This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/E102IN0_Ach777PDZCjDRyGfr5s.roa File: E102IN0_Ach777PDZCjDRyGfr5s.roa (raw, json) Hash identifier: P+fFTKuiYJQ7KTnCl15w1gtiWXSxbhhwZtpqSiAeOhM= Subject key identifier: 13:5D:36:20:DD:3F:01:C8:7B:EF:B3:C3:64:28:C3:47:21:9F:AF:9B Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3 Certificate serial: 019B797E44EA17558C12AF8BA3928BA511B5 Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/E102IN0_Ach777PDZCjDRyGfr5s.roa Signing time: Thu 01 Jan 2026 12:17:56 +0000 ROA not before: Thu 01 Jan 2026 12:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202131 IP address blocks: 185.52.172.0/23 maxlen: 32 2a04:c740::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.mft rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:44:ea:17:55:8c:12:af:8b:a3:92:8b:a5:11:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3 Validity Not Before: Jan 1 12:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=135d3620dd3f01c87befb3c36428c347219faf9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:52:a0:e5:bf:38:94:7e:8b:7f:0e:af:fd:d3: 66:fb:af:a8:13:4f:70:25:64:ab:91:8f:46:b8:83: 06:6c:8e:fc:bd:7b:07:1d:a1:2c:64:b1:83:98:c4: b9:e5:36:a2:26:eb:81:69:f7:de:0f:0c:83:e0:07: c5:5d:02:79:79:dc:90:dc:35:f3:95:1e:37:2d:34: 39:4d:59:2b:c2:79:6e:52:04:21:4b:7a:8a:ad:f1: 34:be:67:ad:01:39:a9:82:ec:51:58:fa:88:b8:76: f4:bd:4b:36:14:47:3d:71:3b:34:cf:03:97:dd:39: f8:0f:9f:07:d8:4e:90:af:34:aa:ee:07:f2:a8:ee: a8:b9:0c:68:61:5a:90:d5:03:20:58:e6:65:63:46: bf:89:d2:ff:40:93:3b:9d:a4:76:85:61:9f:9c:71: 93:2c:c8:27:6f:8d:14:af:fb:8b:ce:38:fd:f6:d8: c2:a7:a3:e5:bd:a0:71:90:64:cb:97:31:22:65:36: 75:e7:0c:ae:c1:9b:d4:18:82:86:b5:26:40:5f:15: 3b:4f:45:67:89:3a:2a:60:bf:37:fb:40:7b:53:c3: e3:24:e1:b4:5e:a2:8d:55:b9:5e:1b:1a:b2:da:1c: f4:5c:26:9b:c3:74:30:25:2b:dd:6c:4d:61:36:58: 74:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:5D:36:20:DD:3F:01:C8:7B:EF:B3:C3:64:28:C3:47:21:9F:AF:9B X509v3 Authority Key Identifier: keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/E102IN0_Ach777PDZCjDRyGfr5s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.52.172.0/23 IPv6: 2a04:c740::/29 Signature Algorithm: sha256WithRSAEncryption 0b:bf:c8:68:6a:3d:2b:73:fc:df:6d:e9:b4:5a:ac:32:42:3d: 17:5a:94:a8:7b:49:20:9b:55:54:33:dd:3d:a9:89:e9:75:79: 11:be:ac:49:90:33:3c:f0:0c:d3:2d:17:3c:71:c2:27:2a:a6: 16:ed:39:57:a0:36:e4:83:ab:9a:87:44:fd:64:ff:f6:09:0f: e3:89:e1:dd:d1:46:bf:ca:a1:c7:c3:7a:a1:e1:cf:17:7d:18: 62:ff:33:f2:9c:10:db:2c:1b:d1:7c:de:d5:f8:4a:8a:8e:f8: db:90:81:d1:b3:99:27:dc:0f:a9:d3:77:8d:79:01:88:a1:71: 49:67:ee:e0:ae:5b:2f:b5:d0:3d:1a:d7:b8:f5:7b:5e:d8:8d: f8:cc:af:3d:df:09:e5:54:6c:21:39:fa:2d:35:4c:81:07:92: b4:e1:1a:37:0c:12:56:42:c6:0c:3d:1e:3c:31:0b:65:ef:ff: b7:0b:a7:68:87:14:fd:ba:d7:5f:6d:db:d3:95:77:6d:a4:2c: cd:ad:b3:82:35:da:3b:6d:d1:80:1d:6d:05:70:9c:66:d1:11: 96:75:c1:69:14:bf:cf:c8:ce:ae:a2:9d:5d:0e:ec:e3:78:1f: 01:86:12:86:9c:13:b3:3c:b9:6a:e8:42:9b:e8:a0:c6:9e:23: 05:9a:24:d4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5fkTqF1WMEq+Lo5KLpRG1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1OWYwZjVmZjYyMGUwZGI1MzExZjY0NzM2OTA5OTczYWM2 MGY2ZjMwHhcNMjYwMTAxMTIxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzVkMzYyMGRkM2YwMWM4N2JlZmIzYzM2NDI4YzM0NzIxOWZhZjliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArlKg5b84lH6Lfw6v/dNm+6+oE09w JWSrkY9GuIMGbI78vXsHHaEsZLGDmMS55TaiJuuBaffeDwyD4AfFXQJ5edyQ3DXz lR43LTQ5TVkrwnluUgQhS3qKrfE0vmetATmpguxRWPqIuHb0vUs2FEc9cTs0zwOX 3Tn4D58H2E6QrzSq7gfyqO6ouQxoYVqQ1QMgWOZlY0a/idL/QJM7naR2hWGfnHGT LMgnb40Ur/uLzjj99tjCp6PlvaBxkGTLlzEiZTZ15wyuwZvUGIKGtSZAXxU7T0Vn iToqYL83+0B7U8PjJOG0XqKNVbleGxqy2hz0XCabw3QwJSvdbE1hNlh0TQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFBNdNiDdPwHIe++zw2Qow0chn6+bMB8GA1UdIwQY MBaAFDWfD1/2IODbUxH2RzaQmXOsYPbzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2It ZDFhYmY0ZWUzMmNiLzEvRTEwMklOMF9BY2g3NzdQRFpDakRSeUdmcjVzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS80MGQ5YTUtMjU2Ni00OWUxLWE1N2ItZDFhYmY0ZWUzMmNi LzEvTlo4UFhfWWc0TnRURWZaSE5wQ1pjNnhnOXZNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuTSsMA0E AgACMAcDBQMqBMdAMA0GCSqGSIb3DQEBCwUAA4IBAQALv8hoaj0rc/zfbem0Wqwy Qj0XWpSoe0kgm1VUM909qYnpdXkRvqxJkDM88AzTLRc8ccInKqYW7TlXoDbkg6ua h0T9ZP/2CQ/jieHd0Ua/yqHHw3qh4c8XfRhi/zPynBDbLBvRfN7V+EqKjvjbkIHR s5kn3A+p03eNeQGIoXFJZ+7grlsvtdA9Gte49Xte2I34zK893wnlVGwhOfotNUyB B5K04Ro3DBJWQsYMPR48MQtl7/+3C6dohxT9utdfbdvTlXdtpCzNrbOCNdo7bdGA HW0FcJxm0RGWdcFpFL/PyM6uop1dDuzjeB8BhhKGnBOzPLlq6EKb6KDGniMFmiTU -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:57 2026 by rpki-client