This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/cuTgqaF9Lo_bi4ib9D11oj2UcE8.roa File: cuTgqaF9Lo_bi4ib9D11oj2UcE8.roa (raw, json) Hash identifier: vZ/4ZL9799z1lJ54WtyPkCrGfNvS3fE7pSKH1VfE2zg= Subject key identifier: 72:E4:E0:A9:A1:7D:2E:8F:DB:8B:88:9B:F4:3D:75:A2:3D:94:70:4F Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Certificate serial: 019B7CEE659749F13052701B4BC292B33CA6 Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/cuTgqaF9Lo_bi4ib9D11oj2UcE8.roa Signing time: Fri 02 Jan 2026 04:19:16 +0000 ROA not before: Fri 02 Jan 2026 04:19:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202736 IP address blocks: 87.229.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 00:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:65:97:49:f1:30:52:70:1b:4b:c2:92:b3:3c:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Validity Not Before: Jan 2 04:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72e4e0a9a17d2e8fdb8b889bf43d75a23d94704f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a9:04:09:ba:ea:08:a7:4b:40:42:e8:7e:73: 16:c1:51:73:b4:e8:5e:d0:e2:46:5c:5a:c3:ca:d8: 06:f3:d9:1e:bf:6c:d1:9c:fa:e0:75:47:b1:40:be: af:92:6f:1a:c4:33:99:a0:37:af:42:f3:7d:9f:95: bc:9b:9a:bd:d9:b6:ba:e9:31:75:7a:ee:57:bd:d4: 30:cd:69:15:ed:68:a2:18:68:9d:d0:8d:b0:43:46: 03:2f:78:53:43:1f:62:11:f5:e9:a5:22:f3:5f:47: a7:df:61:1f:8c:81:db:7c:b6:02:f9:8e:8f:79:74: 88:36:d7:57:4b:08:d0:27:3e:d6:6f:5f:f8:e7:e0: 29:22:6a:68:80:fc:fb:1b:8f:a1:46:b3:67:a5:6a: 40:69:36:fa:22:75:d9:38:71:b8:f4:c4:ef:9a:9d: 84:1a:64:26:ce:16:13:1a:a2:11:8a:9d:7b:1b:77: 61:3b:7b:04:58:2c:8a:fd:55:07:b2:51:4d:d1:51: bd:b4:c5:50:36:23:cf:4a:09:f4:b1:cf:91:9a:0e: 4b:34:54:9f:67:cd:01:5d:09:70:68:56:9b:d8:75: 1e:30:86:5a:21:09:62:8d:39:a8:84:47:5d:67:14: 55:6d:05:f1:a3:b6:72:75:fe:8e:dd:2d:f3:8d:1b: 47:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:E4:E0:A9:A1:7D:2E:8F:DB:8B:88:9B:F4:3D:75:A2:3D:94:70:4F X509v3 Authority Key Identifier: keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/cuTgqaF9Lo_bi4ib9D11oj2UcE8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.229.71.0/24 Signature Algorithm: sha256WithRSAEncryption 86:90:40:2f:2d:03:7a:38:5e:6a:e8:da:21:68:19:07:4f:24: cd:86:ff:8f:3c:d3:6f:01:41:b3:40:2c:44:f2:00:27:ad:cc: 56:c3:b9:8f:13:26:e8:31:ad:ef:d1:59:8e:b8:f8:45:01:b9: d4:b7:6c:bb:8b:2d:a1:95:3f:08:0f:d4:5b:c6:99:fd:4b:5e: 06:f5:0d:89:45:3e:6d:c8:4a:f5:5e:fc:a0:16:ae:af:05:66: be:85:be:68:26:67:3c:19:c1:35:86:e5:29:02:fe:16:7b:ec: d6:33:ac:80:d2:f8:7f:c5:d0:17:c9:84:53:c8:9c:69:3d:2f: 5f:fa:cc:27:df:f3:8d:21:be:d0:f9:1e:4e:97:af:75:9d:5a: 4a:dc:b0:16:bd:9e:2e:80:e1:ef:6e:cf:0c:72:27:d1:22:37: ce:ad:41:12:ed:c2:74:7e:92:83:41:9b:c7:3a:8b:88:e6:80: dc:f8:fe:83:03:28:fa:1d:1b:22:9a:89:5b:98:6a:aa:a3:4a: bc:d1:88:07:8e:df:ca:1e:98:b3:9a:3f:3f:47:3c:f7:75:fb: ff:f0:36:7f:29:41:bd:f8:d9:a0:db:9c:ab:7a:f1:59:ad:b4: 58:5a:9b:fd:8c:12:76:5d:40:6b:37:38:8c:9d:a2:31:9f:03: 58:e7:ca:f5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87mWXSfEwUnAbS8KSszymMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2 NDI0OTcwHhcNMjYwMTAyMDQxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MmU0ZTBhOWExN2QyZThmZGI4Yjg4OWJmNDNkNzVhMjNkOTQ3MDRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuakECbrqCKdLQELofnMWwVFztOhe 0OJGXFrDytgG89kev2zRnPrgdUexQL6vkm8axDOZoDevQvN9n5W8m5q92ba66TF1 eu5XvdQwzWkV7WiiGGid0I2wQ0YDL3hTQx9iEfXppSLzX0en32EfjIHbfLYC+Y6P eXSINtdXSwjQJz7Wb1/45+ApImpogPz7G4+hRrNnpWpAaTb6InXZOHG49MTvmp2E GmQmzhYTGqIRip17G3dhO3sEWCyK/VUHslFN0VG9tMVQNiPPSgn0sc+Rmg5LNFSf Z80BXQlwaFab2HUeMIZaIQlijTmohEddZxRVbQXxo7Zydf6O3S3zjRtHWQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHLk4KmhfS6P24uIm/Q9daI9lHBPMB8GA1UdIwQY MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt OTU5M2E0ODhhZmNjLzEvY3VUZ3FhRjlMb19iaTRpYjlEMTFvajJVY0U4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV+VHMA0G CSqGSIb3DQEBCwUAA4IBAQCGkEAvLQN6OF5q6NohaBkHTyTNhv+PPNNvAUGzQCxE 8gAnrcxWw7mPEyboMa3v0VmOuPhFAbnUt2y7iy2hlT8ID9Rbxpn9S14G9Q2JRT5t yEr1XvygFq6vBWa+hb5oJmc8GcE1huUpAv4We+zWM6yA0vh/xdAXyYRTyJxpPS9f +swn3/ONIb7Q+R5Ol691nVpK3LAWvZ4ugOHvbs8McifRIjfOrUES7cJ0fpKDQZvH OouI5oDc+P6DAyj6HRsimolbmGqqo0q80YgHjt/KHpizmj8/Rzz3dfv/8DZ/KUG9 +Nmg25yrevFZrbRYWpv9jBJ2XUBrNziMnaIxnwNY58r1 -----END CERTIFICATE-----Generated at Sun Jan 11 07:31:14 2026 by rpki-client