This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/483806-045d-4856-b529-b47e74ed4e7e/1/EVP8JZC4veSxdxX6T8tUKYQ-OAA.roa File: EVP8JZC4veSxdxX6T8tUKYQ-OAA.roa (raw, json) Hash identifier: bYUAbwTN22M9GXhG7TnoyYrgAEb8pmrS9QwXIchXrAY= Subject key identifier: 11:53:FC:25:90:B8:BD:E4:B1:77:15:FA:4F:CB:54:29:84:3E:38:00 Certificate issuer: /CN=e31c010e95015c2123641d33120a7e9c9008002d Certificate serial: 019B77594C59104D475D4ED72B971500ABB4 Authority key identifier: E3:1C:01:0E:95:01:5C:21:23:64:1D:33:12:0A:7E:9C:90:08:00:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xwBDpUBXCEjZB0zEgp-nJAIAC0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/483806-045d-4856-b529-b47e74ed4e7e/1/EVP8JZC4veSxdxX6T8tUKYQ-OAA.roa Signing time: Thu 01 Jan 2026 02:18:19 +0000 ROA not before: Thu 01 Jan 2026 02:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21013 IP address blocks: 91.221.138.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/483806-045d-4856-b529-b47e74ed4e7e/1/4xwBDpUBXCEjZB0zEgp-nJAIAC0.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/483806-045d-4856-b529-b47e74ed4e7e/1/4xwBDpUBXCEjZB0zEgp-nJAIAC0.mft rsync://rpki.ripe.net/repository/DEFAULT/4xwBDpUBXCEjZB0zEgp-nJAIAC0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:4c:59:10:4d:47:5d:4e:d7:2b:97:15:00:ab:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e31c010e95015c2123641d33120a7e9c9008002d Validity Not Before: Jan 1 02:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1153fc2590b8bde4b17715fa4fcb5429843e3800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:49:09:9a:93:33:87:ab:f3:f4:8f:c9:9c:1e: 69:0c:cd:d4:5e:2b:62:3f:2f:1a:c0:95:00:b4:23: 9c:0a:dd:d9:92:82:67:a7:04:dd:06:a6:08:46:30: 1d:76:e6:6d:e4:cd:7f:af:7e:2f:bc:9c:30:5c:be: e2:86:eb:fa:49:ae:11:da:d6:f9:3f:eb:be:25:cc: c1:35:5d:ca:91:8b:bc:ef:fb:22:fc:43:0f:62:62: cb:cb:91:25:ce:8c:5b:46:ef:b1:18:c3:27:3f:97: 15:e4:eb:14:b1:e9:c3:5b:f5:72:d6:d6:59:28:2b: a1:37:3c:93:d7:2f:56:30:90:0a:3d:63:21:9d:e7: e5:19:2e:8d:e4:36:b6:40:75:fd:e3:68:fb:34:f3: ed:b0:1c:f2:59:b3:98:b2:06:fd:a2:ee:9d:cd:b3: 09:49:41:b5:5e:e4:35:c3:b4:cf:ae:5c:a6:d3:78: 05:78:f3:82:77:f5:c3:30:b3:ce:e3:b9:c8:13:e7: a5:1c:b6:28:11:51:a2:ac:69:66:a9:bb:02:1e:b0: fa:29:68:06:04:cd:f5:7d:fc:b2:cf:7d:39:49:9a: 39:9c:c3:20:0c:9e:82:04:b3:31:61:03:3a:48:32: 5e:69:38:12:fe:6d:f9:74:fb:c1:ab:33:46:1c:4b: 40:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:53:FC:25:90:B8:BD:E4:B1:77:15:FA:4F:CB:54:29:84:3E:38:00 X509v3 Authority Key Identifier: keyid:E3:1C:01:0E:95:01:5C:21:23:64:1D:33:12:0A:7E:9C:90:08:00:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xwBDpUBXCEjZB0zEgp-nJAIAC0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/483806-045d-4856-b529-b47e74ed4e7e/1/EVP8JZC4veSxdxX6T8tUKYQ-OAA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/483806-045d-4856-b529-b47e74ed4e7e/1/4xwBDpUBXCEjZB0zEgp-nJAIAC0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.221.138.0/23 