This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/evxnjaip1AzjgILBjbohckUsyak.roa File: evxnjaip1AzjgILBjbohckUsyak.roa (raw, json) Hash identifier: Ozs5nmK24Gf/BVVlEGVqHEOfnLsepuEnPvJPXeET8oo= Subject key identifier: 7A:FC:67:8D:A8:A9:D4:0C:E3:80:82:C1:8D:BA:21:72:45:2C:C9:A9 Certificate issuer: /CN=34e4f60b0e508726dde68c1c255d04bd21a3a183 Certificate serial: 019B7EA72CDCCBBC0AFD045578E3B12D03D4 Authority key identifier: 34:E4:F6:0B:0E:50:87:26:DD:E6:8C:1C:25:5D:04:BD:21:A3:A1:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOT2Cw5Qhybd5owcJV0EvSGjoYM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/evxnjaip1AzjgILBjbohckUsyak.roa Signing time: Fri 02 Jan 2026 12:20:43 +0000 ROA not before: Fri 02 Jan 2026 12:20:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62053 IP address blocks: 91.233.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/NOT2Cw5Qhybd5owcJV0EvSGjoYM.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/NOT2Cw5Qhybd5owcJV0EvSGjoYM.mft rsync://rpki.ripe.net/repository/DEFAULT/NOT2Cw5Qhybd5owcJV0EvSGjoYM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:2c:dc:cb:bc:0a:fd:04:55:78:e3:b1:2d:03:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34e4f60b0e508726dde68c1c255d04bd21a3a183 Validity Not Before: Jan 2 12:20:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7afc678da8a9d40ce38082c18dba2172452cc9a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:36:99:6c:5b:93:90:1b:b3:85:0f:6a:b1:f6: c2:3f:dc:cc:0e:66:0b:50:ea:4e:23:dd:b0:c4:d6: 8a:b4:d0:ad:cb:2a:b6:3b:32:00:ee:93:31:04:0b: e9:8d:fe:3d:7b:e8:e0:fa:39:65:88:67:f0:4c:56: 3a:bd:8d:8a:56:bf:de:8c:3f:2d:8c:a3:ad:c3:51: be:13:3d:81:3e:1a:cb:b0:88:66:2d:78:b2:da:b5: c3:c1:7e:df:0d:99:d8:98:22:a3:51:fb:66:2f:1d: bf:2d:56:97:2e:6a:7e:f3:7e:e3:be:65:be:7f:eb: 1b:d8:b7:58:42:f7:a6:a8:1d:d6:7c:92:0c:d0:6d: 27:f6:59:20:07:ab:5e:2e:7a:96:6d:92:0d:8b:1c: cf:87:a1:09:92:15:bf:ed:e6:35:19:c1:12:f1:3a: 03:a4:54:0a:08:53:eb:3a:1f:a9:2c:0d:45:d8:51: ab:9f:38:30:f9:f1:bd:37:c5:a3:71:71:49:cc:cf: 59:f8:55:6f:84:00:b2:be:b9:83:98:16:73:30:e7: e8:33:b0:64:e4:2a:6a:7a:d1:36:5e:41:82:30:2e: 56:b6:17:ca:7f:2b:dd:92:6a:f9:2f:68:85:09:98: f4:f5:29:af:24:06:9e:5f:bd:dd:db:34:89:b1:b8: 17:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:FC:67:8D:A8:A9:D4:0C:E3:80:82:C1:8D:BA:21:72:45:2C:C9:A9 X509v3 Authority Key Identifier: keyid:34:E4:F6:0B:0E:50:87:26:DD:E6:8C:1C:25:5D:04:BD:21:A3:A1:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOT2Cw5Qhybd5owcJV0EvSGjoYM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/evxnjaip1AzjgILBjbohckUsyak.