This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa File: RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa (raw, json) Hash identifier: xrR61qMY4oBctclJGvQvpdXymPubQyCDbVzByy1zses= Subject key identifier: 47:3C:DD:84:8E:56:41:37:C8:44:9E:42:4F:89:B6:51:EF:66:18:DE Certificate issuer: /CN=1fd0875cd0051d0c0925aca041034e7840a6770b Certificate serial: 019B7E37B90158A797E25B228992EB07CDA3 Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa Signing time: Fri 02 Jan 2026 10:18:59 +0000 ROA not before: Fri 02 Jan 2026 10:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204203 IP address blocks: 193.84.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:b9:01:58:a7:97:e2:5b:22:89:92:eb:07:cd:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b Validity Not Before: Jan 2 10:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=473cdd848e564137c8449e424f89b651ef6618de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:86:ca:1b:6f:60:22:d8:28:77:00:86:c8:37: 5f:d4:fd:ae:40:37:e3:2b:30:fa:f7:a7:b5:39:af: 91:00:f6:09:9d:5b:3d:8a:47:fc:34:49:3f:5c:ae: ce:6f:ef:c7:53:63:8f:c3:9b:02:fa:34:42:8b:3e: 87:aa:01:7c:12:14:4e:2f:02:d1:26:d7:2b:6f:62: a8:fd:0b:fd:70:2a:bf:51:06:e6:54:18:7d:05:10: 18:06:12:3f:35:5b:ad:38:a3:7d:9c:e2:ad:7a:90: 0e:48:32:c2:bc:2d:3c:db:b5:ea:e2:ce:67:9a:f1: 12:3b:0b:7d:a5:58:31:e0:eb:06:19:a0:12:79:7e: a6:fd:8d:df:5a:7f:27:16:96:3f:4e:ae:d5:16:cd: 93:be:79:33:73:79:0e:34:46:5c:57:ab:48:2c:e2: 9e:12:62:a2:28:1b:2c:6c:8e:d8:d2:08:1d:2f:c2: c5:9a:54:64:5c:e4:a5:0d:4c:12:b1:b9:14:ff:bd: f2:fe:41:07:d9:a6:0c:60:80:66:27:70:bc:f5:30: 3a:34:f8:a0:7d:82:ac:9a:6b:63:16:a6:4d:72:5e: 2e:e0:8b:92:59:75:0a:9b:b8:b0:e8:24:72:a7:ac: 0b:5e:d5:2e:4a:10:bb:08:3e:ce:5f:e5:ca:cc:97: 40:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3C:DD:84:8E:56:41:37:C8:44:9E:42:4F:89:B6:51:EF:66:18:DE X509v3 Authority Key Identifier: keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/RzzdhI5WQTfIRJ5CT4m2Ue9mGN4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.84.255.0/24 Signature Algorithm: sha256WithRSAEncryption 18:00:8e:c5:64:c1:5c:74:89:41:ab:ac:7e:80:e0:ef:89:aa: cd:5a:79:d1:ff:39:a1:84:c0:df:18:b7:7a:0f:59:2e:50:cc: 7f:4e:81:3f:c7:db:09:bc:42:15:01:b3:23:90:c7:7b:7a:f1: ac:a6:af:e8:1c:2d:bb:05:92:50:24:92:c2:6a:c7:e3:bd:be: 4d:53:b9:21:f1:f8:4c:5f:eb:40:20:f7:b7:29:02:86:fc:4e: 6b:2f:b0:83:99:10:a0:f3:15:14:1b:db:cc:25:1d:d1:b6:e2: 59:bd:12:b4:5b:ab:da:f8:a5:c3:13:99:47:ae:95:d8:97:07: e8:83:27:fc:6e:f8:31:97:3a:f5:a4:f3:2a:9a:b1:63:41:ca: d1:8d:c6:84:64:0f:60:89:4b:38:d1:3a:b4:f6:7b:9d:26:6f: d5:db:d3:a7:61:56:44:54:8e:3d:92:2b:68:2e:77:64:97:de: 03:d3:0c:9b:03:d2:b4:2e:bb:d7:7d:18:52:95:eb:1e:74:44: e0:e7:5a:db:b4:23:db:93:8a:9f:35:e3:eb:3e:19:74:7a:65: 3e:2a:ba:4f:b4:ea:bd:b6:24:ce:50:7c:ba:93:72:82:09:49: 9a:a9:ed:06:08:87:b0:95:bd:db:b6:18:cb:0c:e6:50:cf:79: fb:e6:22:47 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N7kBWKeX4lsiiZLrB82jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmZDA4NzVjZDAwNTFkMGMwOTI1YWNhMDQxMDM0ZTc4NDBh Njc3MGIwHhcNMjYwMTAyMTAxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NzNjZGQ4NDhlNTY0MTM3Yzg0NDllNDI0Zjg5YjY1MWVmNjYxOGRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4bKG29gItgodwCGyDdf1P2uQDfj KzD696e1Oa+RAPYJnVs9ikf8NEk/XK7Ob+/HU2OPw5sC+jRCiz6HqgF8EhROLwLR Jtcrb2Ko/Qv9cCq/UQbmVBh9BRAYBhI/NVutOKN9nOKtepAOSDLCvC0827Xq4s5n mvESOwt9pVgx4OsGGaASeX6m/Y3fWn8nFpY/Tq7VFs2Tvnkzc3kONEZcV6tILOKe EmKiKBssbI7Y0ggdL8LFmlRkXOSlDUwSsbkU/73y/kEH2aYMYIBmJ3C89TA6NPig fYKsmmtjFqZNcl4u4IuSWXUKm7iw6CRyp6wLXtUuShC7CD7OX+XKzJdATQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEc83YSOVkE3yESeQk+JtlHvZhjeMB8GA1UdIwQY MBaAFB/Qh1zQBR0MCSWsoEEDTnhApncLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMt ZTA4MDJmNDc0NDQ0LzEvUnp6ZGhJNVdRVGZJUko1Q1Q0bTJVZTltR040LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8yMjEwNDgtM2JhZC00NjljLWI5MzMtZTA4MDJmNDc0NDQ0 LzEvSDlDSFhOQUZIUXdKSmF5Z1FRTk9lRUNtZHdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwVT/MA0G CSqGSIb3DQEBCwUAA4IBAQAYAI7FZMFcdIlBq6x+gODviarNWnnR/zmhhMDfGLd6 D1kuUMx/ToE/x9sJvEIVAbMjkMd7evGspq/oHC27BZJQJJLCasfjvb5NU7kh8fhM X+tAIPe3KQKG/E5rL7CDmRCg8xUUG9vMJR3RtuJZvRK0W6va+KXDE5lHrpXYlwfo gyf8bvgxlzr1pPMqmrFjQcrRjcaEZA9giUs40Tq09nudJm/V29OnYVZEVI49kito Lndkl94D0wybA9K0LrvXfRhSlesedETg51rbtCPbk4qfNePrPhl0emU+KrpPtOq9 tiTOUHy6k3KCCUmaqe0GCIewlb3bthjLDOZQz3n75iJH -----END CERTIFICATE-----Generated at Sun Jan 25 16:11:13 2026 by rpki-client