This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/EsVn_dnAY2ypq9PFSf6cU1CLCmE.roa File: EsVn_dnAY2ypq9PFSf6cU1CLCmE.roa (raw, json) Hash identifier: nsPGk0/IpE20LOft2YckGzzSAtaxdy9iJ4bGbT5QY88= Subject key identifier: 12:C5:67:FD:D9:C0:63:6C:A9:AB:D3:C5:49:FE:9C:53:50:8B:0A:61 Certificate issuer: /CN=0330d772ba83225bed588ccd1c5c96af03b3770f Certificate serial: 019B77C6D847C358451809A913796BD3EA9A Authority key identifier: 03:30:D7:72:BA:83:22:5B:ED:58:8C:CD:1C:5C:96:AF:03:B3:77:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AzDXcrqDIlvtWIzNHFyWrwOzdw8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/EsVn_dnAY2ypq9PFSf6cU1CLCmE.roa Signing time: Thu 01 Jan 2026 04:17:58 +0000 ROA not before: Thu 01 Jan 2026 04:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50920 IP address blocks: 81.16.24.0/22 maxlen: 24 92.39.160.0/20 maxlen: 24 185.64.60.0/22 maxlen: 24 193.28.91.0/24 maxlen: 24 193.28.229.0/24 maxlen: 24 193.151.60.0/22 maxlen: 24 2a04:f680::/29 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/AzDXcrqDIlvtWIzNHFyWrwOzdw8.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/AzDXcrqDIlvtWIzNHFyWrwOzdw8.mft rsync://rpki.ripe.net/repository/DEFAULT/AzDXcrqDIlvtWIzNHFyWrwOzdw8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:d8:47:c3:58:45:18:09:a9:13:79:6b:d3:ea:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0330d772ba83225bed588ccd1c5c96af03b3770f Validity Not Before: Jan 1 04:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=12c567fdd9c0636ca9abd3c549fe9c53508b0a61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f3:db:97:76:d2:89:20:24:47:cd:16:a8:6b: cc:44:1f:1d:f9:f5:e4:1f:f3:0b:fc:e3:1d:b4:b8: ef:69:84:21:0c:82:95:e8:00:81:d2:98:af:1b:5b: 67:9c:e2:3a:86:6e:7a:ce:b0:03:8d:78:ac:f7:33: 95:4b:c5:84:ac:96:81:2e:83:8a:2c:8e:81:7a:09: 5a:5c:78:43:5e:6f:90:cb:39:ab:b5:67:f0:a8:63: 07:80:97:b7:8f:6e:67:c7:46:d2:73:93:70:a3:b5: 8a:34:29:a6:2d:2a:a4:90:7d:72:fd:7f:9e:59:3c: 2b:ab:a1:da:06:bf:a6:36:39:88:48:b8:f9:10:62: b6:8b:6a:69:c0:b6:5f:97:68:9c:d9:84:61:36:aa: 4a:85:e5:f1:0a:05:99:b0:df:2a:2f:c3:d4:48:79: 34:1d:bb:5d:eb:ef:ae:19:90:44:31:1f:f8:a4:f0: aa:76:32:af:2b:12:47:4c:20:58:47:3d:a3:b9:1c: 8c:ca:d6:19:ae:f8:aa:ba:c1:0d:78:9c:94:12:10: 50:f8:b7:09:f5:20:70:7e:91:98:4b:c7:14:0d:5b: d1:94:24:03:e4:96:97:b1:82:5e:99:33:f3:ab:27: a2:e7:c8:0b:e1:c3:cb:3d:fb:2d:41:10:91:b6:1b: 4f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C5:67:FD:D9:C0:63:6C:A9:AB:D3:C5:49:FE:9C:53:50:8B:0A:61 X509v3 Authority Key Identifier: keyid:03:30:D7:72:BA:83:22:5B:ED:58:8C:CD:1C:5C:96:AF:03:B3:77:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AzDXcrqDIlvtWIzNHFyWrwOzdw8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/EsVn_dnAY2ypq9PFSf6cU1CLCmE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/AzDXcrqDIlvtWIzNHFyWrwOzdw8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.16.24.0/22 