This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/E5cpPWW-KDLWkzWJWzlp-UThWGM.roa File: E5cpPWW-KDLWkzWJWzlp-UThWGM.roa (raw, json) Hash identifier: Ttw/T1deEZtgif8e/7z94PtpdCtJzjeuXPjRPtHMnw0= Subject key identifier: 13:97:29:3D:65:BE:28:32:D6:93:35:89:5B:39:69:F9:44:E1:58:63 Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Certificate serial: 019B7BA53AD4FC830903139408723AE761F6 Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/E5cpPWW-KDLWkzWJWzlp-UThWGM.roa Signing time: Thu 01 Jan 2026 22:19:44 +0000 ROA not before: Thu 01 Jan 2026 22:19:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50431 IP address blocks: 95.43.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.mft rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:3a:d4:fc:83:09:03:13:94:08:72:3a:e7:61:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4 Validity Not Before: Jan 1 22:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1397293d65be2832d69335895b3969f944e15863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:79:1f:1a:99:86:e5:e3:66:c3:b0:23:f6:e9: af:63:41:ee:5f:bd:fd:ba:32:e6:b2:15:83:5b:19: 4f:c9:ed:f8:8a:cc:97:0b:d6:a9:95:b6:72:eb:e8: b0:19:d5:62:6f:fd:d6:f1:0f:b9:3a:b0:f6:d6:94: 31:c2:66:84:4e:f0:60:63:91:5a:79:9a:99:eb:4a: b4:21:0e:3b:51:da:7d:9e:b7:e4:be:6e:c8:ae:9e: c8:b3:e8:f7:b4:3f:79:4d:a2:3b:27:3c:cc:bd:bc: 85:64:97:b7:ea:46:bf:37:8e:13:a9:e8:38:e5:00: 99:54:c7:a6:bc:4a:84:6d:de:62:ec:ef:10:98:01: c3:cb:e4:e7:9a:f5:0c:76:aa:ed:95:b1:48:4f:5f: 65:38:f9:c4:64:1d:59:4f:a5:23:e9:9c:31:b2:db: f3:02:d4:e4:c7:74:92:85:9b:55:0a:8c:ef:8e:09: cf:04:dd:36:44:c2:6f:1e:23:ed:86:ca:12:15:0c: 15:98:9a:8f:12:2e:a7:ba:0e:b1:54:14:bc:86:3b: 2f:b1:7a:1f:2e:d0:4b:54:22:0a:9d:49:07:f9:4f: b4:08:a5:93:c9:8b:bd:be:20:c1:8a:ca:0d:45:e1: 83:6a:81:0e:47:c2:ac:ca:0c:fb:4e:5c:23:26:62: 1c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:97:29:3D:65:BE:28:32:D6:93:35:89:5B:39:69:F9:44:E1:58:63 X509v3 Authority Key Identifier: keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/E5cpPWW-KDLWkzWJWzlp-UThWGM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.43.213.0/24 Signature Algorithm: sha256WithRSAEncryption 11:b6:e7:79:81:6f:51:5a:d0:0f:f8:ff:1d:61:b7:bb:1d:03: 48:9d:03:fd:13:80:85:19:cd:79:0d:57:7d:e0:b1:94:18:8c: 04:62:72:01:1f:d0:65:b3:96:e2:1a:2a:17:4e:d4:60:2d:76: c2:b9:fd:c0:1d:bc:28:3c:dc:41:e2:9e:3c:9f:6a:fc:07:1b: ea:06:9c:a0:97:d8:0b:1c:0a:ca:9d:ef:8c:0c:6a:6c:24:50: c8:25:a7:f5:cc:9c:6c:16:b1:30:ba:f3:32:2d:ed:2a:16:2c: b6:ee:05:80:33:fe:cc:9b:07:5d:ce:36:d4:f9:15:c7:6e:25: 77:7e:b4:68:d4:68:10:a4:3e:84:3f:52:ac:ca:08:57:18:91: 6b:6f:97:b6:8b:2d:44:3e:4e:13:66:39:78:3b:4e:37:c8:ba: ec:a6:0a:8d:2e:91:4c:d5:e0:b8:b2:7f:e7:54:4f:da:48:95: cb:6c:ae:da:2b:35:37:91:bf:25:a1:5e:15:e4:59:8a:25:26: ce:01:9b:d8:72:3a:f3:4a:24:4b:2f:67:3e:9d:6b:9e:88:4a: 2d:66:ca:ec:15:7c:2c:af:b0:65:9c:9b:34:2e:8d:ee:d1:8e: 4c:2b:b6:c9:e8:cd:5f:3d:a7:48:7f:df:17:6e:4c:23:85:1e: cf:20:a8:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pTrU/IMJAxOUCHI652H2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4 ZmI0YzQwHhcNMjYwMTAxMjIxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzk3MjkzZDY1YmUyODMyZDY5MzM1ODk1YjM5NjlmOTQ0ZTE1ODYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxnkfGpmG5eNmw7Aj9umvY0HuX739 ujLmshWDWxlPye34isyXC9aplbZy6+iwGdVib/3W8Q+5OrD21pQxwmaETvBgY5Fa eZqZ60q0IQ47Udp9nrfkvm7Irp7Is+j3tD95TaI7JzzMvbyFZJe36ka/N44Tqeg4 5QCZVMemvEqEbd5i7O8QmAHDy+TnmvUMdqrtlbFIT19lOPnEZB1ZT6Uj6Zwxstvz AtTkx3SShZtVCozvjgnPBN02RMJvHiPthsoSFQwVmJqPEi6nug6xVBS8hjsvsXof LtBLVCIKnUkH+U+0CKWTyYu9viDBisoNReGDaoEOR8Ksygz7TlwjJmIceQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBOXKT1lvigy1pM1iVs5aflE4VhjMB8GA1UdIwQY MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct ODcyYmEyZDlmNDRjLzEvRTVjcFBXVy1LRExXa3pXSld6bHAtVVRoV0dNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXyvVMA0G CSqGSIb3DQEBCwUAA4IBAQARtud5gW9RWtAP+P8dYbe7HQNInQP9E4CFGc15DVd9 4LGUGIwEYnIBH9Bls5biGioXTtRgLXbCuf3AHbwoPNxB4p48n2r8BxvqBpygl9gL HArKne+MDGpsJFDIJaf1zJxsFrEwuvMyLe0qFiy27gWAM/7MmwddzjbU+RXHbiV3 frRo1GgQpD6EP1KsyghXGJFrb5e2iy1EPk4TZjl4O043yLrspgqNLpFM1eC4sn/n VE/aSJXLbK7aKzU3kb8loV4V5FmKJSbOAZvYcjrzSiRLL2c+nWueiEotZsrsFXws r7BlnJs0Lo3u0Y5MK7bJ6M1fPadIf98XbkwjhR7PIKjd -----END CERTIFICATE-----Generated at Mon Jan 26 11:48:53 2026 by rpki-client