This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/sEQ0Qa52THdZs5Y182ANtZ7hKDo.roa File: sEQ0Qa52THdZs5Y182ANtZ7hKDo.roa (raw, json) Hash identifier: XiOI+IJ0csBrttytJWbyIbdpdJkGLgKS2+kYntVOVC0= Subject key identifier: B0:44:34:41:AE:76:4C:77:59:B3:96:35:F3:60:0D:B5:9E:E1:28:3A Certificate issuer: /CN=724ea41878ee9137e7c93d6dcd31d020ec3fe461 Certificate serial: 019B79EC28F25140EE4E6766BAA8E035711E Authority key identifier: 72:4E:A4:18:78:EE:91:37:E7:C9:3D:6D:CD:31:D0:20:EC:3F:E4:61 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ck6kGHjukTfnyT1tzTHQIOw_5GE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/sEQ0Qa52THdZs5Y182ANtZ7hKDo.roa Signing time: Thu 01 Jan 2026 14:17:58 +0000 ROA not before: Thu 01 Jan 2026 14:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3352 IP address blocks: 185.52.17.0/24 maxlen: 24 194.32.114.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/ck6kGHjukTfnyT1tzTHQIOw_5GE.crl rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/ck6kGHjukTfnyT1tzTHQIOw_5GE.mft rsync://rpki.ripe.net/repository/DEFAULT/ck6kGHjukTfnyT1tzTHQIOw_5GE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:28:f2:51:40:ee:4e:67:66:ba:a8:e0:35:71:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=724ea41878ee9137e7c93d6dcd31d020ec3fe461 Validity Not Before: Jan 1 14:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0443441ae764c7759b39635f3600db59ee1283a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6d:13:db:d0:de:1d:af:c7:a5:ce:9f:cf:5b: 18:0e:42:53:fb:d7:84:35:0b:4f:ab:c8:1a:7a:20: a8:6d:ba:9c:1c:a4:71:7d:ee:91:ea:d3:c8:db:ff: 4f:b1:04:52:6a:fa:5d:3b:a6:d5:6c:bf:4e:04:87: 36:a2:9b:d4:90:7f:11:f1:2e:ef:12:d6:d1:2f:bb: c5:45:6f:b1:17:2d:0b:74:3a:c7:b2:a4:53:d0:5a: ed:5d:d3:1b:ae:c1:44:8f:58:99:bb:b4:1d:dd:c8: 4b:6f:ae:95:46:ce:c1:86:83:c9:34:00:f9:e2:be: a1:5b:1a:01:32:ef:6c:45:af:5a:fe:f2:7b:64:54: 33:7a:e8:d3:33:5b:58:f2:1c:b2:1e:d4:f3:c8:08: e0:2a:ba:41:98:90:a2:96:83:19:5d:e3:77:31:61: 84:48:f9:58:96:17:b3:52:e5:41:56:fa:0c:55:4f: 5b:fd:f4:3a:8c:dc:2e:7c:c9:ab:13:6c:7c:f1:c6: 50:e0:ac:bb:ff:11:ad:61:b9:07:be:d2:63:bf:78: 47:42:2d:07:45:04:64:23:bf:65:60:5e:8d:44:10: ea:13:91:3c:e2:92:8f:8a:f2:9f:76:33:04:6b:a3: d1:cb:e2:1f:b8:69:10:02:c6:f4:d0:4e:55:eb:e7: 98:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:44:34:41:AE:76:4C:77:59:B3:96:35:F3:60:0D:B5:9E:E1:28:3A X509v3 Authority Key Identifier: keyid:72:4E:A4:18:78:EE:91:37:E7:C9:3D:6D:CD:31:D0:20:EC:3F:E4:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ck6kGHjukTfnyT1tzTHQIOw_5GE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/sEQ0Qa52THdZs5Y182ANtZ7hKDo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c254ef-34e6-48cd-9620-8d33b2a2fde8/1/ck6kGHjukTfnyT1tzTHQIOw_5GE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.52.17.0/24 