This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/RWueY0qSJBqdnyfoUjIKJBQ4tBM.roa File: RWueY0qSJBqdnyfoUjIKJBQ4tBM.roa (raw, json) Hash identifier: bpFMaHQ2+HH7JzdJGHBSYoDlCYd8W8QG7hNLlWzI4Y4= Subject key identifier: 45:6B:9E:63:4A:92:24:1A:9D:9F:27:E8:52:32:0A:24:14:38:B4:13 Certificate issuer: /CN=213e1d50d52288bee80eea435577018712409bbe Certificate serial: 019B7910F25D0CDB7CB0251276D1C137F1DD Authority key identifier: 21:3E:1D:50:D5:22:88:BE:E8:0E:EA:43:55:77:01:87:12:40:9B:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IT4dUNUiiL7oDupDVXcBhxJAm74.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/RWueY0qSJBqdnyfoUjIKJBQ4tBM.roa Signing time: Thu 01 Jan 2026 10:18:32 +0000 ROA not before: Thu 01 Jan 2026 10:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34984 IP address blocks: 185.195.252.0/24 maxlen: 24 193.22.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/IT4dUNUiiL7oDupDVXcBhxJAm74.crl rsync://rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/IT4dUNUiiL7oDupDVXcBhxJAm74.mft rsync://rpki.ripe.net/repository/DEFAULT/IT4dUNUiiL7oDupDVXcBhxJAm74.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:f2:5d:0c:db:7c:b0:25:12:76:d1:c1:37:f1:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=213e1d50d52288bee80eea435577018712409bbe Validity Not Before: Jan 1 10:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=456b9e634a92241a9d9f27e852320a241438b413 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:1a:9c:3f:3a:7d:64:9a:5b:17:fe:70:01:6e: 21:ba:20:c2:d4:0e:8e:c0:72:0d:8d:75:65:e3:e9: cc:a5:de:1c:ef:ac:d8:da:f4:0d:1d:e6:37:19:60: 0a:9a:e9:57:c2:0d:18:ec:81:0f:50:01:03:33:a9: bb:83:e6:11:3d:94:bb:39:ff:3e:e8:55:d4:a5:13: 20:2c:b0:ef:7e:76:dc:d1:a9:30:84:25:fa:35:90: 96:d5:b9:33:8e:99:41:ac:34:ee:03:07:20:20:52: cb:0a:9d:b6:9c:f3:17:94:20:b0:40:bb:f9:1d:e7: 53:b6:53:ff:50:d8:62:11:bb:de:87:0b:be:07:fa: 6c:aa:cd:21:bf:31:7b:e8:bd:6b:e5:a0:bd:4a:21: f0:21:bd:e8:20:07:d0:6e:9b:33:f9:0f:03:04:b1: ab:31:19:d6:aa:20:07:44:6b:76:29:d3:b2:2e:51: de:c1:c3:10:96:ef:3e:5f:b6:fb:70:ed:06:7f:81: 2f:85:64:eb:a0:0f:36:5d:c1:49:74:a0:55:97:ba: f3:a2:7a:b8:19:d3:f2:31:b4:44:db:c4:af:e8:60: 78:e9:b9:e1:78:5b:a3:a6:b6:ea:47:88:39:2d:e4: 2d:fd:b6:ef:5a:1e:20:24:e6:a8:d5:a0:8c:5b:9f: f9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:6B:9E:63:4A:92:24:1A:9D:9F:27:E8:52:32:0A:24:14:38:B4:13 X509v3 Authority Key Identifier: keyid:21:3E:1D:50:D5:22:88:BE:E8:0E:EA:43:55:77:01:87:12:40:9B:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IT4dUNUiiL7oDupDVXcBhxJAm74.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/RWueY0qSJBqdnyfoUjIKJBQ4tBM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/2a1ce9-fb4c-41ee-9ff6-316ef261f4a5/1/IT4dUNUiiL7oDupDVXcBhxJAm74.