This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/f52WTL9GGOhNAMMc7rBjnwIaWTc.roa File: f52WTL9GGOhNAMMc7rBjnwIaWTc.roa (raw, json) Hash identifier: 5tjbY4JIpfmV2gm3hhjE23Rvphjz0c3k2ZjG+/otkGI= Subject key identifier: 7F:9D:96:4C:BF:46:18:E8:4D:00:C3:1C:EE:B0:63:9F:02:1A:59:37 Certificate issuer: /CN=ba60a4d874d9601c8142c352f80c56a43276cd47 Certificate serial: 019B7AC93955D8BDEE882D68FD4A9EF5F01B Authority key identifier: BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/f52WTL9GGOhNAMMc7rBjnwIaWTc.roa Signing time: Thu 01 Jan 2026 18:19:26 +0000 ROA not before: Thu 01 Jan 2026 18:19:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44592 IP address blocks: 2.58.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.mft rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:39:55:d8:bd:ee:88:2d:68:fd:4a:9e:f5:f0:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba60a4d874d9601c8142c352f80c56a43276cd47 Validity Not Before: Jan 1 18:19:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7f9d964cbf4618e84d00c31ceeb0639f021a5937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:96:69:1f:c2:11:05:be:39:bd:e2:c7:a9:9d: c4:91:28:7c:92:fb:23:9e:52:1a:6f:cc:11:90:f6: a8:93:f8:88:e3:86:8f:d6:5f:c1:e3:55:10:03:5f: bb:46:fb:a8:62:d2:2b:a6:35:00:97:3a:86:72:aa: 48:42:ad:9b:49:07:44:32:9c:c0:2d:99:a3:19:93: d0:48:b3:d6:af:31:f1:71:ad:b5:95:8b:db:aa:fc: ed:56:fd:70:a9:ab:f2:d1:a7:fd:85:af:54:ba:6c: ec:26:70:cb:a3:bf:57:03:d1:88:ed:d5:b0:0f:e6: 48:ba:4d:59:f0:7b:51:87:b6:2c:d6:09:89:df:82: 72:0d:d2:e8:37:e0:d0:f4:53:a8:46:12:2b:f2:bf: d0:0e:06:dd:ca:8a:66:54:3b:ba:3d:a1:16:12:b6: 21:0b:ca:8e:3b:4c:6b:7e:28:48:7e:9c:73:1a:b1: 15:87:e6:43:85:0d:21:92:6d:3b:be:37:d4:af:fb: 11:c8:fd:68:ef:2d:b3:c4:cd:43:43:61:15:3e:07: 90:a4:ed:61:9a:c0:a9:3d:5f:f9:9c:dc:b6:f9:06: 8c:17:84:2e:16:cf:d7:1f:ac:1b:b9:8d:fb:97:5a: e8:22:db:82:30:b3:59:8d:d9:49:a5:44:df:5d:cd: 2a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:9D:96:4C:BF:46:18:E8:4D:00:C3:1C:EE:B0:63:9F:02:1A:59:37 X509v3 Authority Key Identifier: keyid:BA:60:A4:D8:74:D9:60:1C:81:42:C3:52:F8:0C:56:A4:32:76:CD:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/umCk2HTZYByBQsNS-AxWpDJ2zUc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/f52WTL9GGOhNAMMc7rBjnwIaWTc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/28cb5c-298f-4d8b-815b-e5a3778be3ad/1/umCk2HTZYByBQsNS-AxWpDJ2zUc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.113.0/24 