This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/eXmt2jVibjpqoe6NGuHZQJz6WVM.roa File: eXmt2jVibjpqoe6NGuHZQJz6WVM.roa (raw, json) Hash identifier: 22Fr4YmY+8Ydz5UaUG7pknY6flPqfENyc12ItVwexCQ= Subject key identifier: 79:79:AD:DA:35:62:6E:3A:6A:A1:EE:8D:1A:E1:D9:40:9C:FA:59:53 Certificate issuer: /CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4 Certificate serial: 019B77C743A0EBD685BC5CCBAFC46E7CB9B9 Authority key identifier: D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/eXmt2jVibjpqoe6NGuHZQJz6WVM.roa Signing time: Thu 01 Jan 2026 04:18:26 +0000 ROA not before: Thu 01 Jan 2026 04:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 17675 IP address blocks: 50.20.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.mft rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 13:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:43:a0:eb:d6:85:bc:5c:cb:af:c4:6e:7c:b9:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d48a27f44b10404c52f6ffc4e08dc82bf8b5dee4 Validity Not Before: Jan 1 04:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7979adda35626e3a6aa1ee8d1ae1d9409cfa5953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:dd:c3:82:39:9b:b3:45:6b:0c:06:36:b2:cf: 42:e3:66:b2:66:5d:e9:37:d4:8d:eb:09:3e:a4:c3: 2f:d8:81:18:92:7b:9b:90:99:40:c6:17:04:08:35: 43:47:00:07:b7:4b:b1:05:a0:c0:b1:86:12:74:6c: 30:8a:84:ba:09:fb:0b:70:41:4b:a0:8f:27:02:a5: 39:58:52:b2:1a:bc:21:18:0f:ef:51:eb:f8:4b:0a: 7e:c2:81:94:10:fb:f6:23:27:1c:89:d3:e4:a1:e1: ba:e9:7b:72:d2:58:8f:ce:16:39:4e:0e:82:f5:4e: b7:d4:25:df:7f:86:05:2c:9e:3f:25:e1:7f:45:d4: 84:bf:61:8a:00:be:a9:d9:27:89:88:cd:75:ee:d6: a0:27:49:3a:08:24:8f:5b:20:6a:c5:25:03:56:b8: b2:20:d4:5d:3f:37:86:b5:17:4e:85:e7:d1:c4:93: d8:3f:28:43:58:bb:1b:ad:df:77:ae:3a:11:6d:e6: 48:36:a7:4c:2e:f7:f4:96:01:bf:48:7f:6e:4f:56: 81:c1:8b:2b:97:b5:a4:48:eb:89:f5:60:e0:35:04: 20:b8:ba:69:97:ed:12:01:43:c5:e5:84:c1:42:73: cf:a6:b8:49:5b:98:27:ce:6b:44:07:d2:e5:6c:63: 30:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:79:AD:DA:35:62:6E:3A:6A:A1:EE:8D:1A:E1:D9:40:9C:FA:59:53 X509v3 Authority Key Identifier: keyid:D4:8A:27:F4:4B:10:40:4C:52:F6:FF:C4:E0:8D:C8:2B:F8:B5:DE:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Ion9EsQQExS9v_E4I3IK_i13uQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/eXmt2jVibjpqoe6NGuHZQJz6WVM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/4bb5a7-346c-4195-9d0f-59f5984b64ea/1/1Ion9EsQQExS9v_E4I3IK_i13uQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.20.224.