This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/41tQWysTKuHBVA6VmoXFjeGNGS4.roa File: 41tQWysTKuHBVA6VmoXFjeGNGS4.roa (raw, json) Hash identifier: SbGJ4pnWOEPVdm/1K14ZaMe19ybQ3/PrMA7+GeRh8oY= Subject key identifier: E3:5B:50:5B:2B:13:2A:E1:C1:54:0E:95:9A:85:C5:8D:E1:8D:19:2E Certificate issuer: /CN=63444210ea08ac529878d51917e3b30054d620d1 Certificate serial: 019B7F8098F69A0DB843BC0B6F98C3FF16D5 Authority key identifier: 63:44:42:10:EA:08:AC:52:98:78:D5:19:17:E3:B3:00:54:D6:20:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/41tQWysTKuHBVA6VmoXFjeGNGS4.roa Signing time: Fri 02 Jan 2026 16:18:12 +0000 ROA not before: Fri 02 Jan 2026 16:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44957 IP address blocks: 2.33.0.0/16 maxlen: 16 93.151.0.0/17 maxlen: 17 93.179.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/Y0RCEOoIrFKYeNUZF-OzAFTWINE.crl rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/Y0RCEOoIrFKYeNUZF-OzAFTWINE.mft rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:80:98:f6:9a:0d:b8:43:bc:0b:6f:98:c3:ff:16:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63444210ea08ac529878d51917e3b30054d620d1 Validity Not Before: Jan 2 16:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e35b505b2b132ae1c1540e959a85c58de18d192e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4f:f7:e5:3b:f4:0c:ad:a5:7a:8b:d6:72:6e: e0:65:e8:a8:95:85:d3:8e:09:5f:ee:2b:31:33:ec: 52:4e:7b:42:1a:56:bd:4b:d5:b5:6a:92:20:e0:6c: a5:bc:dc:a2:2e:da:cf:56:5f:45:7b:88:77:66:ee: ac:00:a7:1f:3f:38:47:18:46:07:ca:4e:79:82:b1: 35:ab:c1:17:e6:c2:ba:c5:f9:58:6b:09:25:20:2d: 30:15:f5:ee:19:ba:76:86:4f:ba:3e:28:a5:e4:01: b9:81:cc:1f:e2:40:e9:97:6f:b8:c0:7e:60:c6:9e: f8:1b:01:94:6f:29:b2:ae:bf:ae:5f:51:b8:7e:e6: ea:6f:bf:04:50:f0:de:32:80:87:46:87:75:90:b1: ff:3b:0a:d8:6e:7d:31:98:45:05:49:4d:b0:58:e0: ab:6e:2e:1c:ed:e1:b6:37:a1:69:83:41:e0:50:c5: 9f:10:02:02:b5:11:18:af:70:f6:f1:4a:f6:b6:11: ad:cd:70:d6:26:e5:34:e9:a4:9b:5c:bf:23:6e:40: ce:f8:df:91:75:44:49:65:98:03:6a:ac:d7:3c:a1: 93:4c:1c:bf:f2:46:60:77:aa:8f:64:a6:4f:32:f5: b8:72:42:32:98:8a:c7:4f:76:2c:e9:ce:0d:2b:79: 9c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5B:50:5B:2B:13:2A:E1:C1:54:0E:95:9A:85:C5:8D:E1:8D:19:2E X509v3 Authority Key Identifier: keyid:63:44:42:10:EA:08:AC:52:98:78:D5:19:17:E3:B3:00:54:D6:20:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y0RCEOoIrFKYeNUZF-OzAFTWINE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/41tQWysTKuHBVA6VmoXFjeGNGS4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/edea6e-66cc-4fb1-a454-fe837f98e026/1/Y0RCEOoIrFKYeNUZF-OzAFTWINE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.33.0.0/16 