This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/En94w1aoQT2Df-plLIO5o_mJDiE.roa File: En94w1aoQT2Df-plLIO5o_mJDiE.roa (raw, json) Hash identifier: T1Z8KGa2hhTOXx23lLVrR7iImIAiFGfiumitd/czjbE= Subject key identifier: 12:7F:78:C3:56:A8:41:3D:83:7F:EA:65:2C:83:B9:A3:F9:89:0E:21 Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Certificate serial: 019B7D5CDABA4998C9C9D99ACDCB3D1AFF52 Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/En94w1aoQT2Df-plLIO5o_mJDiE.roa Signing time: Fri 02 Jan 2026 06:19:55 +0000 ROA not before: Fri 02 Jan 2026 06:19:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213220 IP address blocks: 192.145.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.mft rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:da:ba:49:98:c9:c9:d9:9a:cd:cb:3d:1a:ff:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2 Validity Not Before: Jan 2 06:19:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=127f78c356a8413d837fea652c83b9a3f9890e21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:52:12:34:90:4b:af:f8:5a:3b:a9:bf:6e:25: eb:7f:09:22:af:f3:f8:71:f6:3f:2c:f9:f8:35:63: f3:1e:ab:62:8b:9f:6e:c7:48:e6:e8:70:12:24:ab: a5:1d:9e:78:6f:35:c8:6a:b6:d5:a4:e5:de:fd:2e: 50:e1:39:59:27:ce:d5:5e:61:e0:92:87:5c:ec:3f: 7a:ba:bd:d4:29:0f:77:5a:eb:0d:b8:8f:d7:39:4d: 19:6b:0c:62:73:d3:f2:93:5e:bd:ae:fc:03:62:b0: 42:4e:c9:a2:a1:68:22:70:cd:ad:c2:91:8b:0f:d7: df:50:fd:22:2f:f6:ab:9a:60:a8:bd:cc:b7:31:e3: e9:04:c6:7f:2d:44:42:3b:26:de:1d:13:0c:d6:39: 46:67:01:4a:ed:a1:be:b5:b5:d6:4c:45:64:6e:12: d8:e7:ae:a9:1d:e8:a4:4c:46:9b:59:22:ae:19:b3: 28:46:38:7a:52:05:16:09:30:68:20:c5:a8:11:f4: 59:61:b5:ac:c9:a8:4a:32:9f:bd:22:1e:f2:b5:2c: d8:88:73:bd:11:b8:68:52:31:b3:7c:29:b8:87:ad: b2:93:a6:c9:87:51:1c:67:df:ab:55:58:af:aa:09: 8d:41:a1:4e:8e:76:ae:e6:0e:da:6a:2e:e0:61:f9: d2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:7F:78:C3:56:A8:41:3D:83:7F:EA:65:2C:83:B9:A3:F9:89:0E:21 X509v3 Authority Key Identifier: keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/En94w1aoQT2Df-plLIO5o_mJDiE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.145.97.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:31:fe:50:48:0e:24:33:aa:1a:a9:65:24:7c:c4:9d:73:dd: b0:08:0a:2d:e2:51:d1:95:35:37:8c:4d:26:96:b9:ef:6e:8c: 37:81:69:e2:a7:6c:e0:22:e4:3c:ba:bd:77:41:a1:08:50:3a: 87:0d:44:43:8f:1b:79:40:c4:3d:3a:6e:c1:c1:35:d1:38:2e: a1:34:c2:49:9b:79:47:ad:54:79:38:78:07:20:5b:41:35:13: 79:d3:66:90:77:1a:ff:0b:9b:10:16:4e:48:4f:fe:49:ef:77: 74:f4:02:43:8d:3c:5a:20:21:bd:4a:1c:87:27:9a:a7:12:14: 7a:54:b8:a2:55:e3:24:82:5f:c9:ea:c9:4b:5f:6b:dc:88:3c: 47:51:e8:6a:75:6c:1e:25:c7:7b:88:36:41:d4:b1:7a:42:05: 30:d2:2c:2a:f8:93:4c:1a:f3:32:7c:af:2f:0b:32:ac:9f:64: 2f:2a:98:95:bf:5b:97:da:c8:61:17:d8:c5:3d:ea:f1:ad:97: 85:25:9c:72:3e:70:07:84:41:21:ab:b6:c7:0b:51:55:04:ce: 87:44:fc:d0:62:f6:c2:79:c1:6c:86:ba:50:3f:f6:98:4c:b4: 89:b2:d7:d0:3f:f5:2e:4e:7a:2b:fb:c8:96:0f:ca:1b:77:1d: 21:41:fe:86 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XNq6SZjJydmazcs9Gv9SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl NWVjZjIwHhcNMjYwMTAyMDYxOTU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjdmNzhjMzU2YTg0MTNkODM3ZmVhNjUyYzgzYjlhM2Y5ODkwZTIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0lISNJBLr/haO6m/biXrfwkir/P4 cfY/LPn4NWPzHqtii59ux0jm6HASJKulHZ54bzXIarbVpOXe/S5Q4TlZJ87VXmHg kodc7D96ur3UKQ93WusNuI/XOU0Zawxic9Pyk169rvwDYrBCTsmioWgicM2twpGL D9ffUP0iL/armmCovcy3MePpBMZ/LURCOybeHRMM1jlGZwFK7aG+tbXWTEVkbhLY 566pHeikTEabWSKuGbMoRjh6UgUWCTBoIMWoEfRZYbWsyahKMp+9Ih7ytSzYiHO9 EbhoUjGzfCm4h62yk6bJh1EcZ9+rVVivqgmNQaFOjnau5g7aai7gYfnSuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFBJ/eMNWqEE9g3/qZSyDuaP5iQ4hMB8GA1UdIwQY MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt MTcxYzM2N2JlNzgyLzEvRW45NHcxYW9RVDJEZi1wbExJTzVvX21KRGlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwJFhMA0G CSqGSIb3DQEBCwUAA4IBAQBeMf5QSA4kM6oaqWUkfMSdc92wCAot4lHRlTU3jE0m lrnvbow3gWnip2zgIuQ8ur13QaEIUDqHDURDjxt5QMQ9Om7BwTXROC6hNMJJm3lH rVR5OHgHIFtBNRN502aQdxr/C5sQFk5IT/5J73d09AJDjTxaICG9ShyHJ5qnEhR6 VLiiVeMkgl/J6slLX2vciDxHUehqdWweJcd7iDZB1LF6QgUw0iwq+JNMGvMyfK8v CzKsn2QvKpiVv1uX2shhF9jFPerxrZeFJZxyPnAHhEEhq7bHC1FVBM6HRPzQYvbC ecFshrpQP/aYTLSJstfQP/UuTnor+8iWD8obdx0hQf6G -----END CERTIFICATE-----Generated at Mon Jan 19 19:57:15 2026 by rpki-client