This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/USemJGuOXuxKBCP0-p9hKqQnVk8.roa File: USemJGuOXuxKBCP0-p9hKqQnVk8.roa (raw, json) Hash identifier: nxcEN4OqSK/bacvT7Bn14Ngezf3CPnj2PxJezhiVDGk= Subject key identifier: 51:27:A6:24:6B:8E:5E:EC:4A:04:23:F4:FA:9F:61:2A:A4:27:56:4F Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63 Certificate serial: 019B7AC8681BC8FED6446279B3C706D26BD8 Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/USemJGuOXuxKBCP0-p9hKqQnVk8.roa Signing time: Thu 01 Jan 2026 18:18:32 +0000 ROA not before: Thu 01 Jan 2026 18:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396077 IP address blocks: 103.84.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.mft rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:68:1b:c8:fe:d6:44:62:79:b3:c7:06:d2:6b:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63 Validity Not Before: Jan 1 18:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5127a6246b8e5eec4a0423f4fa9f612aa427564f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:14:bf:9d:b2:04:cf:08:15:f2:36:34:b0:33: 66:6c:c6:c5:32:d7:55:16:07:a3:a1:4a:2e:77:58: e5:51:69:1b:f5:38:a2:36:88:d9:3a:82:0c:aa:05: 9d:bd:0f:bd:b4:d8:fd:de:30:2e:99:d7:e7:96:17: 74:6c:b6:3c:cd:51:c5:59:90:ea:69:c3:4c:c7:03: 96:ef:24:2b:5c:dc:3b:d2:11:e7:73:e9:bd:9f:b5: 15:42:08:83:df:ad:2f:16:0a:4c:ff:22:d1:8c:bf: 31:fe:6f:eb:f5:97:a4:1d:fd:6f:1a:ac:a5:39:f1: 71:18:ff:11:ac:be:3c:48:0c:7e:37:fd:34:3f:83: 33:f6:c3:b1:ac:58:3b:7c:04:c2:ce:6e:28:63:82: a5:af:ca:c7:28:b4:0a:8b:35:b9:bf:9b:37:65:a4: 3c:11:82:ae:19:81:b1:07:bd:b3:e6:cd:b7:bf:33: a3:8f:cf:39:59:cb:66:ac:da:03:29:67:99:8e:8b: 79:c7:2e:50:8a:c1:e8:3b:f7:e0:12:f9:27:4a:b3: 94:e4:66:55:23:bd:78:b3:dd:a7:c3:92:23:f1:8c: fb:c9:05:4e:1e:33:af:67:d4:15:cf:87:de:f4:11: d6:35:e4:3d:73:99:c1:e8:c0:f1:5b:b3:f2:b6:92: da:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:27:A6:24:6B:8E:5E:EC:4A:04:23:F4:FA:9F:61:2A:A4:27:56:4F X509v3 Authority Key Identifier: keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/USemJGuOXuxKBCP0-p9hKqQnVk8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.212.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:11:37:b5:59:a1:36:02:c8:49:d5:79:7b:56:12:e6:fd:7a: 71:54:8a:c5:fd:c0:bd:80:37:18:cf:45:de:1e:01:1d:ab:86: 10:d9:dc:92:5d:50:f2:60:35:6b:80:ed:a1:47:ec:c1:99:55: 12:6c:5e:64:15:37:65:fc:89:42:6c:12:af:99:71:62:3c:10: 92:47:72:6b:91:94:d2:8d:52:7b:e9:68:46:4f:4f:cd:bd:a6: d4:c4:a9:fa:bb:6a:64:bd:da:12:89:63:aa:98:4d:46:af:f5: 33:bb:df:17:e5:3f:71:f1:65:8c:b1:6b:6f:13:a9:fa:d6:a3: 90:24:0e:89:47:c1:38:df:5e:a0:08:60:45:8a:e1:16:ad:4f: b6:32:d5:67:f7:e4:2d:35:69:20:7d:55:b4:6d:1a:8b:0c:8a: 7e:d9:e5:8f:ec:3b:bf:6a:c0:7a:49:e7:27:42:f2:0b:b8:9c: 86:47:b4:2a:61:a4:74:2b:02:fc:3b:6d:3c:c6:09:ca:4e:cb: cc:43:d8:70:3a:88:c1:96:0c:f0:97:04:41:0c:37:10:6f:88: 92:f5:65:cc:48:c0:b3:87:01:d6:83:3d:de:04:3f:df:10:2d: 00:15:6f:40:a6:44:2d:d9:eb:36:e6:ca:e4:8e:13:fa:23:c8: 4a:b8:74:73 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yGgbyP7WRGJ5s8cG0mvYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVlMWMzNDcyYzI1YWNkMzQ3MzY0YjdkNjMxMjYxOGFhMzUz MGNiNjMwHhcNMjYwMTAxMTgxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MTI3YTYyNDZiOGU1ZWVjNGEwNDIzZjRmYTlmNjEyYWE0Mjc1NjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RS/nbIEzwgV8jY0sDNmbMbFMtdV FgejoUoud1jlUWkb9TiiNojZOoIMqgWdvQ+9tNj93jAumdfnlhd0bLY8zVHFWZDq acNMxwOW7yQrXNw70hHnc+m9n7UVQgiD360vFgpM/yLRjL8x/m/r9ZekHf1vGqyl OfFxGP8RrL48SAx+N/00P4Mz9sOxrFg7fATCzm4oY4Klr8rHKLQKizW5v5s3ZaQ8 EYKuGYGxB72z5s23vzOjj885WctmrNoDKWeZjot5xy5QisHoO/fgEvknSrOU5GZV I714s92nw5Ij8Yz7yQVOHjOvZ9QVz4fe9BHWNeQ9c5nB6MDxW7PytpLaXQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFFEnpiRrjl7sSgQj9PqfYSqkJ1ZPMB8GA1UdIwQY MBaAFO4cNHLCWs00c2S31jEmGKo1MMtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYt YjRiOGRiMjBiMWZiLzEvVVNlbUpHdU9YdXhLQkNQMC1wOWhLcVFuVms4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYi8xZmY0NGYtNTFkNi00NTQ1LWFkMzYtYjRiOGRiMjBiMWZi LzEvN2h3MGNzSmF6VFJ6WkxmV01TWVlxalV3eTJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ1TUMA0G CSqGSIb3DQEBCwUAA4IBAQCbETe1WaE2AshJ1Xl7VhLm/XpxVIrF/cC9gDcYz0Xe HgEdq4YQ2dySXVDyYDVrgO2hR+zBmVUSbF5kFTdl/IlCbBKvmXFiPBCSR3JrkZTS jVJ76WhGT0/NvabUxKn6u2pkvdoSiWOqmE1Gr/Uzu98X5T9x8WWMsWtvE6n61qOQ JA6JR8E4316gCGBFiuEWrU+2MtVn9+QtNWkgfVW0bRqLDIp+2eWP7Du/asB6Secn QvILuJyGR7QqYaR0KwL8O208xgnKTsvMQ9hwOojBlgzwlwRBDDcQb4iS9WXMSMCz hwHWgz3eBD/fEC0AFW9ApkQt2es25srkjhP6I8hKuHRz -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:16 2026 by rpki-client