Signature Algorithm: sha256WithRSAEncryption b8:57:fc:b3:a6:63:1d:53:cb:85:7a:b3:b5:12:d6:9b:90:c4: 05:86:5b:f4:af:32:3f:de:87:70:30:31:0e:3a:f1:7c:cb:92: e1:92:af:c1:0f:de:92:fe:37:a1:41:87:89:2d:32:5a:cd:2a: 38:05:4e:1b:86:f8:47:42:04:cd:b0:7a:60:cd:30:81:33:fd: 4c:bb:65:80:21:ea:c0:9b:16:2d:1c:7f:05:5b:d0:91:76:44: da:bd:54:b2:44:c2:c9:74:50:4a:8e:8e:02:bf:d6:77:ab:eb: 01:09:45:42:5e:47:e6:dc:6d:90:e2:5b:75:76:c7:f4:78:f9: f0:aa:21:a5:1f:bb:76:02:55:e3:f0:97:4e:39:25:c4:ba:4d: b4:59:f8:81:64:7d:8b:5b:e3:09:cd:25:2e:03:47:60:69:8b: cd:d2:e4:7b:07:ca:71:65:27:aa:04:43:51:4c:7f:85:73:1f: 9d:4a:29:d4:dc:97:09:20:c8:6d:e7:63:51:20:c9:eb:a4:fa: 8d:5b:ac:f9:58:ad:9a:44:5d:18:d5:34:e7:b8:2b:93:4e:9a: 52:2d:42:be:eb:38:c9:ad:07:c7:7a:9f:b2:ec:8a:32:cc:47: 95:06:25:f5:ae:2f:b2:61:3c:54:09:ca:83:2f:de:b0:86:03: a3:e6:3c:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WUxZEE1HXU7XK5cVAKu0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzMWMwMTBlOTUwMTVjMjEyMzY0MWQzMzEyMGE3ZTljOTAw ODAwMmQwHhcNMjYwMTAxMDIxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTUzZmMyNTkwYjhiZGU0YjE3NzE1ZmE0ZmNiNTQyOTg0M2UzODAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlUkJmpMzh6vz9I/JnB5pDM3UXiti Py8awJUAtCOcCt3ZkoJnpwTdBqYIRjAdduZt5M1/r34vvJwwXL7ihuv6Sa4R2tb5 P+u+JczBNV3KkYu87/si/EMPYmLLy5ElzoxbRu+xGMMnP5cV5OsUsenDW/Vy1tZZ KCuhNzyT1y9WMJAKPWMhneflGS6N5Da2QHX942j7NPPtsBzyWbOYsgb9ou6dzbMJ SUG1XuQ1w7TPrlym03gFePOCd/XDMLPO47nIE+elHLYoEVGirGlmqbsCHrD6KWgG BM31ffyyz305SZo5nMMgDJ6CBLMxYQM6SDJeaTgS/m35dPvBqzNGHEtAWQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBFT/CWQuL3ksXcV+k/LVCmEPjgAMB8GA1UdIwQY MBaAFOMcAQ6VAVwhI2QdMxIKfpyQCAAtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHh3QkRwVUJYQ0VqWkIwekVncC1uSkFJQUMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS80ODM4MDYtMDQ1ZC00ODU2LWI1Mjkt YjQ3ZTc0ZWQ0ZTdlLzEvRVZQOEpaQzR2ZVN4ZHhYNlQ4dFVLWVEtT0FBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS80ODM4MDYtMDQ1ZC00ODU2LWI1MjktYjQ3ZTc0ZWQ0ZTdl LzEvNHh3QkRwVUJYQ0VqWkIwekVncC1uSkFJQUMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW92KMA0G CSqGSIb3DQEBCwUAA4IBAQC4V/yzpmMdU8uFerO1EtabkMQFhlv0rzI/3odwMDEO OvF8y5Lhkq/BD96S/jehQYeJLTJazSo4BU4bhvhHQgTNsHpgzTCBM/1Mu2WAIerA mxYtHH8FW9CRdkTavVSyRMLJdFBKjo4Cv9Z3q+sBCUVCXkfm3G2Q4lt1dsf0ePnw qiGlH7t2AlXj8JdOOSXEuk20WfiBZH2LW+MJzSUuA0dgaYvN0uR7B8pxZSeqBENR TH+Fcx+dSinU3JcJIMht52NRIMnrpPqNW6z5WK2aRF0Y1TTnuCuTTppSLUK+6zjJ rQfHep+y7IoyzEeVBiX1ri+yYTxUCcqDL96whgOj5jze -----END CERTIFICATE-----Generated at Mon Jan 26 16:23:58 2026 by rpki-client