Signature Algorithm: sha256WithRSAEncryption 56:ed:e1:c0:69:bb:50:75:bc:1e:4a:6b:9d:1f:95:77:40:b0: 33:e3:6a:6f:b2:8f:f5:ed:cc:63:ac:be:79:ef:ef:35:34:b4: d8:ba:19:ee:af:9f:6e:02:9e:f3:8d:f9:f9:4f:e4:e4:77:0c: b0:4f:bd:88:2a:32:1a:93:01:08:63:9d:21:71:f1:ab:df:50: ea:47:08:89:01:20:7e:4c:d1:2c:19:88:4f:2c:bf:44:79:38: 0f:d6:bd:51:65:82:5c:3d:58:62:0e:f2:36:92:41:eb:c1:8b: 8a:3e:34:5c:62:64:0f:86:6d:e3:5e:be:2d:14:d6:ef:ac:76: 75:f9:e7:56:d3:51:77:58:7e:72:2f:63:86:3d:57:08:21:ec: ef:ea:8a:24:1c:19:10:e4:a6:0d:56:a0:13:ba:22:ff:4e:c2: eb:32:2b:eb:0f:b8:57:47:f2:de:fe:c2:60:9a:1c:91:3d:40: f7:2a:71:f9:24:ab:e5:c2:18:91:7e:fc:d3:8f:f5:13:f9:a1: 6f:88:4a:4a:12:1e:f7:a2:c7:19:e5:9d:3b:76:c3:fa:65:e2: ad:62:ed:ab:69:5e:02:bf:3d:b7:c1:29:1f:54:0f:d8:c2:26: 37:97:ca:d2:9a:3e:a2:3c:6f:b6:91:3b:50:64:aa:45:d9:e4: 9a:d3:fc:07 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yTlV2L3uiC1o/Uqe9fAbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNjBhNGQ4NzRkOTYwMWM4MTQyYzM1MmY4MGM1NmE0MzI3 NmNkNDcwHhcNMjYwMTAxMTgxOTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZjlkOTY0Y2JmNDYxOGU4NGQwMGMzMWNlZWIwNjM5ZjAyMWE1OTM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZZpH8IRBb45veLHqZ3EkSh8kvsj nlIab8wRkPaok/iI44aP1l/B41UQA1+7RvuoYtIrpjUAlzqGcqpIQq2bSQdEMpzA LZmjGZPQSLPWrzHxca21lYvbqvztVv1wqavy0af9ha9UumzsJnDLo79XA9GI7dWw D+ZIuk1Z8HtRh7Ys1gmJ34JyDdLoN+DQ9FOoRhIr8r/QDgbdyopmVDu6PaEWErYh C8qOO0xrfihIfpxzGrEVh+ZDhQ0hkm07vjfUr/sRyP1o7y2zxM1DQ2EVPgeQpO1h msCpPV/5nNy2+QaMF4QuFs/XH6wbuY37l1roItuCMLNZjdlJpUTfXc0q2wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH+dlky/RhjoTQDDHO6wY58CGlk3MB8GA1UdIwQY MBaAFLpgpNh02WAcgULDUvgMVqQyds1HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWIt ZTVhMzc3OGJlM2FkLzEvZjUyV1RMOUdHT2hOQU1NYzdyQmpud0lhV1RjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC8yOGNiNWMtMjk4Zi00ZDhiLTgxNWItZTVhMzc3OGJlM2Fk LzEvdW1DazJIVFpZQnlCUXNOUy1BeFdwREoyelVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjpxMA0G CSqGSIb3DQEBCwUAA4IBAQBW7eHAabtQdbweSmudH5V3QLAz42pvso/17cxjrL55 7+81NLTYuhnur59uAp7zjfn5T+TkdwywT72IKjIakwEIY50hcfGr31DqRwiJASB+ TNEsGYhPLL9EeTgP1r1RZYJcPVhiDvI2kkHrwYuKPjRcYmQPhm3jXr4tFNbvrHZ1 +edW01F3WH5yL2OGPVcIIezv6ookHBkQ5KYNVqATuiL/TsLrMivrD7hXR/Le/sJg mhyRPUD3KnH5JKvlwhiRfvzTj/UT+aFviEpKEh73oscZ5Z07dsP6ZeKtYu2raV4C vz23wSkfVA/YwiY3l8rSmj6iPG+2kTtQZKpF2eSa0/wH -----END CERTIFICATE-----Generated at Mon Jan 19 17:46:52 2026 by rpki-client