This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/eb25b5-71ea-469d-9484-4ea6dfb2e5d3/1/v52ZTcdolNoppoOrn38Ym0qTh6M.roa File: v52ZTcdolNoppoOrn38Ym0qTh6M.roa (raw, json) Hash identifier: qxbDlAOHfwm8HgM041yuk5h+Fnz9xMLxo2BwLuu0zHI= Subject key identifier: BF:9D:99:4D:C7:68:94:DA:29:A6:83:AB:9F:7F:18:9B:4A:93:87:A3 Certificate issuer: /CN=49af2153f02409a464e4d7461c802d4b8dd10dff Certificate serial: 019B7F83215133DD7E5028E31EB5C2148802 Authority key identifier: 49:AF:21:53:F0:24:09:A4:64:E4:D7:46:1C:80:2D:4B:8D:D1:0D:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sa8hU_AkCaRk5NdGHIAtS43RDf8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/eb25b5-71ea-469d-9484-4ea6dfb2e5d3/1/v52ZTcdolNoppoOrn38Ym0qTh6M.roa Signing time: Fri 02 Jan 2026 16:20:58 +0000 ROA not before: Fri 02 Jan 2026 16:20:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201201 IP address blocks: 185.140.230.0/24 maxlen: 24 185.140.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ee/eb25b5-71ea-469d-9484-4ea6dfb2e5d3/1/Sa8hU_AkCaRk5NdGHIAtS43RDf8.crl rsync://rpki.ripe.net/repository/DEFAULT/ee/eb25b5-71ea-469d-9484-4ea6dfb2e5d3/1/Sa8hU_AkCaRk5NdGHIAtS43RDf8.mft rsync://rpki.ripe.net/repository/DEFAULT/Sa8hU_AkCaRk5NdGHIAtS43RDf8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:21:51:33:dd:7e:50:28:e3:1e:b5:c2:14:88:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49af2153f02409a464e4d7461c802d4b8dd10dff Validity Not Before: Jan 2 16:20:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf9d994dc76894da29a683ab9f7f189b4a9387a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a3:1e:98:4b:a2:81:a9:89:0f:7d:2a:f1:6f: f5:2f:f7:66:a8:ef:5c:a8:7b:76:b3:c5:28:e8:90: 2b:5b:00:c5:c6:9c:21:f0:bd:83:7b:ca:79:23:ea: cc:f1:00:d1:b2:4b:61:eb:54:72:00:63:25:a6:4a: 6d:07:de:0c:fa:8b:44:d7:3c:8f:18:4f:8e:c6:c7: 26:64:ce:a4:fc:a7:96:ae:95:61:a8:77:b4:6f:20: 25:ee:6a:9e:8a:b4:ef:f2:5d:d4:8e:81:51:48:fe: 5b:66:ee:61:bc:70:48:a5:11:75:46:40:21:79:89: 99:6c:49:30:4f:6f:58:8a:74:45:19:cd:93:95:ac: e8:48:2c:6d:a5:6b:de:03:5f:fa:1c:71:af:d6:f4: 63:9a:1c:34:6d:ce:79:d9:1c:c9:cf:72:7b:fe:1a: 30:5b:99:b8:c3:01:72:0c:97:41:68:b3:70:f1:aa: 0c:a9:a9:01:e2:f0:e4:ae:a3:cc:60:b3:89:8f:3d: 38:09:c6:75:7c:11:f6:64:9c:59:49:28:56:a2:55: 6a:ed:16:b9:6f:95:0b:b8:33:48:3b:74:e5:47:d2: 64:cb:33:a2:a9:9b:97:1d:d9:ee:8a:d4:65:b3:00: f4:e7:a9:26:eb:69:9a:35:a7:3d:df:a5:ee:f1:83: 54:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:9D:99:4D:C7:68:94:DA:29:A6:83:AB:9F:7F:18:9B:4A:93:87:A3 X509v3 Authority Key Identifier: keyid:49:AF:21:53:F0:24:09:A4:64:E4:D7:46:1C:80:2D:4B:8D:D1:0D:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sa8hU_AkCaRk5NdGHIAtS43RDf8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/eb25b5-71ea-469d-9484-4ea6dfb2e5d3/1/v52ZTcdolNoppoOrn38Ym0qTh6M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/eb25b5-71ea-469d-9484-4ea6dfb2e5d3/1/Sa8hU_AkCaRk5NdGHIAtS43RDf8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.140.230.0/23 