This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/sUsR2HbNhIh9JqR1GXAHv-XYNhk.roa File: sUsR2HbNhIh9JqR1GXAHv-XYNhk.roa (raw, json) Hash identifier: LoJvTK9+s4JOnlu993MYngefm22Ld/sOhXf+dIa030s= Subject key identifier: B1:4B:11:D8:76:CD:84:88:7D:26:A4:75:19:70:07:BF:E5:D8:36:19 Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Certificate serial: 019B7C11562A268D2378EABDE78C1A637B10 Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/sUsR2HbNhIh9JqR1GXAHv-XYNhk.roa Signing time: Fri 02 Jan 2026 00:17:49 +0000 ROA not before: Fri 02 Jan 2026 00:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29119 IP address blocks: 62.43.252.0/23 maxlen: 24 81.172.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.mft rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:56:2a:26:8d:23:78:ea:bd:e7:8c:1a:63:7b:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b Validity Not Before: Jan 2 00:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b14b11d876cd84887d26a475197007bfe5d83619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:46:0d:b8:3c:f8:59:38:d8:31:15:43:2a:11: b7:6b:46:32:20:82:79:59:9a:9a:28:4e:c5:bd:93: 99:ed:4f:39:da:5f:02:11:dd:fc:b5:7a:11:c5:46: 8a:ff:70:5c:16:8b:95:af:c5:19:26:f2:11:d7:f3: cf:40:f0:fc:bc:7e:73:86:b5:43:ec:c2:33:f4:9c: 45:bd:c1:89:ae:db:e5:53:12:34:9d:41:9b:09:02: e3:24:e9:d4:00:c6:69:70:99:55:ce:c7:54:d5:32: 59:d5:f9:fe:2c:d5:9c:bc:c6:03:03:e1:df:cd:7e: 75:f6:ed:1c:8c:19:69:1a:49:4a:60:3c:97:14:e1: df:12:e3:a4:6a:3c:8b:0b:ab:7e:4b:3e:78:df:64: 2c:44:15:9a:9c:63:b7:49:1a:c8:0c:96:23:58:f5: 40:0a:df:92:ba:9a:c5:53:5a:f7:fa:9d:82:15:af: 1f:19:77:3e:b8:49:38:bb:6f:72:70:19:63:89:1e: 13:f4:6f:82:af:09:29:6b:38:9c:67:15:af:9d:d2: f1:8a:52:e4:12:f6:7d:b2:39:ca:bb:62:f0:6c:2e: a5:2c:f0:e8:fd:bd:c7:cf:7f:d7:9b:e6:8d:49:7e: d3:32:73:27:b5:6f:8e:e0:ad:47:15:2a:c4:7b:2d: 1c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4B:11:D8:76:CD:84:88:7D:26:A4:75:19:70:07:BF:E5:D8:36:19 X509v3 Authority Key Identifier: keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/sUsR2HbNhIh9JqR1GXAHv-XYNhk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.43.252.0/23 81.172.112.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:11:16:87:d4:45:91:35:19:a5:21:58:8f:15:4e:19:2d:16: 06:2f:30:88:55:15:46:b3:d6:c2:f8:97:e6:73:eb:62:3f:05: 08:e6:c5:6e:11:99:e1:d5:3c:67:54:6e:d3:52:26:a1:cc:58: 1a:88:ee:5b:94:df:10:27:90:40:73:a2:03:5f:d8:9a:c3:fc: b9:77:c6:a1:4f:13:5f:cd:42:c4:8d:44:c9:8a:e2:c1:00:4c: 43:e7:16:b0:4e:bf:d4:b8:10:d4:4e:2b:d1:85:d4:6d:c5:43: bd:cc:74:78:16:5b:88:e0:03:66:6c:53:1f:79:40:96:af:6f: a2:f3:3f:50:80:c4:3a:4f:65:bf:5e:99:83:e1:bf:71:9d:16: 43:fe:01:de:db:57:ba:e5:7e:5c:4f:76:f1:2d:2b:50:4f:46: 70:26:42:34:dc:b6:52:14:be:a2:43:c3:21:73:cc:3e:be:7a: c4:21:cf:8a:8a:7f:53:d8:90:0f:2b:99:c2:63:19:f1:3e:ee: ff:90:64:a3:68:5c:6c:82:72:6e:73:c4:eb:c9:26:ff:04:78: 63:e3:7b:8c:2a:ee:4f:4c:4b:21:29:a5:f1:05:28:e8:c6:35: db:42:de:a2:22:70:25:da:70:39:12:b2:66:58:78:7b:35:fc: 12:af:f1:4e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EVYqJo0jeOq954waY3sQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MzRmMTY4NjEwMjg3NmM2MjE2YmNlYTI4YTVlNTAyZWMw ZDdiNmIwHhcNMjYwMTAyMDAxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTRiMTFkODc2Y2Q4NDg4N2QyNmE0NzUxOTcwMDdiZmU1ZDgzNjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0YNuDz4WTjYMRVDKhG3a0YyIIJ5 WZqaKE7FvZOZ7U852l8CEd38tXoRxUaK/3BcFouVr8UZJvIR1/PPQPD8vH5zhrVD 7MIz9JxFvcGJrtvlUxI0nUGbCQLjJOnUAMZpcJlVzsdU1TJZ1fn+LNWcvMYDA+Hf zX519u0cjBlpGklKYDyXFOHfEuOkajyLC6t+Sz5432QsRBWanGO3SRrIDJYjWPVA Ct+SuprFU1r3+p2CFa8fGXc+uEk4u29ycBljiR4T9G+CrwkpazicZxWvndLxilLk EvZ9sjnKu2LwbC6lLPDo/b3Hz3/Xm+aNSX7TMnMntW+O4K1HFSrEey0cowIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLFLEdh2zYSIfSakdRlwB7/l2DYZMB8GA1UdIwQY MBaAFNQ08WhhAodsYha86iil5QLsDXtrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2Ut NTcxMmQ5NWFlNjM4LzEvc1VzUjJIYk5oSWg5SnFSMUdYQUh2LVhZTmhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC83MjZiYjQtNWQ4Ny00MDJkLTkxY2UtNTcxMmQ5NWFlNjM4 LzEvMURUeGFHRUNoMnhpRnJ6cUtLWGxBdXdOZTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBPiv8AwQC UaxwMA0GCSqGSIb3DQEBCwUAA4IBAQBrERaH1EWRNRmlIViPFU4ZLRYGLzCIVRVG s9bC+Jfmc+tiPwUI5sVuEZnh1TxnVG7TUiahzFgaiO5blN8QJ5BAc6IDX9iaw/y5 d8ahTxNfzULEjUTJiuLBAExD5xawTr/UuBDUTivRhdRtxUO9zHR4FluI4ANmbFMf eUCWr2+i8z9QgMQ6T2W/XpmD4b9xnRZD/gHe21e65X5cT3bxLStQT0ZwJkI03LZS FL6iQ8Mhc8w+vnrEIc+Kin9T2JAPK5nCYxnxPu7/kGSjaFxsgnJuc8TrySb/BHhj 43uMKu5PTEshKaXxBSjoxjXbQt6iInAl2nA5ErJmWHh7NfwSr/FO -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:11 2026 by rpki-client