This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IDCNFCveWgwpWUnshOvn1OujsA4.roa File: IDCNFCveWgwpWUnshOvn1OujsA4.roa (raw, json) Hash identifier: VvfOi5kFUMXctaHf/80eHLWFzE9B/Iglm61wUnBK3Po= Subject key identifier: 20:30:8D:14:2B:DE:5A:0C:29:59:49:EC:84:EB:E7:D4:EB:A3:B0:0E Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84C9FB72CC254EC06F7C8DEA97A97F Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IDCNFCveWgwpWUnshOvn1OujsA4.roa Signing time: Fri 02 Jan 2026 16:22:47 +0000 ROA not before: Fri 02 Jan 2026 16:22:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57371 IP address blocks: 93.171.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:c9:fb:72:cc:25:4e:c0:6f:7c:8d:ea:97:a9:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20308d142bde5a0c295949ec84ebe7d4eba3b00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:59:67:ed:2a:15:76:cb:b0:61:ba:aa:47:9c: 3c:df:b6:ab:8f:cc:06:5b:0a:6a:19:39:99:2f:8d: b7:5e:e7:22:6d:14:48:b5:f9:dd:ce:4c:14:db:29: 52:3a:76:bc:d7:9a:7a:0e:05:96:a6:2e:ac:57:c1: 79:72:35:d3:37:ce:a7:96:24:00:e6:60:d5:55:24: 8c:ba:8e:d3:8c:b6:d0:8b:79:5d:8a:0d:f2:68:1c: 0b:f3:36:ab:ab:7f:16:16:43:66:79:eb:ce:d4:b4: ee:dc:49:e7:ca:42:64:3a:0a:a4:f8:06:e0:e2:84: 37:3b:c3:c9:2c:fa:94:c7:1a:90:0c:fb:0f:18:29: 3a:24:f0:44:42:1e:80:60:66:26:99:e3:06:89:87: 66:ea:d4:49:a9:a0:89:15:6d:ad:4a:68:00:36:bc: 84:89:bf:6c:70:81:e6:44:b7:f4:4a:dc:60:be:fe: dc:6b:ab:6c:c1:66:8f:0a:c9:d8:40:2f:26:47:fb: 4e:67:9e:65:38:c1:9a:c3:9f:68:40:51:15:71:d0: fc:39:32:97:83:a1:68:7c:4c:7e:72:40:c6:52:7d: 5e:2e:de:89:5f:05:41:e8:88:44:82:a5:b8:f2:cd: a7:ac:c8:11:57:3f:b2:e1:6b:97:d0:15:04:6e:78: 15:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:30:8D:14:2B:DE:5A:0C:29:59:49:EC:84:EB:E7:D4:EB:A3:B0:0E X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/IDCNFCveWgwpWUnshOvn1OujsA4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.171.144.0/21 Signature Algorithm: sha256WithRSAEncryption 21:02:c5:de:6a:f1:4b:b9:70:af:07:9a:54:f0:75:88:6f:04: 05:1a:6f:13:dc:06:cc:dc:ce:7f:a6:33:f2:93:06:86:ab:14: 92:e6:2a:6b:f2:df:5e:3f:05:8d:6c:a3:c3:76:b7:4d:2e:4a: 49:5a:44:64:19:eb:dd:11:7b:af:2b:99:e8:93:7d:ef:ff:b2: b6:a2:3f:7c:ef:6c:2d:b1:69:08:47:80:aa:96:81:0e:a5:e3: b0:bc:f5:98:51:7e:30:8c:52:9d:24:0c:59:11:bc:32:0e:57: de:e4:4c:44:a1:50:d3:6c:50:9a:31:52:de:98:7c:ad:8d:22: 64:2e:bc:08:9a:15:51:16:ef:c0:3d:15:88:82:a0:92:4b:86: f4:71:ba:ea:08:bc:0a:c9:c4:11:54:ba:43:ad:d6:22:67:68: c6:cd:c8:9f:ab:69:7e:a7:2b:a0:e4:57:fb:fa:6a:c5:18:3f: f5:a1:51:24:d9:21:62:c7:b1:2f:ca:49:69:ac:e8:9f:95:a8: c5:b1:89:9f:bc:ef:fa:12:c7:05:f4:0b:c2:60:91:e5:d5:f8: 10:4a:9e:dc:e1:63:16:bd:a5:b6:62:90:35:8d:33:2f:76:1c: ff:ae:bc:6e:63:58:85:06:09:7a:cf:57:d8:80:da:9a:7f:5b: 3b:c4:b4:1d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hMn7cswlTsBvfI3ql6l/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDMwOGQxNDJiZGU1YTBjMjk1OTQ5ZWM4NGViZTdkNGViYTNiMDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFln7SoVdsuwYbqqR5w837arj8wG WwpqGTmZL423XucibRRItfndzkwU2ylSOna815p6DgWWpi6sV8F5cjXTN86nliQA 5mDVVSSMuo7TjLbQi3ldig3yaBwL8zarq38WFkNmeevO1LTu3EnnykJkOgqk+Abg 4oQ3O8PJLPqUxxqQDPsPGCk6JPBEQh6AYGYmmeMGiYdm6tRJqaCJFW2tSmgANryE ib9scIHmRLf0Stxgvv7ca6tswWaPCsnYQC8mR/tOZ55lOMGaw59oQFEVcdD8OTKX g6FofEx+ckDGUn1eLt6JXwVB6IhEgqW48s2nrMgRVz+y4WuX0BUEbngV3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCAwjRQr3loMKVlJ7ITr59Tro7AOMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvSURDTkZDdmVXZ3dwV1Vuc2hPdm4xT3Vqc0E0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDXauQMA0G CSqGSIb3DQEBCwUAA4IBAQAhAsXeavFLuXCvB5pU8HWIbwQFGm8T3AbM3M5/pjPy kwaGqxSS5ipr8t9ePwWNbKPDdrdNLkpJWkRkGevdEXuvK5nok33v/7K2oj9872wt sWkIR4CqloEOpeOwvPWYUX4wjFKdJAxZEbwyDlfe5ExEoVDTbFCaMVLemHytjSJk LrwImhVRFu/APRWIgqCSS4b0cbrqCLwKycQRVLpDrdYiZ2jGzcifq2l+pyug5Ff7 +mrFGD/1oVEk2SFix7EvyklprOiflajFsYmfvO/6EscF9AvCYJHl1fgQSp7c4WMW vaW2YpA1jTMvdhz/rrxuY1iFBgl6z1fYgNqaf1s7xLQd -----END CERTIFICATE-----Generated at Sun Jan 25 15:12:20 2026 by rpki-client