This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/SOgaP1DH2swEptFsywDuWJ897xw.roa File: SOgaP1DH2swEptFsywDuWJ897xw.roa (raw, json) Hash identifier: LYHLoXM2uerJ8kW5uG4y1NPyevrNKVqu8gNCKOXwcIo= Subject key identifier: 48:E8:1A:3F:50:C7:DA:CC:04:A6:D1:6C:CB:00:EE:58:9F:3D:EF:1C Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e Certificate serial: 019B7E38A25D7ECBC333BE271FDBA7232DC3 Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/SOgaP1DH2swEptFsywDuWJ897xw.roa Signing time: Fri 02 Jan 2026 10:19:59 +0000 ROA not before: Fri 02 Jan 2026 10:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213918 IP address blocks: 195.114.201.0/24 maxlen: 24 213.220.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.mft rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:a2:5d:7e:cb:c3:33:be:27:1f:db:a7:23:2d:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e Validity Not Before: Jan 2 10:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48e81a3f50c7dacc04a6d16ccb00ee589f3def1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:70:b1:37:8b:99:7f:aa:9a:a8:8a:53:1c:79: e0:1b:d9:c9:26:62:f4:62:e5:9d:82:26:d0:9d:e7: 79:16:fe:7d:89:cb:88:d6:46:45:09:71:3b:e0:3f: d5:9f:c5:4e:c9:1f:51:76:72:cb:c4:cc:2b:63:fa: 01:af:41:3f:00:86:68:26:01:c5:b9:16:a4:49:2c: fa:bf:d6:0d:13:4f:04:15:db:69:89:e6:fb:43:82: 97:5e:a6:67:3d:ca:3b:d0:57:b6:2d:d0:0d:aa:f8: ef:af:8a:70:4e:a6:71:a1:4f:9b:1e:c5:30:c2:03: f5:9e:fb:9c:ee:e4:40:94:af:ba:b9:54:a7:fa:9a: 52:eb:83:0a:52:ad:be:4b:12:ae:09:15:a4:d0:4a: 2a:21:ff:75:d9:08:a7:42:59:3a:3f:17:4d:40:5c: 04:4f:63:51:3d:e8:2c:db:fd:22:85:64:0d:f4:c9: 3d:b2:a2:cc:b0:a6:92:65:52:54:48:2a:4b:84:33: 8a:68:e3:9e:b5:65:1b:0e:b2:32:c9:18:ca:89:41: b0:e6:b6:fa:7d:29:4c:0a:ae:ea:de:b3:29:e6:34: 11:32:e0:36:67:c0:32:69:d0:6e:4f:af:d9:29:44: 05:4d:21:de:e4:ce:90:09:8e:67:0f:59:6b:0a:da: d4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E8:1A:3F:50:C7:DA:CC:04:A6:D1:6C:CB:00:EE:58:9F:3D:EF:1C X509v3 Authority Key Identifier: keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/SOgaP1DH2swEptFsywDuWJ897xw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.114.201.0/24 213.220.62.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:07:07:60:3d:6b:9d:b7:af:03:aa:51:cd:5f:d3:f8:31:45: 18:d4:cf:26:f9:9f:22:7b:05:2f:ef:71:57:a3:86:70:9e:3f: b7:15:1e:29:27:5b:21:9a:9b:50:a3:55:44:3c:ec:1a:52:62: d9:ef:a6:5c:fd:83:bb:0a:08:6e:6b:ad:39:7e:02:b3:c3:f6: d0:06:68:22:2a:c7:72:ab:36:ff:68:b9:75:d6:89:af:22:f4: 6c:24:8b:26:60:f7:66:3b:bc:55:01:95:ab:c5:44:2c:de:a1: 26:2d:cb:78:19:e0:ad:13:94:0d:96:69:00:61:bf:19:59:72: 24:c9:c1:e0:73:ee:53:ba:4f:dd:94:90:94:57:17:7c:05:96: 90:3e:b6:41:51:d8:8b:35:48:d2:ee:88:09:2d:dc:94:a2:bc: 95:5a:be:2d:73:05:bc:a3:a2:4d:96:b7:2f:62:7e:b1:80:40: 61:32:02:f2:ab:fb:a8:f3:e4:cd:92:b6:07:c3:50:90:aa:4a: a0:07:fb:d5:38:8e:a6:3c:8d:e7:f5:7b:0f:d6:5e:13:e5:4c: d3:39:3b:eb:95:b7:2f:32:70:7c:77:4c:53:36:79:5b:48:b6: 46:23:45:d6:ce:33:cb:89:ae:b2:db:c5:bf:a2:f7:ff:d0:db: 5e:d4:ee:3b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OKJdfsvDM74nH9unIy3DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy MGFlMmUwHhcNMjYwMTAyMTAxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OGU4MWEzZjUwYzdkYWNjMDRhNmQxNmNjYjAwZWU1ODlmM2RlZjFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXCxN4uZf6qaqIpTHHngG9nJJmL0 YuWdgibQned5Fv59icuI1kZFCXE74D/Vn8VOyR9RdnLLxMwrY/oBr0E/AIZoJgHF uRakSSz6v9YNE08EFdtpieb7Q4KXXqZnPco70Fe2LdANqvjvr4pwTqZxoU+bHsUw wgP1nvuc7uRAlK+6uVSn+ppS64MKUq2+SxKuCRWk0EoqIf912QinQlk6PxdNQFwE T2NRPegs2/0ihWQN9Mk9sqLMsKaSZVJUSCpLhDOKaOOetWUbDrIyyRjKiUGw5rb6 fSlMCq7q3rMp5jQRMuA2Z8AyadBuT6/ZKUQFTSHe5M6QCY5nD1lrCtrUSQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEjoGj9Qx9rMBKbRbMsA7lifPe8cMB8GA1UdIwQY MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt MWRkZWM0Y2NlMjRjLzEvU09nYVAxREgyc3dFcHRGc3l3RHVXSjg5N3h3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAw3LJAwQA 1dw+MA0GCSqGSIb3DQEBCwUAA4IBAQB6BwdgPWudt68DqlHNX9P4MUUY1M8m+Z8i ewUv73FXo4Zwnj+3FR4pJ1shmptQo1VEPOwaUmLZ76Zc/YO7Cghua605fgKzw/bQ BmgiKsdyqzb/aLl11omvIvRsJIsmYPdmO7xVAZWrxUQs3qEmLct4GeCtE5QNlmkA Yb8ZWXIkycHgc+5Tuk/dlJCUVxd8BZaQPrZBUdiLNUjS7ogJLdyUoryVWr4tcwW8 o6JNlrcvYn6xgEBhMgLyq/uo8+TNkrYHw1CQqkqgB/vVOI6mPI3n9XsP1l4T5UzT OTvrlbcvMnB8d0xTNnlbSLZGI0XWzjPLia6y28W/ovf/0Nte1O47 -----END CERTIFICATE-----Generated at Tue Jan 20 02:47:23 2026 by rpki-client