This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/231a4a-83de-42fd-9691-8062f241dd96/1/sCS20lWrmzeyxokn2zq4J5-PfaE.roa File: sCS20lWrmzeyxokn2zq4J5-PfaE.roa (raw, json) Hash identifier: VXAS157p8uRxJj1RoW4AvSv9fiFK2zSkA5/I6JVzL10= Subject key identifier: B0:24:B6:D2:55:AB:9B:37:B2:C6:89:27:DB:3A:B8:27:9F:8F:7D:A1 Certificate issuer: /CN=10a9650d7217ddb99f3bc00ebddd6bb2028512e7 Certificate serial: 019B7758C5B62306356CE8DF8301E681B43F Authority key identifier: 10:A9:65:0D:72:17:DD:B9:9F:3B:C0:0E:BD:DD:6B:B2:02:85:12:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EKllDXIX3bmfO8AOvd1rsgKFEuc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/231a4a-83de-42fd-9691-8062f241dd96/1/sCS20lWrmzeyxokn2zq4J5-PfaE.roa Signing time: Thu 01 Jan 2026 02:17:45 +0000 ROA not before: Thu 01 Jan 2026 02:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58027 IP address blocks: 192.94.233.0/24 maxlen: 24 2001:67c:1b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/231a4a-83de-42fd-9691-8062f241dd96/1/EKllDXIX3bmfO8AOvd1rsgKFEuc.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/231a4a-83de-42fd-9691-8062f241dd96/1/EKllDXIX3bmfO8AOvd1rsgKFEuc.mft rsync://rpki.ripe.net/repository/DEFAULT/EKllDXIX3bmfO8AOvd1rsgKFEuc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:c5:b6:23:06:35:6c:e8:df:83:01:e6:81:b4:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10a9650d7217ddb99f3bc00ebddd6bb2028512e7 Validity Not Before: Jan 1 02:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b024b6d255ab9b37b2c68927db3ab8279f8f7da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ce:46:3b:0a:ec:ac:7c:39:21:2d:0c:7b:b3: 79:14:2d:ce:fe:be:5c:11:c7:83:89:bf:30:31:c3: 25:4b:32:77:c6:8a:3a:5b:d1:da:05:ad:2c:d5:b6: c3:84:ae:bb:9c:a3:66:a4:59:55:79:ca:2f:65:0a: c8:6d:eb:6d:2a:93:94:a9:08:5d:f4:90:04:ae:17: 29:aa:b6:95:dc:4d:f8:c2:89:11:47:90:66:63:bd: 97:08:27:14:86:c5:c7:43:a3:bb:98:11:2f:60:6b: 14:65:76:b8:23:5c:fb:b1:9c:15:38:2e:4b:ff:5d: 99:5c:5f:fa:b2:06:89:d1:ef:2f:04:d0:8c:50:93: 80:3a:6a:db:43:28:13:bc:51:22:d9:0d:2c:93:a7: c9:3d:7c:de:5c:de:98:63:5f:2e:41:e3:1f:30:24: de:c6:16:15:a8:5d:2d:c5:f8:cb:2c:49:21:c6:05: 94:01:c3:c1:47:f1:f5:fd:6f:98:68:70:ce:a2:c7: ba:96:68:77:73:46:cc:a5:e6:b4:e7:65:ad:5c:b4: e5:55:23:0a:b3:44:68:ac:f2:1f:00:c4:45:bd:b9: 7a:34:55:ef:81:c1:c0:0e:18:19:58:96:54:37:3c: dc:1b:fe:36:5c:af:d2:af:dd:4d:ff:4b:28:54:b1: 8f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:24:B6:D2:55:AB:9B:37:B2:C6:89:27:DB:3A:B8:27:9F:8F:7D:A1 X509v3 Authority Key Identifier: keyid:10:A9:65:0D:72:17:DD:B9:9F:3B:C0:0E:BD:DD:6B:B2:02:85:12:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EKllDXIX3bmfO8AOvd1rsgKFEuc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/231a4a-83de-42fd-9691-8062f241dd96/1/sCS20lWrmzeyxokn2zq4J5-PfaE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/231a4a-83de-42fd-9691-8062f241dd96/1/EKllDXIX3bmfO8AOvd1rsgKFEuc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.94.233.0/24 