This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/0i_alcfMXBsM8Yz7Pmg1_JjXkOU.roa File: 0i_alcfMXBsM8Yz7Pmg1_JjXkOU.roa (raw, json) Hash identifier: MMsMTbsCqDU1LtCGJGBX/vBCIrKWQpXi11BOEfnfMFE= Subject key identifier: D2:2F:DA:95:C7:CC:5C:1B:0C:F1:8C:FB:3E:68:35:FC:98:D7:90:E5 Certificate issuer: /CN=61d9f3ac50864d18ff268933c74e2a89aec6109d Certificate serial: 019B7FF200DBE046158092E61175351C6112 Authority key identifier: 61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/0i_alcfMXBsM8Yz7Pmg1_JjXkOU.roa Signing time: Fri 02 Jan 2026 18:22:04 +0000 ROA not before: Fri 02 Jan 2026 18:22:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214287 IP address blocks: 193.228.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:00:db:e0:46:15:80:92:e6:11:75:35:1c:61:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61d9f3ac50864d18ff268933c74e2a89aec6109d Validity Not Before: Jan 2 18:22:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d22fda95c7cc5c1b0cf18cfb3e6835fc98d790e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:55:3d:e6:17:fe:b9:19:c6:ae:63:e9:2e:a8: d4:40:02:df:12:7a:99:c7:26:7e:82:cc:82:cf:fd: bd:df:16:9a:f5:96:16:b3:02:b7:af:05:d2:1f:85: 36:e5:35:9d:72:db:5b:60:29:1f:cb:ab:be:87:d2: ae:4a:5c:69:e4:14:9d:45:13:b9:c9:51:23:8e:e4: 0c:9b:16:92:56:2c:58:ed:e6:1a:17:84:2d:e0:d0: 34:a7:39:66:01:cc:e0:fa:2a:59:90:b6:4e:c8:bb: cd:a6:ab:48:6f:e9:73:82:31:02:8a:c1:c4:ad:9a: 7b:95:09:29:5a:0b:08:f9:d5:28:2f:72:6f:b3:ab: 63:ee:b7:ca:2b:ff:95:76:22:62:71:f6:b8:d4:24: 94:7c:c9:16:9f:cc:07:e2:ff:3c:c0:28:c8:68:48: 75:3d:4a:7b:70:c0:3e:6b:ed:14:12:05:e1:33:e4: 2c:15:fe:eb:7f:9f:85:04:ba:ed:be:0c:d4:ff:c2: 07:59:ce:1b:11:20:df:43:94:71:68:63:7a:54:b0: 0e:64:a1:fb:2b:86:a6:55:de:6f:a0:a0:fc:cc:3f: 84:f9:c3:90:6b:79:2d:c4:48:86:cd:0c:ea:c9:42: a0:d1:43:e2:39:6f:05:c6:12:c1:22:11:b5:6a:c7: cc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2F:DA:95:C7:CC:5C:1B:0C:F1:8C:FB:3E:68:35:FC:98:D7:90:E5 X509v3 Authority Key Identifier: keyid:61:D9:F3:AC:50:86:4D:18:FF:26:89:33:C7:4E:2A:89:AE:C6:10:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdnzrFCGTRj_Jokzx04qia7GEJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/0i_alcfMXBsM8Yz7Pmg1_JjXkOU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/32c807-30ae-4b22-905f-dc33eaa10d28/1/YdnzrFCGTRj_Jokzx04qia7GEJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.228.137.0/24 Signature Algorithm: sha256WithRSAEncryption 45:7a:7b:96:cd:ef:90:9c:a6:c6:1a:3f:06:d3:d7:20:7e:75: 