This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/PrSTzjb4anDO0ErL3KjQg-R3FBA.roa File: PrSTzjb4anDO0ErL3KjQg-R3FBA.roa (raw, json) Hash identifier: ejXZZHtI/ExPSFwZNnX6zkac/4+ld4S7gRADON30tP0= Subject key identifier: 3E:B4:93:CE:36:F8:6A:70:CE:D0:4A:CB:DC:A8:D0:83:E4:77:14:10 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84F2478E458941C6C33523D2AC284A Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/PrSTzjb4anDO0ErL3KjQg-R3FBA.roa Signing time: Fri 02 Jan 2026 16:22:57 +0000 ROA not before: Fri 02 Jan 2026 16:22:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202362 IP address blocks: 93.170.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:f2:47:8e:45:89:41:c6:c3:35:23:d2:ac:28:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3eb493ce36f86a70ced04acbdca8d083e4771410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b1:1f:29:5c:41:b3:14:a5:7c:bc:ba:15:f8: 65:57:50:32:5c:ed:11:93:69:55:df:4f:5a:ce:29: e5:4c:3d:90:c2:20:7c:99:36:58:b2:98:36:95:10: 5f:98:4a:c3:7b:9b:21:aa:58:a7:90:3e:f7:e9:53: cb:67:83:9b:41:49:aa:7b:f1:75:16:6b:f6:76:11: 8b:63:1b:b1:3e:ec:ed:88:8e:39:02:bb:38:3f:6a: 28:c9:6c:14:b1:a3:03:71:85:6a:69:c7:68:2f:97: 6d:90:3e:b7:83:26:fd:66:7f:cf:67:83:06:3e:b7: e4:5b:0f:f6:2a:93:ef:8d:f0:5f:72:47:94:65:2e: 8a:aa:ac:a7:45:ca:95:5e:b3:a9:e9:0e:f5:91:67: af:a7:5d:be:4f:21:83:94:50:90:2c:77:ac:13:4c: 4b:ff:12:62:91:37:d5:f1:ca:77:fb:17:48:d0:dd: 9f:5d:7d:ad:3a:57:01:2e:9f:33:fc:a3:61:1a:2e: f4:ad:d9:59:6c:6c:a4:62:37:c1:01:11:66:7b:4c: 7a:41:03:c2:34:1d:9f:75:c2:db:c4:3b:f1:01:ba: ee:97:f8:ad:a4:ac:8d:62:3c:3f:29:fd:fe:2f:b6: d3:07:21:c7:d6:5a:a8:8d:3f:1f:d9:92:f1:41:1a: e1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B4:93:CE:36:F8:6A:70:CE:D0:4A:CB:DC:A8:D0:83:E4:77:14:10 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/PrSTzjb4anDO0ErL3KjQg-R3FBA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.170.53.0/24 Signature Algorithm: sha256WithRSAEncryption 88:f0:ad:9f:9c:30:89:ec:ba:38:b5:c6:ec:e4:98:ef:bf:6a: 89:0a:2f:8a:fb:64:f1:07:3d:bc:aa:5f:6f:e6:38:b4:39:ae: cd:7c:26:9d:36:de:32:c0:d1:39:a1:ad:6c:72:9f:85:c1:69: 46:64:9d:20:5c:76:13:a7:7a:8d:b6:cc:bc:8d:c4:bc:64:77: c0:56:4e:48:98:4e:ab:50:ec:46:cc:72:89:64:0d:af:de:38: 7b:67:9a:bf:14:2a:aa:e2:cf:60:21:69:ed:5c:bf:73:8f:0c: 78:58:cc:16:cb:1a:a6:54:32:31:2c:9b:67:1d:e0:f0:cc:0a: ef:39:83:d1:70:00:88:6e:bc:f4:b6:5d:b1:97:b1:90:d9:8b: 45:66:8b:dd:a7:d2:6e:70:1a:62:86:0c:96:0b:31:78:5f:24: 2c:22:e6:58:0c:86:19:a1:0d:d1:ae:93:e9:0b:f3:a1:80:4f: 6e:4d:79:a8:ac:75:d1:1c:db:a9:a7:9f:46:2a:56:2f:bf:f0: ca:9e:44:f5:87:8c:fa:db:ed:f1:c6:d5:64:70:fb:de:b6:8a: 34:c1:65:50:84:f0:76:ad:95:0e:c6:fe:25:b8:63:03:f6:1a: f2:3d:fe:de:df:be:e7:e8:71:bd:17:56:08:bb:5b:97:39:8d: 3f:b9:00:fb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hPJHjkWJQcbDNSPSrChKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZWI0OTNjZTM2Zjg2YTcwY2VkMDRhY2JkY2E4ZDA4M2U0NzcxNDEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7EfKVxBsxSlfLy6FfhlV1AyXO0R k2lV309azinlTD2QwiB8mTZYspg2lRBfmErDe5shqlinkD736VPLZ4ObQUmqe/F1 Fmv2dhGLYxuxPuztiI45Ars4P2ooyWwUsaMDcYVqacdoL5dtkD63gyb9Zn/PZ4MG PrfkWw/2KpPvjfBfckeUZS6KqqynRcqVXrOp6Q71kWevp12+TyGDlFCQLHesE0xL /xJikTfV8cp3+xdI0N2fXX2tOlcBLp8z/KNhGi70rdlZbGykYjfBARFme0x6QQPC NB2fdcLbxDvxAbrul/itpKyNYjw/Kf3+L7bTByHH1lqojT8f2ZLxQRrhxQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFD60k842+GpwztBKy9yo0IPkdxQQMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvUHJTVHpqYjRhbkRPMEVyTDNLalFnLVIzRkJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXao1MA0G CSqGSIb3DQEBCwUAA4IBAQCI8K2fnDCJ7Lo4tcbs5Jjvv2qJCi+K+2TxBz28ql9v 5ji0Oa7NfCadNt4ywNE5oa1scp+FwWlGZJ0gXHYTp3qNtsy8jcS8ZHfAVk5ImE6r UOxGzHKJZA2v3jh7Z5q/FCqq4s9gIWntXL9zjwx4WMwWyxqmVDIxLJtnHeDwzArv OYPRcACIbrz0tl2xl7GQ2YtFZovdp9JucBpihgyWCzF4XyQsIuZYDIYZoQ3RrpPp C/OhgE9uTXmorHXRHNupp59GKlYvv/DKnkT1h4z62+3xxtVkcPvetoo0wWVQhPB2 rZUOxv4luGMD9hryPf7e377n6HG9F1YIu1uXOY0/uQD7 -----END CERTIFICATE-----Generated at Mon Jan 26 09:40:43 2026 by rpki-client