This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/1-a4uYZtOKoQ5NOyZslsVHkUI7yQ.roa File: 1-a4uYZtOKoQ5NOyZslsVHkUI7yQ.roa (raw, json) Hash identifier: Ji5rJrMeKPyXbYr2ElzDAN4VfQ5HqEkpmnm+J8FMpQ0= Subject key identifier: F9:AE:2E:61:9B:4E:2A:84:39:34:EC:99:B2:5B:15:1E:45:08:EF:24 Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464 Certificate serial: 019B7E37F2C4C208F4CA401C189E4553D268 Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/1-a4uYZtOKoQ5NOyZslsVHkUI7yQ.roa Signing time: Fri 02 Jan 2026 10:19:14 +0000 ROA not before: Fri 02 Jan 2026 10:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214957 IP address blocks: 37.32.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:f2:c4:c2:08:f4:ca:40:1c:18:9e:45:53:d2:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464 Validity Not Before: Jan 2 10:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9ae2e619b4e2a843934ec99b25b151e4508ef24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6d:52:a2:57:8b:0f:d4:4b:47:66:02:22:7b: d2:9a:99:01:86:c4:23:d1:d9:ea:1d:1b:e1:55:73: 2e:08:cd:85:48:35:82:cc:fa:74:73:75:dc:2f:34: d8:c8:3e:62:2d:22:5e:e4:e9:7b:d3:31:a8:81:8e: 64:d5:2f:2c:1c:da:5f:83:3b:de:3a:fe:39:35:39: 0a:bf:cd:2f:41:db:fa:45:c6:79:f4:a0:4f:9a:fe: 2e:d2:57:12:41:fa:aa:12:39:cf:41:a0:64:81:32: e3:f2:ab:13:00:1d:e4:4f:76:8d:49:9e:d8:af:df: 03:85:65:8f:95:fd:05:ef:cd:f0:01:cf:05:73:5c: 14:7b:ec:7e:52:1e:4d:17:03:e9:1e:42:1e:d4:99: e8:bd:28:33:47:88:d2:f6:8f:ea:eb:85:23:12:10: 1b:9b:a2:47:01:14:e9:b2:f9:97:28:fa:e4:dd:ad: 8d:91:82:68:60:3d:84:43:fb:ff:1c:ca:db:4c:7c: b6:44:c8:3e:40:b3:c1:9a:c7:25:36:7c:c6:1d:e2: 9d:2e:4d:6c:3e:c4:ac:93:4f:f8:ed:75:ea:16:e0: d5:19:0f:40:3d:e1:21:79:99:10:5c:dd:e3:2a:11: 2f:1c:96:16:34:a1:41:14:30:88:93:ad:0a:f3:9c: 73:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:AE:2E:61:9B:4E:2A:84:39:34:EC:99:B2:5B:15:1E:45:08:EF:24 X509v3 Authority Key Identifier: keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/1-a4uYZtOKoQ5NOyZslsVHkUI7yQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.32.43.0/24 Signature Algorithm: sha256WithRSAEncryption 47:0b:10:da:6d:c8:0d:00:fa:3b:12:d2:3c:26:4a:9e:d0:bb: 53:d1:19:29:36:17:d8:70:30:9b:c9:27:83:41:0c:3a:9f:da: 8c:1f:08:e6:1c:ce:0f:57:2a:7b:aa:8f:3c:39:44:76:bb:f2: 03:d5:02:46:b5:88:fb:b7:ef:0f:d6:a9:a0:f1:8b:55:d1:c7: 3f:f3:a4:fc:64:fd:d5:c1:82:23:a9:ad:15:92:2f:52:f0:84: 61:0e:a0:ef:a5:c1:2c:63:3c:67:3b:f5:c9:a3:2b:40:d9:ef: 82:1f:ea:58:20:14:3e:92:51:43:bc:fc:dd:2e:96:26:ff:f1: c9:38:80:ab:54:c7:ba:03:64:0c:bb:28:e3:44:7d:e9:5f:c6: 8e:ba:8c:52:a3:4f:20:d7:56:53:20:ed:59:9c:53:64:5d:f9: b3:bb:de:39:19:5b:b1:4f:30:8b:2c:e3:d8:50:ac:0d:28:3e: 12:ec:d3:88:b0:bf:8e:49:74:23:d6:04:07:4a:2f:46:e8:da: f3:1b:83:b4:2e:10:5a:84:41:19:10:cd:7e:92:a3:ba:47:36: f1:8b:65:c3:57:35:f8:79:93:5e:a6:96:de:6f:bd:69:23:ab: 77:76:96:7c:a3:1e:29:9c:5d:02:bd:1f:35:5f:c7:08:2b:77: de:70:8b:b9 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt+N/LEwgj0ykAcGJ5FU9JoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0 ZDY0NjQwHhcNMjYwMTAyMTAxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOWFlMmU2MTliNGUyYTg0MzkzNGVjOTliMjViMTUxZTQ1MDhlZjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuW1SoleLD9RLR2YCInvSmpkBhsQj 0dnqHRvhVXMuCM2FSDWCzPp0c3XcLzTYyD5iLSJe5Ol70zGogY5k1S8sHNpfgzve Ov45NTkKv80vQdv6RcZ59KBPmv4u0lcSQfqqEjnPQaBkgTLj8qsTAB3kT3aNSZ7Y r98DhWWPlf0F783wAc8Fc1wUe+x+Uh5NFwPpHkIe1JnovSgzR4jS9o/q64UjEhAb m6JHARTpsvmXKPrk3a2NkYJoYD2EQ/v/HMrbTHy2RMg+QLPBmsclNnzGHeKdLk1s PsSsk0/47XXqFuDVGQ9APeEheZkQXN3jKhEvHJYWNKFBFDCIk60K85xz2wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPmuLmGbTiqEOTTsmbJbFR5FCO8kMB8GA1UdIwQY MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt OTg5MTY2ODgxOTY5LzEvMS1hNHVZWnRPS29RNU5PeVpzbHNWSGtVSTd5US5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOTIvODQ0ZWViLWNkZjEtNDdmMS1iY2ZhLTk4OTE2Njg4MTk2 OS8xLzhUVXpPWjlWNjFMbXNpQU1mSzVDY3JkTlpHUS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACUgKzAN BgkqhkiG9w0BAQsFAAOCAQEARwsQ2m3IDQD6OxLSPCZKntC7U9EZKTYX2HAwm8kn g0EMOp/ajB8I5hzOD1cqe6qPPDlEdrvyA9UCRrWI+7fvD9apoPGLVdHHP/Ok/GT9 1cGCI6mtFZIvUvCEYQ6g76XBLGM8Zzv1yaMrQNnvgh/qWCAUPpJRQ7z83S6WJv/x yTiAq1THugNkDLso40R96V/GjrqMUqNPINdWUyDtWZxTZF35s7veORlbsU8wiyzj 2FCsDSg+EuzTiLC/jkl0I9YEB0ovRuja8xuDtC4QWoRBGRDNfpKjukc28Ytlw1c1 +HmTXqaW3m+9aSOrd3aWfKMeKZxdAr0fNV/HCCt33nCLuQ== -----END CERTIFICATE-----Generated at Sun Jan 25 17:46:42 2026 by rpki-client