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/NOT2Cw5Qhybd5owcJV0EvSGjoYM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.233.32.0/24 Signature Algorithm: sha256WithRSAEncryption 01:3f:2a:5f:38:17:3c:fc:11:9b:7b:8c:ce:a2:73:b8:ab:46: 30:1c:83:b2:d9:c4:97:ab:de:e6:0f:27:ee:ab:79:38:2b:40: 6f:78:a3:d3:68:82:fc:3a:98:1a:18:2a:4d:01:41:1e:f8:ac: 66:db:e4:9b:31:80:39:10:98:94:0c:ab:b5:15:67:74:5b:40: 1b:bd:6c:e3:b6:d2:6f:fc:7b:07:2f:0b:3e:dc:a0:7d:e6:39: 4d:cb:2c:43:70:89:3c:f2:29:52:63:fe:18:63:af:be:40:49: 34:4f:ef:6e:d1:e3:ba:b1:de:06:bc:3a:5a:3a:f0:90:67:8b: 67:b9:b0:18:eb:9e:29:a9:ea:35:8d:6b:22:49:20:29:18:3d: 31:8c:e6:0f:06:11:f1:90:0a:c2:8c:99:52:83:0f:99:87:20: c4:c4:93:8a:41:0d:ba:6b:78:0d:1b:d8:6f:ee:5a:24:42:49: f4:e6:99:ab:f0:fc:b3:37:23:d5:ec:2d:52:6f:91:91:e2:e7: 14:5e:03:ed:6f:87:0a:58:16:7b:f4:0f:c7:e5:4c:00:14:f1: 7e:da:5d:b2:81:92:b4:a6:25:e3:3c:18:3e:1d:53:96:e9:b8: a8:83:05:8a:4e:b1:2e:e5:82:c1:f7:bf:b5:a0:19:c9:bb:c6: a1:13:fd:72 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pyzcy7wK/QRVeOOxLQPUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ZTRmNjBiMGU1MDg3MjZkZGU2OGMxYzI1NWQwNGJkMjFh M2ExODMwHhcNMjYwMTAyMTIyMDQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YWZjNjc4ZGE4YTlkNDBjZTM4MDgyYzE4ZGJhMjE3MjQ1MmNjOWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTaZbFuTkBuzhQ9qsfbCP9zMDmYL UOpOI92wxNaKtNCtyyq2OzIA7pMxBAvpjf49e+jg+jlliGfwTFY6vY2KVr/ejD8t jKOtw1G+Ez2BPhrLsIhmLXiy2rXDwX7fDZnYmCKjUftmLx2/LVaXLmp+837jvmW+ f+sb2LdYQvemqB3WfJIM0G0n9lkgB6teLnqWbZINixzPh6EJkhW/7eY1GcES8ToD pFQKCFPrOh+pLA1F2FGrnzgw+fG9N8WjcXFJzM9Z+FVvhACyvrmDmBZzMOfoM7Bk 5CpqetE2XkGCMC5WthfKfyvdkmr5L2iFCZj09SmvJAaeX73d2zSJsbgXrwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHr8Z42oqdQM44CCwY26IXJFLMmpMB8GA1UdIwQY MBaAFDTk9gsOUIcm3eaMHCVdBL0ho6GDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTk9UMkN3NVFoeWJkNW93Y0pWMEV2U0dqb1lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hZjNkYTAtYWY5Mi00MWI4LTg3YmYt ZDU4YjA5NGRmMDZjLzEvZXZ4bmphaXAxQXpqZ0lMQmpib2hja1VzeWFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9hZjNkYTAtYWY5Mi00MWI4LTg3YmYtZDU4YjA5NGRmMDZj LzEvTk9UMkN3NVFoeWJkNW93Y0pWMEV2U0dqb1lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+kgMA0G CSqGSIb3DQEBCwUAA4IBAQABPypfOBc8/BGbe4zOonO4q0YwHIOy2cSXq97mDyfu q3k4K0BveKPTaIL8OpgaGCpNAUEe+Kxm2+SbMYA5EJiUDKu1FWd0W0AbvWzjttJv /HsHLws+3KB95jlNyyxDcIk88ilSY/4YY6++QEk0T+9u0eO6sd4GvDpaOvCQZ4tn ubAY654pqeo1jWsiSSApGD0xjOYPBhHxkArCjJlSgw+ZhyDExJOKQQ26a3gNG9hv 7lokQkn05pmr8PyzNyPV7C1Sb5GR4ucUXgPtb4cKWBZ79A/H5UwAFPF+2l2ygZK0 piXjPBg+HVOW6biogwWKTrEu5YLB97+1oBnJu8ahE/1y -----END CERTIFICATE-----Generated at Mon Jan 26 13:45:05 2026 by rpki-client