This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/t83QwmnsF94N1e2quVeWFqxv3Q4.roa File: t83QwmnsF94N1e2quVeWFqxv3Q4.roa (raw, json) Hash identifier: S00r80MkvAcmYicBdHFKql/0j/7ix5B+Lwxl0Q6uMXI= Subject key identifier: B7:CD:D0:C2:69:EC:17:DE:0D:D5:ED:AA:B9:57:96:16:AC:6F:DD:0E Certificate issuer: /CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1 Certificate serial: 019B7AC950A11FAFA2FBD859A2D78446B2FC Authority key identifier: A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/t83QwmnsF94N1e2quVeWFqxv3Q4.roa Signing time: Thu 01 Jan 2026 18:19:32 +0000 ROA not before: Thu 01 Jan 2026 18:19:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58309 IP address blocks: 176.120.32.0/19 maxlen: 19 185.46.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.mft rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:50:a1:1f:af:a2:fb:d8:59:a2:d7:84:46:b2:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4f5533a527b264ca2e8373285d780d33a2bd0a1 Validity Not Before: Jan 1 18:19:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b7cdd0c269ec17de0dd5edaab9579616ac6fdd0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a2:de:2c:f1:57:88:fd:36:9e:80:d7:32:bb: 79:dd:f7:2d:e9:5d:9c:0b:f6:e8:5b:7b:80:35:48: d8:43:08:69:1f:ac:f0:f1:8d:03:98:f9:6a:53:7d: 6f:90:64:15:a6:18:4a:73:89:28:dd:ea:fb:48:4c: 67:d4:35:b5:8c:cd:db:db:58:d1:62:fc:f4:77:ec: 0a:9d:49:6c:41:60:b4:79:50:3e:28:00:f3:00:42: 34:93:ec:cd:93:85:f7:90:10:97:1e:2a:a7:f6:f4: 33:8d:89:7e:e7:c0:3e:b4:a8:30:ae:43:6b:5c:ef: 15:29:1a:3e:46:69:41:20:3e:9c:26:96:52:f4:30: ea:25:43:b1:5a:81:77:bd:d2:73:5b:79:74:b5:83: b2:31:a2:65:89:29:5d:c1:ce:c9:07:f5:21:3b:b3: 15:41:c6:34:c4:ac:5a:68:7e:c1:78:19:d2:88:dc: 07:60:a2:ec:63:f3:4a:93:c8:73:53:82:e1:f2:81: b3:9b:04:99:97:11:da:34:b6:33:69:25:83:b6:6f: b1:07:71:73:2c:a3:73:48:bc:98:6a:65:a8:cf:b7: 58:3c:49:c4:f3:65:5c:b7:a0:69:1d:a9:94:e9:2c: 33:69:5e:b6:06:08:34:69:87:78:33:40:12:b4:96: 0d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CD:D0:C2:69:EC:17:DE:0D:D5:ED:AA:B9:57:96:16:AC:6F:DD:0E X509v3 Authority Key Identifier: keyid:A4:F5:53:3A:52:7B:26:4C:A2:E8:37:32:85:D7:80:D3:3A:2B:D0:A1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/t83QwmnsF94N1e2quVeWFqxv3Q4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/afc3c8-e952-4070-a546-424462bc949b/1/pPVTOlJ7Jkyi6DcyhdeA0zor0KE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.120.32.0/19 185.46.188.0/22 