IPv6: 2001:67c:1b00::/48 Signature Algorithm: sha256WithRSAEncryption 1e:eb:3f:1e:57:64:aa:e2:64:23:24:87:ca:dd:06:a1:92:fb: d3:f6:b7:c3:4e:f4:9f:f3:cb:1d:14:33:bb:d0:fb:c6:17:ac: a9:02:c1:41:c0:92:f7:83:3d:a1:82:c2:9e:bf:4d:c9:45:7e: 7e:12:24:a4:f8:e1:e0:fe:92:0c:26:80:82:d0:b4:fd:99:55: ce:a5:fd:af:a3:ef:18:2a:ad:57:68:8f:6f:13:99:c8:4c:f4: 02:49:e5:ba:13:ca:7d:25:55:ee:a1:7b:65:c3:7d:1c:7c:aa: 94:c4:9e:63:93:ee:d6:49:d2:a4:04:83:5c:72:de:fc:ef:2e: e0:95:6b:01:27:66:5f:5c:b2:c8:88:7d:9d:d9:11:ba:5c:81: 0b:db:8b:be:60:38:d8:b3:7f:2f:06:a3:c0:99:12:23:fb:3c: 52:43:e5:03:a7:c0:21:6c:81:25:6d:b5:3c:bb:ea:f1:35:40: 85:d9:4a:ef:0d:d2:e2:04:01:de:d7:25:51:80:67:9d:b0:08: 1f:5d:1f:c5:26:8f:08:aa:c9:b1:99:c0:52:5b:e1:fc:6a:72: b9:bb:98:f3:ac:c5:91:a3:df:6d:79:bd:a5:d4:b4:92:cc:d0: 8f:48:96:95:67:c2:67:30:b8:79:3c:da:92:d0:6d:71:cb:2e: 7d:37:89:b2 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3WMW2IwY1bOjfgwHmgbQ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwYTk2NTBkNzIxN2RkYjk5ZjNiYzAwZWJkZGQ2YmIyMDI4 NTEyZTcwHhcNMjYwMTAxMDIxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDI0YjZkMjU1YWI5YjM3YjJjNjg5MjdkYjNhYjgyNzlmOGY3ZGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqc5GOwrsrHw5IS0Me7N5FC3O/r5c EceDib8wMcMlSzJ3xoo6W9HaBa0s1bbDhK67nKNmpFlVecovZQrIbettKpOUqQhd 9JAErhcpqraV3E34wokRR5BmY72XCCcUhsXHQ6O7mBEvYGsUZXa4I1z7sZwVOC5L /12ZXF/6sgaJ0e8vBNCMUJOAOmrbQygTvFEi2Q0sk6fJPXzeXN6YY18uQeMfMCTe xhYVqF0txfjLLEkhxgWUAcPBR/H1/W+YaHDOose6lmh3c0bMpea052WtXLTlVSMK s0RorPIfAMRFvbl6NFXvgcHADhgZWJZUNzzcG/42XK/Sr91N/0soVLGPEwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLAkttJVq5s3ssaJJ9s6uCefj32hMB8GA1UdIwQY MBaAFBCpZQ1yF925nzvADr3da7IChRLnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUtsbERYSVgzYm1mTzhBT3ZkMXJzZ0tGRXVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi8yMzFhNGEtODNkZS00MmZkLTk2OTEt ODA2MmYyNDFkZDk2LzEvc0NTMjBsV3JtemV5eG9rbjJ6cTRKNS1QZmFFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi8yMzFhNGEtODNkZS00MmZkLTk2OTEtODA2MmYyNDFkZDk2 LzEvRUtsbERYSVgzYm1mTzhBT3ZkMXJzZ0tGRXVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwF7pMA8E AgACMAkDBwAgAQZ8GwAwDQYJKoZIhvcNAQELBQADggEBAB7rPx5XZKriZCMkh8rd BqGS+9P2t8NO9J/zyx0UM7vQ+8YXrKkCwUHAkveDPaGCwp6/TclFfn4SJKT44eD+ kgwmgILQtP2ZVc6l/a+j7xgqrVdoj28TmchM9AJJ5boTyn0lVe6he2XDfRx8qpTE nmOT7tZJ0qQEg1xy3vzvLuCVawEnZl9cssiIfZ3ZEbpcgQvbi75gONizfy8Go8CZ EiP7PFJD5QOnwCFsgSVttTy76vE1QIXZSu8N0uIEAd7XJVGAZ52wCB9dH8Umjwiq ybGZwFJb4fxqcrm7mPOsxZGj3215vaXUtJLM0I9IlpVnwmcwuHk82pLQbXHLLn03 ibI= -----END CERTIFICATE-----Generated at Sat Jan 10 04:16:18 2026 by rpki-client