This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/E38S2iuMO9vMOny68uYZj610htc.roa File: E38S2iuMO9vMOny68uYZj610htc.roa (raw, json) Hash identifier: j5FESm0d3Q8JXR8RXWmvIsv0pwl9dgxNmPqCykFcXso= Subject key identifier: 13:7F:12:DA:2B:8C:3B:DB:CC:3A:7C:BA:F2:E6:19:8F:AD:74:86:D7 Certificate issuer: /CN=500151e464b29791376c0c57beb40c584ef5a1cf Certificate serial: 019B7B35BA9109CB89AF3D103BEDB7A70F2D Authority key identifier: 50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/E38S2iuMO9vMOny68uYZj610htc.roa Signing time: Thu 01 Jan 2026 20:17:57 +0000 ROA not before: Thu 01 Jan 2026 20:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43824 IP address blocks: 185.222.49.0/24 maxlen: 24 185.222.50.0/24 maxlen: 24 2a0d:3680::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.mft rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ba:91:09:cb:89:af:3d:10:3b:ed:b7:a7:0f:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=500151e464b29791376c0c57beb40c584ef5a1cf Validity Not Before: Jan 1 20:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=137f12da2b8c3bdbcc3a7cbaf2e6198fad7486d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:61:3f:f4:3e:08:88:fd:5d:e3:e1:bf:0a:77: 32:0a:47:6c:be:cd:70:5f:27:e6:11:e9:36:ed:ab: 38:79:d9:48:3d:3c:34:83:f9:07:96:9f:98:f2:0f: 0b:76:61:19:71:48:af:04:66:31:be:0e:b5:6a:5f: 97:f3:5d:b1:2e:05:82:9e:3b:45:45:fe:b7:a6:dd: 78:41:7f:e9:49:59:34:16:cd:55:bb:15:cf:fa:0c: 7d:60:42:7b:7e:70:a1:43:6c:31:32:39:0e:80:4c: eb:a1:d5:89:62:68:ac:b4:11:dd:00:6f:97:5a:83: 8d:bf:19:8a:3a:a3:fe:41:49:71:e6:32:d0:0c:0d: cc:27:e9:5a:46:06:34:7b:cd:b1:4a:a5:14:f4:89: 56:e2:e0:82:1b:0e:bd:35:66:7c:49:46:c2:94:21: b6:30:7f:cc:78:97:21:a7:9a:0f:de:36:df:f1:3c: bc:49:51:6d:0e:6a:33:a4:8c:17:d2:1f:e3:d7:0e: 61:1c:35:69:1a:34:e2:d1:80:68:0c:52:14:44:ac: 2b:51:67:15:f7:0f:96:bd:71:31:b4:01:06:16:25: 37:eb:98:fe:64:d8:ea:c7:75:48:da:a7:28:d7:3d: bd:42:ed:03:5a:f9:7a:30:79:57:dc:3e:db:95:c2: 96:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:7F:12:DA:2B:8C:3B:DB:CC:3A:7C:BA:F2:E6:19:8F:AD:74:86:D7 X509v3 Authority Key Identifier: keyid:50:01:51:E4:64:B2:97:91:37:6C:0C:57:BE:B4:0C:58:4E:F5:A1:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UAFR5GSyl5E3bAxXvrQMWE71oc8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/E38S2iuMO9vMOny68uYZj610htc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/4a12c2-9bed-45dd-863c-0b9fb97e529d/1/UAFR5GSyl5E3bAxXvrQMWE71oc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.222.49.0-185.222.50.255 