This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ewXhxfUYweAfNtTNLMjFR6J3WoE.roa File: ewXhxfUYweAfNtTNLMjFR6J3WoE.roa (raw, json) Hash identifier: KXWBxVOOMnbpsYdeI/0OKOhBkZHjER1IzWsuR1TxXjg= Subject key identifier: 7B:05:E1:C5:F5:18:C1:E0:1F:36:D4:CD:2C:C8:C5:47:A2:77:5A:81 Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Certificate serial: 019B7C8022D3C24D44E727BBDFF3CCA50476 Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ewXhxfUYweAfNtTNLMjFR6J3WoE.roa Signing time: Fri 02 Jan 2026 02:18:50 +0000 ROA not before: Fri 02 Jan 2026 02:18:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 152586 IP address blocks: 2.58.200.0/24 maxlen: 24 2.58.201.0/24 maxlen: 24 2.58.202.0/24 maxlen: 24 45.11.230.0/23 maxlen: 23 45.11.230.0/24 maxlen: 24 45.11.231.0/24 maxlen: 24 45.67.87.0/24 maxlen: 24 45.134.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.mft rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:22:d3:c2:4d:44:e7:27:bb:df:f3:cc:a5:04:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde Validity Not Before: Jan 2 02:18:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b05e1c5f518c1e01f36d4cd2cc8c547a2775a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:84:31:56:8d:32:9b:20:3d:70:df:b1:39:db: d0:03:69:86:e8:a4:8f:57:e5:38:bd:d5:db:25:a1: f2:fb:c3:21:ed:b0:89:4b:97:7c:03:c9:cc:6a:de: 5c:e3:bc:18:f2:20:fb:c6:f6:9f:cf:c5:9f:c5:79: bb:36:1b:db:1e:68:3b:d3:de:ae:da:f1:2b:b9:b6: c1:f3:6d:85:fa:97:49:de:77:10:7e:04:80:dc:1c: c5:1e:00:92:ae:51:86:8e:b5:c4:07:b7:65:f2:a5: 82:3b:7d:35:02:e9:79:5f:53:95:6d:01:e7:c8:0d: 02:3b:5b:e3:7c:66:2e:89:6c:b3:b5:6a:42:14:bc: af:f7:68:9e:09:6b:e8:d9:2a:ba:27:1d:dd:4e:a7: 88:6c:7f:2e:fc:b2:e6:98:b2:ee:e9:8f:93:32:25: b0:36:16:79:aa:f2:cd:ce:d7:cc:27:da:ad:8e:6f: 6d:e8:ad:1c:8c:e2:72:b0:ff:46:cf:55:86:71:44: c9:38:84:02:47:ab:7b:b6:c1:e4:35:a9:b7:f6:8c: 2f:9e:82:d7:71:ce:13:c5:81:3b:ab:b6:85:74:17: ca:ea:3d:ec:bc:03:84:23:b7:72:cd:c6:6b:aa:84: b0:d4:9e:d6:b2:f3:53:3f:4d:d2:0d:e0:8d:ed:65: fe:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:05:E1:C5:F5:18:C1:E0:1F:36:D4:CD:2C:C8:C5:47:A2:77:5A:81 X509v3 Authority Key Identifier: keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ewXhxfUYweAfNtTNLMjFR6J3WoE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.200.0-2.58.202.255 45.11.230.0/23 45.67.87.0/24 45.134.111.0/24 Signature Algorithm: sha256WithRSAEncryption 97:cf:81:be:6e:e3:ef:1f:ad:38:c6:d3:11:2d:c4:34:fb:8b: 76:c6:56:e6:cd:09:f2:fc:45:be:f1:f2:8f:fb:6b:2e:9c:b2: ae:46:d8:7e:72:79:52:74:4f:97:03:dc:03:54:9a:0a:3a:ad: f6:a6:bc:b8:8a:0e:7e:2d:d7:68:e6:64:75:0c:a3:c3:72:5e: 14:40:e7:11:10:76:c5:ee:e2:ed:d6:47:a1:86:24:ae:13:6c: 1b:d7:d0:1a:03:84:16:68:be:c1:bc:7f:01:62:03:b5:02:53: fb:d3:2b:0c:28:2b:7b:97:48:55:86:71:ee:d0:46:c8:aa:6c: 19:57:8e:8c:19:f2:88:c7:d2:86:7a:81:9e:81:32:ef:c2:26: c5:4b:5f:57:37:00:f2:36:1a:2c:ec:73:8d:8c:19:b0:26:d0: 61:e7:aa:68:51:18:c6:de:e1:ec:b4:9e:81:00:50:e3:21:69: 55:88:c4:13:fb:d2:bd:08:7a:42:51:ee:84:95:0c:b0:02:c1: 84:8f:cf:b7:cb:67:2b:cc:9c:c3:4f:c0:ad:bf:0b:6d:9f:38: f4:a7:ac:f4:76:5a:fc:79:6d:11:dd:c6:c1:ff:75:f9:c3:b6: 4a:15:0f:ba:ac:e9:e8:b6:c9:ac:b7:5e:90:46:80:5c:d1:ae: 36:2c:4c:fc -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt8gCLTwk1E5ye73/PMpQR2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3 NTJmZGUwHhcNMjYwMTAyMDIxODUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjA1ZTFjNWY1MThjMWUwMWYzNmQ0Y2QyY2M4YzU0N2EyNzc1YTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YQxVo0ymyA9cN+xOdvQA2mG6KSP V+U4vdXbJaHy+8Mh7bCJS5d8A8nMat5c47wY8iD7xvafz8WfxXm7NhvbHmg7096u 2vErubbB822F+pdJ3ncQfgSA3BzFHgCSrlGGjrXEB7dl8qWCO301Aul5X1OVbQHn yA0CO1vjfGYuiWyztWpCFLyv92ieCWvo2Sq6Jx3dTqeIbH8u/LLmmLLu6Y+TMiWw NhZ5qvLNztfMJ9qtjm9t6K0cjOJysP9Gz1WGcUTJOIQCR6t7tsHkNam39owvnoLX cc4TxYE7q7aFdBfK6j3svAOEI7dyzcZrqoSw1J7WsvNTP03SDeCN7WX+FwIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFHsF4cX1GMHgHzbUzSzIxUeid1qBMB8GA1UdIwQY MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt YTNjYTBkYjgzMjU0LzEvZXdYaHhmVVl3ZUFmTnRUTkxNakZSNkozV29FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0 LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgMAwDBAMCOsgD BAACOsoDBAEtC+YDBAAtQ1cDBAAthm8wDQYJKoZIhvcNAQELBQADggEBAJfPgb5u 4+8frTjG0xEtxDT7i3bGVubNCfL8Rb7x8o/7ay6csq5G2H5yeVJ0T5cD3ANUmgo6 rfamvLiKDn4t12jmZHUMo8NyXhRA5xEQdsXu4u3WR6GGJK4TbBvX0BoDhBZovsG8 fwFiA7UCU/vTKwwoK3uXSFWGce7QRsiqbBlXjowZ8ojH0oZ6gZ6BMu/CJsVLX1c3 API2Gizsc42MGbAm0GHnqmhRGMbe4ey0noEAUOMhaVWIxBP70r0IekJR7oSVDLAC wYSPz7fLZyvMnMNPwK2/C22fOPSnrPR2Wvx5bRHdxsH/dfnDtkoVD7qs6ei2yay3 XpBGgFzRrjYsTPw= -----END CERTIFICATE-----Generated at Mon Jan 19 17:33:03 2026 by rpki-client