This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/E4fqwQgygB5jeBrUBUav7SoAD_0.roa File: E4fqwQgygB5jeBrUBUav7SoAD_0.roa (raw, json) Hash identifier: GfGnCldzviVm1ei4u1oKbkQDjzke8wRck58TsD7DFsA= Subject key identifier: 13:87:EA:C1:08:32:80:1E:63:78:1A:D4:05:46:AF:ED:2A:00:0F:FD Certificate issuer: /CN=58ad60da52671e9083cf39864eca2aa23241be9e Certificate serial: 019B7FF2AEA15F76309E6A733B249C05338F Authority key identifier: 58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/E4fqwQgygB5jeBrUBUav7SoAD_0.roa Signing time: Fri 02 Jan 2026 18:22:49 +0000 ROA not before: Fri 02 Jan 2026 18:22:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211439 IP address blocks: 91.202.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.mft rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:ae:a1:5f:76:30:9e:6a:73:3b:24:9c:05:33:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58ad60da52671e9083cf39864eca2aa23241be9e Validity Not Before: Jan 2 18:22:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1387eac10832801e63781ad40546afed2a000ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6f:ba:1a:8b:32:b3:19:e2:26:56:fa:08:c7: ca:cd:b4:7f:81:dc:9d:66:95:39:55:c9:ce:d8:63: 4b:b0:05:d5:8f:35:0a:18:c3:6d:f9:08:f7:72:e1: da:a1:45:d2:e4:89:7a:60:d6:27:fb:ec:5a:62:53: 83:44:30:f3:45:8c:a9:5f:29:d4:17:29:28:ec:cd: dd:ed:30:53:1d:19:e5:42:9f:83:ae:b5:58:60:97: ac:ac:c4:27:4c:2d:c6:9e:9d:ed:aa:a6:5f:25:99: 78:6d:1e:cc:ff:45:41:ce:60:86:c2:2d:06:71:b3: f8:0e:b4:ee:7a:3f:80:0c:93:b9:3d:2a:48:91:23: b8:69:45:3e:58:e5:9e:dc:01:6f:2b:ef:b2:6a:0a: 46:05:8c:ae:bd:88:1e:2e:15:43:75:31:a1:a1:73: be:68:02:a5:da:7e:83:a3:dc:61:e5:f7:7e:f5:db: 14:83:fe:d6:0d:fa:86:99:ea:32:c2:8b:02:d9:53: 73:38:60:c2:6d:9f:54:2b:2e:5f:1b:c4:cc:c0:2b: e8:f0:ed:34:19:bb:1a:fb:ca:89:30:ea:7a:de:b8: e5:fb:77:05:f3:53:72:c5:ad:d0:16:88:2c:aa:8b: df:5c:28:b3:1b:32:c4:e5:bc:72:5f:c1:4b:71:32: cd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:87:EA:C1:08:32:80:1E:63:78:1A:D4:05:46:AF:ED:2A:00:0F:FD X509v3 Authority Key Identifier: keyid:58:AD:60:DA:52:67:1E:90:83:CF:39:86:4E:CA:2A:A2:32:41:BE:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WK1g2lJnHpCDzzmGTsoqojJBvp4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/E4fqwQgygB5jeBrUBUav7SoAD_0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7a1988-2736-49dc-a907-11b3cf3fd4e1/1/WK1g2lJnHpCDzzmGTsoqojJBvp4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.202.209.0/24 