93.151.0.0/17 93.179.185.0/24 Signature Algorithm: sha256WithRSAEncryption 64:9e:57:c5:3f:d3:9f:0a:a7:ed:b8:b5:7f:91:85:17:d5:40: 52:d1:dd:0e:ca:e1:c7:cf:43:48:47:0d:3c:8e:da:47:ca:ca: b8:40:61:de:e5:b4:c4:0d:65:10:87:4f:a0:0d:e7:fd:14:93: 60:e4:b0:62:73:32:06:47:d5:05:48:a0:98:48:68:80:39:b6: 98:f9:51:17:d2:4d:48:0a:99:b7:0b:bd:a1:24:b8:04:6f:70: 1c:d0:ef:48:23:d6:dc:3b:a5:bd:69:7d:a1:00:d8:90:6f:f4: f8:b6:8f:c8:f6:b6:f1:5b:4f:fc:55:c1:4a:53:5c:55:7a:24: 2f:ec:34:38:f9:72:12:d1:a3:be:07:bc:a5:bd:c7:6b:82:94: 16:88:22:ac:ab:59:d0:54:5c:f5:8a:a9:9c:8b:39:3d:48:4c: d7:45:d7:f8:a9:d8:20:c7:a1:07:ef:15:80:a6:e0:9c:c1:06: 37:f5:79:a2:49:f0:aa:2b:da:b5:7a:1d:48:16:7d:df:be:a6: f0:7f:f9:e7:02:1f:b2:21:b8:7d:5d:0f:e0:42:0e:9e:9e:6d: e9:b3:ec:fb:73:c0:b6:18:ac:ea:89:78:19:c6:0b:bd:08:ad: af:42:87:0e:d8:09:4a:b5:34:e2:57:78:f0:93:04:8e:19:99: 2c:49:3e:26 -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgISAZt/gJj2mg24Q7wLb5jD/xbVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNDQ0MjEwZWEwOGFjNTI5ODc4ZDUxOTE3ZTNiMzAwNTRk NjIwZDEwHhcNMjYwMTAyMTYxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzViNTA1YjJiMTMyYWUxYzE1NDBlOTU5YTg1YzU4ZGUxOGQxOTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5U/35Tv0DK2leovWcm7gZeiolYXT jglf7isxM+xSTntCGla9S9W1apIg4GylvNyiLtrPVl9Fe4h3Zu6sAKcfPzhHGEYH yk55grE1q8EX5sK6xflYawklIC0wFfXuGbp2hk+6Piil5AG5gcwf4kDpl2+4wH5g xp74GwGUbymyrr+uX1G4fubqb78EUPDeMoCHRod1kLH/OwrYbn0xmEUFSU2wWOCr bi4c7eG2N6Fpg0HgUMWfEAICtREYr3D28Ur2thGtzXDWJuU06aSbXL8jbkDO+N+R dURJZZgDaqzXPKGTTBy/8kZgd6qPZKZPMvW4ckIymIrHT3Ys6c4NK3mcawIDAQAB o4ICFDCCAhAwHQYDVR0OBBYEFONbUFsrEyrhwVQOlZqFxY3hjRkuMB8GA1UdIwQY MBaAFGNEQhDqCKxSmHjVGRfjswBU1iDRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTBSQ0VPb0lyRktZZU5VWkYtT3pBRlRXSU5FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lZGVhNmUtNjZjYy00ZmIxLWE0NTQt ZmU4MzdmOThlMDI2LzEvNDF0UVd5c1RLdUhCVkE2Vm1vWEZqZUdOR1M0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9lZGVhNmUtNjZjYy00ZmIxLWE0NTQtZmU4MzdmOThlMDI2 LzEvWTBSQ0VPb0lyRktZZU5VWkYtT3pBRlRXSU5FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAATARAwMAAiEDBAdd lwADBABds7kwDQYJKoZIhvcNAQELBQADggEBAGSeV8U/058Kp+24tX+RhRfVQFLR 3Q7K4cfPQ0hHDTyO2kfKyrhAYd7ltMQNZRCHT6AN5/0Uk2DksGJzMgZH1QVIoJhI aIA5tpj5URfSTUgKmbcLvaEkuARvcBzQ70gj1tw7pb1pfaEA2JBv9Pi2j8j2tvFb T/xVwUpTXFV6JC/sNDj5chLRo74HvKW9x2uClBaIIqyrWdBUXPWKqZyLOT1ITNdF 1/ip2CDHoQfvFYCm4JzBBjf1eaJJ8Kor2rV6HUgWfd++pvB/+ecCH7IhuH1dD+BC Dp6ebemz7PtzwLYYrOqJeBnGC70Ira9Chw7YCUq1NOJXePCTBI4ZmSxJPiY= -----END CERTIFICATE-----Generated at Sun Jan 25 15:28:57 2026 by rpki-client