This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Saz89nDiKKBFldhbxX1_mZTJqqE.roa File: Saz89nDiKKBFldhbxX1_mZTJqqE.roa (raw, json) Hash identifier: aWD31cz1OLt1GFsfLxRD9SQhYwbHqaxc3cMeM8q+gFU= Subject key identifier: 49:AC:FC:F6:70:E2:28:A0:45:95:D8:5B:C5:7D:7F:99:94:C9:AA:A1 Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Certificate serial: 019B7D5CBFA33438C3230C2DC7F695F1F6F5 Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Saz89nDiKKBFldhbxX1_mZTJqqE.roa Signing time: Fri 02 Jan 2026 06:19:48 +0000 ROA not before: Fri 02 Jan 2026 06:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59881 IP address blocks: 193.58.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.mft rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:bf:a3:34:38:c3:23:0c:2d:c7:f6:95:f1:f6:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b Validity Not Before: Jan 2 06:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=49acfcf670e228a04595d85bc57d7f9994c9aaa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:79:00:2e:a3:ac:0e:fc:8d:12:fe:c2:7f:d7: 07:77:22:b8:ae:95:93:8c:b7:6b:20:2d:11:12:25: 2f:a3:67:97:6c:54:6e:11:cd:a7:c4:8d:33:a7:90: bb:7e:d9:4f:e8:a8:cb:e2:ee:13:03:b0:ad:5f:61: 1b:46:ba:b0:8c:c4:fa:bc:12:6c:83:da:07:b5:89: f7:aa:e8:0a:19:cc:10:f0:b4:a2:09:34:85:51:1b: e3:7e:97:f7:b1:c0:40:3f:0b:30:4c:85:b9:51:22: ec:4e:bb:60:6b:c5:54:38:cd:05:ee:43:91:21:02: d0:34:81:e0:24:19:7b:e4:0a:b0:83:0f:e1:6a:78: 9d:26:4b:f0:e1:99:5b:d8:34:26:81:3d:19:03:98: ee:c7:b1:cd:ab:95:05:48:da:e3:29:7d:2d:20:ad: 17:87:57:8e:76:d7:df:18:97:0c:42:f2:1f:6c:98: 60:e9:34:aa:07:2e:7f:1d:78:7d:54:b9:c6:0b:7d: 3b:7c:45:8c:a9:38:52:4d:32:98:0b:c3:1b:2d:9f: 41:7f:7f:cd:76:ff:a7:33:84:ec:52:60:f8:ef:e1: 70:a9:57:8a:a5:ad:28:88:c3:95:91:5a:da:5a:13: a8:21:e8:4e:f2:6c:43:13:60:ea:8d:05:64:33:76: 38:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AC:FC:F6:70:E2:28:A0:45:95:D8:5B:C5:7D:7F:99:94:C9:AA:A1 X509v3 Authority Key Identifier: keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Saz89nDiKKBFldhbxX1_mZTJqqE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.58.239.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:22:4b:5b:0b:fa:ac:c8:8a:f6:7c:80:b7:9e:39:1a:5b:f5: ed:fe:af:26:da:28:d9:21:b0:d8:d1:5b:37:93:a5:91:6e:d7: e7:0e:10:d3:7b:f6:02:81:c0:c3:62:14:c2:fd:e6:35:8b:93: f3:c8:c6:0d:bf:47:6f:ee:83:d5:a1:8e:58:9f:68:dc:48:e3: 3f:90:62:f6:c5:28:bb:bd:45:26:82:6b:ee:28:52:75:aa:13: d2:f5:aa:fc:f9:e9:a4:c1:b1:48:62:fe:93:8a:a1:ad:5c:42: d1:15:7c:83:21:d1:e2:e4:e4:3b:c4:ad:b0:28:44:9b:57:6e: 25:da:52:5c:25:79:87:b6:ba:2b:7f:3f:a2:65:e5:b7:bb:60: 65:1b:06:b6:fe:01:4c:55:66:d1:9e:42:25:c3:60:09:8d:34: bd:80:2c:c3:c3:46:2d:40:4e:29:d4:59:bc:8c:09:f2:8e:2e: 74:b3:20:c7:2c:c9:24:b7:32:b8:26:e6:d6:90:56:06:ce:2f: 60:ef:1e:cb:16:1c:b5:4b:95:66:57:24:b3:28:b5:14:bf:9e: 5b:76:0e:5e:a4:de:5e:ec:ba:3e:a3:53:1f:ca:18:df:95:ab: 33:7f:9e:0e:5a:57:28:a3:c4:97:48:9c:c8:3e:6e:24:5a:d7: 6c:6b:e5:fe -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XL+jNDjDIwwtx/aV8fb1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw ZmFkOWIwHhcNMjYwMTAyMDYxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OWFjZmNmNjcwZTIyOGEwNDU5NWQ4NWJjNTdkN2Y5OTk0YzlhYWExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA23kALqOsDvyNEv7Cf9cHdyK4rpWT jLdrIC0REiUvo2eXbFRuEc2nxI0zp5C7ftlP6KjL4u4TA7CtX2EbRrqwjMT6vBJs g9oHtYn3qugKGcwQ8LSiCTSFURvjfpf3scBAPwswTIW5USLsTrtga8VUOM0F7kOR IQLQNIHgJBl75Aqwgw/hanidJkvw4Zlb2DQmgT0ZA5jux7HNq5UFSNrjKX0tIK0X h1eOdtffGJcMQvIfbJhg6TSqBy5/HXh9VLnGC307fEWMqThSTTKYC8MbLZ9Bf3/N dv+nM4TsUmD47+FwqVeKpa0oiMOVkVraWhOoIehO8mxDE2DqjQVkM3Y4ywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEms/PZw4iigRZXYW8V9f5mUyaqhMB8GA1UdIwQY MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt ZGM1ZWM3NDhmNmE1LzEvU2F6ODluRGlLS0JGbGRoYnhYMV9tWlRKcXFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1 LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwTrvMA0G CSqGSIb3DQEBCwUAA4IBAQA/IktbC/qsyIr2fIC3njkaW/Xt/q8m2ijZIbDY0Vs3 k6WRbtfnDhDTe/YCgcDDYhTC/eY1i5PzyMYNv0dv7oPVoY5Yn2jcSOM/kGL2xSi7 vUUmgmvuKFJ1qhPS9ar8+emkwbFIYv6TiqGtXELRFXyDIdHi5OQ7xK2wKESbV24l 2lJcJXmHtrorfz+iZeW3u2BlGwa2/gFMVWbRnkIlw2AJjTS9gCzDw0YtQE4p1Fm8 jAnyji50syDHLMkktzK4JubWkFYGzi9g7x7LFhy1S5VmVySzKLUUv55bdg5epN5e 7Lo+o1Mfyhjflaszf54OWlcoo8SXSJzIPm4kWtdsa+X+ -----END CERTIFICATE-----Generated at Sun Jan 11 23:53:28 2026 by rpki-client