44:fa:e3:e3:ba:5b:a1:e2:d6:d9:bd:50:8b:b0:6d:45:c6:0d: 9b:aa:99:b3:29:8c:85:1e:2f:4a:1e:1b:49:ab:a7:5e:3d:51: a0:77:aa:06:34:1f:35:c7:cb:8b:93:01:4b:59:00:25:72:b6: 27:e8:d6:6a:88:e5:1c:c6:8e:13:93:17:43:9f:13:96:a5:b1: 48:eb:2c:10:23:99:88:13:ec:54:f0:3e:41:c8:b8:38:4b:54: 02:dc:7a:85:4b:af:e4:e7:07:01:39:29:80:21:19:76:8f:94: fa:f1:c8:8b:5a:89:de:66:b0:e4:78:7a:cd:25:e3:27:8b:8d: 4c:e1:e3:6d:05:2f:12:6d:34:55:16:b2:00:8e:9d:f5:aa:65: b1:40:d5:35:9d:50:d2:1b:ba:7e:1f:8e:b9:0e:09:4c:44:42: 6c:07:92:05:78:4b:97:36:cf:a5:e8:9b:f4:38:20:c8:a8:c0: b4:39:9a:e9:43:b1:bc:67:69:e4:e1:5d:4e:03:f2:58:10:4e: 74:0e:8e:0e:eb:2a:a1:72:ae:68:01:9d:5c:41:7e:06:24:6c: 9c:74:f0:f6:67:ca:19:23:c9:91:ab:ed:44:da:57:78:41:5d: c0:e2:20:05 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8gDb4EYVgJLmEXU1HGESMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYxZDlmM2FjNTA4NjRkMThmZjI2ODkzM2M3NGUyYTg5YWVj NjEwOWQwHhcNMjYwMTAyMTgyMjA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjJmZGE5NWM3Y2M1YzFiMGNmMThjZmIzZTY4MzVmYzk4ZDc5MGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FU95hf+uRnGrmPpLqjUQALfEnqZ xyZ+gsyCz/293xaa9ZYWswK3rwXSH4U25TWdcttbYCkfy6u+h9KuSlxp5BSdRRO5 yVEjjuQMmxaSVixY7eYaF4Qt4NA0pzlmAczg+ipZkLZOyLvNpqtIb+lzgjECisHE rZp7lQkpWgsI+dUoL3Jvs6tj7rfKK/+VdiJicfa41CSUfMkWn8wH4v88wCjIaEh1 PUp7cMA+a+0UEgXhM+QsFf7rf5+FBLrtvgzU/8IHWc4bESDfQ5RxaGN6VLAOZKH7 K4amVd5voKD8zD+E+cOQa3ktxEiGzQzqyUKg0UPiOW8FxhLBIhG1asfMfwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNIv2pXHzFwbDPGM+z5oNfyY15DlMB8GA1UdIwQY MBaAFGHZ86xQhk0Y/yaJM8dOKomuxhCdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWWRuenJGQ0dUUmpfSm9rengwNHFpYTdHRUowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8zMmM4MDctMzBhZS00YjIyLTkwNWYt ZGMzM2VhYTEwZDI4LzEvMGlfYWxjZk1YQnNNOFl6N1BtZzFfSmpYa09VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8zMmM4MDctMzBhZS00YjIyLTkwNWYtZGMzM2VhYTEwZDI4 LzEvWWRuenJGQ0dUUmpfSm9rengwNHFpYTdHRUowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAweSJMA0G CSqGSIb3DQEBCwUAA4IBAQBFenuWze+QnKbGGj8G09cgfnVE+uPjuluh4tbZvVCL sG1Fxg2bqpmzKYyFHi9KHhtJq6dePVGgd6oGNB81x8uLkwFLWQAlcrYn6NZqiOUc xo4TkxdDnxOWpbFI6ywQI5mIE+xU8D5ByLg4S1QC3HqFS6/k5wcBOSmAIRl2j5T6 8ciLWoneZrDkeHrNJeMni41M4eNtBS8SbTRVFrIAjp31qmWxQNU1nVDSG7p+H465 DglMREJsB5IFeEuXNs+l6Jv0OCDIqMC0OZrpQ7G8Z2nk4V1OA/JYEE50Do4O6yqh cq5oAZ1cQX4GJGycdPD2Z8oZI8mRq+1E2ld4QV3A4iAF -----END CERTIFICATE-----Generated at Fri Jan 9 00:08:07 2026 by rpki-client