This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/riStBl-2mLLI1xTkjtqgzstCOrU.roa File: riStBl-2mLLI1xTkjtqgzstCOrU.roa (raw, json) Hash identifier: hf9I5Mw3LW7ngdtmYTFwt2Y1Syg1s0AmbFlrIM3a+Ns= Subject key identifier: AE:24:AD:06:5F:B6:98:B2:C8:D7:14:E4:8E:DA:A0:CE:CB:42:3A:B5 Certificate issuer: /CN=2cefde30b8a58b322a431f0829ed4ff33b5aac18 Certificate serial: 019B7834986147CFDE4E62A607596DDE2BE5 Authority key identifier: 2C:EF:DE:30:B8:A5:8B:32:2A:43:1F:08:29:ED:4F:F3:3B:5A:AC:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/riStBl-2mLLI1xTkjtqgzstCOrU.roa Signing time: Thu 01 Jan 2026 06:17:51 +0000 ROA not before: Thu 01 Jan 2026 06:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8455 IP address blocks: 31.14.45.0/24 maxlen: 24 45.82.104.0/23 maxlen: 23 185.194.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/LO_eMLilizIqQx8IKe1P8ztarBg.crl rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/LO_eMLilizIqQx8IKe1P8ztarBg.mft rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 00:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:98:61:47:cf:de:4e:62:a6:07:59:6d:de:2b:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2cefde30b8a58b322a431f0829ed4ff33b5aac18 Validity Not Before: Jan 1 06:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae24ad065fb698b2c8d714e48edaa0cecb423ab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:67:4d:99:3b:cf:b4:46:9a:1b:de:35:1d:f7: 30:c3:35:7c:56:ca:d5:95:c6:15:23:9e:d9:13:56: 64:b5:ca:c4:36:60:30:45:7c:35:c4:a2:9f:d1:c9: da:dd:42:1b:5a:a8:19:fa:c6:ed:58:af:44:49:d1: 26:ed:17:16:e4:f3:1e:31:05:88:28:fa:d2:9c:44: 98:5b:ef:65:39:70:56:da:89:82:8c:f8:a5:7f:62: d1:34:b3:1a:5a:33:6d:0f:a4:94:14:d9:21:19:41: ca:cc:a0:5f:ce:7b:cc:36:7b:da:e1:95:1b:ee:f2: dd:6a:19:92:88:81:24:bb:90:35:7e:89:de:77:aa: 3a:a4:44:5e:a0:23:da:73:80:bb:d8:a6:50:bd:c1: e0:f1:67:e1:94:63:98:1a:07:97:a7:b1:5f:73:63: 49:cf:c5:a8:a0:da:24:49:89:53:1c:75:f1:27:78: 60:13:0b:fe:6f:ec:64:e0:db:7f:46:5d:35:08:61: 36:d2:e9:03:d6:1b:56:de:0a:08:4e:76:de:a3:b6: fd:bf:15:24:5a:94:81:76:b5:81:03:e9:41:15:a7: c1:64:18:5b:2c:e3:8b:ab:c9:ad:79:a1:84:20:e5: 1c:da:3b:b3:d0:18:ba:af:0d:e0:00:d2:99:97:fc: 78:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:24:AD:06:5F:B6:98:B2:C8:D7:14:E4:8E:DA:A0:CE:CB:42:3A:B5 X509v3 Authority Key Identifier: keyid:2C:EF:DE:30:B8:A5:8B:32:2A:43:1F:08:29:ED:4F:F3:3B:5A:AC:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/riStBl-2mLLI1xTkjtqgzstCOrU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/LO_eMLilizIqQx8IKe1P8ztarBg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.14.45.0/24 