This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/32XVVyKt3ZJBnx5kqWWCO02zJAA.roa File: 32XVVyKt3ZJBnx5kqWWCO02zJAA.roa (raw, json) Hash identifier: 3DDnAdyDbtTrETxx+GoP22rNSd7sG+VR15SajuKvXIs= Subject key identifier: DF:65:D5:57:22:AD:DD:92:41:9F:1E:64:A9:65:82:3B:4D:B3:24:00 Certificate issuer: /CN=82c78627794e87ff9718db1b0df7eee2edb33595 Certificate serial: 019B7D5AD3A68866EFBB5CEB76D84ED9B5A7 Authority key identifier: 82:C7:86:27:79:4E:87:FF:97:18:DB:1B:0D:F7:EE:E2:ED:B3:35:95 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gseGJ3lOh_-XGNsbDffu4u2zNZU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/32XVVyKt3ZJBnx5kqWWCO02zJAA.roa Signing time: Fri 02 Jan 2026 06:17:42 +0000 ROA not before: Fri 02 Jan 2026 06:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3303 IP address blocks: 193.8.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/gseGJ3lOh_-XGNsbDffu4u2zNZU.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/gseGJ3lOh_-XGNsbDffu4u2zNZU.mft rsync://rpki.ripe.net/repository/DEFAULT/gseGJ3lOh_-XGNsbDffu4u2zNZU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:d3:a6:88:66:ef:bb:5c:eb:76:d8:4e:d9:b5:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82c78627794e87ff9718db1b0df7eee2edb33595 Validity Not Before: Jan 2 06:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df65d55722addd92419f1e64a965823b4db32400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b9:e2:b3:8c:c0:ff:9b:d6:af:84:d5:65:c0: d8:0c:59:75:25:34:6f:73:3a:cf:60:36:40:4e:8a: 7a:1a:9b:20:8b:f9:5c:83:0b:f3:cb:45:7d:4c:cc: 9f:5d:7f:34:bb:fb:e9:3d:b5:69:78:4f:f3:79:de: b3:a3:ec:ec:79:54:2f:a1:3b:ef:2a:1c:a8:69:bb: ef:2e:b9:1e:e2:2c:f2:df:ce:10:f5:01:8a:32:74: c1:fb:ce:ee:44:cf:4e:23:96:02:9f:f3:c7:41:e9: 53:b4:e3:4f:18:d8:cf:99:7a:a3:de:00:da:3e:3f: 0c:d1:86:0b:4b:93:17:db:f7:57:93:a6:5b:ca:67: 7c:c4:70:29:9c:f8:ae:1f:d3:6c:82:b8:ba:fb:21: 4a:a2:77:fa:13:f0:de:ce:6a:7c:e4:6a:5e:bf:74: 92:19:cd:ea:fa:8a:ef:16:79:6f:61:45:45:78:cd: 82:7a:f0:76:10:b8:31:42:47:b9:c8:ce:c7:bc:3e: 78:bf:01:b9:84:a1:82:30:ba:09:62:a2:72:e2:a8: 62:5a:5a:50:14:8c:a5:ac:ed:7c:69:d2:f9:d3:8b: e0:d5:fb:e8:3c:66:dd:99:0d:40:66:33:9c:9a:5e: 5e:94:81:3c:14:32:29:15:b5:20:d0:e0:ab:2f:df: 8f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:65:D5:57:22:AD:DD:92:41:9F:1E:64:A9:65:82:3B:4D:B3:24:00 X509v3 Authority Key Identifier: keyid:82:C7:86:27:79:4E:87:FF:97:18:DB:1B:0D:F7:EE:E2:ED:B3:35:95 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gseGJ3lOh_-XGNsbDffu4u2zNZU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/32XVVyKt3ZJBnx5kqWWCO02zJAA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e1849f-24a6-4f92-8063-626fc0403ac9/1/gseGJ3lOh_-XGNsbDffu4u2zNZU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.8.145.0/24 