This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/2c0dcd-8e47-442c-b0f4-cc7679f1802f/1/maEv5ArPl0MhVYV7tQz9rkyTAIo.roa File: maEv5ArPl0MhVYV7tQz9rkyTAIo.roa (raw, json) Hash identifier: dBiLGOeBpvZw0H7gef9rbExfaEt6iLiJPLCEXhR/0HU= Subject key identifier: 99:A1:2F:E4:0A:CF:97:43:21:55:85:7B:B5:0C:FD:AE:4C:93:00:8A Certificate issuer: /CN=e1d3c9af6cf52b8a390b58f00b14a88710336944 Certificate serial: 019B7E3783BBAA7B53AB94C83CF04C897D9E Authority key identifier: E1:D3:C9:AF:6C:F5:2B:8A:39:0B:58:F0:0B:14:A8:87:10:33:69:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4dPJr2z1K4o5C1jwCxSohxAzaUQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/2c0dcd-8e47-442c-b0f4-cc7679f1802f/1/maEv5ArPl0MhVYV7tQz9rkyTAIo.roa Signing time: Fri 02 Jan 2026 10:18:46 +0000 ROA not before: Fri 02 Jan 2026 10:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21217 IP address blocks: 83.97.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/2c0dcd-8e47-442c-b0f4-cc7679f1802f/1/4dPJr2z1K4o5C1jwCxSohxAzaUQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/2c0dcd-8e47-442c-b0f4-cc7679f1802f/1/4dPJr2z1K4o5C1jwCxSohxAzaUQ.mft rsync://rpki.ripe.net/repository/DEFAULT/4dPJr2z1K4o5C1jwCxSohxAzaUQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:83:bb:aa:7b:53:ab:94:c8:3c:f0:4c:89:7d:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e1d3c9af6cf52b8a390b58f00b14a88710336944 Validity Not Before: Jan 2 10:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=99a12fe40acf97432155857bb50cfdae4c93008a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:01:54:25:8e:35:d6:ce:f8:14:da:22:41:d6: fb:96:e7:cf:47:b1:91:13:7d:0d:6b:39:1d:98:2f: 48:52:d5:48:17:28:88:c5:ef:ec:fe:7c:1c:51:ef: d7:13:0b:4c:a0:40:ab:9d:ae:b4:90:1f:02:5c:fc: 42:0c:ab:0c:1f:1f:80:30:46:9e:83:4f:cf:ce:ef: 94:db:07:74:01:d2:07:a1:71:cb:36:55:de:dc:29: 65:51:9a:ca:45:10:61:29:60:a9:b9:43:64:83:ff: 46:6c:6a:65:08:03:7d:72:4e:12:66:8c:da:b1:02: 02:a6:32:6e:31:93:73:84:a8:70:08:0d:ce:11:1b: 19:55:26:ee:6e:3b:3a:21:3b:fd:10:5e:84:a2:a3: c5:ee:6a:ac:95:e3:db:69:15:f8:0a:89:94:25:04: a1:29:77:b4:4d:53:32:0c:dc:72:40:74:08:20:e9: d5:55:bb:3e:b3:01:f7:a6:2f:ae:a1:6a:77:fa:7a: cd:26:de:d0:3e:b9:cf:67:5e:85:d8:03:72:6b:b0: 35:2b:dc:83:fa:62:0f:e2:0a:b4:68:60:0e:1f:67: d6:8c:bd:71:fe:7e:92:82:d5:0a:6d:f8:76:19:71: 02:66:e2:87:40:c0:0b:e8:07:ba:a4:25:34:56:bf: ce:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A1:2F:E4:0A:CF:97:43:21:55:85:7B:B5:0C:FD:AE:4C:93:00:8A X509v3 Authority Key Identifier: keyid:E1:D3:C9:AF:6C:F5:2B:8A:39:0B:58:F0:0B:14:A8:87:10:33:69:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4dPJr2z1K4o5C1jwCxSohxAzaUQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2c0dcd-8e47-442c-b0f4-cc7679f1802f/1/maEv5ArPl0MhVYV7tQz9rkyTAIo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/2c0dcd-8e47-442c-b0f4-cc7679f1802f/1/4dPJr2z1K4o5C1jwCxSohxAzaUQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.97.120.0/22 