This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/70XtVE6TWvgEEV1kUJJfnORg4mA.roa File: 70XtVE6TWvgEEV1kUJJfnORg4mA.roa (raw, json) Hash identifier: 1i2PvMAxM0XCX8i0yd2aVF6Dq6FFEPuHxEvgyC9xMBE= Subject key identifier: EF:45:ED:54:4E:93:5A:F8:04:11:5D:64:50:92:5F:9C:E4:60:E2:60 Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Certificate serial: 019B77593B3A66C3EAA33F974C1991D30687 Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/70XtVE6TWvgEEV1kUJJfnORg4mA.roa Signing time: Thu 01 Jan 2026 02:18:15 +0000 ROA not before: Thu 01 Jan 2026 02:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3223 IP address blocks: 188.213.19.0/24 maxlen: 24 188.213.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.mft rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:3b:3a:66:c3:ea:a3:3f:97:4c:19:91:d3:06:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59 Validity Not Before: Jan 1 02:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef45ed544e935af804115d6450925f9ce460e260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:52:74:20:82:46:91:ac:6b:7d:2a:3a:36:60: 3d:99:d7:20:97:f2:08:6e:b8:8c:c5:c0:35:67:b5: a0:6d:75:e8:ab:1a:aa:0f:12:1d:6d:34:84:b4:93: c0:ee:e2:a2:81:60:30:6a:43:e9:48:8b:67:4a:5c: b9:92:03:46:54:18:f0:10:1f:17:97:e1:15:a0:7b: 4f:f9:90:15:43:fc:2d:3e:44:7c:bc:c4:3b:d5:1e: 3d:ee:36:29:f8:7f:8c:00:0e:1f:bc:1d:de:ba:90: bf:9e:47:4c:2e:38:b3:87:e6:0d:2b:ef:8f:3b:0b: 31:8e:ce:c4:f5:a0:ad:2e:df:b7:b9:d1:f8:b0:34: cf:56:67:e7:ce:a8:02:57:04:1f:8c:e1:ba:02:62: 0a:53:2b:67:16:07:35:50:e2:69:66:d8:f8:eb:d0: 18:1e:75:e0:0c:6d:40:c8:d4:20:1b:b1:75:0b:26: bd:19:ac:a0:08:f0:7c:a6:8a:19:a8:74:c3:4c:f9: 76:71:27:a2:a8:f8:96:d2:9e:1a:d7:b7:02:87:b8: 01:d2:fe:55:31:3c:c5:91:17:9b:29:0e:77:05:fc: 59:16:11:0a:04:11:5c:35:fa:b8:54:d2:1e:27:53: bf:18:14:b9:81:2f:e0:82:71:37:c9:c1:e9:db:ce: 0f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:45:ED:54:4E:93:5A:F8:04:11:5D:64:50:92:5F:9C:E4:60:E2:60 X509v3 Authority Key Identifier: keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/70XtVE6TWvgEEV1kUJJfnORg4mA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.213.19.0/24 188.213.22.0/24 Signature Algorithm: sha256WithRSAEncryption d9:d5:1d:72:1e:bb:93:28:fa:85:05:25:1e:55:0f:68:4c:82: 1e:27:78:9b:81:98:b0:d8:58:4b:68:df:7a:ff:94:8e:63:fe: a1:22:78:d9:5a:f2:d8:d5:5d:be:da:c2:a3:ec:69:9f:fd:ce: 89:d3:8d:ea:fe:3a:99:94:29:80:40:f2:e4:a0:8e:79:89:d4: e6:7e:6b:a7:45:2e:fd:ba:a5:c7:89:10:c1:b2:5a:f9:42:ab: 33:ca:3c:21:d2:85:3c:02:aa:4f:55:12:03:de:b6:0e:2c:4d: 3b:e1:16:e4:f4:36:9e:c6:81:88:e8:bd:e6:d7:6b:8d:44:03: 45:fc:f5:e1:28:bc:1e:14:68:ad:5d:6b:a8:cb:b2:b0:50:58: 87:c1:35:dd:32:77:b5:3b:c9:e6:28:ba:74:45:eb:03:d6:f7: 22:30:92:9b:7f:62:d7:4d:9f:2d:b3:0b:f9:6b:fa:0f:c2:a8: ce:a4:5c:ae:9e:38:16:dd:1f:f9:88:7f:0f:f3:e5:48:15:7a: dc:23:23:40:39:93:73:51:fd:18:3f:91:d9:90:3b:41:f9:a7: 8e:71:f2:4f:1e:08:54:78:e8:a0:77:96:85:1b:31:91:f6:32: af:74:15:48:db:d9:aa:09:44:e7:bc:14:37:a6:0d:eb:4e:f7: f5:ca:75:c9 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3WTs6ZsPqoz+XTBmR0waHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4ZTYyNjM0ZTFiZDUxMzNhOWRlNDUxMmFlOThjYWQxYjIy MTliNTkwHhcNMjYwMTAxMDIxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjQ1ZWQ1NDRlOTM1YWY4MDQxMTVkNjQ1MDkyNWY5Y2U0NjBlMjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVJ0IIJGkaxrfSo6NmA9mdcgl/II briMxcA1Z7WgbXXoqxqqDxIdbTSEtJPA7uKigWAwakPpSItnSly5kgNGVBjwEB8X l+EVoHtP+ZAVQ/wtPkR8vMQ71R497jYp+H+MAA4fvB3eupC/nkdMLjizh+YNK++P Owsxjs7E9aCtLt+3udH4sDTPVmfnzqgCVwQfjOG6AmIKUytnFgc1UOJpZtj469AY HnXgDG1AyNQgG7F1Cya9GaygCPB8pooZqHTDTPl2cSeiqPiW0p4a17cCh7gB0v5V MTzFkRebKQ53BfxZFhEKBBFcNfq4VNIeJ1O/GBS5gS/ggnE3ycHp284PpwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFO9F7VROk1r4BBFdZFCSX5zkYOJgMB8GA1UdIwQY MBaAFPjmJjThvVEzqd5FEq6YytGyIZtZMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1PWW1OT0c5VVRPcDNrVVNycGpLMGJJaG0xay5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFl LTkyZTI1ZmUxNjMzMS8xLzcwWHRWRTZUV3ZnRUVWMWtVSkpmbk9SZzRtQS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNzgvZGEzMzk4LTY2OTgtNDVmMi1iYWFlLTkyZTI1ZmUxNjMz MS8xLzEtT1ltTk9HOVVUT3Aza1VTcnBqSzBiSWhtMWsuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAC81RMD BAC81RYwDQYJKoZIhvcNAQELBQADggEBANnVHXIeu5Mo+oUFJR5VD2hMgh4neJuB mLDYWEto33r/lI5j/qEieNla8tjVXb7awqPsaZ/9zonTjer+OpmUKYBA8uSgjnmJ 1OZ+a6dFLv26pceJEMGyWvlCqzPKPCHShTwCqk9VEgPetg4sTTvhFuT0Np7GgYjo vebXa41EA0X89eEovB4UaK1da6jLsrBQWIfBNd0yd7U7yeYounRF6wPW9yIwkpt/ YtdNny2zC/lr+g/CqM6kXK6eOBbdH/mIfw/z5UgVetwjI0A5k3NR/Rg/kdmQO0H5 p45x8k8eCFR46KB3loUbMZH2Mq90FUjb2aoJROe8FDemDetO9/XKdck= -----END CERTIFICATE-----Generated at Tue Jan 20 01:21:58 2026 by rpki-client