Signature Algorithm: sha256WithRSAEncryption 01:1e:27:79:75:bc:54:dd:4f:f1:03:5d:03:40:cb:08:37:be: 81:ca:59:c3:9b:ec:74:ca:6a:1b:44:aa:b3:22:cf:80:3b:e2: d8:56:20:e6:4e:b2:18:d6:75:d8:68:c6:71:c0:8a:11:88:9a: e4:29:bd:99:c0:68:ae:d3:8e:c5:15:6c:6f:65:17:3e:4f:3c: 67:6a:84:65:5b:99:69:f2:22:18:70:8f:40:16:6b:a8:a5:34: 4d:ba:2a:3c:2f:57:3d:6d:84:0a:29:3c:f7:ed:7a:99:80:b7: d3:c4:83:74:26:70:6a:31:c6:25:eb:94:29:23:5f:ce:81:7b: 71:af:2b:84:a3:f1:88:92:3e:46:09:d5:1b:12:c5:5e:c4:0a: d8:4f:54:ba:35:87:5a:08:14:a4:d9:24:9c:be:f5:d7:c9:c2: 18:f6:e0:98:4f:b0:32:50:4f:ef:e2:ef:ec:3c:1e:f8:4b:ef: 74:9d:ff:76:2d:97:dd:9f:b6:08:5a:2f:b9:3d:bd:66:99:0c: c1:17:a6:56:b4:76:aa:23:a9:6a:0b:ad:6e:ee:46:16:59:be: d0:a8:4c:12:de:f5:56:fc:3a:ac:c6:21:65:8b:4f:1f:da:91: c9:5e:28:b1:b9:48:22:9b:ae:bf:99:ac:98:a0:11:fc:2c:71: 87:18:a9:50 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gyFRM91+UCjjHrXCFIgCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5YWYyMTUzZjAyNDA5YTQ2NGU0ZDc0NjFjODAyZDRiOGRk MTBkZmYwHhcNMjYwMTAyMTYyMDU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjlkOTk0ZGM3Njg5NGRhMjlhNjgzYWI5ZjdmMTg5YjRhOTM4N2EzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqMemEuigamJD30q8W/1L/dmqO9c qHt2s8Uo6JArWwDFxpwh8L2De8p5I+rM8QDRskth61RyAGMlpkptB94M+otE1zyP GE+OxscmZM6k/KeWrpVhqHe0byAl7mqeirTv8l3UjoFRSP5bZu5hvHBIpRF1RkAh eYmZbEkwT29YinRFGc2TlazoSCxtpWveA1/6HHGv1vRjmhw0bc552RzJz3J7/how W5m4wwFyDJdBaLNw8aoMqakB4vDkrqPMYLOJjz04CcZ1fBH2ZJxZSShWolVq7Ra5 b5ULuDNIO3TlR9JkyzOiqZuXHdnuitRlswD056km62maNac936Xu8YNU8QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL+dmU3HaJTaKaaDq59/GJtKk4ejMB8GA1UdIwQY MBaAFEmvIVPwJAmkZOTXRhyALUuN0Q3/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2E4aFVfQWtDYVJrNU5kR0hJQXRTNDNSRGY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9lYjI1YjUtNzFlYS00NjlkLTk0ODQt NGVhNmRmYjJlNWQzLzEvdjUyWlRjZG9sTm9wcG9Pcm4zOFltMHFUaDZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZS9lYjI1YjUtNzFlYS00NjlkLTk0ODQtNGVhNmRmYjJlNWQz LzEvU2E4aFVfQWtDYVJrNU5kR0hJQXRTNDNSRGY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuYzmMA0G CSqGSIb3DQEBCwUAA4IBAQABHid5dbxU3U/xA10DQMsIN76BylnDm+x0ymobRKqz Is+AO+LYViDmTrIY1nXYaMZxwIoRiJrkKb2ZwGiu047FFWxvZRc+TzxnaoRlW5lp 8iIYcI9AFmuopTRNuio8L1c9bYQKKTz37XqZgLfTxIN0JnBqMcYl65QpI1/OgXtx ryuEo/GIkj5GCdUbEsVexArYT1S6NYdaCBSk2SScvvXXycIY9uCYT7AyUE/v4u/s PB74S+90nf92LZfdn7YIWi+5Pb1mmQzBF6ZWtHaqI6lqC61u7kYWWb7QqEwS3vVW /DqsxiFli08f2pHJXiixuUgim66/mayYoBH8LHGHGKlQ -----END CERTIFICATE-----Generated at Sun Jan 25 13:00:34 2026 by rpki-client