Signature Algorithm: sha256WithRSAEncryption b1:48:e3:d0:7b:ad:22:a5:d7:00:c5:cc:95:12:36:6d:c9:3c: 01:19:20:cb:77:4b:17:cc:4e:bc:c7:63:0c:8b:09:7a:3c:fe: 96:f3:99:23:42:1b:1c:c1:72:4d:a6:67:4a:ed:5e:1b:a7:c6: 3c:a0:bf:c9:71:9a:21:d8:96:fb:92:08:ca:b9:90:d5:1b:6f: 8b:6f:65:9d:90:53:6b:52:64:0b:c9:13:ce:76:03:2d:90:2d: 5f:2d:bd:e4:00:ee:55:22:59:de:7d:61:84:2a:76:11:60:b5: 5e:d5:a7:73:8c:1c:fc:ed:74:30:e1:ef:00:6e:55:d8:0e:ff: 1d:1c:35:3a:f4:02:da:91:d3:63:0f:77:b5:82:21:f9:3b:c3: 3a:49:be:67:b1:e4:e8:eb:67:ea:48:3e:6b:9d:32:c5:ac:91: ce:60:26:bc:f9:12:8c:13:b1:c6:45:b6:9f:54:c6:19:72:5d: fe:c6:8e:59:7f:29:5a:7e:ba:3f:ef:18:fb:87:81:1c:10:bc: 6e:0a:fd:83:11:76:a4:ef:2f:29:70:a7:c9:1a:1f:e9:6e:0e: a2:de:b2:ae:2f:d1:9f:5b:f7:a1:d2:a6:ec:1b:64:4c:77:f7: bc:b3:b4:b6:85:8f:67:6e:42:47:e7:4b:7e:46:00:74:ab:b0: 29:42:f2:b1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8q6hX3YwnmpzOyScBTOPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YWQ2MGRhNTI2NzFlOTA4M2NmMzk4NjRlY2EyYWEyMzI0 MWJlOWUwHhcNMjYwMTAyMTgyMjQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMzg3ZWFjMTA4MzI4MDFlNjM3ODFhZDQwNTQ2YWZlZDJhMDAwZmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW+6GosysxniJlb6CMfKzbR/gdyd ZpU5VcnO2GNLsAXVjzUKGMNt+Qj3cuHaoUXS5Il6YNYn++xaYlODRDDzRYypXynU Fyko7M3d7TBTHRnlQp+DrrVYYJesrMQnTC3Gnp3tqqZfJZl4bR7M/0VBzmCGwi0G cbP4DrTuej+ADJO5PSpIkSO4aUU+WOWe3AFvK++yagpGBYyuvYgeLhVDdTGhoXO+ aAKl2n6Do9xh5fd+9dsUg/7WDfqGmeoywosC2VNzOGDCbZ9UKy5fG8TMwCvo8O00 Gbsa+8qJMOp63rjl+3cF81Nyxa3QFogsqovfXCizGzLE5bxyX8FLcTLNnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBOH6sEIMoAeY3ga1AVGr+0qAA/9MB8GA1UdIwQY MBaAFFitYNpSZx6Qg885hk7KKqIyQb6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDct MTFiM2NmM2ZkNGUxLzEvRTRmcXdRZ3lnQjVqZUJyVUJVYXY3U29BRF8wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy83YTE5ODgtMjczNi00OWRjLWE5MDctMTFiM2NmM2ZkNGUx LzEvV0sxZzJsSm5IcENEenptR1Rzb3FvakpCdnA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8rRMA0G CSqGSIb3DQEBCwUAA4IBAQCxSOPQe60ipdcAxcyVEjZtyTwBGSDLd0sXzE68x2MM iwl6PP6W85kjQhscwXJNpmdK7V4bp8Y8oL/JcZoh2Jb7kgjKuZDVG2+Lb2WdkFNr UmQLyRPOdgMtkC1fLb3kAO5VIlnefWGEKnYRYLVe1adzjBz87XQw4e8AblXYDv8d HDU69ALakdNjD3e1giH5O8M6Sb5nseTo62fqSD5rnTLFrJHOYCa8+RKME7HGRbaf VMYZcl3+xo5Zfylafro/7xj7h4EcELxuCv2DEXak7y8pcKfJGh/pbg6i3rKuL9Gf W/eh0qbsG2RMd/e8s7S2hY9nbkJH50t+RgB0q7ApQvKx -----END CERTIFICATE-----Generated at Mon Jan 19 17:09:59 2026 by rpki-client