This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/1-wqXuXVjU4DK7DThoDM4xKkLzpA.roa File: 1-wqXuXVjU4DK7DThoDM4xKkLzpA.roa (raw, json) Hash identifier: Ysd+kwqFCaatF0B+CxMd/0KKzo486Kn7yiW2Q4tdeXQ= Subject key identifier: FB:0A:97:B9:75:63:53:80:CA:EC:34:E1:A0:33:38:C4:A9:0B:CE:90 Certificate issuer: /CN=24504c74c7127090a4cff85001f443149e128e60 Certificate serial: 019B7CEE28864C5AF7CFC066C1367627232B Authority key identifier: 24:50:4C:74:C7:12:70:90:A4:CF:F8:50:01:F4:43:14:9E:12:8E:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JFBMdMcScJCkz_hQAfRDFJ4SjmA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/1-wqXuXVjU4DK7DThoDM4xKkLzpA.roa Signing time: Fri 02 Jan 2026 04:19:01 +0000 ROA not before: Fri 02 Jan 2026 04:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39737 IP address blocks: 193.142.205.0/24 maxlen: 24 193.142.223.0/24 maxlen: 24 193.142.234.0/24 maxlen: 24 193.142.241.0/24 maxlen: 24 195.64.152.0/23 maxlen: 23 195.64.168.0/24 maxlen: 24 195.64.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/JFBMdMcScJCkz_hQAfRDFJ4SjmA.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/JFBMdMcScJCkz_hQAfRDFJ4SjmA.mft rsync://rpki.ripe.net/repository/DEFAULT/JFBMdMcScJCkz_hQAfRDFJ4SjmA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:28:86:4c:5a:f7:cf:c0:66:c1:36:76:27:23:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24504c74c7127090a4cff85001f443149e128e60 Validity Not Before: Jan 2 04:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb0a97b975635380caec34e1a03338c4a90bce90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f3:aa:d3:ce:9f:88:c5:69:2e:4f:84:31:81: 48:c6:98:6f:fa:25:5e:da:0e:f5:24:84:1f:92:5f: b7:38:89:e4:1e:92:42:55:50:b0:69:b4:7d:7d:45: 2f:af:f3:0c:39:56:1c:39:a9:72:68:00:f8:a3:56: d5:8a:83:8a:7b:95:b4:0c:ef:25:31:08:5b:c8:8d: 67:3b:23:a1:cf:af:f0:c1:df:d8:ca:a1:05:90:a1: 9d:c9:5f:c2:f2:6d:27:ca:3c:13:f7:e0:cb:81:bd: 22:5b:aa:42:23:67:d8:22:09:ef:03:3a:50:f7:70: b3:90:c8:b9:bd:68:82:9e:78:d2:e1:45:47:b4:05: b0:0d:22:f6:92:20:30:82:40:41:ec:17:a5:7c:f4: cf:91:c9:0e:8d:eb:bb:6f:be:88:83:b4:b0:cc:72: 12:1a:cd:6d:db:cc:1b:d0:3e:32:c3:87:63:2a:03: 24:9e:03:8b:ee:16:50:6f:f2:eb:00:9a:bb:2f:5f: 6c:c7:b8:c6:52:52:87:cd:30:a0:13:21:94:52:96: e1:5b:63:d4:4a:5e:6a:64:64:97:d6:f5:53:9b:dd: cb:c1:6a:66:59:b2:15:5c:b1:a0:5d:b3:84:0f:84: 76:34:a9:87:98:68:20:34:ee:ce:66:93:6a:98:95: 45:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:0A:97:B9:75:63:53:80:CA:EC:34:E1:A0:33:38:C4:A9:0B:CE:90 X509v3 Authority Key Identifier: keyid:24:50:4C:74:C7:12:70:90:A4:CF:F8:50:01:F4:43:14:9E:12:8E:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JFBMdMcScJCkz_hQAfRDFJ4SjmA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/1-wqXuXVjU4DK7DThoDM4xKkLzpA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/396e8b-71d3-46bf-a244-d0622c4cd48d/1/JFBMdMcScJCkz_hQAfRDFJ4SjmA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.142.205.0/24 193.142.223.0/24 193.142.234.0/24 193.142.241.0/24 195.64.152.0/23 195.64.168.