Signature Algorithm: sha256WithRSAEncryption 50:f1:ca:bd:d3:d9:17:ca:ea:cc:aa:3e:f1:9c:61:f1:a1:f6: 91:3c:07:ca:05:bc:7e:05:d9:2f:2b:67:ec:88:14:f5:b9:42: c6:de:eb:c2:eb:50:49:bb:c3:16:73:89:78:79:d4:23:5f:5f: e7:fc:e2:f9:32:ac:62:c8:20:de:29:4c:c9:c4:93:4d:fa:7b: c2:b0:19:7e:be:50:56:31:b8:82:6b:bc:7a:8b:11:ef:50:91: c4:08:c9:c8:b9:5f:64:b8:37:3a:f2:f0:ed:33:d4:12:ec:1c: b1:30:db:7a:f9:f9:f2:29:c8:3b:7f:43:79:ab:af:b6:b5:1d: e6:a0:4e:aa:0c:43:d3:ec:a5:83:5c:69:3e:a9:93:f6:0c:e5: 45:8c:36:65:94:88:20:fd:70:a8:2f:bd:fe:79:3b:74:d1:84: 74:40:f5:e4:52:e4:3d:6c:d4:84:50:7f:8b:d5:1a:10:3f:b8: 5e:55:f1:8d:bc:1b:1a:67:5f:9d:b5:d0:9c:7d:fa:b1:97:ea: b0:a4:e5:ff:7a:4e:34:07:98:71:37:f5:9c:13:49:d6:61:aa: 20:93:65:fc:bf:87:af:3f:be:75:95:10:5d:25:1d:63:a9:2b: b2:b6:46:8c:47:9b:f4:a1:3c:8e:a6:03:89:71:d7:a2:85:ad: 5b:d6:c9:e4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9WtOmiGbvu1zrdthO2bWnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyYzc4NjI3Nzk0ZTg3ZmY5NzE4ZGIxYjBkZjdlZWUyZWRi MzM1OTUwHhcNMjYwMTAyMDYxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjY1ZDU1NzIyYWRkZDkyNDE5ZjFlNjRhOTY1ODIzYjRkYjMyNDAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvrnis4zA/5vWr4TVZcDYDFl1JTRv czrPYDZATop6Gpsgi/lcgwvzy0V9TMyfXX80u/vpPbVpeE/zed6zo+zseVQvoTvv KhyoabvvLrke4izy384Q9QGKMnTB+87uRM9OI5YCn/PHQelTtONPGNjPmXqj3gDa Pj8M0YYLS5MX2/dXk6Zbymd8xHApnPiuH9Nsgri6+yFKonf6E/Dezmp85Gpev3SS Gc3q+orvFnlvYUVFeM2CevB2ELgxQke5yM7HvD54vwG5hKGCMLoJYqJy4qhiWlpQ FIylrO18adL504vg1fvoPGbdmQ1AZjOcml5elIE8FDIpFbUg0OCrL9+PdwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN9l1Vcird2SQZ8eZKllgjtNsyQAMB8GA1UdIwQY MBaAFILHhid5Tof/lxjbGw337uLtszWVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3NlR0ozbE9oXy1YR05zYkRmZnU0dTJ6TlpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9lMTg0OWYtMjRhNi00ZjkyLTgwNjMt NjI2ZmMwNDAzYWM5LzEvMzJYVlZ5S3QzWkpCbng1a3FXV0NPMDJ6SkFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy9lMTg0OWYtMjRhNi00ZjkyLTgwNjMtNjI2ZmMwNDAzYWM5 LzEvZ3NlR0ozbE9oXy1YR05zYkRmZnU0dTJ6TlpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQiRMA0G CSqGSIb3DQEBCwUAA4IBAQBQ8cq909kXyurMqj7xnGHxofaRPAfKBbx+BdkvK2fs iBT1uULG3uvC61BJu8MWc4l4edQjX1/n/OL5MqxiyCDeKUzJxJNN+nvCsBl+vlBW MbiCa7x6ixHvUJHECMnIuV9kuDc68vDtM9QS7ByxMNt6+fnyKcg7f0N5q6+2tR3m oE6qDEPT7KWDXGk+qZP2DOVFjDZllIgg/XCoL73+eTt00YR0QPXkUuQ9bNSEUH+L 1RoQP7heVfGNvBsaZ1+dtdCcffqxl+qwpOX/ek40B5hxN/WcE0nWYaogk2X8v4ev P751lRBdJR1jqSuytkaMR5v0oTyOpgOJcdeiha1b1snk -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:12 2026 by rpki-client