This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/eTWMSBp3g-16UDje-DuW2V6MyZA.roa File: eTWMSBp3g-16UDje-DuW2V6MyZA.roa (raw, json) Hash identifier: hPmex3YV052ex5E1T+0XcutmYptwXPGirLtYO5lS6nk= Subject key identifier: 79:35:8C:48:1A:77:83:ED:7A:50:38:DE:F8:3B:96:D9:5E:8C:C9:90 Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9 Certificate serial: 019B7A5AAA8C51DA1128B98061511761B7CF Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/eTWMSBp3g-16UDje-DuW2V6MyZA.roa Signing time: Thu 01 Jan 2026 16:18:40 +0000 ROA not before: Thu 01 Jan 2026 16:18:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42960 IP address blocks: 91.213.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.mft rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:aa:8c:51:da:11:28:b9:80:61:51:17:61:b7:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9 Validity Not Before: Jan 1 16:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=79358c481a7783ed7a5038def83b96d95e8cc990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:71:ea:f4:8a:f4:e3:1a:27:aa:aa:81:95:60: f9:d5:86:c2:8f:7a:ed:83:9f:2d:da:3d:b5:9b:34: 04:90:49:bd:91:d0:57:ad:04:1e:1c:f0:81:b7:d2: 03:f1:17:ff:b2:46:71:fc:02:21:ea:98:34:c8:0e: 1c:73:d5:74:5f:b5:d1:f5:cb:5a:56:17:e7:59:a8: 06:d5:c2:fb:29:7d:5f:5d:c2:81:25:04:a8:28:8d: bb:e4:03:9d:8a:cd:f4:e1:30:cb:b1:1f:03:c8:c0: 0b:a4:99:78:b3:10:39:ac:52:b9:0c:66:0a:d4:4d: bb:42:e9:08:18:c1:1f:1d:e5:9b:90:84:d4:ef:8c: 32:75:4a:d5:b6:39:8f:2d:15:0e:a5:8a:90:ee:b7: 21:41:8b:a2:44:7b:09:20:ae:1b:6a:27:1a:0e:e6: 22:69:2c:f6:42:0e:70:8f:05:4a:d1:a5:9b:f9:44: 8b:17:cd:23:91:a4:73:d6:63:8b:c3:6b:92:f5:66: 6f:43:11:33:26:e2:09:58:0a:45:53:c6:d0:d1:43: d3:b4:98:93:f8:9c:f5:34:e8:51:8e:b8:ba:ec:c2: f7:30:f0:c2:79:7b:84:c4:c4:ff:16:1b:fd:fc:99: 59:46:9a:40:37:eb:15:31:26:e4:4e:5b:3b:6e:1c: a4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:35:8C:48:1A:77:83:ED:7A:50:38:DE:F8:3B:96:D9:5E:8C:C9:90 X509v3 Authority Key Identifier: keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/eTWMSBp3g-16UDje-DuW2V6MyZA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.200.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:38:8a:3d:19:3a:89:e4:db:66:be:cd:a0:40:54:e2:b5:e4: 4b:f1:44:b0:dc:7a:41:df:06:43:a9:12:e2:52:13:68:89:c7: db:52:51:b2:e5:08:6e:28:13:7e:a4:c4:44:f4:59:08:59:75: f6:f2:ce:64:ee:64:92:87:27:ff:58:f4:e3:78:a5:86:96:a6: 08:61:07:65:54:74:63:d9:7c:16:e2:19:49:c2:69:1a:c7:93: 3a:58:82:7f:8f:d3:14:a5:77:fa:9e:dd:37:4d:11:fb:b6:7e: ae:5f:98:5c:d6:08:ee:dc:4d:3c:9e:51:cc:61:de:ec:4a:00: 0e:06:1c:61:f1:80:d4:52:07:c8:84:51:81:50:74:ef:bb:b1: 79:d9:55:8d:c8:bf:d3:fc:c7:9d:98:f5:90:3a:e8:ab:da:a1: ef:04:ff:ec:dc:ca:40:a9:2e:4c:a5:18:dd:44:bb:a0:b3:99: e7:6a:96:94:73:48:9d:4d:56:be:da:61:3a:6f:ff:e3:80:1a: 2c:47:d2:d2:a4:87:c5:d3:53:d1:c5:9a:14:35:ef:a3:64:94: c7:c7:9a:5f:c7:fd:2a:3f:97:7b:07:ff:18:88:e8:b4:60:7c: ca:02:d2:ab:5c:17:64:68:a6:27:2b:a1:80:bb:fc:93:c8:69: 68:15:63:79 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WqqMUdoRKLmAYVEXYbfPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmNDczODM4OWNiM2I5OThlYzRmYTZkNDI3MmY4ZGQ3OTlm YmM0YTkwHhcNMjYwMTAxMTYxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTM1OGM0ODFhNzc4M2VkN2E1MDM4ZGVmODNiOTZkOTVlOGNjOTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1XHq9Ir04xonqqqBlWD51YbCj3rt g58t2j21mzQEkEm9kdBXrQQeHPCBt9ID8Rf/skZx/AIh6pg0yA4cc9V0X7XR9cta VhfnWagG1cL7KX1fXcKBJQSoKI275AOdis304TDLsR8DyMALpJl4sxA5rFK5DGYK 1E27QukIGMEfHeWbkITU74wydUrVtjmPLRUOpYqQ7rchQYuiRHsJIK4baicaDuYi aSz2Qg5wjwVK0aWb+USLF80jkaRz1mOLw2uS9WZvQxEzJuIJWApFU8bQ0UPTtJiT +Jz1NOhRjri67ML3MPDCeXuExMT/Fhv9/JlZRppAN+sVMSbkTls7bhykjQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHk1jEgad4PtelA43vg7ltlejMmQMB8GA1UdIwQY MBaAFB9HODics7mY7E+m1CcvjdeZ+8SpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDBjNE9KeXp1WmpzVDZiVUp5LU4xNW43eEtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS81MTc2OTQtYzhhMS00NThiLTljZjIt NmM3ZTU2ODU4OTBjLzEvZVRXTVNCcDNnLTE2VURqZS1EdVcyVjZNeVpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS81MTc2OTQtYzhhMS00NThiLTljZjItNmM3ZTU2ODU4OTBj LzEvSDBjNE9KeXp1WmpzVDZiVUp5LU4xNW43eEtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9XIMA0G CSqGSIb3DQEBCwUAA4IBAQAuOIo9GTqJ5Ntmvs2gQFTiteRL8USw3HpB3wZDqRLi UhNoicfbUlGy5QhuKBN+pMRE9FkIWXX28s5k7mSShyf/WPTjeKWGlqYIYQdlVHRj 2XwW4hlJwmkax5M6WIJ/j9MUpXf6nt03TRH7tn6uX5hc1gju3E08nlHMYd7sSgAO Bhxh8YDUUgfIhFGBUHTvu7F52VWNyL/T/MedmPWQOuir2qHvBP/s3MpAqS5MpRjd RLugs5nnapaUc0idTVa+2mE6b//jgBosR9LSpIfF01PRxZoUNe+jZJTHx5pfx/0q P5d7B/8YiOi0YHzKAtKrXBdkaKYnK6GAu/yTyGloFWN5 -----END CERTIFICATE-----Generated at Tue Jan 20 12:10:09 2026 by rpki-client