This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/1Szjzw2KvVCy0V1IKnCQlhzw36U.roa File: 1Szjzw2KvVCy0V1IKnCQlhzw36U.roa (raw, json) Hash identifier: 0vNmVEVumOksaePQAHWYBW9xdfQM3+N4dhZcAektxxA= Subject key identifier: D5:2C:E3:CF:0D:8A:BD:50:B2:D1:5D:48:2A:70:90:96:1C:F0:DF:A5 Certificate issuer: /CN=d9efe9d36f5f88fdf04742c4140c7532090ab770 Certificate serial: 019B7F858F651FFC8B04779CBEE860FC3F14 Authority key identifier: D9:EF:E9:D3:6F:5F:88:FD:F0:47:42:C4:14:0C:75:32:09:0A:B7:70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/1Szjzw2KvVCy0V1IKnCQlhzw36U.roa Signing time: Fri 02 Jan 2026 16:23:37 +0000 ROA not before: Fri 02 Jan 2026 16:23:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61102 IP address blocks: 89.38.31.0/24 maxlen: 24 103.95.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.mft rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:8f:65:1f:fc:8b:04:77:9c:be:e8:60:fc:3f:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d9efe9d36f5f88fdf04742c4140c7532090ab770 Validity Not Before: Jan 2 16:23:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d52ce3cf0d8abd50b2d15d482a7090961cf0dfa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f5:2f:65:31:24:85:c7:ab:df:2d:c6:eb:e0: fe:0c:96:bb:c1:34:dd:dc:64:0d:6e:67:0a:84:bd: cc:e8:97:36:63:40:05:18:8a:7d:e1:8a:ca:6c:11: 1f:a5:9a:7b:9d:91:7b:bd:72:a2:45:98:af:a6:5b: 5f:8f:7a:31:3f:f3:ae:49:96:28:97:8a:b8:a8:73: 8b:9a:72:b1:b9:f1:bc:ad:20:ab:63:9c:a9:43:84: ef:b0:27:56:c6:a6:53:ca:20:22:46:98:10:4e:40: e0:4a:52:e6:9d:f7:26:69:b9:98:bf:48:0d:ac:29: 17:cf:41:51:dd:17:f8:e5:75:7b:97:28:1a:4d:91: c8:dc:e4:57:7e:8a:5d:9d:35:f5:84:a3:13:4d:e0: 37:66:4c:3a:45:b5:fd:61:e3:8b:73:c1:4b:98:ad: 68:3d:38:fe:b2:eb:ee:d2:6e:7f:5c:3d:8d:d4:ed: bd:3f:b7:8a:0b:d8:91:e0:c9:13:89:b3:94:48:5c: c3:60:8c:bb:93:ee:ee:76:81:d3:01:e7:ea:d3:e0: 5a:a9:a1:dd:5c:64:01:e1:55:3e:1a:fc:98:a2:9a: 76:1b:1a:60:79:55:10:2a:2a:d3:85:25:2d:b1:da: 14:f3:c2:71:6e:f3:1c:7c:ec:1d:77:30:46:4f:cc: 01:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:2C:E3:CF:0D:8A:BD:50:B2:D1:5D:48:2A:70:90:96:1C:F0:DF:A5 X509v3 Authority Key Identifier: keyid:D9:EF:E9:D3:6F:5F:88:FD:F0:47:42:C4:14:0C:75:32:09:0A:B7:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e_p029fiP3wR0LEFAx1MgkKt3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/1Szjzw2KvVCy0V1IKnCQlhzw36U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/55db34-fc79-4004-95c9-39f6d6425338/1/2e_p029fiP3wR0LEFAx1MgkKt3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.38.31.0/24 103.95.118.0/24 