This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/rKJI_5vgHPazIibiny0M3pEZG_4.roa File: rKJI_5vgHPazIibiny0M3pEZG_4.roa (raw, json) Hash identifier: ZTXWO4j1M3rBY3Zk/wDufutDDLtgGbRt+vTWZKesVQ0= Subject key identifier: AC:A2:48:FF:9B:E0:1C:F6:B3:22:26:E2:9F:2D:0C:DE:91:19:1B:FE Certificate issuer: /CN=d44de659759b0274124a7b481d0976840b7ade06 Certificate serial: 019B7BA32FB0C9EFF15DD92F36AB9E09B43F Authority key identifier: D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/rKJI_5vgHPazIibiny0M3pEZG_4.roa Signing time: Thu 01 Jan 2026 22:17:30 +0000 ROA not before: Thu 01 Jan 2026 22:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39211 IP address blocks: 37.143.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.crl rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.mft rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:2f:b0:c9:ef:f1:5d:d9:2f:36:ab:9e:09:b4:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d44de659759b0274124a7b481d0976840b7ade06 Validity Not Before: Jan 1 22:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aca248ff9be01cf6b32226e29f2d0cde91191bfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:93:cc:c2:25:29:37:2a:cd:f6:ef:9a:60:56: e5:7e:64:fc:13:16:84:2d:0a:ca:c0:48:f7:90:0c: 8f:4e:a1:a8:9b:df:dd:8d:90:55:09:07:98:d5:cb: 7b:be:f0:7f:09:e3:35:80:57:c4:f8:5a:6c:0d:a4: 61:89:5d:41:21:ab:b0:20:f5:18:4d:1f:40:30:c4: 23:e6:90:14:e4:3a:7f:d4:cf:84:3f:6a:eb:c4:fd: f1:f1:01:c5:79:09:bb:d4:99:8f:3f:12:38:cb:07: c9:1b:03:b6:09:9c:fd:87:58:f5:ac:9f:31:49:35: 1a:42:ed:1b:c0:e7:73:c8:da:f9:46:53:6f:7f:51: 93:34:7f:d3:3f:b8:07:c3:1c:bc:09:f1:a4:80:21: fd:44:72:71:6c:cc:b5:ac:ac:38:10:5f:a0:21:09: d5:b3:f3:49:5f:18:ab:a3:92:7e:62:1f:14:4d:3f: d8:68:45:5c:3d:35:68:de:4f:fe:c2:e0:66:1d:30: bd:88:ac:93:9e:08:ce:27:56:08:57:5c:eb:0e:b9: 4f:fe:34:ad:f2:d9:be:1c:9a:71:84:f0:b8:bc:0f: 2d:72:28:14:12:45:6d:3a:3c:56:91:78:be:22:91: 80:f1:e7:1e:59:7c:1b:22:b8:39:31:68:00:88:3a: 10:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A2:48:FF:9B:E0:1C:F6:B3:22:26:E2:9F:2D:0C:DE:91:19:1B:FE X509v3 Authority Key Identifier: keyid:D4:4D:E6:59:75:9B:02:74:12:4A:7B:48:1D:09:76:84:0B:7A:DE:06 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1E3mWXWbAnQSSntIHQl2hAt63gY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/rKJI_5vgHPazIibiny0M3pEZG_4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/75216d-684b-47cc-a95e-db4d39dc4ec7/1/1E3mWXWbAnQSSntIHQl2hAt63gY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.143.174.