This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1tYEnxVSD_g3oJ1-kr_ueLkeStE.roa File: 1tYEnxVSD_g3oJ1-kr_ueLkeStE.roa (raw, json) Hash identifier: j3R150TLYGKuMG+117M2V/IROBf1bTF3etkxtckFZ2E= Subject key identifier: D6:D6:04:9F:15:52:0F:F8:37:A0:9D:7E:92:BF:EE:78:B9:1E:4A:D1 Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0 Certificate serial: 019B7DCB55A58D5BF94D65629B41A7EE6DDA Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1tYEnxVSD_g3oJ1-kr_ueLkeStE.roa Signing time: Fri 02 Jan 2026 08:20:36 +0000 ROA not before: Fri 02 Jan 2026 08:20:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 149513 IP address blocks: 37.202.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.mft rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 21:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:55:a5:8d:5b:f9:4d:65:62:9b:41:a7:ee:6d:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0 Validity Not Before: Jan 2 08:20:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d6d6049f15520ff837a09d7e92bfee78b91e4ad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dc:4f:8b:34:13:79:1b:8c:3c:d2:2a:b1:aa: 50:b3:50:b9:91:0a:c4:ec:ef:56:7a:85:c6:f8:bd: c7:15:12:a5:15:0b:2b:7f:d3:05:cd:30:aa:64:65: 75:45:8d:8c:51:99:f9:f4:dd:0b:75:bd:28:a1:b0: e1:26:4e:a4:5d:50:42:24:d3:6c:45:8c:f5:77:d0: 8c:b6:df:6b:95:87:c1:e4:4c:cc:ac:f7:99:29:b7: c2:48:75:3a:25:6e:04:db:13:f8:a9:48:54:11:50: b4:df:60:85:25:c5:16:4c:1d:5f:a3:c1:15:74:7d: 59:86:d9:4a:2f:51:8d:a8:33:69:2e:4e:d7:b8:38: 46:43:93:ae:9a:0a:57:39:b8:34:95:33:19:64:68: 5b:f5:c9:bc:b9:27:38:1c:9e:82:64:e8:1d:5c:3f: 7c:d1:09:e3:96:3e:88:68:63:8f:32:53:80:88:24: 6b:7e:13:f8:76:e5:92:06:4b:d2:58:70:3b:85:8d: d3:04:ee:0b:79:50:87:ac:92:50:ea:87:c5:65:be: 48:13:a8:5e:91:91:eb:75:a0:78:e5:32:24:58:00: cd:a6:69:72:1d:a9:b7:ad:c9:5e:0d:ad:4d:4c:60: 38:03:18:5e:b8:91:63:28:41:72:74:be:e3:57:18: a5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:D6:04:9F:15:52:0F:F8:37:A0:9D:7E:92:BF:EE:78:B9:1E:4A:D1 X509v3 Authority Key Identifier: keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/1tYEnxVSD_g3oJ1-kr_ueLkeStE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.202.200.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:67:61:cb:20:f3:6c:01:68:9c:2f:ea:b1:0c:b6:fb:ca:97: f1:29:2b:4d:ba:c9:40:17:8b:11:08:ba:a6:53:1a:83:64:70: 41:7c:33:dd:5e:c6:c0:ed:ca:d5:70:38:57:c2:2e:52:2a:4c: 4e:2a:a3:0d:cc:e7:40:ab:c8:7d:7f:ce:9f:d8:09:31:a5:d7: e4:2c:2c:14:d5:c1:e0:e6:53:91:8f:c6:18:14:0d:f1:e2:e7: 3f:60:8b:9a:82:f1:eb:be:71:49:0b:fe:fc:ae:e2:11:2f:b2: 0d:48:0b:1e:3b:6f:b3:12:51:5c:f6:c1:4f:96:02:f5:8f:b0: fa:d1:5d:f7:29:80:1c:a4:ae:2a:2b:37:0f:07:79:8d:97:2e: c6:16:51:f0:ec:20:d4:7f:a4:10:3c:63:2d:98:e9:4d:7e:29: af:50:f3:94:7b:a1:b4:aa:03:91:56:f6:59:68:42:93:e2:5a: 02:03:c0:7d:8e:e3:df:6c:23:85:1d:2a:ea:8b:29:22:b1:06: e2:7f:b4:2d:91:52:c3:7e:d8:42:89:21:a0:79:0a:66:bf:55: bc:da:8d:ed:08:3e:57:17:81:e1:4a:e0:0c:90:00:b0:52:46: e9:36:41:16:61:f8:d8:0f:89:86:f3:89:1e:86:cf:39:1d:b4: 22:0f:c5:38 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y1WljVv5TWVim0Gn7m3aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2NjI2NmY0NjZmYjI0OThhMzk0NTliMzM1MmRhMjUxNTFh NWE0YzAwHhcNMjYwMTAyMDgyMDM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNmQ2MDQ5ZjE1NTIwZmY4MzdhMDlkN2U5MmJmZWU3OGI5MWU0YWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9xPizQTeRuMPNIqsapQs1C5kQrE 7O9WeoXG+L3HFRKlFQsrf9MFzTCqZGV1RY2MUZn59N0Ldb0oobDhJk6kXVBCJNNs RYz1d9CMtt9rlYfB5EzMrPeZKbfCSHU6JW4E2xP4qUhUEVC032CFJcUWTB1fo8EV dH1ZhtlKL1GNqDNpLk7XuDhGQ5OumgpXObg0lTMZZGhb9cm8uSc4HJ6CZOgdXD98 0Qnjlj6IaGOPMlOAiCRrfhP4duWSBkvSWHA7hY3TBO4LeVCHrJJQ6ofFZb5IE6he kZHrdaB45TIkWADNpmlyHam3rcleDa1NTGA4AxheuJFjKEFydL7jVxilXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNbWBJ8VUg/4N6CdfpK/7ni5HkrRMB8GA1UdIwQY MBaAFMZiZvRm+ySYo5RZszUtolFRpaTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEt MTdiOWRlMTQxMjUyLzEvMXRZRW54VlNEX2czb0oxLWtyX3VlTGtlU3RFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9mNDNiMWQtOWU1MC00NTUxLWFlNmEtMTdiOWRlMTQxMjUy LzEveG1KbTlHYjdKSmlqbEZtek5TMmlVVkdscE1BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJcrIMA0G CSqGSIb3DQEBCwUAA4IBAQCeZ2HLIPNsAWicL+qxDLb7ypfxKStNuslAF4sRCLqm UxqDZHBBfDPdXsbA7crVcDhXwi5SKkxOKqMNzOdAq8h9f86f2AkxpdfkLCwU1cHg 5lORj8YYFA3x4uc/YIuagvHrvnFJC/78ruIRL7INSAseO2+zElFc9sFPlgL1j7D6 0V33KYAcpK4qKzcPB3mNly7GFlHw7CDUf6QQPGMtmOlNfimvUPOUe6G0qgORVvZZ aEKT4loCA8B9juPfbCOFHSrqiykisQbif7QtkVLDfthCiSGgeQpmv1W82o3tCD5X F4HhSuAMkACwUkbpNkEWYfjYD4mG84kehs85HbQiD8U4 -----END CERTIFICATE-----Generated at Sun Jan 18 06:30:52 2026 by rpki-client