This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/egh2jlJ3EvVVoKqsyyD80-m512Q.roa File: egh2jlJ3EvVVoKqsyyD80-m512Q.roa (raw, json) Hash identifier: RHu71nLbKp8lHX4W0lV6aHdUtImYmFlIXsjzf9wXMgw= Subject key identifier: 7A:08:76:8E:52:77:12:F5:55:A0:AA:AC:CB:20:FC:D3:E9:B9:D7:64 Certificate issuer: /CN=06097a72e4ae40b6b9929b72f81efd71c517dd98 Certificate serial: 019B7C805D6684229D1596DD9CA1DBD8A0AE Authority key identifier: 06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/egh2jlJ3EvVVoKqsyyD80-m512Q.roa Signing time: Fri 02 Jan 2026 02:19:05 +0000 ROA not before: Fri 02 Jan 2026 02:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49556 IP address blocks: 194.110.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:5d:66:84:22:9d:15:96:dd:9c:a1:db:d8:a0:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06097a72e4ae40b6b9929b72f81efd71c517dd98 Validity Not Before: Jan 2 02:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7a08768e527712f555a0aaaccb20fcd3e9b9d764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:27:67:16:42:4c:27:fb:5e:74:99:8a:90:54: 1e:7a:09:a1:8b:7f:aa:19:05:dd:dd:7a:9f:3d:1e: 09:44:71:dc:1c:c4:23:46:52:f7:eb:c6:8c:5f:69: 10:af:8a:c8:18:d5:e3:0e:f7:4e:2c:e0:e5:b3:87: 57:d6:aa:02:cc:3d:64:03:04:26:28:70:8e:a6:6c: a0:04:f3:a4:07:75:6a:81:4f:52:f2:0b:f5:61:93: 20:bc:38:45:17:02:37:70:cb:78:af:a7:b7:30:d4: 18:5f:2e:ec:ce:9b:28:ef:8a:e5:46:35:bc:e2:7a: 37:f1:69:4d:f7:6e:0b:be:8e:ee:22:00:5c:5b:d4: 27:fe:77:b6:b7:f2:fa:43:27:06:b9:b0:bc:12:e3: 14:af:36:4a:6b:f2:c9:46:66:64:26:f7:0d:e7:b0: 39:18:1b:e7:ec:aa:57:b4:0f:13:21:30:54:2b:ee: 8f:fc:0d:f8:78:62:5e:56:8b:5a:e4:6d:a1:bf:de: 68:d2:da:ff:55:6f:6d:a8:19:64:33:9a:b9:d8:4a: 25:c4:a6:5d:11:e4:bc:b1:4e:88:fd:c5:84:89:74: d9:e6:b6:e0:a8:8c:68:8e:1a:9a:f8:e7:71:53:dd: 15:72:25:7e:30:f0:e1:dd:3e:6e:86:17:67:67:4e: 45:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:08:76:8E:52:77:12:F5:55:A0:AA:AC:CB:20:FC:D3:E9:B9:D7:64 X509v3 Authority Key Identifier: keyid:06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/egh2jlJ3EvVVoKqsyyD80-m512Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.110.24.0/24 Signature Algorithm: sha256WithRSAEncryption 63:40:d2:03:fa:9c:39:0a:87:2b:2e:78:2b:38:02:53:48:84: 83:bb:8a:f4:9a:08:f4:aa:48:1e:35:28:83:90:8a:5e:bf:b6: 87:0e:a7:e4:7c:1d:bd:c2:17:34:0b:b4:08:4c:f5:aa:6a:32: d9:77:7b:23:86:38:34:ff:6f:c7:a3:83:c2:5c:f8:6e:7e:2d: e4:57:62:12:aa:34:2b:fd:5e:d0:7b:0c:bc:d4:c5:22:72:c9: 27:c6:38:6b:e3:06:5e:6f:e0:4e:6f:18:60:53:19:c7:73:ea: 79:e7:d8:20:6a:70:29:fe:d6:e7:c4:d7:9b:51:06:28:a9:c7: f8:fc:a5:26:66:f5:6d:51:c2:16:c6:50:70:63:ac:b0:d0:63: b2:a7:54:45:a3:f6:3d:29:bb:75:b4:c7:1f:f7:df:51:cd:62: 0b:04:90:0c:d9:45:53:1f:34:99:8d:95:8e:ad:36:ce:a1:36: cb:cd:2e:54:df:18:ed:47:4d:d4:45:a3:11:b7:ca:0d:bb:78: 12:98:da:40:80:76:a8:e7:7a:5d:27:c9:69:28:b6:42:6f:9f: 8c:58:3e:25:9f:ea:60:9f:56:a9:0e:6a:91:23:7c:02:a3:3e: ac:22:a3:7e:27:c1:22:df:86:a7:ae:dd:36:cf:c4:ca:66:e5: c1:38:52:09 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gF1mhCKdFZbdnKHb2KCuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MDk3YTcyZTRhZTQwYjZiOTkyOWI3MmY4MWVmZDcxYzUx N2RkOTgwHhcNMjYwMTAyMDIxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YTA4NzY4ZTUyNzcxMmY1NTVhMGFhYWNjYjIwZmNkM2U5YjlkNzY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyidnFkJMJ/tedJmKkFQeegmhi3+q GQXd3XqfPR4JRHHcHMQjRlL368aMX2kQr4rIGNXjDvdOLODls4dX1qoCzD1kAwQm KHCOpmygBPOkB3VqgU9S8gv1YZMgvDhFFwI3cMt4r6e3MNQYXy7szpso74rlRjW8 4no38WlN924Lvo7uIgBcW9Qn/ne2t/L6QycGubC8EuMUrzZKa/LJRmZkJvcN57A5 GBvn7KpXtA8TITBUK+6P/A34eGJeVota5G2hv95o0tr/VW9tqBlkM5q52EolxKZd EeS8sU6I/cWEiXTZ5rbgqIxojhqa+OdxU90VciV+MPDh3T5uhhdnZ05F1QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHoIdo5SdxL1VaCqrMsg/NPpuddkMB8GA1UdIwQY MBaAFAYJenLkrkC2uZKbcvge/XHFF92YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMt N2EwMjUxN2ZkOWQyLzEvZWdoMmpsSjNFdlZWb0txc3l5RDgwLW01MTJRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMtN2EwMjUxN2ZkOWQy LzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwm4YMA0G CSqGSIb3DQEBCwUAA4IBAQBjQNID+pw5CocrLngrOAJTSISDu4r0mgj0qkgeNSiD kIpev7aHDqfkfB29whc0C7QITPWqajLZd3sjhjg0/2/Ho4PCXPhufi3kV2ISqjQr /V7Qewy81MUicsknxjhr4wZeb+BObxhgUxnHc+p559gganAp/tbnxNebUQYoqcf4 /KUmZvVtUcIWxlBwY6yw0GOyp1RFo/Y9Kbt1tMcf999RzWILBJAM2UVTHzSZjZWO rTbOoTbLzS5U3xjtR03URaMRt8oNu3gSmNpAgHao53pdJ8lpKLZCb5+MWD4ln+pg n1apDmqRI3wCoz6sIqN+J8Ei34anrt02z8TKZuXBOFIJ -----END CERTIFICATE-----Generated at Mon Jan 26 23:23:20 2026 by rpki-client