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:bc:35:d0:72:42:4e:c1:12:94:4b:30:53:42:e3:0c:03:62: 74:51:38:4d:63:fd:71:07:9d:16:78:c9:c3:37:57:bd:42:4c: 5c:b5:b8:0a:ad:a3:67:57:81:cc:55:4a:f9:60:17:d9:0a:67: e2:98:15:12:ca:be:0b:2a:9b:49:d6:d9:13:06:73:91:a3:28: 7d:f2:8f:97:f6:9f:f7:3c:ce:d1:ca:27:03:19:38:9d:1a:d4: a0:70:bd:b9:6e:e5:a6:95:59:5c:ec:17:17:db:60:34:5d:63: 9a:4d:71:4a:77:2c:07:b1:5c:2e:89:69:fd:5d:4b:33:53:a0: de:d1:24:9f:47:c3:09:77:21:ae:bb:a7:af:a5:7a:01:3e:e4: 1c:98:99:00:2e:e4:b9:6a:10:18:78:3c:3f:e6:da:e3:85:d9: 5a:66:89:9b:ae:75:06:33:9e:2d:da:20:37:9b:87:18:df:b2: f9:2f:78:e7:8b:dc:e0:06:19:2a:a8:53:87:4f:b7:e0:91:a0: 44:62:c9:c3:8f:11:7c:d0:e8:28:62:9a:6f:e7:77:b0:d5:04: 32:45:75:00:6f:69:7c:26:69:ce:31:2d:7f:e9:69:53:54:33: f5:06:88:34:9d:5c:a0:db:24:e2:46:a6:93:6b:82:71:9b:ee: 9b:40:9d:6b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7oy+wye/xXdkvNqueCbQ/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NGRlNjU5NzU5YjAyNzQxMjRhN2I0ODFkMDk3Njg0MGI3 YWRlMDYwHhcNMjYwMTAxMjIxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2EyNDhmZjliZTAxY2Y2YjMyMjI2ZTI5ZjJkMGNkZTkxMTkxYmZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArpPMwiUpNyrN9u+aYFblfmT8ExaE LQrKwEj3kAyPTqGom9/djZBVCQeY1ct7vvB/CeM1gFfE+FpsDaRhiV1BIauwIPUY TR9AMMQj5pAU5Dp/1M+EP2rrxP3x8QHFeQm71JmPPxI4ywfJGwO2CZz9h1j1rJ8x STUaQu0bwOdzyNr5RlNvf1GTNH/TP7gHwxy8CfGkgCH9RHJxbMy1rKw4EF+gIQnV s/NJXxiro5J+Yh8UTT/YaEVcPTVo3k/+wuBmHTC9iKyTngjOJ1YIV1zrDrlP/jSt 8tm+HJpxhPC4vA8tcigUEkVtOjxWkXi+IpGA8eceWXwbIrg5MWgAiDoQBQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKyiSP+b4Bz2syIm4p8tDN6RGRv+MB8GA1UdIwQY MBaAFNRN5ll1mwJ0Ekp7SB0JdoQLet4GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUUzbVdYV2JBblFTU250SUhRbDJoQXQ2M2dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83NTIxNmQtNjg0Yi00N2NjLWE5NWUt ZGI0ZDM5ZGM0ZWM3LzEvcktKSV81dmdIUGF6SWliaW55ME0zcEVaR180LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy83NTIxNmQtNjg0Yi00N2NjLWE5NWUtZGI0ZDM5ZGM0ZWM3 LzEvMUUzbVdYV2JBblFTU250SUhRbDJoQXQ2M2dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJY+uMA0G CSqGSIb3DQEBCwUAA4IBAQBavDXQckJOwRKUSzBTQuMMA2J0UThNY/1xB50WeMnD N1e9QkxctbgKraNnV4HMVUr5YBfZCmfimBUSyr4LKptJ1tkTBnORoyh98o+X9p/3 PM7RyicDGTidGtSgcL25buWmlVlc7BcX22A0XWOaTXFKdywHsVwuiWn9XUszU6De 0SSfR8MJdyGuu6evpXoBPuQcmJkALuS5ahAYeDw/5trjhdlaZombrnUGM54t2iA3 m4cY37L5L3jni9zgBhkqqFOHT7fgkaBEYsnDjxF80OgoYppv53ew1QQyRXUAb2l8 JmnOMS1/6WlTVDP1Bog0nVyg2yTiRqaTa4Jxm+6bQJ1r -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:06 2026 by rpki-client