This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cpWruwnzffvUIBm4Xf09odMwUJY.roa File: cpWruwnzffvUIBm4Xf09odMwUJY.roa (raw, json) Hash identifier: Sb73WDwRcdO1LYXyePB+evKCYCi86Di63RqVtBRLXDU= Subject key identifier: 72:95:AB:BB:09:F3:7D:FB:D4:20:19:B8:5D:FD:3D:A1:D3:30:50:96 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F84A36F9E1D06516C6418EE6D02014C Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cpWruwnzffvUIBm4Xf09odMwUJY.roa Signing time: Fri 02 Jan 2026 16:22:37 +0000 ROA not before: Fri 02 Jan 2026 16:22:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209706 IP address blocks: 31.56.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:a3:6f:9e:1d:06:51:6c:64:18:ee:6d:02:01:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7295abbb09f37dfbd42019b85dfd3da1d3305096 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ba:4c:31:25:c7:a8:53:24:f1:a3:a9:77:c9: c0:2f:62:f1:3a:3b:81:7d:0c:5c:1a:7c:49:9d:99: 28:18:f0:50:b4:9d:4e:e6:35:95:1c:d9:e7:4c:d7: 3c:d8:8b:8e:86:de:57:04:67:c3:7f:1b:8f:7f:c3: 3c:66:68:24:bd:32:97:cb:51:1f:1a:bc:d6:8a:5c: bf:0c:21:cc:4d:94:c2:9a:7b:99:02:0b:05:a8:99: 6e:fa:f5:b6:de:89:61:10:c8:9c:1d:70:f1:7a:d2: 8c:8e:48:4d:74:e9:58:f1:b3:8e:6c:d2:d1:c8:22: dd:92:ea:8c:70:b9:75:4c:7a:01:c4:2a:d0:77:69: b4:12:0a:f4:0d:8c:5c:ad:51:77:1e:2c:9e:89:25: a9:57:52:a6:c1:17:7e:06:19:82:68:db:bf:45:54: 5a:70:c2:c6:1e:94:25:0e:9f:08:69:5a:8b:b6:92: 5b:54:c3:c7:f0:48:7a:59:e6:11:f7:a2:1e:88:e9: 26:3a:af:aa:f1:71:0a:5c:13:09:d1:39:bb:ea:b6: ff:44:a1:99:aa:c2:11:77:f2:ea:3f:2d:f1:05:b7: d0:0b:0b:a5:83:7c:cb:aa:21:e7:24:69:93:40:52: 87:e7:4d:31:f1:e6:3c:20:09:fd:89:6c:46:ae:e4: 3c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:95:AB:BB:09:F3:7D:FB:D4:20:19:B8:5D:FD:3D:A1:D3:30:50:96 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/cpWruwnzffvUIBm4Xf09odMwUJY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.24.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:5d:a3:b3:ec:13:b8:00:28:89:01:fc:dd:e9:51:6c:8e:d1: ec:55:f6:75:f3:a4:d0:d1:a8:93:84:dc:3e:26:be:ad:32:9d: 57:e6:f5:52:c5:90:24:db:ee:81:2d:cb:20:14:8f:fd:ae:11: 04:10:03:c8:a3:0d:ee:ca:5d:58:e0:1a:e4:2b:08:2b:20:24: 2f:ed:b3:57:a2:ec:68:82:28:05:27:da:b8:10:17:ee:cf:7e: b6:38:30:92:26:90:96:1d:cf:3c:61:9b:ae:dc:08:7d:3b:46: 21:6c:23:42:5d:b6:07:9e:dc:7d:b3:4f:ca:6c:12:d8:ec:60: 6c:3f:ba:d2:96:bc:cb:44:dc:2c:8e:0b:27:0b:ca:3c:8a:df: f7:33:d7:a5:69:57:5d:27:ae:40:bb:d2:7f:17:84:25:3b:2f: 0b:96:f0:77:c6:8e:d4:a1:09:3b:f1:a2:25:14:1d:12:50:cb: 2e:e2:26:96:0e:de:71:37:a5:26:24:fb:be:d1:58:42:de:d2: 4b:09:e3:fa:d0:28:23:45:a0:d0:04:47:5c:9a:24:7d:a7:a5: 4a:19:a2:ce:82:98:cd:49:9e:12:63:f4:32:03:b0:ec:1f:8e: 85:0e:40:a8:37:8a:1d:67:b6:8d:d6:d3:2a:8f:e7:75:7d:d6: a9:cb:f9:c9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hKNvnh0GUWxkGO5tAgFMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Mjk1YWJiYjA5ZjM3ZGZiZDQyMDE5Yjg1ZGZkM2RhMWQzMzA1MDk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7pMMSXHqFMk8aOpd8nAL2LxOjuB fQxcGnxJnZkoGPBQtJ1O5jWVHNnnTNc82IuOht5XBGfDfxuPf8M8ZmgkvTKXy1Ef GrzWily/DCHMTZTCmnuZAgsFqJlu+vW23olhEMicHXDxetKMjkhNdOlY8bOObNLR yCLdkuqMcLl1THoBxCrQd2m0Egr0DYxcrVF3HiyeiSWpV1KmwRd+BhmCaNu/RVRa cMLGHpQlDp8IaVqLtpJbVMPH8Eh6WeYR96IeiOkmOq+q8XEKXBMJ0Tm76rb/RKGZ qsIRd/LqPy3xBbfQCwulg3zLqiHnJGmTQFKH500x8eY8IAn9iWxGruQ88QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHKVq7sJ83371CAZuF39PaHTMFCWMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvY3BXcnV3bnpmZnZVSUJtNFhmMDlvZE13VUpZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHzgYMA0G CSqGSIb3DQEBCwUAA4IBAQCbXaOz7BO4ACiJAfzd6VFsjtHsVfZ186TQ0aiThNw+ Jr6tMp1X5vVSxZAk2+6BLcsgFI/9rhEEEAPIow3uyl1Y4BrkKwgrICQv7bNXouxo gigFJ9q4EBfuz362ODCSJpCWHc88YZuu3Ah9O0YhbCNCXbYHntx9s0/KbBLY7GBs P7rSlrzLRNwsjgsnC8o8it/3M9elaVddJ65Au9J/F4QlOy8LlvB3xo7UoQk78aIl FB0SUMsu4iaWDt5xN6UmJPu+0VhC3tJLCeP60CgjRaDQBEdcmiR9p6VKGaLOgpjN SZ4SY/QyA7DsH46FDkCoN4odZ7aN1tMqj+d1fdapy/nJ -----END CERTIFICATE-----Generated at Mon Jan 5 14:33:25 2026 by rpki-client