This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/0wJmdEsIc6piCPouXDNhCCpeSRQ.roa File: 0wJmdEsIc6piCPouXDNhCCpeSRQ.roa (raw, json) Hash identifier: WR/b5AIQMqRHnWFbdkMYzAfrUMySKK0esBYcUMp0I1M= Subject key identifier: D3:02:66:74:4B:08:73:AA:62:08:FA:2E:5C:33:61:08:2A:5E:49:14 Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Certificate serial: 019B7DCA21B1A1BC3C56103077C4913C77E4 Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/0wJmdEsIc6piCPouXDNhCCpeSRQ.roa Signing time: Fri 02 Jan 2026 08:19:17 +0000 ROA not before: Fri 02 Jan 2026 08:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19740 IP address blocks: 83.136.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.mft rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:21:b1:a1:bc:3c:56:10:30:77:c4:91:3c:77:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd Validity Not Before: Jan 2 08:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d30266744b0873aa6208fa2e5c3361082a5e4914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1e:d6:7d:60:83:4f:aa:3b:b6:fb:61:c9:ac: 34:6a:85:fa:eb:ae:45:8f:cb:fc:c6:1e:dc:e2:99: a6:a4:9b:78:42:ef:2b:4d:e9:c6:1b:65:32:73:15: 73:6c:9a:fd:5a:4d:ca:38:8b:f2:50:5a:49:e3:6c: 8b:1d:3d:b9:26:6d:25:ab:f7:32:6a:85:58:b0:6f: b4:a7:17:eb:42:c0:92:7b:e4:91:01:64:1d:41:ca: b6:ba:68:1d:33:66:d5:df:cd:07:e5:63:f8:a0:dc: d9:9e:62:96:d1:e7:9b:19:cc:39:c8:f6:be:76:97: d4:60:1a:51:a4:62:d1:f1:04:a0:20:d2:b3:5b:9c: 84:c5:37:78:83:5d:bc:8d:68:a3:28:0b:cd:c1:80: 75:63:23:c2:0b:ed:30:bc:aa:d0:39:d3:30:92:ac: d8:e7:2f:51:89:39:f2:e7:91:9e:78:5c:96:a1:a0: 73:57:41:16:e1:e6:cc:b8:90:9a:90:7c:c6:b4:5b: e6:c0:bc:b4:b3:8c:4c:25:28:6f:a1:d0:52:9c:10: a3:71:42:4a:85:c7:cd:9e:47:26:43:05:fc:02:60: bc:78:d6:4d:27:07:44:05:42:de:cf:9c:a8:b0:c6: 81:c1:74:e7:92:dc:30:d6:57:d4:e4:10:f3:57:b5: eb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:02:66:74:4B:08:73:AA:62:08:FA:2E:5C:33:61:08:2A:5E:49:14 X509v3 Authority Key Identifier: keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/0wJmdEsIc6piCPouXDNhCCpeSRQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.50.0/24 Signature Algorithm: sha256WithRSAEncryption 76:07:d0:da:bb:4f:72:ea:36:af:20:1c:73:9a:cf:e2:88:8a: 85:e6:67:05:bc:3f:3e:71:88:c7:e9:52:62:2b:e5:b4:c2:03: c8:02:70:0f:f4:24:da:84:45:b4:7e:9b:49:14:8d:24:ed:4a: 5e:45:4c:bc:88:0a:3d:f5:06:a9:cc:03:b8:bc:b5:ed:39:25: 2f:77:93:cf:24:89:e1:65:11:7f:6f:f4:4e:d4:22:01:82:da: 01:cf:58:24:6e:38:2f:b2:65:cf:f9:17:81:d7:11:39:35:44: 2b:c0:d6:b1:aa:80:20:bf:47:95:1a:24:6e:12:62:f9:3c:a6: 19:e7:be:f0:74:ec:f3:99:97:3d:94:dd:fe:cd:a1:05:59:e8: 1b:54:9f:81:d8:df:3e:02:39:2e:1a:b1:34:ba:2b:2b:1c:12: e4:da:f1:90:ab:d5:82:17:26:96:ca:03:94:fa:4f:99:66:14: f4:42:4f:a0:09:10:13:59:55:b9:8d:63:83:e9:e8:a6:ba:d9: 53:42:f9:b1:3c:d9:ae:a3:75:5b:cb:84:50:28:33:c8:16:2b: 51:e5:47:4f:0e:f8:84:49:b2:dc:38:50:0c:07:eb:9b:16:7a: 9f:47:c9:59:b1:f0:c7:e4:d1:86:45:d8:0e:de:df:fa:b9:57: bc:04:4f:8e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yiGxobw8VhAwd8SRPHfkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyYzJiODM0ZmJjOTFhZjBlYzZiMWQzNGZkNjQwNTRkMjI2 OWExZmQwHhcNMjYwMTAyMDgxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzAyNjY3NDRiMDg3M2FhNjIwOGZhMmU1YzMzNjEwODJhNWU0OTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0x7WfWCDT6o7tvthyaw0aoX6665F j8v8xh7c4pmmpJt4Qu8rTenGG2UycxVzbJr9Wk3KOIvyUFpJ42yLHT25Jm0lq/cy aoVYsG+0pxfrQsCSe+SRAWQdQcq2umgdM2bV380H5WP4oNzZnmKW0eebGcw5yPa+ dpfUYBpRpGLR8QSgINKzW5yExTd4g128jWijKAvNwYB1YyPCC+0wvKrQOdMwkqzY 5y9RiTny55GeeFyWoaBzV0EW4ebMuJCakHzGtFvmwLy0s4xMJShvodBSnBCjcUJK hcfNnkcmQwX8AmC8eNZNJwdEBULez5yosMaBwXTnktww1lfU5BDzV7Xr8wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNMCZnRLCHOqYgj6LlwzYQgqXkkUMB8GA1UdIwQY MBaAFOLCuDT7yRrw7GsdNP1kBU0iaaH9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2Et OTk0ODA2ZjA4MWYwLzEvMHdKbWRFc0ljNnBpQ1BvdVhETmhDQ3BlU1JRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8zZjI0OWItZTgzNi00MWI0LTlhM2EtOTk0ODA2ZjA4MWYw LzEvNHNLNE5QdkpHdkRzYXgwMF9XUUZUU0pwb2YwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU4gyMA0G CSqGSIb3DQEBCwUAA4IBAQB2B9Dau09y6javIBxzms/iiIqF5mcFvD8+cYjH6VJi K+W0wgPIAnAP9CTahEW0fptJFI0k7UpeRUy8iAo99QapzAO4vLXtOSUvd5PPJInh ZRF/b/RO1CIBgtoBz1gkbjgvsmXP+ReB1xE5NUQrwNaxqoAgv0eVGiRuEmL5PKYZ 577wdOzzmZc9lN3+zaEFWegbVJ+B2N8+AjkuGrE0uisrHBLk2vGQq9WCFyaWygOU +k+ZZhT0Qk+gCRATWVW5jWOD6eimutlTQvmxPNmuo3Vby4RQKDPIFitR5UdPDviE SbLcOFAMB+ubFnqfR8lZsfDH5NGGRdgO3t/6uVe8BE+O -----END CERTIFICATE-----Generated at Mon Jan 19 21:25:09 2026 by rpki-client