Signature Algorithm: sha256WithRSAEncryption 57:0c:ad:be:76:5c:d5:98:5a:73:15:0b:cf:3c:30:a4:56:66: b7:f0:0f:5b:8a:8a:a3:22:9c:1d:2f:f1:52:98:cd:f8:81:3b: 5b:8b:36:b9:fe:3e:5c:19:21:07:89:5c:f9:76:e0:72:ef:1b: d2:dc:73:53:fd:7d:c5:f9:66:24:75:ca:1f:9b:6c:da:69:8b: d4:a5:bb:8c:a3:37:a7:c9:7e:c3:ef:9a:c2:44:27:d3:a8:76: 7d:cf:e5:d4:f0:7b:42:76:90:9f:b9:8b:00:ec:64:c2:ae:e0: 46:ae:84:42:46:be:a5:dd:9c:aa:0b:12:9d:22:1f:85:2b:7b: 64:f4:f5:59:56:61:1f:25:96:14:d9:a5:eb:e0:61:2f:e8:33: f8:22:2c:31:a3:60:0e:44:51:11:8f:f5:3b:ae:49:54:78:b6: 60:75:51:2a:b0:67:cc:60:cd:3b:b6:35:c1:65:98:0a:a7:9c: 7b:a5:6b:59:3c:28:52:cf:be:2a:a6:f2:60:0a:5a:ff:55:55: ce:cf:a0:26:4d:12:77:3f:d8:b7:f8:3b:47:35:de:50:e3:35: 94:49:ca:e4:1f:7e:8e:04:2a:6e:dc:a3:d8:7a:93:16:0e:ab: ba:bf:4e:26:9f:71:ba:b7:7c:da:24:2e:0f:f9:55:42:a8:be: 95:2e:22:32 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yVChH6+i+9hZoteERrL8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZjU1MzNhNTI3YjI2NGNhMmU4MzczMjg1ZDc4MGQzM2Ey YmQwYTEwHhcNMjYwMTAxMTgxOTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiN2NkZDBjMjY5ZWMxN2RlMGRkNWVkYWFiOTU3OTYxNmFjNmZkZDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjqLeLPFXiP02noDXMrt53fct6V2c C/boW3uANUjYQwhpH6zw8Y0DmPlqU31vkGQVphhKc4ko3er7SExn1DW1jM3b21jR Yvz0d+wKnUlsQWC0eVA+KADzAEI0k+zNk4X3kBCXHiqn9vQzjYl+58A+tKgwrkNr XO8VKRo+RmlBID6cJpZS9DDqJUOxWoF3vdJzW3l0tYOyMaJliSldwc7JB/UhO7MV QcY0xKxaaH7BeBnSiNwHYKLsY/NKk8hzU4Lh8oGzmwSZlxHaNLYzaSWDtm+xB3Fz LKNzSLyYamWoz7dYPEnE82Vct6BpHamU6SwzaV62Bgg0aYd4M0AStJYNhwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLfN0MJp7BfeDdXtqrlXlhasb90OMB8GA1UdIwQY MBaAFKT1UzpSeyZMoug3MoXXgNM6K9ChMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYt NDI0NDYyYmM5NDliLzEvdDgzUXdtbnNGOTROMWUycXVWZVdGcXh2M1E0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9hZmMzYzgtZTk1Mi00MDcwLWE1NDYtNDI0NDYyYmM5NDli LzEvcFBWVE9sSjdKa3lpNkRjeWhkZUEwem9yMEtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQFsHggAwQC uS68MA0GCSqGSIb3DQEBCwUAA4IBAQBXDK2+dlzVmFpzFQvPPDCkVma38A9bioqj IpwdL/FSmM34gTtbiza5/j5cGSEHiVz5duBy7xvS3HNT/X3F+WYkdcofm2zaaYvU pbuMozenyX7D75rCRCfTqHZ9z+XU8HtCdpCfuYsA7GTCruBGroRCRr6l3ZyqCxKd Ih+FK3tk9PVZVmEfJZYU2aXr4GEv6DP4Iiwxo2AORFERj/U7rklUeLZgdVEqsGfM YM07tjXBZZgKp5x7pWtZPChSz74qpvJgClr/VVXOz6AmTRJ3P9i3+DtHNd5Q4zWU ScrkH36OBCpu3KPYepMWDqu6v04mn3G6t3zaJC4P+VVCqL6VLiIy -----END CERTIFICATE-----Generated at Sun Jan 25 16:37:58 2026 by rpki-client