This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bfd9d-6afc-4bd7-bb43-badafca3944f/1/dO7YsL4styJWkEbyYnxj7svPmxc.roa File: dO7YsL4styJWkEbyYnxj7svPmxc.roa (raw, json) Hash identifier: 9b8H/NqCmB/GoG5NnV1WxRB8lUCVU1Wvz4lOYigLXt8= Subject key identifier: 74:EE:D8:B0:BE:2C:B7:22:56:90:46:F2:62:7C:63:EE:CB:CF:9B:17 Certificate issuer: /CN=f2262faf4376420024aad72983ac3e87944ea7a5 Certificate serial: 019B7CEE057C73D80639BF45C30F003328DE Authority key identifier: F2:26:2F:AF:43:76:42:00:24:AA:D7:29:83:AC:3E:87:94:4E:A7:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8iYvr0N2QgAkqtcpg6w-h5ROp6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bfd9d-6afc-4bd7-bb43-badafca3944f/1/dO7YsL4styJWkEbyYnxj7svPmxc.roa Signing time: Fri 02 Jan 2026 04:18:52 +0000 ROA not before: Fri 02 Jan 2026 04:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43708 IP address blocks: 193.35.44.0/24 maxlen: 24 2a04:2a40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bfd9d-6afc-4bd7-bb43-badafca3944f/1/8iYvr0N2QgAkqtcpg6w-h5ROp6U.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/4bfd9d-6afc-4bd7-bb43-badafca3944f/1/8iYvr0N2QgAkqtcpg6w-h5ROp6U.mft rsync://rpki.ripe.net/repository/DEFAULT/8iYvr0N2QgAkqtcpg6w-h5ROp6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:05:7c:73:d8:06:39:bf:45:c3:0f:00:33:28:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f2262faf4376420024aad72983ac3e87944ea7a5 Validity Not Before: Jan 2 04:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74eed8b0be2cb722569046f2627c63eecbcf9b17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9d:d3:32:b9:4d:86:c8:d8:17:52:cb:dd:28: ba:13:73:fb:2a:75:c0:6c:29:ed:af:f7:ad:4e:8c: fb:38:f7:19:dc:c8:72:7e:88:ba:c3:e3:6a:fe:0e: f6:07:cd:6b:29:0d:3b:44:7a:42:59:50:f0:0e:26: 7c:ec:2f:6e:2b:dc:85:e3:0b:2e:64:31:90:d5:51: 10:15:19:93:10:86:60:40:1c:9e:f1:9c:55:0c:dc: b6:39:6e:7d:13:d4:5f:dd:51:d9:ca:76:a6:be:1a: 0b:8b:1a:36:cc:37:77:65:fd:c7:e2:3d:bf:45:3e: ca:60:88:b8:29:1f:71:cb:4b:65:89:29:d6:a5:ff: 33:9e:10:aa:e8:e7:e3:9b:e0:a6:15:3b:2c:b9:81: 0e:2d:65:6e:ae:a7:c7:0c:bd:b1:26:ad:df:b9:2c: 19:be:ff:eb:a4:65:ec:ba:be:fe:fe:34:91:b7:34: df:9a:19:58:0c:c4:d4:36:63:e7:9f:af:37:a7:8f: 7b:a8:45:89:b0:eb:91:22:9c:5e:41:b5:fa:0b:bc: 88:ad:91:e0:53:b8:10:c7:86:71:a9:4d:9d:39:fe: 44:15:95:ac:04:d4:6d:71:6d:ba:36:e4:32:90:64: 5c:b0:6c:0d:5b:ee:35:30:86:a6:00:29:fc:b5:c1: 9a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:EE:D8:B0:BE:2C:B7:22:56:90:46:F2:62:7C:63:EE:CB:CF:9B:17 X509v3 Authority Key Identifier: keyid:F2:26:2F:AF:43:76:42:00:24:AA:D7:29:83:AC:3E:87:94:4E:A7:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8iYvr0N2QgAkqtcpg6w-h5ROp6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bfd9d-6afc-4bd7-bb43-badafca3944f/1/dO7YsL4styJWkEbyYnxj7svPmxc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bfd9d-6afc-4bd7-bb43-badafca3944f/1/8iYvr0N2QgAkqtcpg6w-h5ROp6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.35.44.0/24 