IPv6: 2a0d:3680::/29 Signature Algorithm: sha256WithRSAEncryption ae:6b:9b:5a:9b:79:c6:aa:cf:23:0a:a3:51:53:19:ed:e8:0f: 60:54:fb:15:5d:f9:c9:81:17:52:40:be:d8:5e:59:d7:fe:83: d3:98:c1:ba:ed:61:a3:34:71:47:b9:72:34:7f:a2:9e:5e:8a: 61:4c:28:d7:38:93:e0:e6:01:3e:92:56:b1:1a:36:e6:fd:c1: 0f:63:c0:4f:76:2c:3c:a3:04:4e:f4:45:b6:bc:9b:61:03:1a: 6a:f4:75:a2:9b:da:41:e7:82:e5:e1:85:c6:22:60:25:88:71: c2:02:0e:5f:c9:70:5b:37:8c:5e:7d:a2:8d:e2:ea:7b:bc:7e: 95:23:ab:61:94:46:f5:81:78:4c:98:e2:21:2d:59:28:5a:7a: 55:01:3c:a0:81:ff:d0:f0:1b:44:a5:b9:2f:54:8d:2a:31:a5: 24:eb:d0:72:c5:17:4c:f2:75:36:76:c1:92:cd:18:5d:22:d5: cb:8c:8e:ae:48:f5:0e:e6:e0:76:37:0b:64:8c:80:5e:fb:79: 46:1d:1d:5e:e8:9b:57:cb:a1:37:58:45:a8:bd:e9:4e:60:85: 53:76:6a:2d:c2:ce:d4:20:41:69:da:d8:3b:b7:9a:75:83:f6: e5:e1:2f:77:13:f3:71:71:e7:b2:9c:c1:d4:02:8e:f4:51:cb: 62:bf:b1:8b -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt7NbqRCcuJrz0QO+23pw8tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwMDE1MWU0NjRiMjk3OTEzNzZjMGM1N2JlYjQwYzU4NGVm NWExY2YwHhcNMjYwMTAxMjAxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzdmMTJkYTJiOGMzYmRiY2MzYTdjYmFmMmU2MTk4ZmFkNzQ4NmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2E/9D4IiP1d4+G/CncyCkdsvs1w XyfmEek27as4edlIPTw0g/kHlp+Y8g8LdmEZcUivBGYxvg61al+X812xLgWCnjtF Rf63pt14QX/pSVk0Fs1VuxXP+gx9YEJ7fnChQ2wxMjkOgEzrodWJYmistBHdAG+X WoONvxmKOqP+QUlx5jLQDA3MJ+laRgY0e82xSqUU9IlW4uCCGw69NWZ8SUbClCG2 MH/MeJchp5oP3jbf8Ty8SVFtDmozpIwX0h/j1w5hHDVpGjTi0YBoDFIURKwrUWcV 9w+WvXExtAEGFiU365j+ZNjqx3VI2qco1z29Qu0DWvl6MHlX3D7blcKWswIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFBN/EtorjDvbzDp8uvLmGY+tdIbXMB8GA1UdIwQY MBaAFFABUeRkspeRN2wMV760DFhO9aHPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi80YTEyYzItOWJlZC00NWRkLTg2M2Mt MGI5ZmI5N2U1MjlkLzEvRTM4UzJpdU1POXZNT255Njh1WVpqNjEwaHRjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi80YTEyYzItOWJlZC00NWRkLTg2M2MtMGI5ZmI5N2U1Mjlk LzEvVUFGUjVHU3lsNUUzYkF4WHZyUU1XRTcxb2M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAUBAIAATAOMAwDBAC53jED BAC53jIwDQQCAAIwBwMFAyoNNoAwDQYJKoZIhvcNAQELBQADggEBAK5rm1qbecaq zyMKo1FTGe3oD2BU+xVd+cmBF1JAvtheWdf+g9OYwbrtYaM0cUe5cjR/op5eimFM KNc4k+DmAT6SVrEaNub9wQ9jwE92LDyjBE70Rba8m2EDGmr0daKb2kHnguXhhcYi YCWIccICDl/JcFs3jF59oo3i6nu8fpUjq2GURvWBeEyY4iEtWShaelUBPKCB/9Dw G0SluS9UjSoxpSTr0HLFF0zydTZ2wZLNGF0i1cuMjq5I9Q7m4HY3C2SMgF77eUYd HV7om1fLoTdYRai96U5ghVN2ai3CztQgQWna2Du3mnWD9uXhL3cT83Fx57KcwdQC jvRRy2K/sYs= -----END CERTIFICATE-----Generated at Sun Jan 25 15:12:37 2026 by rpki-client