This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/p51paCtDfiOnAaAA1ioOisOtxo0.roa File: p51paCtDfiOnAaAA1ioOisOtxo0.roa (raw, json) Hash identifier: 41VX6c9PC5idlzihRVbcgNzJbqLU5GMDkw+tX1NEw4g= Subject key identifier: A7:9D:69:68:2B:43:7E:23:A7:01:A0:00:D6:2A:0E:8A:C3:AD:C6:8D Certificate issuer: /CN=c76e03ff7d0bfde32839c28fec81c6275c04d33f Certificate serial: 019B77C6CEA203AC4DE7410B64072B9ABEFB Authority key identifier: C7:6E:03:FF:7D:0B:FD:E3:28:39:C2:8F:EC:81:C6:27:5C:04:D3:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x24D_30L_eMoOcKP7IHGJ1wE0z8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/p51paCtDfiOnAaAA1ioOisOtxo0.roa Signing time: Thu 01 Jan 2026 04:17:56 +0000 ROA not before: Thu 01 Jan 2026 04:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48972 IP address blocks: 185.107.120.0/22 maxlen: 22 2a00:cb40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/x24D_30L_eMoOcKP7IHGJ1wE0z8.crl rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/x24D_30L_eMoOcKP7IHGJ1wE0z8.mft rsync://rpki.ripe.net/repository/DEFAULT/x24D_30L_eMoOcKP7IHGJ1wE0z8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 01:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:ce:a2:03:ac:4d:e7:41:0b:64:07:2b:9a:be:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c76e03ff7d0bfde32839c28fec81c6275c04d33f Validity Not Before: Jan 1 04:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a79d69682b437e23a701a000d62a0e8ac3adc68d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:93:6c:76:f8:cb:6e:9e:19:21:6f:37:82:a8: e0:38:bb:c3:b5:09:c6:89:cc:7a:0e:a3:b9:a4:09: 84:4b:71:34:5f:e8:96:5d:06:10:2f:de:ed:c0:30: 51:ee:c1:97:c4:87:12:da:60:e7:cb:9f:4f:2c:45: d4:3c:78:69:42:b4:44:7c:c5:e6:fc:38:0b:ab:2d: 9a:e3:84:fc:45:4d:21:ef:c3:ca:07:c5:7f:60:60: dc:c2:fb:fb:c4:f3:7f:9b:36:dc:19:9f:b2:19:ae: 55:f5:df:a6:52:20:58:33:78:70:ba:ed:98:97:86: e8:b8:fe:e6:b4:27:9c:8d:39:b2:a0:6e:b2:1f:27: df:86:98:93:88:e7:76:15:2e:f0:92:60:60:39:fb: 57:c7:a3:ca:13:f2:af:ad:f6:14:a9:e0:91:c0:02: 08:8a:9f:47:c5:1b:2b:be:46:a4:d0:6e:4a:4b:e3: 44:c6:48:5b:02:f7:8c:05:77:36:f9:bb:b9:99:3d: ba:c5:4e:26:21:a5:c0:37:19:fb:db:68:6c:a8:80: 85:4c:7d:92:55:b2:76:1b:14:af:b5:10:4e:af:c3: d3:ba:3c:0b:64:b2:b6:97:ab:d1:b9:09:06:95:f0: ec:cd:70:b4:63:d1:69:10:6b:23:8d:96:06:45:c0: 3e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:9D:69:68:2B:43:7E:23:A7:01:A0:00:D6:2A:0E:8A:C3:AD:C6:8D X509v3 Authority Key Identifier: keyid:C7:6E:03:FF:7D:0B:FD:E3:28:39:C2:8F:EC:81:C6:27:5C:04:D3:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x24D_30L_eMoOcKP7IHGJ1wE0z8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/p51paCtDfiOnAaAA1ioOisOtxo0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/x24D_30L_eMoOcKP7IHGJ1wE0z8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.107.120.0/22 