IPv6: 2a04:2a40::/29 Signature Algorithm: sha256WithRSAEncryption a0:18:b6:0e:80:76:cb:01:08:3c:89:bc:4e:1a:1a:fe:36:d3: 6e:26:54:c0:d0:d4:f7:8f:16:40:b1:15:db:57:29:d2:c7:22: 27:6d:ce:5e:2c:4b:b6:85:87:bb:f6:ee:de:6c:0d:29:41:80: e8:47:3b:b0:98:72:9f:0e:47:b5:20:cf:af:5e:0a:bb:91:9c: 4e:1f:1e:35:42:19:d4:a9:0d:da:ec:f3:17:78:ed:11:aa:4c: f7:7a:e5:bf:6a:80:7a:51:ab:e2:7b:7b:0e:9e:71:76:03:65: bc:c3:03:fe:a2:6c:07:90:9f:90:50:cf:ca:87:3e:83:c4:ea: aa:9a:df:76:a0:46:ba:99:41:c7:dd:8c:c7:b9:14:8d:0d:0f: 58:16:0f:fc:f6:52:92:7d:f3:c6:24:a0:db:38:26:4c:d9:8c: 6a:a6:eb:5c:88:95:f5:81:2b:86:52:da:d1:cd:7f:36:91:7b: ab:d5:ca:6f:3f:e1:a8:27:79:b3:84:13:6a:19:ec:dc:99:ac: 4e:f9:a3:87:d2:c7:41:8f:63:44:a4:5a:19:31:64:3e:02:72: 1a:2b:b6:6a:23:be:22:dd:f8:2a:5b:76:f2:7e:38:1f:1f:78: 20:3e:06:5d:1f:f0:e6:aa:08:c9:2d:8d:3e:09:0e:92:20:78: fa:f2:59:08 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87gV8c9gGOb9Fww8AMyjeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYyMjYyZmFmNDM3NjQyMDAyNGFhZDcyOTgzYWMzZTg3OTQ0 ZWE3YTUwHhcNMjYwMTAyMDQxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGVlZDhiMGJlMmNiNzIyNTY5MDQ2ZjI2MjdjNjNlZWNiY2Y5YjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8Z3TMrlNhsjYF1LL3Si6E3P7KnXA bCntr/etToz7OPcZ3Mhyfoi6w+Nq/g72B81rKQ07RHpCWVDwDiZ87C9uK9yF4wsu ZDGQ1VEQFRmTEIZgQBye8ZxVDNy2OW59E9Rf3VHZynamvhoLixo2zDd3Zf3H4j2/ RT7KYIi4KR9xy0tliSnWpf8znhCq6Ofjm+CmFTssuYEOLWVurqfHDL2xJq3fuSwZ vv/rpGXsur7+/jSRtzTfmhlYDMTUNmPnn683p497qEWJsOuRIpxeQbX6C7yIrZHg U7gQx4ZxqU2dOf5EFZWsBNRtcW26NuQykGRcsGwNW+41MIamACn8tcGaHwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHTu2LC+LLciVpBG8mJ8Y+7Lz5sXMB8GA1UdIwQY MBaAFPImL69DdkIAJKrXKYOsPoeUTqelMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOGlZdnIwTjJRZ0FrcXRjcGc2dy1oNVJPcDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80YmZkOWQtNmFmYy00YmQ3LWJiNDMt YmFkYWZjYTM5NDRmLzEvZE83WXNMNHN0eUpXa0VieVlueGo3c3ZQbXhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS80YmZkOWQtNmFmYy00YmQ3LWJiNDMtYmFkYWZjYTM5NDRm LzEvOGlZdnIwTjJRZ0FrcXRjcGc2dy1oNVJPcDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwSMsMA0E AgACMAcDBQMqBCpAMA0GCSqGSIb3DQEBCwUAA4IBAQCgGLYOgHbLAQg8ibxOGhr+ NtNuJlTA0NT3jxZAsRXbVynSxyInbc5eLEu2hYe79u7ebA0pQYDoRzuwmHKfDke1 IM+vXgq7kZxOHx41QhnUqQ3a7PMXeO0Rqkz3euW/aoB6Uavie3sOnnF2A2W8wwP+ omwHkJ+QUM/Khz6DxOqqmt92oEa6mUHH3YzHuRSNDQ9YFg/89lKSffPGJKDbOCZM 2YxqputciJX1gSuGUtrRzX82kXur1cpvP+GoJ3mzhBNqGezcmaxO+aOH0sdBj2NE pFoZMWQ+AnIaK7ZqI74i3fgqW3byfjgfH3ggPgZdH/DmqgjJLY0+CQ6SIHj68lkI -----END CERTIFICATE-----Generated at Mon Jan 26 05:49:40 2026 by rpki-client