This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/9Ra8X20bx018oCmEcRTfCGTC_Gc.roa File: 9Ra8X20bx018oCmEcRTfCGTC_Gc.roa (raw, json) Hash identifier: zjfSq8Rp+8tIwRwuXVhRm7jcQpdBh1WPbyuHyRV1brk= Subject key identifier: F5:16:BC:5F:6D:1B:C7:4D:7C:A0:29:84:71:14:DF:08:64:C2:FC:67 Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019B79EC7A0059A692F5B87825B6128A1262 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/9Ra8X20bx018oCmEcRTfCGTC_Gc.roa Signing time: Thu 01 Jan 2026 14:18:19 +0000 ROA not before: Thu 01 Jan 2026 14:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214417 IP address blocks: 193.23.216.0/24 maxlen: 24 193.23.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:7a:00:59:a6:92:f5:b8:78:25:b6:12:8a:12:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 1 14:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f516bc5f6d1bc74d7ca029847114df0864c2fc67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bf:a4:65:6a:57:f0:06:bc:1b:3c:10:b3:4c: 97:b8:da:ed:a8:e9:fa:71:84:d5:55:5b:09:3a:8c: e3:5c:29:b9:5a:e8:8f:6e:65:d0:3a:90:e3:94:44: 53:05:80:94:06:a7:67:49:4b:f8:31:9c:dc:7e:9a: d8:aa:8a:9d:ac:29:2e:0f:51:ac:bf:6e:64:34:77: fe:cf:08:ad:91:a9:39:4d:11:26:de:2e:da:dd:f7: 96:05:19:1c:3e:1f:d3:e5:a2:04:a5:6d:80:d3:33: 0d:82:30:cd:df:bc:17:32:52:0b:f2:c7:6f:0a:27: 55:e3:cc:22:db:51:1b:f8:4a:65:f1:c8:d4:4d:48: 0e:28:91:95:b7:85:43:eb:d4:16:02:c5:42:4f:41: 94:33:a8:7f:0f:5c:0d:76:1d:80:77:6b:d9:dc:ae: 64:92:0c:be:ba:9e:3f:43:ef:5a:97:3b:08:09:d2: 52:83:26:ad:62:91:a9:26:08:53:fb:ce:f8:86:a7: 20:8c:b7:cd:3e:5d:0f:e1:63:ec:57:1a:47:5d:c0: 3b:3b:97:db:86:99:a9:40:c5:47:e3:e3:77:14:53: c9:23:d8:0c:3b:71:31:9f:6c:e4:ed:03:98:76:dc: cc:ff:1f:53:36:7a:ad:13:18:6f:ee:5b:c3:b4:c6: 9e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:16:BC:5F:6D:1B:C7:4D:7C:A0:29:84:71:14:DF:08:64:C2:FC:67 X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/9Ra8X20bx018oCmEcRTfCGTC_Gc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.23.216.0/24 193.23.221.0/24 Signature Algorithm: sha256WithRSAEncryption a8:9c:4b:5e:2f:65:7c:e1:82:66:f4:3b:1e:fd:e4:f1:64:95: 15:67:26:a8:0f:7c:10:d2:14:93:13:7c:2f:b8:8b:c3:aa:bd: 5f:c4:1f:a8:78:1f:76:b5:a9:a0:e9:2d:46:cf:7d:e8:77:b9: f6:27:5a:d9:e2:24:f3:92:92:40:9f:29:19:49:1d:15:be:fe: 6d:02:da:37:58:b5:50:44:24:ff:47:94:71:db:73:cd:37:51: dc:24:da:e8:51:e6:ee:1f:e2:10:4a:f0:4a:78:e0:56:9b:fd: af:76:f2:78:46:39:5a:49:5d:fe:eb:7b:50:52:99:8e:b6:57: 9d:b2:3e:55:82:bf:41:fa:c0:a7:24:e9:bb:80:36:e1:bc:a8: 48:1c:25:b9:18:3c:bc:3b:20:6c:72:0a:a1:a2:b2:ef:30:c1: 61:82:c6:e1:ab:87:b9:b2:dc:63:e5:6a:95:dc:7a:30:c5:15: 1b:98:53:3b:34:22:f1:2a:2d:31:8f:3d:ae:8e:8f:9c:b4:da: 0a:64:d1:60:f1:36:ac:24:56:c5:c9:21:ac:e7:a1:ef:1e:9c: ed:04:50:75:84:11:3a:ff:1b:69:05:6d:32:9e:97:7f:7a:38: 46:3e:d8:df:1b:6b:3a:19:55:de:36:1f:ec:1e:6c:05:7c:9b: 50:29:62:c0 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57HoAWaaS9bh4JbYSihJiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTAxMTQxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNTE2YmM1ZjZkMWJjNzRkN2NhMDI5ODQ3MTE0ZGYwODY0YzJmYzY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7+kZWpX8Aa8GzwQs0yXuNrtqOn6 cYTVVVsJOozjXCm5WuiPbmXQOpDjlERTBYCUBqdnSUv4MZzcfprYqoqdrCkuD1Gs v25kNHf+zwitkak5TREm3i7a3feWBRkcPh/T5aIEpW2A0zMNgjDN37wXMlIL8sdv CidV48wi21Eb+Epl8cjUTUgOKJGVt4VD69QWAsVCT0GUM6h/D1wNdh2Ad2vZ3K5k kgy+up4/Q+9alzsICdJSgyatYpGpJghT+874hqcgjLfNPl0P4WPsVxpHXcA7O5fb hpmpQMVH4+N3FFPJI9gMO3Exn2zk7QOYdtzM/x9TNnqtExhv7lvDtMae6wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFPUWvF9tG8dNfKAphHEU3whkwvxnMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvOVJhOFgyMGJ4MDE4b0NtRWNSVGZDR1RDX0djLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwRfYAwQA wRfdMA0GCSqGSIb3DQEBCwUAA4IBAQConEteL2V84YJm9Dse/eTxZJUVZyaoD3wQ 0hSTE3wvuIvDqr1fxB+oeB92tamg6S1Gz33od7n2J1rZ4iTzkpJAnykZSR0Vvv5t Ato3WLVQRCT/R5Rx23PNN1HcJNroUebuH+IQSvBKeOBWm/2vdvJ4RjlaSV3+63tQ UpmOtledsj5Vgr9B+sCnJOm7gDbhvKhIHCW5GDy8OyBscgqhorLvMMFhgsbhq4e5 stxj5WqV3HowxRUbmFM7NCLxKi0xjz2ujo+ctNoKZNFg8TasJFbFySGs56HvHpzt BFB1hBE6/xtpBW0ynpd/ejhGPtjfG2s6GVXeNh/sHmwFfJtQKWLA -----END CERTIFICATE-----Generated at Sun Jan 25 08:48:37 2026 by rpki-client