45.82.104.0/23 185.194.0.0/22 Signature Algorithm: sha256WithRSAEncryption 58:e6:70:54:60:fb:5e:c5:fa:76:6c:c6:50:eb:a6:02:e3:0a: 22:de:bd:95:a2:a8:7a:68:7f:36:74:34:e6:2b:ba:39:66:11: 63:0e:f0:fb:43:c4:47:ab:b4:20:b0:f2:3e:32:92:6f:f0:8d: a4:8e:e6:d7:e8:22:bd:82:fa:66:46:28:e3:50:32:2d:98:e1: 30:e5:27:fa:62:82:bc:02:12:b7:df:d0:c6:24:46:2c:46:3f: 70:aa:d8:f0:1d:1b:88:d4:21:85:73:3b:09:46:bf:4f:63:d9: 7f:e2:87:07:42:88:a4:3c:64:3b:18:1d:b7:d7:2f:84:4f:f9: b9:69:e9:b2:74:fe:95:0c:0b:80:79:9d:c9:c3:71:18:92:7f: bf:3e:7c:c2:8b:36:47:d2:71:40:05:64:31:a3:2e:72:51:a5: 98:07:91:5d:60:f4:92:97:c6:14:1c:2d:24:40:8b:4f:ac:c3: 06:68:70:81:a7:d1:2e:83:b4:f7:a5:b0:53:a5:c7:fd:7a:00: 3a:d8:7a:d8:3e:35:63:b5:fb:99:7c:38:04:ab:9a:b7:49:4a: 36:65:e4:94:04:bf:f1:40:c1:d9:85:e9:29:67:57:02:f7:56: 03:97:7c:61:61:48:d2:82:77:75:c9:88:30:7f:90:d7:23:50: ec:b4:b8:b6 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt4NJhhR8/eTmKmB1lt3ivlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjZWZkZTMwYjhhNThiMzIyYTQzMWYwODI5ZWQ0ZmYzM2I1 YWFjMTgwHhcNMjYwMTAxMDYxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTI0YWQwNjVmYjY5OGIyYzhkNzE0ZTQ4ZWRhYTBjZWNiNDIzYWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWdNmTvPtEaaG941HfcwwzV8VsrV lcYVI57ZE1ZktcrENmAwRXw1xKKf0cna3UIbWqgZ+sbtWK9ESdEm7RcW5PMeMQWI KPrSnESYW+9lOXBW2omCjPilf2LRNLMaWjNtD6SUFNkhGUHKzKBfznvMNnva4ZUb 7vLdahmSiIEku5A1foned6o6pEReoCPac4C72KZQvcHg8WfhlGOYGgeXp7Ffc2NJ z8WooNokSYlTHHXxJ3hgEwv+b+xk4Nt/Rl01CGE20ukD1htW3goITnbeo7b9vxUk WpSBdrWBA+lBFafBZBhbLOOLq8mteaGEIOUc2juz0Bi6rw3gANKZl/x4RwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFK4krQZftpiyyNcU5I7aoM7LQjq1MB8GA1UdIwQY MBaAFCzv3jC4pYsyKkMfCCntT/M7WqwYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTE9fZU1MaWxpeklxUXg4SUtlMVA4enRhckJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zM2EwZjktMTE3OC00YTZkLWI5NjQt ZmY3NjVmODUzMWQ1LzEvcmlTdEJsLTJtTExJMXhUa2p0cWd6c3RDT3JVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8zM2EwZjktMTE3OC00YTZkLWI5NjQtZmY3NjVmODUzMWQ1 LzEvTE9fZU1MaWxpeklxUXg4SUtlMVA4enRhckJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAHw4tAwQB LVJoAwQCucIAMA0GCSqGSIb3DQEBCwUAA4IBAQBY5nBUYPtexfp2bMZQ66YC4woi 3r2Voqh6aH82dDTmK7o5ZhFjDvD7Q8RHq7QgsPI+MpJv8I2kjubX6CK9gvpmRijj UDItmOEw5Sf6YoK8AhK339DGJEYsRj9wqtjwHRuI1CGFczsJRr9PY9l/4ocHQoik PGQ7GB231y+ET/m5aemydP6VDAuAeZ3Jw3EYkn+/PnzCizZH0nFABWQxoy5yUaWY B5FdYPSSl8YUHC0kQItPrMMGaHCBp9Eug7T3pbBTpcf9egA62HrYPjVjtfuZfDgE q5q3SUo2ZeSUBL/xQMHZhekpZ1cC91YDl3xhYUjSgnd1yYgwf5DXI1DstLi2 -----END CERTIFICATE-----Generated at Mon Jan 26 10:53:51 2026 by rpki-client