This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/cE0yN1WOvpYnDNVGwFdAVB_PIyc.roa File: cE0yN1WOvpYnDNVGwFdAVB_PIyc.roa (raw, json) Hash identifier: CWCW4wNMR0RLe8n5ZfdlICFSL8sFAoWjELlH9k3Hdic= Subject key identifier: 70:4D:32:37:55:8E:BE:96:27:0C:D5:46:C0:57:40:54:1F:CF:23:27 Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Certificate serial: 019B7F836CF5F27807FFED05B5E38C94AE58 Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/cE0yN1WOvpYnDNVGwFdAVB_PIyc.roa Signing time: Fri 02 Jan 2026 16:21:18 +0000 ROA not before: Fri 02 Jan 2026 16:21:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208397 IP address blocks: 31.40.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.mft rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:6c:f5:f2:78:07:ff:ed:05:b5:e3:8c:94:ae:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Validity Not Before: Jan 2 16:21:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=704d3237558ebe96270cd546c05740541fcf2327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fd:14:f0:c2:68:2b:ec:18:59:07:11:e6:1e: d0:6b:b7:27:1b:4a:ca:9c:49:d0:86:f7:48:72:79: ec:04:2a:e0:6b:31:04:90:05:3f:f8:9a:1e:5a:5c: 8e:f8:89:94:e0:cb:8b:1c:6d:b5:8f:f2:2a:82:42: e4:38:97:0e:2c:ae:91:64:31:cc:c0:42:79:b4:1b: 0f:01:a5:16:23:09:41:bc:97:66:69:8d:e4:18:c7: a8:3a:ec:e7:7c:84:a1:ea:ec:73:86:a9:4b:2d:30: 95:5a:20:a7:31:ef:b6:a6:68:ea:57:7e:c1:ff:c0: 2c:59:3b:aa:0a:b6:a5:18:0b:98:13:17:38:d4:c0: e0:2d:53:1e:fe:68:30:34:6f:09:55:22:76:ce:11: 32:f8:dc:95:45:9c:b0:3a:d4:e7:81:bd:9a:c9:91: 65:b2:3e:5c:7c:e0:58:9e:51:22:11:1b:62:cd:bc: 47:1d:dd:40:4d:b9:e8:9f:b8:a3:a1:0d:39:70:fd: 61:42:49:62:7f:bb:df:9e:cc:c1:c6:06:64:cb:40: 10:9d:b4:5a:04:83:0b:e2:89:3c:40:0e:39:3d:76: 2e:39:b9:22:2a:21:bf:06:b0:64:5f:bc:1c:3d:13: 90:b2:e5:4d:3a:df:cd:25:83:e1:8a:98:9b:9b:92: ac:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4D:32:37:55:8E:BE:96:27:0C:D5:46:C0:57:40:54:1F:CF:23:27 X509v3 Authority Key Identifier: keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/cE0yN1WOvpYnDNVGwFdAVB_PIyc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.130.0/24 Signature Algorithm: sha256WithRSAEncryption 69:33:5d:e1:9f:20:26:52:b7:01:a3:73:bd:c0:e9:e6:89:f8: ee:78:f3:cb:f0:f1:ef:f9:d2:a0:95:ae:44:e0:e7:e9:c3:b3: ca:53:c3:8b:4a:78:8d:3f:af:11:7b:e0:06:b4:a7:98:6c:66: 59:4a:25:c2:fe:c5:93:83:95:19:cb:91:f6:b4:83:93:90:f9: 30:be:ab:d7:31:d6:09:8e:1d:20:7c:ea:e6:87:17:77:09:93: 86:da:44:c6:d8:50:b9:c1:f9:79:0e:e2:23:cc:04:02:3e:fd: d6:2d:bc:54:64:33:bf:10:af:ce:22:97:8e:c4:d6:6c:eb:8c: 3d:db:29:4c:71:84:41:63:cc:da:6b:28:99:f3:7e:78:cd:3b: 79:e1:31:12:82:b3:ca:2a:26:57:a2:7f:f9:1d:bf:6b:ca:66: 11:70:ed:d6:b8:43:eb:0d:cf:fa:f7:41:47:79:91:f0:5d:78: e8:1e:47:bd:a9:f2:81:ce:3f:72:f4:5c:93:1c:fe:2b:0f:d4: 55:0b:7b:59:59:12:b1:81:7e:bb:8c:15:05:2d:3f:f9:2e:6b: a2:38:79:ab:33:45:16:e9:58:b4:d4:03:86:9c:20:d5:83:7c: 3a:41:74:6d:45:19:ff:d3:be:8c:93:0a:3e:13:9d:cd:77:39: 23:67:ec:f1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g2z18ngH/+0FteOMlK5YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYWY1YzJlNWVkYzE5NzgzNGQwN2YzNDU5NjJiMDc0NWJl ZTY2ZDcwHhcNMjYwMTAyMTYyMTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDRkMzIzNzU1OGViZTk2MjcwY2Q1NDZjMDU3NDA1NDFmY2YyMzI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/0U8MJoK+wYWQcR5h7Qa7cnG0rK nEnQhvdIcnnsBCrgazEEkAU/+JoeWlyO+ImU4MuLHG21j/IqgkLkOJcOLK6RZDHM wEJ5tBsPAaUWIwlBvJdmaY3kGMeoOuznfISh6uxzhqlLLTCVWiCnMe+2pmjqV37B /8AsWTuqCralGAuYExc41MDgLVMe/mgwNG8JVSJ2zhEy+NyVRZywOtTngb2ayZFl sj5cfOBYnlEiERtizbxHHd1ATbnon7ijoQ05cP1hQklif7vfnszBxgZky0AQnbRa BIML4ok8QA45PXYuObkiKiG/BrBkX7wcPROQsuVNOt/NJYPhipibm5KsfQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHBNMjdVjr6WJwzVRsBXQFQfzyMnMB8GA1UdIwQY MBaAFB6vXC5e3Bl4NNB/NFlisHRb7mbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODIt NGEzNGMxYmJhYjJiLzEvY0UweU4xV092cFluRE5WR3dGZEFWQl9QSXljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODItNGEzNGMxYmJhYjJi LzEvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyiCMA0G CSqGSIb3DQEBCwUAA4IBAQBpM13hnyAmUrcBo3O9wOnmifjuePPL8PHv+dKgla5E 4Ofpw7PKU8OLSniNP68Re+AGtKeYbGZZSiXC/sWTg5UZy5H2tIOTkPkwvqvXMdYJ jh0gfOrmhxd3CZOG2kTG2FC5wfl5DuIjzAQCPv3WLbxUZDO/EK/OIpeOxNZs64w9 2ylMcYRBY8zaayiZ8354zTt54TESgrPKKiZXon/5Hb9rymYRcO3WuEPrDc/690FH eZHwXXjoHke9qfKBzj9y9FyTHP4rD9RVC3tZWRKxgX67jBUFLT/5LmuiOHmrM0UW 6Vi01AOGnCDVg3w6QXRtRRn/076Mkwo+E53NdzkjZ+zx -----END CERTIFICATE-----Generated at Mon Jan 26 04:39:39 2026 by rpki-client