Signature Algorithm: sha256WithRSAEncryption 24:7c:4c:e9:41:ee:27:a9:12:74:60:16:bf:75:78:be:b5:8a: ec:37:0c:9d:1c:d2:81:fe:ac:70:77:a1:38:36:34:80:a3:ba: 8f:55:bb:5f:e1:65:06:de:2f:b0:d2:77:ab:2f:7c:7c:78:e3: 43:29:89:0a:d3:5b:32:a8:ba:c5:f4:18:2d:d7:9f:98:6d:a8: 1e:f2:f9:75:f5:22:54:07:61:b6:40:74:31:ff:4e:70:fe:d8: 32:ba:72:62:14:a3:d1:93:d9:19:ea:f4:44:aa:36:35:48:c8: c9:3b:30:c3:a9:78:16:c8:72:ec:06:18:20:b4:28:88:d6:b8: 8a:b5:ac:e9:2a:23:6d:e1:91:04:71:f4:28:f2:b8:15:92:27: d9:59:48:04:44:e3:cf:01:94:d2:d8:14:8e:3f:8e:36:be:54: 9a:0c:46:6c:40:9c:81:f5:2a:84:a8:7a:3d:b7:2c:30:3c:59: 2e:a9:90:77:3f:b6:76:9c:a7:8c:ed:ea:6b:ad:64:88:5d:cd: 3b:03:dc:3e:23:6e:96:a1:27:73:c8:ba:72:07:cb:4b:5c:a3: 4b:0d:fd:fe:6a:8d:71:af:1a:dd:a0:8d:a0:ba:3d:ca:93:1e: ff:c6:e1:4d:fd:ea:5e:1d:43:5e:f6:76:79:72:e6:35:1a:13: 74:1b:c9:68 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+N4O7qntTq5TIPPBMiX2eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUxZDNjOWFmNmNmNTJiOGEzOTBiNThmMDBiMTRhODg3MTAz MzY5NDQwHhcNMjYwMTAyMTAxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5OWExMmZlNDBhY2Y5NzQzMjE1NTg1N2JiNTBjZmRhZTRjOTMwMDhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwFUJY411s74FNoiQdb7lufPR7GR E30NazkdmC9IUtVIFyiIxe/s/nwcUe/XEwtMoECrna60kB8CXPxCDKsMHx+AMEae g0/Pzu+U2wd0AdIHoXHLNlXe3CllUZrKRRBhKWCpuUNkg/9GbGplCAN9ck4SZoza sQICpjJuMZNzhKhwCA3OERsZVSbubjs6ITv9EF6EoqPF7mqslePbaRX4ComUJQSh KXe0TVMyDNxyQHQIIOnVVbs+swH3pi+uoWp3+nrNJt7QPrnPZ16F2ANya7A1K9yD +mIP4gq0aGAOH2fWjL1x/n6SgtUKbfh2GXECZuKHQMAL6Ae6pCU0Vr/O3QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJmhL+QKz5dDIVWFe7UM/a5MkwCKMB8GA1UdIwQY MBaAFOHTya9s9SuKOQtY8AsUqIcQM2lEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNGRQSnIyejFLNG81QzFqd0N4U29oeEF6YVVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8yYzBkY2QtOGU0Ny00NDJjLWIwZjQt Y2M3Njc5ZjE4MDJmLzEvbWFFdjVBclBsME1oVllWN3RRejlya3lUQUlvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8yYzBkY2QtOGU0Ny00NDJjLWIwZjQtY2M3Njc5ZjE4MDJm LzEvNGRQSnIyejFLNG81QzFqd0N4U29oeEF6YVVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCU2F4MA0G CSqGSIb3DQEBCwUAA4IBAQAkfEzpQe4nqRJ0YBa/dXi+tYrsNwydHNKB/qxwd6E4 NjSAo7qPVbtf4WUG3i+w0nerL3x8eONDKYkK01syqLrF9Bgt15+Ybage8vl19SJU B2G2QHQx/05w/tgyunJiFKPRk9kZ6vREqjY1SMjJOzDDqXgWyHLsBhggtCiI1riK tazpKiNt4ZEEcfQo8rgVkifZWUgEROPPAZTS2BSOP442vlSaDEZsQJyB9SqEqHo9 tywwPFkuqZB3P7Z2nKeM7eprrWSIXc07A9w+I26WoSdzyLpyB8tLXKNLDf3+ao1x rxrdoI2guj3Kkx7/xuFN/epeHUNe9nZ5cuY1GhN0G8lo -----END CERTIFICATE-----Generated at Sun Jan 11 12:42:42 2026 by rpki-client