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:7a:21:89:41:05:d7:06:24:b2:eb:85:1f:7b:3d:5d:c7:67: b0:17:50:34:d4:68:bb:bb:b2:3c:d7:25:d9:24:d2:62:3d:9f: 1e:71:24:ed:6e:b2:6f:3b:68:6d:96:45:ad:fb:2c:4f:03:e8: 33:bc:a3:56:df:fe:6a:c3:27:9d:6c:43:e2:fb:a8:e9:95:15: 20:36:97:e6:d2:ca:ce:cc:68:34:ea:65:d0:e6:d4:d5:df:b7: 11:6d:bb:4a:3f:c2:21:58:dd:31:3b:b9:80:4c:5c:34:ee:a2: b1:fc:8f:c8:32:35:54:a3:8a:3a:6a:18:11:ba:cb:f1:c8:d5: 48:fa:22:14:b6:96:c1:c5:9b:de:80:a1:ce:59:76:8f:d5:e9: ea:02:a0:a2:55:1f:ba:c7:e3:c3:3c:9f:a5:94:8f:f1:ee:8a: c2:e9:8d:29:b7:61:4b:a8:6b:76:f2:0b:d7:77:8e:fd:6e:d8: d8:2f:fc:a4:e9:21:bb:e2:0d:d9:9d:7d:2b:c3:b4:5f:a0:75: d8:02:44:6d:6e:14:2a:ca:91:60:7e:43:7d:f1:e3:64:0e:50: c1:78:45:ea:7f:6e:a9:9e:01:ff:6c:ee:6a:59:f2:5d:db:46: 9f:72:69:3a:40:0d:40:0d:eb:3b:30:0a:4e:d8:e2:13:f4:b2: 23:05:2d:37 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISAZt87iiGTFr3z8BmwTZ2JyMrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI0NTA0Yzc0YzcxMjcwOTBhNGNmZjg1MDAxZjQ0MzE0OWUx MjhlNjAwHhcNMjYwMTAyMDQxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjBhOTdiOTc1NjM1MzgwY2FlYzM0ZTFhMDMzMzhjNGE5MGJjZTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzPOq086fiMVpLk+EMYFIxphv+iVe 2g71JIQfkl+3OInkHpJCVVCwabR9fUUvr/MMOVYcOalyaAD4o1bVioOKe5W0DO8l MQhbyI1nOyOhz6/wwd/YyqEFkKGdyV/C8m0nyjwT9+DLgb0iW6pCI2fYIgnvAzpQ 93CzkMi5vWiCnnjS4UVHtAWwDSL2kiAwgkBB7BelfPTPkckOjeu7b76Ig7SwzHIS Gs1t28wb0D4yw4djKgMkngOL7hZQb/LrAJq7L19sx7jGUlKHzTCgEyGUUpbhW2PU Sl5qZGSX1vVTm93LwWpmWbIVXLGgXbOED4R2NKmHmGggNO7OZpNqmJVFTwIDAQAB o4ICKDCCAiQwHQYDVR0OBBYEFPsKl7l1Y1OAyuw04aAzOMSpC86QMB8GA1UdIwQY MBaAFCRQTHTHEnCQpM/4UAH0QxSeEo5gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSkZCTWRNY1NjSkNrel9oUUFmUkRGSjRTam1BLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8zOTZlOGItNzFkMy00NmJmLWEyNDQt ZDA2MjJjNGNkNDhkLzEvMS13cVh1WFZqVTRESzdEVGhvRE00eEtrTHpwQS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZDIvMzk2ZThiLTcxZDMtNDZiZi1hMjQ0LWQwNjIyYzRjZDQ4 ZC8xL0pGQk1kTWNTY0pDa3pfaFFBZlJERko0U2ptQS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA9BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEwJAMEAMGOzQME AMGO3wMEAMGO6gMEAMGO8QMEAcNAmAMEAcNAqDANBgkqhkiG9w0BAQsFAAOCAQEA fnohiUEF1wYksuuFH3s9XcdnsBdQNNRou7uyPNcl2STSYj2fHnEk7W6ybztobZZF rfssTwPoM7yjVt/+asMnnWxD4vuo6ZUVIDaX5tLKzsxoNOpl0ObU1d+3EW27Sj/C IVjdMTu5gExcNO6isfyPyDI1VKOKOmoYEbrL8cjVSPoiFLaWwcWb3oChzll2j9Xp 6gKgolUfusfjwzyfpZSP8e6KwumNKbdhS6hrdvIL13eO/W7Y2C/8pOkhu+IN2Z19 K8O0X6B12AJEbW4UKsqRYH5DffHjZA5QwXhF6n9uqZ4B/2zualnyXdtGn3JpOkAN QA3rOzAKTtjiE/SyIwUtNw== -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:16 2026 by rpki-client