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:15:af:2d:48:77:46:3a:15:59:61:33:b3:72:2d:8e:d7:e2: 30:49:2a:f1:59:98:4d:df:47:97:78:fb:78:a0:bd:4a:59:a3: b6:51:1e:2f:31:8e:b7:e9:5d:69:b1:3e:ec:48:88:cf:e9:72: f0:d3:14:67:3d:ff:43:5c:43:c7:d0:41:ed:55:8d:de:73:21: b2:7b:a9:a7:7a:04:0a:68:f7:36:5e:d9:cc:dd:ce:ef:fd:a8: 6f:a4:7d:22:5e:02:3e:2f:ca:c7:48:ca:82:81:e6:82:e6:5a: cb:31:1f:10:e1:1d:6a:63:14:c2:99:94:92:25:e0:a7:d5:07: de:bc:90:8e:5f:3e:83:5f:41:e5:f3:41:92:57:f9:10:35:21: 8e:54:5a:65:56:03:22:da:c9:48:b8:dc:8d:87:a5:e8:1e:46: c0:e2:dd:5f:5c:05:fc:47:8c:d2:37:1b:58:2e:5a:be:bd:c7: fa:15:2e:33:fb:de:76:6c:49:a2:b8:3d:30:95:27:61:ff:ee: 5b:76:39:6e:63:42:3e:6b:89:e9:7e:65:5c:6d:9d:79:c1:6e: 8f:e4:15:1b:fb:1c:df:64:ee:55:cc:12:1f:36:0e:a7:ba:00: bb:b4:61:73:95:09:84:b6:10:68:e2:7b:d4:d7:87:5f:05:92: 01:71:c1:64 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x0Og69aFvFzLr8RufLm5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0OGEyN2Y0NGIxMDQwNGM1MmY2ZmZjNGUwOGRjODJiZjhi NWRlZTQwHhcNMjYwMTAxMDQxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3OTc5YWRkYTM1NjI2ZTNhNmFhMWVlOGQxYWUxZDk0MDljZmE1OTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv93Dgjmbs0VrDAY2ss9C42ayZl3p N9SN6wk+pMMv2IEYknubkJlAxhcECDVDRwAHt0uxBaDAsYYSdGwwioS6CfsLcEFL oI8nAqU5WFKyGrwhGA/vUev4Swp+woGUEPv2IyccidPkoeG66Xty0liPzhY5Tg6C 9U631CXff4YFLJ4/JeF/RdSEv2GKAL6p2SeJiM117tagJ0k6CCSPWyBqxSUDVriy INRdPzeGtRdOhefRxJPYPyhDWLsbrd93rjoRbeZINqdMLvf0lgG/SH9uT1aBwYsr l7WkSOuJ9WDgNQQguLppl+0SAUPF5YTBQnPPprhJW5gnzmtEB9LlbGMwlwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHl5rdo1Ym46aqHujRrh2UCc+llTMB8GA1UdIwQY MBaAFNSKJ/RLEEBMUvb/xOCNyCv4td7kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUlvbjlFc1FRRXhTOXZfRTRJM0lLX2kxM3VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80YmI1YTctMzQ2Yy00MTk1LTlkMGYt NTlmNTk4NGI2NGVhLzEvZVhtdDJqVmlianBxb2U2Tkd1SFpRSno2V1ZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS80YmI1YTctMzQ2Yy00MTk1LTlkMGYtNTlmNTk4NGI2NGVh LzEvMUlvbjlFc1FRRXhTOXZfRTRJM0lLX2kxM3VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDMhTgMA0G CSqGSIb3DQEBCwUAA4IBAQAKFa8tSHdGOhVZYTOzci2O1+IwSSrxWZhN30eXePt4 oL1KWaO2UR4vMY636V1psT7sSIjP6XLw0xRnPf9DXEPH0EHtVY3ecyGye6mnegQK aPc2XtnM3c7v/ahvpH0iXgI+L8rHSMqCgeaC5lrLMR8Q4R1qYxTCmZSSJeCn1Qfe vJCOXz6DX0Hl80GSV/kQNSGOVFplVgMi2slIuNyNh6XoHkbA4t1fXAX8R4zSNxtY Llq+vcf6FS4z+952bEmiuD0wlSdh/+5bdjluY0I+a4npfmVcbZ15wW6P5BUb+xzf ZO5VzBIfNg6nugC7tGFzlQmEthBo4nvU14dfBZIBccFk -----END CERTIFICATE-----Generated at Thu Jan 1 20:22:27 2026 by rpki-client