5:2f:2a:38:9d:07: 4c:05:71:29:39:f1:00:63:85:79:00:a9:7e:c9:ec:86:be:25: 82:3d:e0:cd:f5:8a:e3:dd:8d:a1:5d:cd:d2:2a:b6:11:07:38: bf:62:8f:0a:52:ca:5e:60:5d:d0:b6:1e:96:1b:d5:7c:2b:1a: 31:d3:61:69:83:c5:97:b6:71:dc:67:f4:93:20:c3:6d:90:be: 32:d2:9c:04:18:c9:59:b6:b6:11:aa:d0:f4:37:58:cb:99:fe: 97:89:e6:35:a8:d0:68:23:42:b6:99:5b:95:6c:23:17:20:db: 64:e4:fc:94:a5:54:3f:91:43:86:32:9a:7b:95:e5:73:3a:4b: 10:b1:34:e4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/Fb9GgvtvQHjPCDJt3sTiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5 NjdkYTEwHhcNMjYwMTAyMTQyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYmQ1NDRkYzBiMDkwMWJiYzUyYzlkMGZhMzAwOGNkZjhkZWEyZjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApGmcX/ix0AvRFXzAceLcot3iBJZi pnzcuCNL7bO/T9N21JHCNew+LfL/7YmL1PGwvZxFNI4Mctqufu8It3cdOejIn22U fLJcr6TrmiUUyFnS00gj2snLu8hSGM7FNxbCAyBxn1Z+8kwM79u5AETCoCpq1HgV sL4AES7vf/HYEZ9TtiXMe4TIHpaWkmVIV8DUMGHeN2ounp31LS5NvYDnIBSh4Yvv N9PNUKKWwajj1Y/YOSoXXR4aFv9fVl+F9DxfRBMDuRErXz7ugeHFCYjWKkzpnDmi TKPNYwRogrfzgRZ2TPeKzbz44i0u8/o/1W0Sdrlbkgn3q0bOK254dAm8MQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLvVRNwLCQG7xSydD6MAjN+N6i8mMB8GA1UdIwQY MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt NGJhMmY4ZjFmODNiLzEvdTlWRTNBc0pBYnZGTEowUG93Q00zNDNxTHlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwzmjAwQA w0zMMA0GCSqGSIb3DQEBCwUAA4IBAQDJKFgka7R687CVgtm6paARYUvBcoyZdaYN q6vkzSZmaIamNlIMl1cANdcaTDn3tHbkf+keTfx5q5sPjFTIcK+BnWo4lbKpCIqs yKQ0ZjaVRb3YUg7Ohqyp/mTKNK6IC8pvJzp5Oc7lqOqE4Pvp/rpalQTDGvQ7yi31 Lyo4nQdMBXEpOfEAY4V5AKl+yeyGviWCPeDN9Yrj3Y2hXc3SKrYRBzi/Yo8KUspe YF3Qth6WG9V8Kxox02Fpg8WXtnHcZ/STIMNtkL4y0pwEGMlZtrYRqtD0N1jLmf6X ieY1qNBoI0K2mVuVbCMXINtk5PyUpVQ/kUOGMpp7leVzOksQsTTk -----END CERTIFICATE-----Generated at Sun Jan 25 18:06:13 2026 by rpki-client