This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/34HMPXP3gEFiutCTD0yGcBkIiXc.roa File: 34HMPXP3gEFiutCTD0yGcBkIiXc.roa (raw, json) Hash identifier: bxhgk0bC5DY2ITvwM+gQQ6zIFbXvjkWnDfe1DuZaAkQ= Subject key identifier: DF:81:CC:3D:73:F7:80:41:62:BA:D0:93:0F:4C:86:70:19:08:89:77 Certificate issuer: /CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Certificate serial: 019B78A22F269FF688351BC341C0EF815301 Authority key identifier: 29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/34HMPXP3gEFiutCTD0yGcBkIiXc.roa Signing time: Thu 01 Jan 2026 08:17:33 +0000 ROA not before: Thu 01 Jan 2026 08:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57043 IP address blocks: 5.10.213.0/24 maxlen: 24 185.23.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.mft rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 11:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:2f:26:9f:f6:88:35:1b:c3:41:c0:ef:81:53:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297ef9befd1a7e24c0cc9729987fc065d6b7132f Validity Not Before: Jan 1 08:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df81cc3d73f7804162bad0930f4c867019088977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:71:c0:90:52:91:a6:32:d0:d5:b5:1e:2b:a1: ec:38:96:54:fc:57:95:57:8b:fb:29:05:b5:91:aa: 7f:09:b8:26:82:db:72:97:72:25:9f:71:25:ff:93: 5f:3a:ab:e5:09:0c:ab:98:23:10:11:2c:37:c7:4c: f1:5c:fd:26:a1:35:97:fb:af:04:14:22:44:fe:e2: 7c:00:76:a3:81:61:36:c8:95:f3:b0:24:8b:ae:a9: 37:b0:41:30:c5:64:48:74:29:a0:c5:0b:e7:d3:40: cd:55:da:85:54:9e:92:de:92:ae:b2:5b:13:4e:ab: 1f:a5:3b:1b:00:69:f8:3e:4a:e4:44:a5:26:15:f2: f0:a9:b9:24:ad:d4:f7:b5:ce:ce:0c:64:ef:0d:f2: 4f:e5:07:ac:c4:a2:d5:b2:a5:12:08:e2:1c:76:76: 4d:5f:d0:54:c8:6c:be:8a:03:33:28:c2:06:4b:a7: 9a:98:f0:de:9d:d4:f6:37:6f:d1:d0:61:d0:a4:df: 57:7f:08:1b:21:3e:bd:ef:21:56:f9:de:a6:b3:25: 80:5f:d8:fc:16:9b:2a:f8:63:da:c6:88:bf:8b:dd: 82:d8:27:f4:8e:0e:cd:69:2f:68:61:ec:d2:d3:31: ed:68:cd:56:c0:10:89:58:4a:c6:d0:3a:f6:7f:7a: 9e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:81:CC:3D:73:F7:80:41:62:BA:D0:93:0F:4C:86:70:19:08:89:77 X509v3 Authority Key Identifier: keyid:29:7E:F9:BE:FD:1A:7E:24:C0:CC:97:29:98:7F:C0:65:D6:B7:13:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KX75vv0afiTAzJcpmH_AZda3Ey8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/34HMPXP3gEFiutCTD0yGcBkIiXc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/be4909-745f-4d0c-bfab-dee76860013d/1/KX75vv0afiTAzJcpmH_AZda3Ey8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.10.213.0/24 185.23.239.