This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/1-sLuOUAWdw4gGuyAdDDNO5R3knY.roa File: 1-sLuOUAWdw4gGuyAdDDNO5R3knY.roa (raw, json) Hash identifier: UwJHgy6hiFG+CS5eWBzCb6KdVKW08xdJRDA4sajHgnA= Subject key identifier: FA:C2:EE:39:40:16:77:0E:20:1A:EC:80:74:30:CD:3B:94:77:92:76 Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Certificate serial: 019B76EB81032A69D8342C350B989119E78F Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/1-sLuOUAWdw4gGuyAdDDNO5R3knY.roa Signing time: Thu 01 Jan 2026 00:18:24 +0000 ROA not before: Thu 01 Jan 2026 00:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 36224 IP address blocks: 89.39.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:81:03:2a:69:d8:34:2c:35:0b:98:91:19:e7:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Validity Not Before: Jan 1 00:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fac2ee394016770e201aec807430cd3b94779276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dc:2a:b4:e7:06:94:ea:10:14:46:28:ff:a2: e5:59:03:62:6c:0e:e7:92:bb:a3:60:a3:8c:cc:0f: db:8c:a4:b0:e3:88:6a:c1:82:73:10:20:a5:da:f2: ab:17:4d:63:0e:44:48:85:63:49:60:f3:63:44:df: b9:e5:33:24:92:ae:36:a1:1f:06:9a:a3:29:b2:0b: 13:cf:d4:4e:8a:f7:90:59:11:f1:a5:be:08:06:b0: 23:21:73:12:0e:2a:f0:9a:d8:99:7b:e7:0e:12:a5: 71:8b:bc:c1:0f:c9:72:05:be:50:5d:cf:21:3c:93: 44:1b:9d:85:8e:57:98:ca:25:38:dd:ea:9f:04:16: 3d:79:b5:c2:b6:ec:30:fc:2b:dc:a1:f7:db:1e:9d: 3b:27:4c:a3:67:f7:15:53:9a:65:67:8d:0d:79:9d: 5b:21:ae:f3:6c:94:4a:0d:17:c7:17:50:74:f6:38: 8c:13:91:01:c9:ab:48:54:79:2f:9d:02:77:55:06: 31:61:ad:70:ca:59:f3:18:76:8d:54:04:d8:38:2b: 87:ec:9a:56:a9:70:d1:c3:90:84:24:02:f9:5d:99: 2b:eb:9f:81:9a:01:ce:d2:54:ce:ab:ed:f8:11:56: 43:3e:1a:fd:5a:a2:b0:3f:28:94:67:8d:73:c6:32: a1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C2:EE:39:40:16:77:0E:20:1A:EC:80:74:30:CD:3B:94:77:92:76 X509v3 Authority Key Identifier: keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/1-sLuOUAWdw4gGuyAdDDNO5R3knY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.39.6.0/24 Signature Algorithm: sha256WithRSAEncryption da:0d:53:2a:a8:45:c9:cb:47:c2:d7:43:51:7a:9e:ce:cf:d8: 6f:b7:1e:de:e6:d4:3a:be:bb:22:a8:76:09:4d:84:09:cf:f1: 04:c9:bb:c4:0e:95:e7:f9:49:e7:c1:93:65:3f:1c:17:16:72: 46:71:75:c5:3b:d8:e3:8f:01:04:42:51:ad:45:05:3f:c5:52: 68:57:4d:7a:ce:54:62:cc:aa:65:1e:b9:6a:cf:b2:73:b7:a4: 1f:b1:57:a1:e5:46:2c:86:62:24:8f:fe:78:60:9b:4f:d3:15: 36:99:8b:88:38:50:4e:34:2b:6f:91:27:12:1a:05:3d:ea:4e: ff:68:51:59:6d:21:7a:e9:b1:9b:1e:b4:45:4d:44:01:08:9b: c5:86:cd:54:19:31:55:5b:a1:1d:06:27:67:b3:18:0d:63:64: ce:6e:a6:58:1e:f2:7b:d9:5b:cb:2e:68:c7:fa:81:fe:5d:ad: 25:39:0a:1e:c7:c2:b9:17:1f:ca:db:fc:39:6f:b0:29:fa:f1: d9:29:13:09:4e:13:7f:56:7a:30:44:ff:d1:e8:a0:bb:e7:e3: 1a:b5:60:66:eb:2b:43:6e:31:b2:57:32:01:79:a2:4a:46:ad: 65:c6:3a:30:7e:2b:a2:29:39:92:26:d8:76:ef:89:41:3d:fc: 84:e7:1f:01 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt264EDKmnYNCw1C5iRGeePMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3 YjQ1ODkwHhcNMjYwMTAxMDAxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYWMyZWUzOTQwMTY3NzBlMjAxYWVjODA3NDMwY2QzYjk0Nzc5Mjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtwqtOcGlOoQFEYo/6LlWQNibA7n krujYKOMzA/bjKSw44hqwYJzECCl2vKrF01jDkRIhWNJYPNjRN+55TMkkq42oR8G mqMpsgsTz9ROiveQWRHxpb4IBrAjIXMSDirwmtiZe+cOEqVxi7zBD8lyBb5QXc8h PJNEG52FjleYyiU43eqfBBY9ebXCtuww/CvcoffbHp07J0yjZ/cVU5plZ40NeZ1b Ia7zbJRKDRfHF1B09jiME5EByatIVHkvnQJ3VQYxYa1wylnzGHaNVATYOCuH7JpW qXDRw5CEJAL5XZkr65+BmgHO0lTOq+34EVZDPhr9WqKwPyiUZ41zxjKhIwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPrC7jlAFncOIBrsgHQwzTuUd5J2MB8GA1UdIwQY MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt MmVjZTA0ZTE4NWMyLzEvMS1zTHVPVUFXZHc0Z0d1eUFkREROTzVSM2tuWS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYWEvZWE0NDU1LTc4MzYtNDRjNC1iMmEzLTJlY2UwNGUxODVj Mi8xLzNPOVkxTS1qVlVQNFNJb25WdWFTVG1SN1JZay5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFknBjAN BgkqhkiG9w0BAQsFAAOCAQEA2g1TKqhFyctHwtdDUXqezs/Yb7ce3ubUOr67Iqh2 CU2ECc/xBMm7xA6V5/lJ58GTZT8cFxZyRnF1xTvY448BBEJRrUUFP8VSaFdNes5U YsyqZR65as+yc7ekH7FXoeVGLIZiJI/+eGCbT9MVNpmLiDhQTjQrb5EnEhoFPepO /2hRWW0heumxmx60RU1EAQibxYbNVBkxVVuhHQYnZ7MYDWNkzm6mWB7ye9lbyy5o x/qB/l2tJTkKHsfCuRcfytv8OW+wKfrx2SkTCU4Tf1Z6MET/0eigu+fjGrVgZusr Q24xslcyAXmiSkatZcY6MH4roik5kibYdu+JQT38hOcfAQ== -----END CERTIFICATE-----Generated at Wed Jan 21 11:07:39 2026 by rpki-client