This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/59Sth-R3BuV9Hjri6g95SVuIU_8.roa File: 59Sth-R3BuV9Hjri6g95SVuIU_8.roa (raw, json) Hash identifier: rE2f8KGpsTiN9qUjtXDjk/27rrXTQHhiM7ABCMeYpTI= Subject key identifier: E7:D4:AD:87:E4:77:06:E5:7D:1E:3A:E2:EA:0F:79:49:5B:88:53:FF Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a Certificate serial: 019B7DCB4CE2CAA0FEDDD77000ED9EBC07B2 Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/59Sth-R3BuV9Hjri6g95SVuIU_8.roa Signing time: Fri 02 Jan 2026 08:20:34 +0000 ROA not before: Fri 02 Jan 2026 08:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211712 IP address blocks: 212.22.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.mft rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:4c:e2:ca:a0:fe:dd:d7:70:00:ed:9e:bc:07:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a Validity Not Before: Jan 2 08:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7d4ad87e47706e57d1e3ae2ea0f79495b8853ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:95:89:fb:75:3b:74:ab:17:15:11:b7:53:d3: c8:b6:7b:ba:8a:ba:08:bd:bb:99:32:61:d3:ab:b2: 38:cf:b2:a0:39:58:23:0d:3f:6b:32:04:43:06:48: b7:f5:81:71:ce:2d:8f:0d:e0:8d:d1:8f:2f:ff:21: b4:75:e7:be:ab:40:ea:3d:79:1d:c9:f3:75:1d:29: 81:f2:0b:4a:8c:0d:78:9c:ad:d2:42:85:eb:15:37: 13:71:bd:3c:b3:a4:cb:2d:ce:51:09:fd:b6:79:da: 84:af:81:93:16:7f:05:29:70:31:14:58:a2:0f:33: 19:42:6a:61:05:19:29:2e:d3:50:0b:6b:9f:a5:b7: 22:72:45:49:85:68:1f:c3:db:cf:33:28:b5:ee:50: 60:34:b5:18:06:d7:e5:8b:cb:dd:4b:5f:d8:95:6b: 4f:33:21:b1:db:8d:05:05:13:89:98:0f:b3:12:5e: d0:85:e2:56:84:66:42:ec:95:d2:0b:13:00:9e:f7: 65:a5:c0:50:e3:26:d2:58:8b:98:69:bd:95:fd:8b: 53:f2:e6:87:14:45:d7:43:e1:63:53:3f:fe:5b:6d: 75:09:32:6b:c4:3a:6d:08:da:68:30:aa:0b:77:04: 8a:96:e7:1f:72:e3:cf:04:30:0a:f5:6d:dd:2d:71: f2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D4:AD:87:E4:77:06:E5:7D:1E:3A:E2:EA:0F:79:49:5B:88:53:FF X509v3 Authority Key Identifier: keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/59Sth-R3BuV9Hjri6g95SVuIU_8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.22.89.0/24 Signature Algorithm: sha256WithRSAEncryption b5:59:39:ed:b3:e1:ce:41:37:3b:9d:40:4b:88:ce:6a:11:f5: 6b:79:3e:18:fb:a6:e7:ab:10:82:68:a4:63:e5:c2:3a:f2:b3: 5a:6b:72:0c:85:e2:54:c0:e2:36:5f:36:10:7f:62:29:08:57: 05:5a:28:ae:f3:b2:fd:0c:20:fe:e2:13:b8:07:c1:e8:ed:2d: cd:a1:28:80:e7:ae:20:64:d4:6d:2c:db:ae:c7:3b:0b:f0:f8: 17:7b:98:5e:82:42:99:a8:81:d8:22:43:41:c3:81:15:aa:64: 1a:48:a4:c4:02:27:6a:d4:6d:ab:09:22:1f:82:a0:19:73:c3: 26:cd:85:8a:0d:65:2c:8a:d3:ad:60:c7:6a:40:4b:c3:5a:d8: 12:2b:59:49:44:bc:0e:3f:f4:d6:ed:4f:49:57:17:e1:9d:9e: 2f:df:ee:dd:d5:42:9c:ad:b6:60:8e:16:ca:dc:bc:31:d7:8d: 9b:49:ec:d2:77:cb:dc:26:fc:19:0a:40:f9:df:65:74:09:77: 2b:cd:55:fb:e6:be:2f:30:dd:04:69:ba:5d:2a:10:52:3d:95: 92:e3:b4:5b:76:ca:90:e5:ee:b7:36:f2:e0:8e:9c:49:a7:30: f9:1b:c7:8e:dc:84:cf:e7:04:73:28:bd:75:42:27:c2:37:7b: 16:fc:da:b0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y0ziyqD+3ddwAO2evAeyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0NjM2NTM1NWI2NjU1NjRhMjEwYzM1OGM2OGEwMTE3Yjdm YmViOWEwHhcNMjYwMTAyMDgyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2Q0YWQ4N2U0NzcwNmU1N2QxZTNhZTJlYTBmNzk0OTViODg1M2ZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJWJ+3U7dKsXFRG3U9PItnu6iroI vbuZMmHTq7I4z7KgOVgjDT9rMgRDBki39YFxzi2PDeCN0Y8v/yG0dee+q0DqPXkd yfN1HSmB8gtKjA14nK3SQoXrFTcTcb08s6TLLc5RCf22edqEr4GTFn8FKXAxFFii DzMZQmphBRkpLtNQC2ufpbcickVJhWgfw9vPMyi17lBgNLUYBtfli8vdS1/YlWtP MyGx240FBROJmA+zEl7QheJWhGZC7JXSCxMAnvdlpcBQ4ybSWIuYab2V/YtT8uaH FEXXQ+FjUz/+W211CTJrxDptCNpoMKoLdwSKlucfcuPPBDAK9W3dLXHySwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOfUrYfkdwblfR464uoPeUlbiFP/MB8GA1UdIwQY MBaAFHRjZTVbZlVkohDDWMaKARe3++uaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGIt NmE0ZWNhZjhiM2IxLzEvNTlTdGgtUjNCdVY5SGpyaTZnOTVTVnVJVV84LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGItNmE0ZWNhZjhiM2Ix LzEvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1BZZMA0G CSqGSIb3DQEBCwUAA4IBAQC1WTnts+HOQTc7nUBLiM5qEfVreT4Y+6bnqxCCaKRj 5cI68rNaa3IMheJUwOI2XzYQf2IpCFcFWiiu87L9DCD+4hO4B8Ho7S3NoSiA564g ZNRtLNuuxzsL8PgXe5hegkKZqIHYIkNBw4EVqmQaSKTEAidq1G2rCSIfgqAZc8Mm zYWKDWUsitOtYMdqQEvDWtgSK1lJRLwOP/TW7U9JVxfhnZ4v3+7d1UKcrbZgjhbK 3Lwx142bSezSd8vcJvwZCkD532V0CXcrzVX75r4vMN0EabpdKhBSPZWS47RbdsqQ 5e63NvLgjpxJpzD5G8eO3ITP5wRzKL11QifCN3sW/Nqw -----END CERTIFICATE-----Generated at Sun Jan 25 08:48:12 2026 by rpki-client