IPv6: 2a00:cb40::/32 Signature Algorithm: sha256WithRSAEncryption 66:24:37:29:9d:8b:da:89:13:3f:6b:75:dd:e3:bf:71:20:24: bb:53:16:b9:a3:2f:51:88:68:ab:e9:e4:26:98:1b:95:17:a2: d4:e8:32:01:e5:50:c4:76:39:36:f3:e8:15:d4:f6:d6:f1:95: c2:77:24:93:e5:7f:1c:87:72:92:9b:46:ce:6c:a9:01:d9:39: 40:6b:80:84:80:9f:7b:43:01:b2:fc:78:21:a6:9f:bc:23:77: 06:1e:5b:45:49:fe:33:9e:1c:1f:ff:70:5e:52:96:51:87:b0: 24:d9:32:9a:05:24:ea:e5:51:20:5c:d9:4b:75:db:a9:ad:68: d9:95:94:33:77:06:fb:6e:c0:b0:1a:d7:0b:2c:f3:fd:06:44: 04:c8:06:6b:63:08:74:91:13:74:50:ae:4d:a8:ae:2e:69:95: e7:54:c8:2a:b9:a3:82:70:8f:ce:5d:20:16:dc:d1:a2:61:e8: e4:68:eb:25:ac:20:bf:55:98:8c:f3:c2:52:44:72:25:df:bb: d1:4b:e2:9d:1a:ca:e5:f0:53:19:51:35:dd:8c:61:b9:33:af: 95:aa:fe:b7:c9:fc:04:4b:0d:96:77:f4:66:1f:d0:92:e2:0e: 62:56:1f:86:d1:02:b1:69:2a:bc:d1:3b:6d:96:80:ed:46:2a: 23:d4:7f:11 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3xs6iA6xN50ELZAcrmr77MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NmUwM2ZmN2QwYmZkZTMyODM5YzI4ZmVjODFjNjI3NWMw NGQzM2YwHhcNMjYwMTAxMDQxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzlkNjk2ODJiNDM3ZTIzYTcwMWEwMDBkNjJhMGU4YWMzYWRjNjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3pNsdvjLbp4ZIW83gqjgOLvDtQnG icx6DqO5pAmES3E0X+iWXQYQL97twDBR7sGXxIcS2mDny59PLEXUPHhpQrREfMXm /DgLqy2a44T8RU0h78PKB8V/YGDcwvv7xPN/mzbcGZ+yGa5V9d+mUiBYM3hwuu2Y l4bouP7mtCecjTmyoG6yHyffhpiTiOd2FS7wkmBgOftXx6PKE/KvrfYUqeCRwAII ip9HxRsrvkak0G5KS+NExkhbAveMBXc2+bu5mT26xU4mIaXANxn722hsqICFTH2S VbJ2GxSvtRBOr8PTujwLZLK2l6vRuQkGlfDszXC0Y9FpEGsjjZYGRcA+4QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFKedaWgrQ34jpwGgANYqDorDrcaNMB8GA1UdIwQY MBaAFMduA/99C/3jKDnCj+yBxidcBNM/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDI0RF8zMExfZU1vT2NLUDdJSEdKMXdFMHo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8zMzQ3ZjctNTI1OS00MjM4LWFkYjYt ODM1ZGUwZjU4OTJlLzEvcDUxcGFDdERmaU9uQWFBQTFpb09pc090eG8wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8zMzQ3ZjctNTI1OS00MjM4LWFkYjYtODM1ZGUwZjU4OTJl LzEveDI0RF8zMExfZU1vT2NLUDdJSEdKMXdFMHo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuWt4MA0E AgACMAcDBQAqAMtAMA0GCSqGSIb3DQEBCwUAA4IBAQBmJDcpnYvaiRM/a3Xd479x ICS7Uxa5oy9RiGir6eQmmBuVF6LU6DIB5VDEdjk28+gV1PbW8ZXCdyST5X8ch3KS m0bObKkB2TlAa4CEgJ97QwGy/Hghpp+8I3cGHltFSf4znhwf/3BeUpZRh7Ak2TKa BSTq5VEgXNlLdduprWjZlZQzdwb7bsCwGtcLLPP9BkQEyAZrYwh0kRN0UK5NqK4u aZXnVMgquaOCcI/OXSAW3NGiYejkaOslrCC/VZiM88JSRHIl37vRS+KdGsrl8FMZ UTXdjGG5M6+Vqv63yfwESw2Wd/RmH9CS4g5iVh+G0QKxaSq80TttloDtRioj1H8R -----END CERTIFICATE-----Generated at Mon Jan 12 04:57:42 2026 by rpki-client