This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/eSb5SaQiTFGxJv1r1Rg9Zwy6k48.roa File: eSb5SaQiTFGxJv1r1Rg9Zwy6k48.roa (raw, json) Hash identifier: 3gfCITmerObL4KZJwGEUq8/MM5Wu7GSAZmrfKVP18TY= Subject key identifier: 79:26:F9:49:A4:22:4C:51:B1:26:FD:6B:D5:18:3D:67:0C:BA:93:8F Certificate issuer: /CN=b8207697d0b7c24199e6dd1282b49b56cef0244f Certificate serial: 019B7EA55D9E72ECDE02BC869D3D4274A448 Authority key identifier: B8:20:76:97:D0:B7:C2:41:99:E6:DD:12:82:B4:9B:56:CE:F0:24:4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/eSb5SaQiTFGxJv1r1Rg9Zwy6k48.roa Signing time: Fri 02 Jan 2026 12:18:45 +0000 ROA not before: Fri 02 Jan 2026 12:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60651 IP address blocks: 194.38.8.0/24 maxlen: 24 194.38.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.mft rsync://rpki.ripe.net/repository/DEFAULT/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:5d:9e:72:ec:de:02:bc:86:9d:3d:42:74:a4:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b8207697d0b7c24199e6dd1282b49b56cef0244f Validity Not Before: Jan 2 12:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7926f949a4224c51b126fd6bd5183d670cba938f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:81:e8:c8:90:93:77:59:d0:ec:ce:c1:ce:2f: 4a:a6:18:66:eb:9f:e2:3a:0a:d9:2b:b7:39:6d:4d: 69:4e:bb:fd:99:7d:e8:82:ce:02:27:86:45:1a:b2: d0:96:22:6d:54:70:0f:4c:33:27:63:04:b3:74:39: 4e:3a:32:a7:5f:55:fc:ff:a6:90:01:b1:62:95:64: c6:67:0b:3e:0c:10:ac:2c:36:fe:04:c4:34:98:77: f8:34:a2:a4:7f:1c:60:35:aa:69:1f:4f:df:99:63: 4e:9a:eb:71:f4:be:d8:0c:a4:bd:37:df:13:ba:39: 01:72:1c:0a:30:db:2f:13:7d:6b:8a:2a:e9:e6:e2: d5:d8:9a:f3:3b:91:9d:70:49:8b:38:b0:0d:f7:a7: 65:d4:fe:c5:42:c3:bd:b3:fa:ac:87:54:ea:3f:83: 0e:ed:90:f0:6e:2f:0d:8c:9d:22:c6:c4:9c:b9:0b: 34:85:ce:a3:c5:00:f3:46:02:d9:0a:55:2b:13:c5: 45:bd:8c:c6:f8:03:d1:94:a7:3f:cb:b2:04:7b:ca: 78:fa:c5:0b:0b:50:63:51:37:f5:ea:ff:54:a1:7f: ea:bf:c8:af:c6:53:1b:34:a2:4d:67:b9:cc:c2:43: b1:f2:6a:c4:1f:da:c3:06:2a:bc:f0:d1:2f:ff:1f: 7f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:26:F9:49:A4:22:4C:51:B1:26:FD:6B:D5:18:3D:67:0C:BA:93:8F X509v3 Authority Key Identifier: keyid:B8:20:76:97:D0:B7:C2:41:99:E6:DD:12:82:B4:9B:56:CE:F0:24:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/eSb5SaQiTFGxJv1r1Rg9Zwy6k48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/b993ef-aaa7-400c-8db7-96d304c8db02/1/uCB2l9C3wkGZ5t0SgrSbVs7wJE8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.38.8.0/24 194.38.10.0/24 Signature Algorithm: sha256WithRSAEncryption dd:cb:2f:77:1a:88:6e:21:5a:f8:33:b8:76:d8:46:47:fb:60: e9:a1:27:c0:51:b8:77:7b:45:7f:47:94:d8:08:c0:06:96:a4: 60:b0:9b:aa:59:99:9c:c5:f8:63:d8:cf:9e:30:ce:9b:ee:5b: 84:67:13:e0:7e:41:99:60:99:e7:a2:d9:90:b9:94:9c:0a:2a: b5:30:7e:03:d0:e8:1b:77:3f:8a:83:7f:52:55:93:b4:44:49: a9:5b:db:e9:58:5e:37:88:70:b5:4e:2f:4b:4c:94:f4:cc:07: e7:b7:47:e5:6d:63:24:46:60:ec:78:e7:94:a5:82:cb:17:b2: c9:ab:7f:ee:ff:8c:d3:eb:ac:7a:0b:e1:8b:d5:7b:c6:e6:83: 11:ef:7c:ec:bd:14:1d:97:63:ac:d2:d0:7c:09:d8:06:f1:21: 37:0c:56:69:c6:00:17:cd:05:65:a9:b7:41:e9:ad:22:f0:e6: 4c:a9:74:69:29:e8:7b:00:58:48:25:f5:78:56:fe:b3:a4:45: 6c:be:d3:56:55:ac:b8:4c:4e:b4:3d:a1:e1:2b:9e:d1:4e:e6: 84:86:4d:45:13:ef:af:55:b9:71:9e:38:52:11:9c:92:d6:db: ca:39:bb:df:cc:2a:44:90:9a:5a:77:5b:bd:c2:a1:0a:bc:56: b7:36:c8:27 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pV2ecuzeAryGnT1CdKRIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI4MjA3Njk3ZDBiN2MyNDE5OWU2ZGQxMjgyYjQ5YjU2Y2Vm MDI0NGYwHhcNMjYwMTAyMTIxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTI2Zjk0OWE0MjI0YzUxYjEyNmZkNmJkNTE4M2Q2NzBjYmE5MzhmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4HoyJCTd1nQ7M7Bzi9Kphhm65/i OgrZK7c5bU1pTrv9mX3ogs4CJ4ZFGrLQliJtVHAPTDMnYwSzdDlOOjKnX1X8/6aQ AbFilWTGZws+DBCsLDb+BMQ0mHf4NKKkfxxgNappH0/fmWNOmutx9L7YDKS9N98T ujkBchwKMNsvE31riirp5uLV2JrzO5GdcEmLOLAN96dl1P7FQsO9s/qsh1TqP4MO 7ZDwbi8NjJ0ixsScuQs0hc6jxQDzRgLZClUrE8VFvYzG+APRlKc/y7IEe8p4+sUL C1BjUTf16v9UoX/qv8ivxlMbNKJNZ7nMwkOx8mrEH9rDBiq88NEv/x9/yQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHkm+UmkIkxRsSb9a9UYPWcMupOPMB8GA1UdIwQY MBaAFLggdpfQt8JBmebdEoK0m1bO8CRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdUNCMmw5QzN3a0daNXQwU2dyU2JWczd3SkU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi9iOTkzZWYtYWFhNy00MDBjLThkYjct OTZkMzA0YzhkYjAyLzEvZVNiNVNhUWlURkd4SnYxcjFSZzlad3k2azQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi9iOTkzZWYtYWFhNy00MDBjLThkYjctOTZkMzA0YzhkYjAy LzEvdUNCMmw5QzN3a0daNXQwU2dyU2JWczd3SkU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwiYIAwQA wiYKMA0GCSqGSIb3DQEBCwUAA4IBAQDdyy93GohuIVr4M7h22EZH+2DpoSfAUbh3 e0V/R5TYCMAGlqRgsJuqWZmcxfhj2M+eMM6b7luEZxPgfkGZYJnnotmQuZScCiq1 MH4D0Ogbdz+Kg39SVZO0REmpW9vpWF43iHC1Ti9LTJT0zAfnt0flbWMkRmDseOeU pYLLF7LJq3/u/4zT66x6C+GL1XvG5oMR73zsvRQdl2Os0tB8CdgG8SE3DFZpxgAX zQVlqbdB6a0i8OZMqXRpKeh7AFhIJfV4Vv6zpEVsvtNWVay4TE60PaHhK57RTuaE hk1FE++vVblxnjhSEZyS1tvKObvfzCpEkJpad1u9wqEKvFa3Nsgn -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:03 2026 by rpki-client