This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/44n2BWOxJ6dO4DUXD3ZQhuqTXCw.roa File: 44n2BWOxJ6dO4DUXD3ZQhuqTXCw.roa (raw, json) Hash identifier: xRAen/LoGpjFal+PF9uEQTn04AFHRdJqqyhWmWlHyNw= Subject key identifier: E3:89:F6:05:63:B1:27:A7:4E:E0:35:17:0F:76:50:86:EA:93:5C:2C Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c Certificate serial: 019B7DCB630D458A23AB4D7B8005B6978EB9 Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/44n2BWOxJ6dO4DUXD3ZQhuqTXCw.roa Signing time: Fri 02 Jan 2026 08:20:39 +0000 ROA not before: Fri 02 Jan 2026 08:20:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44554 IP address blocks: 88.151.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.mft rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:63:0d:45:8a:23:ab:4d:7b:80:05:b6:97:8e:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c Validity Not Before: Jan 2 08:20:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e389f60563b127a74ee035170f765086ea935c2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:41:52:1d:2d:21:4f:4c:16:7c:6e:35:96:f8: 4c:7d:1e:39:f8:7d:05:38:fe:c6:ee:45:4f:db:d3: fb:4d:9f:d2:d1:08:32:a2:62:6a:14:31:c6:22:89: 57:fa:d0:9b:86:31:0b:e0:6a:a5:73:40:3f:19:d1: e2:16:83:e6:b0:1c:fd:90:43:47:5b:df:67:83:00: 00:e3:e0:74:b6:30:ed:28:0a:ad:dc:b8:1a:7a:b6: de:22:e7:af:b0:a6:69:08:b9:b5:a6:da:34:89:1b: 30:45:a2:d1:3d:db:56:9f:73:ab:64:0b:ca:24:60: 19:a2:92:09:6a:4c:c0:fe:57:e7:74:a3:cc:16:f3: 85:65:e1:bb:dd:f0:b6:44:f7:30:e5:5e:52:20:83: a2:0f:ed:53:4a:49:cd:db:a2:c5:e6:f6:8c:fb:7b: 4e:8b:9d:ca:be:09:66:52:22:ce:2a:26:03:e8:0c: 74:bc:9e:70:3a:02:aa:07:25:80:1a:b5:e5:37:cb: 9d:72:81:1b:e6:84:af:b9:09:b8:bc:37:30:89:b3: 78:73:96:34:1a:df:42:3f:11:0c:cb:8e:6e:d2:43: 3f:1c:d9:ab:2c:c7:1e:28:93:02:33:d5:d7:95:f7: 11:f2:8a:12:a6:a4:37:db:fb:f9:bb:67:01:fd:52: ff:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:89:F6:05:63:B1:27:A7:4E:E0:35:17:0F:76:50:86:EA:93:5C:2C X509v3 Authority Key Identifier: keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/44n2BWOxJ6dO4DUXD3ZQhuqTXCw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.151.119.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:26:bc:05:b9:4d:55:e2:e9:e1:fa:65:a0:f0:c5:34:8e:78: 65:3e:50:ec:d1:a2:e0:39:dd:a3:76:7f:50:ca:d1:b5:08:17: dc:81:d7:1e:29:a0:81:e4:33:4a:53:c8:78:bc:89:6a:bc:fb: 6b:ce:45:e0:d7:ee:e5:3a:42:d0:55:70:01:e5:af:5c:72:e3: e5:4e:1d:ed:bc:8d:fa:0e:f7:5b:52:19:5e:3c:67:71:f1:e8: 35:84:0b:73:56:2e:62:ba:0c:67:01:4f:a1:91:fd:33:bd:17: a1:52:49:c4:73:5f:e4:9d:d5:d0:5d:e1:9e:55:ab:2d:7f:b5: 3d:33:e2:d8:77:18:20:11:61:8a:d4:d8:e8:b7:a3:a6:ec:e4: 01:e0:b5:7d:0e:9d:48:6a:69:ca:6f:ef:1c:77:6a:62:1f:a5: 71:96:73:ad:a0:65:03:4b:7f:35:11:e6:ab:42:8c:ce:2d:cb: 8d:c0:08:f2:00:da:de:32:e9:48:c5:97:b2:ea:b8:2b:0c:8c: 19:b2:80:51:50:49:a0:eb:9f:bc:14:8b:be:5a:85:c7:17:f2: ad:df:68:1e:2b:00:e2:dc:d8:ca:8b:25:0b:ce:4d:87:2f:fb: ec:89:4b:af:c5:13:59:0b:88:f7:b9:c3:c3:96:36:2c:0b:db: c9:96:aa:47 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y2MNRYojq017gAW2l465MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4 ZmNjNGMwHhcNMjYwMTAyMDgyMDM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzg5ZjYwNTYzYjEyN2E3NGVlMDM1MTcwZjc2NTA4NmVhOTM1YzJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs0FSHS0hT0wWfG41lvhMfR45+H0F OP7G7kVP29P7TZ/S0QgyomJqFDHGIolX+tCbhjEL4Gqlc0A/GdHiFoPmsBz9kENH W99ngwAA4+B0tjDtKAqt3LgaerbeIuevsKZpCLm1pto0iRswRaLRPdtWn3OrZAvK JGAZopIJakzA/lfndKPMFvOFZeG73fC2RPcw5V5SIIOiD+1TSknN26LF5vaM+3tO i53KvglmUiLOKiYD6Ax0vJ5wOgKqByWAGrXlN8udcoEb5oSvuQm4vDcwibN4c5Y0 Gt9CPxEMy45u0kM/HNmrLMceKJMCM9XXlfcR8ooSpqQ32/v5u2cB/VL/bwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOOJ9gVjsSenTuA1Fw92UIbqk1wsMB8GA1UdIwQY MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt MjM5ZDJmZTM5OGIxLzEvNDRuMkJXT3hKNmRPNERVWEQzWlFodXFUWEN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWJd3MA0G CSqGSIb3DQEBCwUAA4IBAQA6JrwFuU1V4unh+mWg8MU0jnhlPlDs0aLgOd2jdn9Q ytG1CBfcgdceKaCB5DNKU8h4vIlqvPtrzkXg1+7lOkLQVXAB5a9ccuPlTh3tvI36 DvdbUhlePGdx8eg1hAtzVi5iugxnAU+hkf0zvRehUknEc1/kndXQXeGeVastf7U9 M+LYdxggEWGK1Njot6Om7OQB4LV9Dp1IamnKb+8cd2piH6VxlnOtoGUDS381Eear QozOLcuNwAjyANreMulIxZey6rgrDIwZsoBRUEmg65+8FIu+WoXHF/Kt32geKwDi 3NjKiyULzk2HL/vsiUuvxRNZC4j3ucPDljYsC9vJlqpH -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:11 2026 by rpki-client