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.195.252.0/24 193.22.12.0/24 Signature Algorithm: sha256WithRSAEncryption 71:a4:1c:b1:a7:b9:24:00:03:1b:e0:10:7a:d4:e6:f0:0c:a2: f7:ec:c8:65:7b:b8:f2:ab:bd:f2:1e:f0:f7:f9:d0:59:5a:78: 16:40:ef:e6:7f:f4:c8:08:13:a9:71:88:f6:63:cb:47:ac:54: ab:06:ac:ab:d3:46:40:56:92:ed:1d:36:bd:9f:5d:f4:bf:d6: 0b:8d:63:e1:ab:e1:d3:60:5d:aa:8d:2a:66:41:b9:17:5d:98: 5d:0b:92:68:2e:a6:fd:9e:5f:84:76:ef:ea:72:63:7f:2a:0a: e9:f5:ec:94:77:77:fe:96:d0:c2:71:12:7c:cb:6e:af:b5:33: ae:95:84:b6:e2:9d:79:c0:04:05:8e:14:c8:76:db:91:e0:c6: 2a:33:bd:c6:67:1d:94:bd:e7:4e:6a:15:3e:c1:a3:0e:75:5c: fb:ee:1e:64:a4:1f:5f:d3:9a:89:42:ae:eb:ab:eb:bc:1b:95: 1b:eb:be:fe:d7:58:01:11:f5:f8:54:73:29:f4:b9:f8:0c:36: 2a:f4:19:23:d9:52:b8:e4:f0:5d:1e:08:2f:b9:4a:24:fe:01: af:ad:79:95:84:91:ee:15:bf:11:e0:57:60:25:dd:a9:5c:58: da:6b:7f:59:00:4c:21:85:7a:40:42:d8:6d:e7:91:c6:32:57: e9:6a:77:58 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5EPJdDNt8sCUSdtHBN/HdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxM2UxZDUwZDUyMjg4YmVlODBlZWE0MzU1NzcwMTg3MTI0 MDliYmUwHhcNMjYwMTAxMTAxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTZiOWU2MzRhOTIyNDFhOWQ5ZjI3ZTg1MjMyMGEyNDE0MzhiNDEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5RqcPzp9ZJpbF/5wAW4huiDC1A6O wHINjXVl4+nMpd4c76zY2vQNHeY3GWAKmulXwg0Y7IEPUAEDM6m7g+YRPZS7Of8+ 6FXUpRMgLLDvfnbc0akwhCX6NZCW1bkzjplBrDTuAwcgIFLLCp22nPMXlCCwQLv5 HedTtlP/UNhiEbvehwu+B/psqs0hvzF76L1r5aC9SiHwIb3oIAfQbpsz+Q8DBLGr MRnWqiAHRGt2KdOyLlHewcMQlu8+X7b7cO0Gf4EvhWTroA82XcFJdKBVl7rzonq4 GdPyMbRE28Sv6GB46bnheFujprbqR4g5LeQt/bbvWh4gJOao1aCMW5/57wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEVrnmNKkiQanZ8n6FIyCiQUOLQTMB8GA1UdIwQY MBaAFCE+HVDVIoi+6A7qQ1V3AYcSQJu+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVQ0ZFVOVWlpTDdvRHVwRFZYY0JoeEpBbTc0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8yYTFjZTktZmI0Yy00MWVlLTlmZjYt MzE2ZWYyNjFmNGE1LzEvUld1ZVkwcVNKQnFkbnlmb1VqSUtKQlE0dEJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy8yYTFjZTktZmI0Yy00MWVlLTlmZjYtMzE2ZWYyNjFmNGE1 LzEvSVQ0ZFVOVWlpTDdvRHVwRFZYY0JoeEpBbTc0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAucP8AwQA wRYMMA0GCSqGSIb3DQEBCwUAA4IBAQBxpByxp7kkAAMb4BB61ObwDKL37Mhle7jy q73yHvD3+dBZWngWQO/mf/TICBOpcYj2Y8tHrFSrBqyr00ZAVpLtHTa9n130v9YL jWPhq+HTYF2qjSpmQbkXXZhdC5JoLqb9nl+Edu/qcmN/Kgrp9eyUd3f+ltDCcRJ8 y26vtTOulYS24p15wAQFjhTIdtuR4MYqM73GZx2UvedOahU+waMOdVz77h5kpB9f 05qJQq7rq+u8G5Ub677+11gBEfX4VHMp9Ln4DDYq9Bkj2VK45PBdHggvuUok/gGv rXmVhJHuFb8R4FdgJd2pXFjaa39ZAEwhhXpAQtht55HGMlfpandY -----END CERTIFICATE-----Generated at Mon Jan 26 05:31:20 2026 by rpki-client