This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/pI-1z9oenJG3IzakWANawyG6_9s.roa File: pI-1z9oenJG3IzakWANawyG6_9s.roa (raw, json) Hash identifier: wdFoSde/WnFTGchK6FtkX1aAoOPlIKGYqQ2hymhH8ng= Subject key identifier: A4:8F:B5:CF:DA:1E:9C:91:B7:23:36:A4:58:03:5A:C3:21:BA:FF:DB Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4 Certificate serial: 019B77C6FD63372BA7589198EFD916F0A86B Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/pI-1z9oenJG3IzakWANawyG6_9s.roa Signing time: Thu 01 Jan 2026 04:18:08 +0000 ROA not before: Thu 01 Jan 2026 04:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135402 IP address blocks: 89.28.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:fd:63:37:2b:a7:58:91:98:ef:d9:16:f0:a8:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4 Validity Not Before: Jan 1 04:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a48fb5cfda1e9c91b72336a458035ac321baffdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:28:1b:86:9d:e4:47:dd:c9:74:95:08:c8:62: 3b:68:f2:75:40:1d:72:a2:54:f1:2f:a8:42:70:c8: a9:4d:f3:7b:92:b7:92:30:5d:a9:9d:f1:72:96:84: 0c:b1:ea:76:b2:f5:a7:ad:84:41:5d:b6:b9:07:35: 1d:8c:50:24:da:bd:25:65:a3:1b:0f:d4:45:87:57: 30:d1:da:c3:47:f4:d7:34:47:12:5b:10:c8:1c:24: 20:ec:09:15:9a:0a:b8:3b:e3:8a:96:d8:80:cb:03: 4f:d3:b8:42:49:33:0e:66:4a:08:ac:d7:df:dd:94: c4:0f:8d:34:f6:ae:77:60:aa:e1:86:87:6d:71:10: fb:b2:db:5b:18:2d:4a:86:54:7d:66:1b:66:c0:83: 01:04:0d:76:3d:f0:f9:a7:7c:98:bf:6c:df:0b:83: e9:0b:b0:71:15:fa:cd:12:73:bb:8e:32:cc:ad:d3: c4:95:1e:78:92:8a:6b:00:f7:a5:ce:f1:03:b1:7a: 18:ba:cd:03:f2:48:0b:79:3a:af:83:dc:a1:b1:d1: 5e:9a:f9:15:3e:cd:15:44:bc:e5:7e:a4:dc:12:9b: 3c:56:ba:67:04:70:00:9d:d7:44:c0:d5:bd:d4:7a: 72:80:52:4d:c4:4f:59:d7:5e:73:93:ae:5f:26:b1: 03:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:8F:B5:CF:DA:1E:9C:91:B7:23:36:A4:58:03:5A:C3:21:BA:FF:DB X509v3 Authority Key Identifier: keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/pI-1z9oenJG3IzakWANawyG6_9s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.28.202.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:1b:6c:df:d7:86:87:15:ce:6e:a8:7c:e5:b4:04:74:8e:be: 06:8b:37:3d:43:53:04:76:c5:6c:60:5f:75:4e:1e:8a:48:9f: 88:c0:49:64:5f:36:59:ef:e7:16:71:ac:1c:c5:7b:1f:7f:34: 41:f9:cf:82:20:73:54:9c:81:52:67:00:0d:53:0b:f0:dd:03: 9f:2d:60:b3:2a:dc:44:01:6c:9f:28:e5:8a:fb:e0:b1:58:e2: 4c:a5:78:d8:00:00:4c:1e:61:3c:c7:0a:e1:b6:5e:1b:24:28: 77:f5:cf:9a:56:88:63:57:7e:6b:9b:af:e2:62:a3:2b:82:ac: e4:27:02:b5:75:4b:08:a5:85:df:37:20:27:a7:52:87:55:ad: 9a:03:8d:f6:dd:d3:a6:a9:83:e8:b1:58:4b:b1:ea:17:ca:7c: f7:f7:7d:db:8a:19:1a:bf:e8:0c:16:ac:e1:00:93:f6:a6:21: 5f:a5:d0:5d:8f:c5:16:00:22:49:d2:ce:4c:65:7b:9e:5e:fd: 70:91:e0:59:57:3d:8c:d8:7b:37:ce:e8:e8:f6:fa:97:fa:06: dc:9d:d3:a5:80:8f:31:ca:6d:bc:c5:8c:7f:25:3d:97:0b:10: b0:e8:81:33:0e:59:2a:4f:42:34:0e:0d:d0:34:e1:54:65:39: e2:27:bd:f3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xv1jNyunWJGY79kW8KhrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNWIzMzQ5NjU3ODg3OTRkNmYxNDdhMmYwMDRkMTNiZTMy NTdkYzQwHhcNMjYwMTAxMDQxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDhmYjVjZmRhMWU5YzkxYjcyMzM2YTQ1ODAzNWFjMzIxYmFmZmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Cgbhp3kR93JdJUIyGI7aPJ1QB1y olTxL6hCcMipTfN7kreSMF2pnfFyloQMsep2svWnrYRBXba5BzUdjFAk2r0lZaMb D9RFh1cw0drDR/TXNEcSWxDIHCQg7AkVmgq4O+OKltiAywNP07hCSTMOZkoIrNff 3ZTED4009q53YKrhhodtcRD7sttbGC1KhlR9ZhtmwIMBBA12PfD5p3yYv2zfC4Pp C7BxFfrNEnO7jjLMrdPElR54koprAPelzvEDsXoYus0D8kgLeTqvg9yhsdFemvkV Ps0VRLzlfqTcEps8VrpnBHAAnddEwNW91HpygFJNxE9Z115zk65fJrEDAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKSPtc/aHpyRtyM2pFgDWsMhuv/bMB8GA1UdIwQY MBaAFB5bM0lleIeU1vFHovAE0TvjJX3EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGxzelNXVjRoNVRXOFVlaThBVFJPLU1sZmNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC85YmEzOGEtNDg1Mi00MTNkLTljZDIt OTk5MGUyZDllYWZlLzEvcEktMXo5b2VuSkczSXpha1dBTmF3eUc2XzlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC85YmEzOGEtNDg1Mi00MTNkLTljZDItOTk5MGUyZDllYWZl LzEvSGxzelNXVjRoNVRXOFVlaThBVFJPLU1sZmNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWRzKMA0G CSqGSIb3DQEBCwUAA4IBAQCOG2zf14aHFc5uqHzltAR0jr4Gizc9Q1MEdsVsYF91 Th6KSJ+IwElkXzZZ7+cWcawcxXsffzRB+c+CIHNUnIFSZwANUwvw3QOfLWCzKtxE AWyfKOWK++CxWOJMpXjYAABMHmE8xwrhtl4bJCh39c+aVohjV35rm6/iYqMrgqzk JwK1dUsIpYXfNyAnp1KHVa2aA4323dOmqYPosVhLseoXynz3933bihkav+gMFqzh AJP2piFfpdBdj8UWACJJ0s5MZXueXv1wkeBZVz2M2Hs3zujo9vqX+gbcndOlgI8x ym28xYx/JT2XCxCw6IEzDlkqT0I0Dg3QNOFUZTniJ73z -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:04 2026 by rpki-client