194.32.114.0/23 Signature Algorithm: sha256WithRSAEncryption 69:6a:6b:4a:77:47:d3:7a:70:5b:83:eb:4b:3f:48:5a:a4:f1: 96:53:3c:70:2f:14:c6:3a:b9:71:b4:a9:7d:de:d6:2a:05:5c: 37:50:5c:84:a1:59:c3:b3:ed:03:1a:02:d8:74:04:b7:17:00: b9:2c:ba:bb:db:80:a0:77:d8:53:79:d1:b2:08:ef:8d:18:26: e2:a9:64:38:46:78:95:cb:29:3d:06:9d:04:7b:2a:f0:9a:1b: 20:d6:69:c0:93:63:2d:6e:6d:bb:dd:f4:fd:a3:8e:b9:f2:71: cb:9d:f0:c2:2c:ef:35:5f:0b:a4:4a:8d:98:f1:42:20:a1:28: 39:a5:74:00:dc:0b:c7:53:7e:8e:11:3a:12:3b:68:a0:ca:7c: 41:9d:dc:da:a8:c7:bd:ec:75:d5:d3:af:0c:7e:8f:d9:a5:a0: 73:de:48:6e:09:53:cd:74:d4:78:66:3c:76:4f:1f:5e:12:bb: 0f:a4:1f:2b:82:e2:4a:d2:08:dc:3a:1d:95:b4:49:db:d1:ae: 02:df:2e:e7:d7:93:33:e0:40:7b:52:1c:56:de:23:89:0b:67: d3:7c:b1:4c:91:bf:17:37:92:00:56:ee:8a:e6:80:92:53:2b: 69:fb:44:b2:d7:92:27:0b:6c:e7:1b:76:4c:20:86:11:7a:09: c8:05:de:66 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57CjyUUDuTmdmuqjgNXEeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyNGVhNDE4NzhlZTkxMzdlN2M5M2Q2ZGNkMzFkMDIwZWMz ZmU0NjEwHhcNMjYwMTAxMTQxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDQ0MzQ0MWFlNzY0Yzc3NTliMzk2MzVmMzYwMGRiNTllZTEyODNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuG0T29DeHa/Hpc6fz1sYDkJT+9eE NQtPq8gaeiCobbqcHKRxfe6R6tPI2/9PsQRSavpdO6bVbL9OBIc2opvUkH8R8S7v EtbRL7vFRW+xFy0LdDrHsqRT0FrtXdMbrsFEj1iZu7Qd3chLb66VRs7BhoPJNAD5 4r6hWxoBMu9sRa9a/vJ7ZFQzeujTM1tY8hyyHtTzyAjgKrpBmJCiloMZXeN3MWGE SPlYlhezUuVBVvoMVU9b/fQ6jNwufMmrE2x88cZQ4Ky7/xGtYbkHvtJjv3hHQi0H RQRkI79lYF6NRBDqE5E84pKPivKfdjMEa6PRy+IfuGkQAsb00E5V6+eYyQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFLBENEGudkx3WbOWNfNgDbWe4Sg6MB8GA1UdIwQY MBaAFHJOpBh47pE358k9bc0x0CDsP+RhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2s2a0dIanVrVGZueVQxdHpUSFFJT3dfNUdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9jMjU0ZWYtMzRlNi00OGNkLTk2MjAt OGQzM2IyYTJmZGU4LzEvc0VRMFFhNTJUSGRaczVZMTgyQU50WjdoS0RvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9jMjU0ZWYtMzRlNi00OGNkLTk2MjAtOGQzM2IyYTJmZGU4 LzEvY2s2a0dIanVrVGZueVQxdHpUSFFJT3dfNUdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuTQRAwQB wiByMA0GCSqGSIb3DQEBCwUAA4IBAQBpamtKd0fTenBbg+tLP0hapPGWUzxwLxTG OrlxtKl93tYqBVw3UFyEoVnDs+0DGgLYdAS3FwC5LLq724Cgd9hTedGyCO+NGCbi qWQ4RniVyyk9Bp0Eeyrwmhsg1mnAk2Mtbm273fT9o4658nHLnfDCLO81XwukSo2Y 8UIgoSg5pXQA3AvHU36OEToSO2igynxBndzaqMe97HXV068Mfo/ZpaBz3khuCVPN dNR4Zjx2Tx9eErsPpB8rguJK0gjcOh2VtEnb0a4C3y7n15Mz4EB7UhxW3iOJC2fT fLFMkb8XN5IAVu6K5oCSUytp+0Sy15InC2znG3ZMIIYRegnIBd5m -----END CERTIFICATE-----Generated at Tue Jan 27 06:37:42 2026 by rpki-client