This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/yeEWbOYgX_Oncu1Rzgm_LkCjWSg.roa File: yeEWbOYgX_Oncu1Rzgm_LkCjWSg.roa (raw, json) Hash identifier: SuLBsAyJ9wMKUX8JJrXZ9GO0IIZWlW+vtwNA4dWtXb4= Subject key identifier: C9:E1:16:6C:E6:20:5F:F3:A7:72:ED:51:CE:09:BF:2E:40:A3:59:28 Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733 Certificate serial: 019B7910328EE55CEB1FA39872CEF5AB8769 Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/yeEWbOYgX_Oncu1Rzgm_LkCjWSg.roa Signing time: Thu 01 Jan 2026 10:17:43 +0000 ROA not before: Thu 01 Jan 2026 10:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 264409 IP address blocks: 45.149.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.mft rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:32:8e:e5:5c:eb:1f:a3:98:72:ce:f5:ab:87:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733 Validity Not Before: Jan 1 10:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c9e1166ce6205ff3a772ed51ce09bf2e40a35928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4d:d1:58:b4:70:d2:df:9e:95:5f:fa:a3:f8: 3f:1a:64:fe:b4:4f:a3:0c:78:26:5c:9c:37:4c:a3: 7e:b7:8f:31:bb:3c:04:b7:ce:12:8b:6e:f9:78:fa: 33:15:bc:92:31:0a:67:53:92:17:71:1d:69:21:ab: e2:1a:13:a8:df:dd:24:4b:56:04:cd:d5:33:e9:9d: 73:5c:4c:2e:08:6a:55:03:39:06:d5:fa:f8:4e:59: a2:7e:81:18:da:ac:6e:98:a6:23:71:c2:a0:23:56: 62:0d:67:2b:4d:d9:7d:6e:9f:e3:85:2e:04:99:f5: d1:1a:41:0a:45:54:01:ab:95:35:ba:34:a6:b3:3b: 77:99:05:3b:c2:ef:ce:30:c8:41:0d:e2:9b:2b:ad: 79:ac:14:fc:79:7f:42:57:83:36:e8:89:38:04:5d: 08:48:61:d4:20:e3:2c:36:8c:54:9a:34:20:bb:c3: 43:41:12:ad:6a:e4:38:43:f1:65:a4:4c:ef:5b:7c: 6b:44:bc:9d:7e:45:8d:64:97:f4:df:33:76:3a:f0: 62:e7:9e:a3:f4:30:01:b2:76:16:52:8e:3c:89:1b: 86:96:cb:82:cf:9f:51:7b:94:b1:7c:ef:8b:6d:2f: ae:e5:93:59:23:91:d3:53:c3:c2:b9:24:5e:77:5f: 65:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:E1:16:6C:E6:20:5F:F3:A7:72:ED:51:CE:09:BF:2E:40:A3:59:28 X509v3 Authority Key Identifier: keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/yeEWbOYgX_Oncu1Rzgm_LkCjWSg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.149.95.0/24 Signature Algorithm: sha256WithRSAEncryption 59:7c:ac:21:ef:ab:76:b5:6c:df:15:a1:95:03:71:4a:67:18: cf:be:88:09:6a:96:76:a2:b4:e9:31:91:77:2f:28:b5:a2:8a: d3:91:b9:15:78:44:a1:72:93:5d:2b:c4:d4:08:75:05:d2:c2: 17:5c:3d:4f:3e:e9:91:83:cd:4d:25:8a:dc:af:c3:cd:89:d9: f6:32:71:5e:53:89:35:fd:7d:ef:d6:cf:62:16:37:18:9c:7b: e0:25:f7:e2:14:dd:c3:3d:b4:58:e4:f6:d6:b5:f8:2f:2f:1a: 65:6e:e1:67:75:77:1b:48:b9:4c:95:49:35:37:2e:92:be:08: e1:a9:a2:db:c3:b0:bf:b5:f0:c8:e8:cc:c8:6e:c7:89:3e:e7: 9f:3b:33:4a:17:7a:00:ad:73:74:e1:e6:53:8b:ed:cd:cd:b5: 37:ca:9a:c3:8a:38:39:65:7b:d6:50:f1:b5:f9:fb:b8:ad:c1: 7d:0a:80:87:6d:1f:a6:b3:85:56:7b:6f:e1:04:fe:62:18:c5: 89:c7:d2:ab:54:f6:7b:75:dc:16:5a:41:db:97:b5:9b:f2:3e: fa:d7:5b:c8:24:25:f4:c9:a2:78:dc:bf:65:e7:db:9b:7c:71: f8:d1:1a:96:85:ee:2d:e2:46:b1:2c:df:a5:cf:01:58:31:fd: 99:ed:48:d9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EDKO5VzrH6OYcs71q4dpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1NjM3NjkyZmY1YzQ1NDg2ZDEwNTNiMTQ5ZGMxNDIwMDI2 Y2Q3MzMwHhcNMjYwMTAxMTAxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjOWUxMTY2Y2U2MjA1ZmYzYTc3MmVkNTFjZTA5YmYyZTQwYTM1OTI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2E3RWLRw0t+elV/6o/g/GmT+tE+j DHgmXJw3TKN+t48xuzwEt84Si275ePozFbySMQpnU5IXcR1pIaviGhOo390kS1YE zdUz6Z1zXEwuCGpVAzkG1fr4TlmifoEY2qxumKYjccKgI1ZiDWcrTdl9bp/jhS4E mfXRGkEKRVQBq5U1ujSmszt3mQU7wu/OMMhBDeKbK615rBT8eX9CV4M26Ik4BF0I SGHUIOMsNoxUmjQgu8NDQRKtauQ4Q/FlpEzvW3xrRLydfkWNZJf03zN2OvBi556j 9DABsnYWUo48iRuGlsuCz59Re5SxfO+LbS+u5ZNZI5HTU8PCuSRed19lkwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMnhFmzmIF/zp3LtUc4Jvy5Ao1koMB8GA1UdIwQY MBaAFNVjdpL/XEVIbRBTsUncFCACbNczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDkt YWRlYWRlMjg2NWMxLzEveWVFV2JPWWdYX09uY3UxUnpnbV9Ma0NqV1NnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDktYWRlYWRlMjg2NWMx LzEvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZVfMA0G CSqGSIb3DQEBCwUAA4IBAQBZfKwh76t2tWzfFaGVA3FKZxjPvogJapZ2orTpMZF3 Lyi1oorTkbkVeEShcpNdK8TUCHUF0sIXXD1PPumRg81NJYrcr8PNidn2MnFeU4k1 /X3v1s9iFjcYnHvgJffiFN3DPbRY5PbWtfgvLxplbuFndXcbSLlMlUk1Ny6Svgjh qaLbw7C/tfDI6MzIbseJPuefOzNKF3oArXN04eZTi+3NzbU3yprDijg5ZXvWUPG1 +fu4rcF9CoCHbR+ms4VWe2/hBP5iGMWJx9KrVPZ7ddwWWkHbl7Wb8j7611vIJCX0 yaJ43L9l59ubfHH40RqWhe4t4kaxLN+lzwFYMf2Z7UjZ -----END CERTIFICATE-----Generated at Sun Jan 25 14:33:29 2026 by rpki-client