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:12:94:42:1e:89:f7:b8:34:bd:82:32:62:68:f4:8e:81:04: 6f:29:a6:14:25:9b:da:ea:c2:7a:86:10:99:ed:d3:45:06:62: 6b:a0:e3:d6:9b:2a:2a:93:e7:32:d1:e6:82:17:34:dc:cb:f8: 32:e5:c4:8f:2d:b1:f0:de:9a:05:81:78:3b:75:66:76:94:ac: a6:06:7f:a7:42:79:12:b0:86:3b:8b:1f:83:2f:26:1f:1c:f2: b5:ee:47:24:ac:6e:0a:86:5e:b2:96:73:62:33:af:12:c4:2c: 15:f7:59:ed:69:d0:e0:f3:13:c8:40:57:ee:cd:3e:10:4f:f7: 6c:92:dc:62:b3:e7:21:e3:6a:ef:a9:6a:8a:e2:23:37:7c:7b: 13:18:90:12:ab:85:7c:e1:20:d2:db:17:4b:b4:0b:62:5f:45: 8c:ac:3d:34:9f:e8:8e:11:20:fb:28:07:76:5b:bb:17:28:3b: d0:c5:2e:5e:17:e2:25:66:1e:a6:53:e3:76:89:d2:10:a4:bc: 0e:e0:8b:02:b1:8c:8e:b2:08:f9:d1:a8:bf:a6:d4:34:29:14: cd:82:95:4e:4a:2e:4a:6c:9a:f3:a9:b3:97:a3:9a:d6:9c:9b: 7d:d3:5e:6b:34:38:7c:84:83:32:f6:93:c3:92:ce:57:a5:ff: a5:80:9d:05 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4oi8mn/aINRvDQcDvgVMBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5N2VmOWJlZmQxYTdlMjRjMGNjOTcyOTk4N2ZjMDY1ZDZi NzEzMmYwHhcNMjYwMTAxMDgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjgxY2MzZDczZjc4MDQxNjJiYWQwOTMwZjRjODY3MDE5MDg4OTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp3HAkFKRpjLQ1bUeK6HsOJZU/FeV V4v7KQW1kap/Cbgmgttyl3Iln3El/5NfOqvlCQyrmCMQESw3x0zxXP0moTWX+68E FCJE/uJ8AHajgWE2yJXzsCSLrqk3sEEwxWRIdCmgxQvn00DNVdqFVJ6S3pKuslsT TqsfpTsbAGn4PkrkRKUmFfLwqbkkrdT3tc7ODGTvDfJP5QesxKLVsqUSCOIcdnZN X9BUyGy+igMzKMIGS6eamPDendT2N2/R0GHQpN9XfwgbIT697yFW+d6msyWAX9j8 Fpsq+GPaxoi/i92C2Cf0jg7NaS9oYezS0zHtaM1WwBCJWErG0Dr2f3qe6wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFN+BzD1z94BBYrrQkw9MhnAZCIl3MB8GA1UdIwQY MBaAFCl++b79Gn4kwMyXKZh/wGXWtxMvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWIt ZGVlNzY4NjAwMTNkLzEvMzRITVBYUDNnRUZpdXRDVEQweUdjQmtJaVhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS9iZTQ5MDktNzQ1Zi00ZDBjLWJmYWItZGVlNzY4NjAwMTNk LzEvS1g3NXZ2MGFmaVRBekpjcG1IX0FaZGEzRXk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABQrVAwQA uRfvMA0GCSqGSIb3DQEBCwUAA4IBAQCeEpRCHon3uDS9gjJiaPSOgQRvKaYUJZva 6sJ6hhCZ7dNFBmJroOPWmyoqk+cy0eaCFzTcy/gy5cSPLbHw3poFgXg7dWZ2lKym Bn+nQnkSsIY7ix+DLyYfHPK17kckrG4Khl6ylnNiM68SxCwV91ntadDg8xPIQFfu zT4QT/dsktxis+ch42rvqWqK4iM3fHsTGJASq4V84SDS2xdLtAtiX0WMrD00n+iO ESD7KAd2W7sXKDvQxS5eF+IlZh6mU+N2idIQpLwO4IsCsYyOsgj50ai/ptQ0KRTN gpVOSi5KbJrzqbOXo5rWnJt9015rNDh8hIMy9pPDks5Xpf+lgJ0F -----END CERTIFICATE-----Generated at Wed Jan 21 18:20:21 2026 by rpki-client