92.39.160.0/20 185.64.60.0/22 193.28.91.0/24 193.28.229.0/24 193.151.60.0/22 IPv6: 2a04:f680::/29 Signature Algorithm: sha256WithRSAEncryption e4:b1:33:50:c1:e5:96:16:01:08:8f:36:ea:26:33:23:cd:cd: a4:97:4d:82:7a:48:ef:be:56:1c:d2:fe:0c:f0:e8:4a:46:e8: d9:b7:9d:1f:bb:b1:34:63:a9:84:bb:35:cc:42:6b:20:eb:00: 00:f8:bc:46:a5:b6:d3:bb:bb:a3:d7:0a:1f:07:48:3b:cb:82: 3e:cb:f1:55:6c:76:95:ba:da:50:44:a5:5f:05:6a:86:82:46: 5b:51:3e:99:0d:b4:e6:33:a7:84:7e:d8:c6:1c:a6:5a:05:f3: d8:c1:47:f9:52:58:65:20:2e:0b:9b:15:0b:91:8c:86:20:dd: 5f:a7:29:0a:3d:a2:c9:6e:b3:a5:6a:75:e7:f4:7f:58:4c:93: 16:e7:20:46:a5:7b:0e:43:4b:b6:20:42:95:98:79:2e:06:4d: 80:6e:46:1a:dc:06:d5:d1:39:6b:0a:59:5b:34:9f:80:6d:e7: c3:f9:07:fc:7a:d4:22:0a:a9:4e:88:7f:c0:30:d0:8b:3f:e9: 29:f9:f6:66:35:3f:8e:ce:2f:70:47:a3:76:1d:e7:f2:3a:36: 7b:3a:1d:9a:64:a6:6c:b7:1e:7e:2d:f4:54:db:b8:d6:fe:5e: 28:84:b0:21:84:a9:62:91:9f:66:a0:8f:75:85:00:df:2b:26: ed:9a:0e:66 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt3xthHw1hFGAmpE3lr0+qaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAzMzBkNzcyYmE4MzIyNWJlZDU4OGNjZDFjNWM5NmFmMDNi Mzc3MGYwHhcNMjYwMTAxMDQxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMmM1NjdmZGQ5YzA2MzZjYTlhYmQzYzU0OWZlOWM1MzUwOGIwYTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnPPbl3bSiSAkR80WqGvMRB8d+fXk H/ML/OMdtLjvaYQhDIKV6ACB0pivG1tnnOI6hm56zrADjXis9zOVS8WErJaBLoOK LI6BeglaXHhDXm+QyzmrtWfwqGMHgJe3j25nx0bSc5Nwo7WKNCmmLSqkkH1y/X+e WTwrq6HaBr+mNjmISLj5EGK2i2ppwLZfl2ic2YRhNqpKheXxCgWZsN8qL8PUSHk0 Hbtd6++uGZBEMR/4pPCqdjKvKxJHTCBYRz2juRyMytYZrviqusENeJyUEhBQ+LcJ 9SBwfpGYS8cUDVvRlCQD5JaXsYJemTPzqyei58gL4cPLPfstQRCRthtPrQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFBLFZ/3ZwGNsqavTxUn+nFNQiwphMB8GA1UdIwQY MBaAFAMw13K6gyJb7ViMzRxclq8Ds3cPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXpEWGNycURJbHZ0V0l6TkhGeVdyd096ZHc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS80OGNiY2ItNTBkZS00ODM4LWE4ODct N2U0NTFjODBkNTZmLzEvRXNWbl9kbkFZMnlwcTlQRlNmNmNVMUNMQ21FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS80OGNiY2ItNTBkZS00ODM4LWE4ODctN2U0NTFjODBkNTZm LzEvQXpEWGNycURJbHZ0V0l6TkhGeVdyd096ZHc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQCURAYAwQE XCegAwQCuUA8AwQAwRxbAwQAwRzlAwQCwZc8MA0EAgACMAcDBQMqBPaAMA0GCSqG SIb3DQEBCwUAA4IBAQDksTNQweWWFgEIjzbqJjMjzc2kl02CekjvvlYc0v4M8OhK RujZt50fu7E0Y6mEuzXMQmsg6wAA+LxGpbbTu7uj1wofB0g7y4I+y/FVbHaVutpQ RKVfBWqGgkZbUT6ZDbTmM6eEftjGHKZaBfPYwUf5UlhlIC4LmxULkYyGIN1fpykK PaLJbrOlanXn9H9YTJMW5yBGpXsOQ0u2IEKVmHkuBk2AbkYa3AbV0TlrCllbNJ+A befD+Qf8etQiCqlOiH/AMNCLP+kp+fZmNT+Ozi9wR6N2HefyOjZ7Oh2aZKZstx5+ LfRU27jW/l4ohLAhhKlikZ9moI91hQDfKybtmg5m -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:33 2026 by rpki-client