Signature Algorithm: sha256WithRSAEncryption 25:0a:4b:ce:11:ce:0c:e8:0a:ec:67:fb:a1:fe:58:1e:54:19: 26:21:19:f6:de:55:e3:50:96:0f:c7:31:ec:38:92:02:2c:3b: 19:4e:ab:f5:47:45:5d:4e:31:16:4d:5e:bb:fa:a8:8a:0e:b4: ad:f4:87:99:55:84:cb:dc:d5:aa:a8:c5:24:3d:73:15:32:df: fc:be:34:1b:d5:b1:20:43:9c:e7:28:f0:ca:80:b6:14:0d:4c: d3:a6:dd:c2:0d:7d:de:c6:b1:4b:47:8a:b5:77:d4:ec:50:9a: eb:92:81:b9:f5:75:a6:d7:40:66:0b:d6:88:e9:97:f5:ea:7c: b9:06:c9:b3:a1:66:3a:c8:92:c1:e4:1e:df:cf:c8:a1:f4:2e: d9:c4:87:ff:eb:71:be:2e:64:f9:b1:ac:60:2f:3c:ba:63:05: c4:8c:de:4f:1c:c8:17:b0:ce:b0:e0:02:c2:8e:8d:56:eb:ff: 9c:9f:06:b7:b2:d9:9c:46:8c:41:8a:83:a3:af:e8:56:5a:8b: ca:d1:15:6b:c1:6b:eb:de:d4:c7:9c:32:c5:45:64:21:81:ef: 04:ed:d0:01:7f:76:c6:15:d0:41:7e:99:04:6d:75:d0:a5:67: ec:f0:98:63:8d:15:21:30:ff:51:b6:14:18:b9:c2:4d:9a:45: ed:9b:fe:9f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hY9lH/yLBHecvuhg/D8UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5ZWZlOWQzNmY1Zjg4ZmRmMDQ3NDJjNDE0MGM3NTMyMDkw YWI3NzAwHhcNMjYwMTAyMTYyMzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNTJjZTNjZjBkOGFiZDUwYjJkMTVkNDgyYTcwOTA5NjFjZjBkZmE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4/UvZTEkhcer3y3G6+D+DJa7wTTd 3GQNbmcKhL3M6Jc2Y0AFGIp94YrKbBEfpZp7nZF7vXKiRZivpltfj3oxP/OuSZYo l4q4qHOLmnKxufG8rSCrY5ypQ4TvsCdWxqZTyiAiRpgQTkDgSlLmnfcmabmYv0gN rCkXz0FR3Rf45XV7lygaTZHI3ORXfopdnTX1hKMTTeA3Zkw6RbX9YeOLc8FLmK1o PTj+suvu0m5/XD2N1O29P7eKC9iR4MkTibOUSFzDYIy7k+7udoHTAefq0+BaqaHd XGQB4VU+GvyYopp2GxpgeVUQKirThSUtsdoU88JxbvMcfOwddzBGT8wBjQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNUs488Nir1QstFdSCpwkJYc8N+lMB8GA1UdIwQY MBaAFNnv6dNvX4j98EdCxBQMdTIJCrdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmVfcDAyOWZpUDN3UjBMRUZBeDFNZ2tLdDNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC81NWRiMzQtZmM3OS00MDA0LTk1Yzkt MzlmNmQ2NDI1MzM4LzEvMVN6anp3Mkt2VkN5MFYxSUtuQ1FsaHp3MzZVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC81NWRiMzQtZmM3OS00MDA0LTk1YzktMzlmNmQ2NDI1MzM4 LzEvMmVfcDAyOWZpUDN3UjBMRUZBeDFNZ2tLdDNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWSYfAwQA Z192MA0GCSqGSIb3DQEBCwUAA4IBAQAlCkvOEc4M6ArsZ/uh/lgeVBkmIRn23lXj UJYPxzHsOJICLDsZTqv1R0VdTjEWTV67+qiKDrSt9IeZVYTL3NWqqMUkPXMVMt/8 vjQb1bEgQ5znKPDKgLYUDUzTpt3CDX3exrFLR4q1d9TsUJrrkoG59XWm10BmC9aI 6Zf16ny5BsmzoWY6yJLB5B7fz8ih9C7ZxIf/63G+LmT5saxgLzy6YwXEjN5PHMgX sM6w4ALCjo1W6/+cnwa3stmcRoxBioOjr+hWWovK0RVrwWvr3tTHnDLFRWQhge8E 7dABf3bGFdBBfpkEbXXQpWfs8JhjjRUhMP9RthQYucJNmkXtm/6f -----END CERTIFICATE-----Generated at Mon Jan 26 11:45:25 2026 by rpki-client