This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/t3ufLhClvzlVsYRMN5luBGS5_3w.roa File: t3ufLhClvzlVsYRMN5luBGS5_3w.roa (raw, json) Hash identifier: uLhHGo/i6diygBOi/sIsqM/IlT2ec8AelaM8aOu2xf8= Subject key identifier: B7:7B:9F:2E:10:A5:BF:39:55:B1:84:4C:37:99:6E:04:64:B9:FF:7C Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78348DD7E9C9B54EFB838106856A8559 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/t3ufLhClvzlVsYRMN5luBGS5_3w.roa Signing time: Thu 01 Jan 2026 06:17:48 +0000 ROA not before: Thu 01 Jan 2026 06:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208822 IP address blocks: 194.68.172.0/24 maxlen: 24 194.103.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:8d:d7:e9:c9:b5:4e:fb:83:81:06:85:6a:85:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b77b9f2e10a5bf3955b1844c37996e0464b9ff7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:11:95:54:1c:c7:81:20:db:cd:ae:9b:1e:b8: dd:d6:a7:5c:de:8c:17:b3:20:24:1a:99:c3:66:97: 2d:40:e1:c4:22:7c:b6:b7:5b:b2:ac:3a:a4:fb:8e: a3:d5:82:6c:26:76:cc:0f:92:d3:3f:d0:2d:92:83: 3c:c6:41:0c:e0:52:eb:f5:8e:c1:67:93:a6:be:19: 92:7e:41:e6:3e:f5:7e:a6:14:be:59:7f:f1:3a:62: d6:14:05:10:e6:d2:e1:1e:c5:b9:a1:d9:d0:33:6a: 3f:4b:93:65:1e:49:6c:68:03:22:d1:80:03:b6:c2: 59:32:41:2d:f5:e2:b6:52:1a:df:0e:2c:45:e5:58: 2b:9a:f2:a1:f8:ef:1b:1a:4f:fc:2c:7b:d8:8f:f8: 9a:dd:ca:11:e7:e4:25:f7:93:4b:27:4e:c7:45:24: 4e:18:23:85:32:87:5c:4a:d6:37:d0:c0:68:8f:78: c0:3e:11:9d:59:96:37:9e:c1:8d:06:22:3a:15:b8: 8f:3f:0c:59:a1:eb:b7:e3:12:27:59:1f:87:5f:f7: fc:ce:05:70:32:7a:31:58:10:f9:05:e2:11:0d:24: 2f:79:a2:0c:11:ee:02:54:ac:03:72:14:05:08:ac: bc:48:4a:53:87:62:05:a5:62:32:2f:78:61:de:d4: 64:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7B:9F:2E:10:A5:BF:39:55:B1:84:4C:37:99:6E:04:64:B9:FF:7C X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/t3ufLhClvzlVsYRMN5luBGS5_3w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.68.172.0/24 194.103.196.0/24 Signature Algorithm: sha256WithRSAEncryption 58:16:93:de:29:66:45:65:bc:0d:80:bd:42:e5:d9:f5:2f:13: 89:7a:8f:15:36:0f:a8:7d:ae:c3:b6:60:35:bd:c0:f6:60:5b: ef:47:67:db:bd:f4:7f:da:1d:73:d4:19:14:a7:a7:59:3f:57: 0b:3d:b4:1a:84:6a:e5:05:de:0b:39:f3:5c:6a:7c:eb:fd:7f: 28:ff:1d:65:ab:c3:7e:d2:97:57:59:db:db:90:e0:52:a3:8f: 1d:22:19:31:41:3a:1f:2f:2b:2f:a4:11:0e:ee:8d:1a:f9:cd: b8:96:7d:a3:a0:9c:d6:c3:d7:5f:9c:1f:1d:9e:46:a2:74:1e: 16:d7:7e:fb:7b:ad:ae:d4:5e:b1:54:6c:cb:8e:73:b7:82:c1: 6b:ce:3d:71:19:46:00:a5:34:1c:77:d9:6e:6a:2a:07:02:14: 30:06:84:b2:0f:75:72:5c:13:da:66:e8:9d:a3:9f:96:d0:3b: 1f:ab:1b:f8:f9:74:e5:e2:34:2f:94:50:3a:d5:9c:5b:de:ea: cd:c2:9c:a0:7f:5b:b4:05:25:3e:60:e1:3e:29:6c:f5:d0:e3: 11:f4:03:73:9e:ee:47:bf:4c:05:95:47:51:cb:a4:01:41:5a: 2a:12:5b:e9:7a:58:51:fe:c7:c7:3d:12:e4:10:9d:aa:3d:29: 6c:c0:df:ac -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NI3X6cm1TvuDgQaFaoVZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzdiOWYyZTEwYTViZjM5NTViMTg0NGMzNzk5NmUwNDY0YjlmZjdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/BGVVBzHgSDbza6bHrjd1qdc3owX syAkGpnDZpctQOHEIny2t1uyrDqk+46j1YJsJnbMD5LTP9AtkoM8xkEM4FLr9Y7B Z5OmvhmSfkHmPvV+phS+WX/xOmLWFAUQ5tLhHsW5odnQM2o/S5NlHklsaAMi0YAD tsJZMkEt9eK2UhrfDixF5VgrmvKh+O8bGk/8LHvYj/ia3coR5+Ql95NLJ07HRSRO GCOFModcStY30MBoj3jAPhGdWZY3nsGNBiI6FbiPPwxZoeu34xInWR+HX/f8zgVw MnoxWBD5BeIRDSQveaIMEe4CVKwDchQFCKy8SEpTh2IFpWIyL3hh3tRkNQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLd7ny4Qpb85VbGETDeZbgRkuf98MB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvdDN1ZkxoQ2x2emxWc1lSTU41bHVCR1M1XzN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwkSsAwQA wmfEMA0GCSqGSIb3DQEBCwUAA4IBAQBYFpPeKWZFZbwNgL1C5dn1LxOJeo8VNg+o fa7DtmA1vcD2YFvvR2fbvfR/2h1z1BkUp6dZP1cLPbQahGrlBd4LOfNcanzr/X8o /x1lq8N+0pdXWdvbkOBSo48dIhkxQTofLysvpBEO7o0a+c24ln2joJzWw9dfnB8d nkaidB4W1377e62u1F6xVGzLjnO3gsFrzj1xGUYApTQcd9luaioHAhQwBoSyD3Vy XBPaZuido5+W0Dsfqxv4+XTl4jQvlFA61Zxb3urNwpygf1u0BSU+YOE+KWz10OMR 9ANznu5Hv0wFlUdRy6QBQVoqElvpelhR/sfHPRLkEJ2qPSlswN+s -----END CERTIFICATE-----Generated at Sun Jan 25 10:32:44 2026 by rpki-client