This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/r-29DfcBFqtrQoxy43Ck9AGvEJA.roa File: r-29DfcBFqtrQoxy43Ck9AGvEJA.roa (raw, json) Hash identifier: Vf08Uzf29by4OovXTt6InS//E1CSQstRVYxDVQ9TYww= Subject key identifier: AF:ED:BD:0D:F7:01:16:AB:6B:42:8C:72:E3:70:A4:F4:01:AF:10:90 Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c Certificate serial: 019B7F1434B7B4CB83BF1074B66600D8E136 Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/r-29DfcBFqtrQoxy43Ck9AGvEJA.roa Signing time: Fri 02 Jan 2026 14:19:49 +0000 ROA not before: Fri 02 Jan 2026 14:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198178 IP address blocks: 212.102.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.mft rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:34:b7:b4:cb:83:bf:10:74:b6:66:00:d8:e1:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c Validity Not Before: Jan 2 14:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=afedbd0df70116ab6b428c72e370a4f401af1090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:84:5e:4c:74:02:2f:81:8d:6f:87:59:ac:ae: 44:b1:d2:5f:8a:c5:46:00:c1:d9:23:e1:95:58:9c: 2a:33:48:56:64:2d:a9:b8:0a:aa:6a:79:56:3b:3b: aa:b7:9f:a3:49:69:6e:50:a3:bb:3e:0c:2d:43:2d: 3d:a1:66:23:66:84:34:d9:c8:8c:65:cd:30:b4:6b: 36:42:9d:2f:a6:3b:2d:8a:28:9b:5b:75:ec:62:d5: 0a:7a:2d:cd:75:e5:66:60:77:aa:93:94:ed:b1:09: 6f:55:b4:b2:1d:03:dc:79:7a:b2:5d:bb:1c:2c:19: 52:69:12:3a:83:64:8d:9c:60:20:ba:16:07:dc:7f: cc:00:f1:05:66:41:f3:5c:eb:5b:79:9a:7f:dd:bc: 63:4b:4c:8a:22:63:0b:88:28:fa:1e:67:ca:49:b0: 7d:a8:c3:d2:80:75:60:da:17:93:11:59:1a:55:9e: db:67:d9:1a:e6:2e:d7:fd:8a:44:c1:92:20:81:38: db:4d:d1:1b:2d:a9:9e:d6:02:1b:ee:fa:04:b6:de: b7:b6:1a:dc:c6:1a:85:1b:8f:8c:db:99:38:ad:8b: a7:ff:53:82:47:cf:05:3b:16:14:a6:7e:c8:c4:05: 30:8b:65:8b:a0:5a:39:a5:3f:d2:fa:36:5e:e6:35: 8a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:ED:BD:0D:F7:01:16:AB:6B:42:8C:72:E3:70:A4:F4:01:AF:10:90 X509v3 Authority Key Identifier: keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/r-29DfcBFqtrQoxy43Ck9AGvEJA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.102.107.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:b6:88:dc:34:c7:44:ce:b2:2d:d8:b3:ee:30:20:ac:19:b8: 6f:59:0e:b9:35:07:68:33:a2:83:26:84:35:96:61:1a:43:f1: 62:f3:7a:6d:78:43:c3:9b:b7:e4:a4:a9:73:30:3a:33:80:8a: 30:f1:fc:d0:06:8f:b9:97:e3:81:ce:42:49:3b:64:a3:50:4d: 43:86:3a:8f:c6:e1:b7:b6:23:96:e4:aa:d3:99:f8:53:e5:7f: f2:ae:e0:08:d7:f4:df:be:0e:ef:2f:80:98:f9:51:a6:6d:86: 67:fd:52:38:21:7d:79:1d:e5:c3:62:81:d5:16:25:28:4d:5f: 1e:62:81:ba:a3:5c:39:17:ac:ea:4b:f3:81:cf:e0:eb:e1:69: 37:09:09:0a:5c:7a:57:7c:14:57:c3:78:ab:45:6e:5e:53:98: ec:e6:aa:4c:5c:32:2a:79:38:5b:a0:77:ba:c6:9a:9f:73:9b: 79:74:48:83:ae:b6:d9:0c:c6:e8:a8:7a:1d:ce:42:15:1a:28: c2:f9:31:04:33:95:20:e8:56:0f:c6:13:e7:fa:c0:54:2b:88: 93:db:da:d5:1c:01:2b:af:64:32:ac:37:6f:8d:fc:02:e5:1e: 67:e6:f4:66:dd:5b:fe:4c:3c:cf:50:f8:e9:e6:3b:13:d3:ec: 2e:d9:00:34 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FDS3tMuDvxB0tmYA2OE2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk MDAxOGMwHhcNMjYwMTAyMTQxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZmVkYmQwZGY3MDExNmFiNmI0MjhjNzJlMzcwYTRmNDAxYWYxMDkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoReTHQCL4GNb4dZrK5EsdJfisVG AMHZI+GVWJwqM0hWZC2puAqqanlWOzuqt5+jSWluUKO7PgwtQy09oWYjZoQ02ciM Zc0wtGs2Qp0vpjstiiibW3XsYtUKei3NdeVmYHeqk5TtsQlvVbSyHQPceXqyXbsc LBlSaRI6g2SNnGAguhYH3H/MAPEFZkHzXOtbeZp/3bxjS0yKImMLiCj6HmfKSbB9 qMPSgHVg2heTEVkaVZ7bZ9ka5i7X/YpEwZIggTjbTdEbLame1gIb7voEtt63thrc xhqFG4+M25k4rYun/1OCR88FOxYUpn7IxAUwi2WLoFo5pT/S+jZe5jWKHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK/tvQ33ARara0KMcuNwpPQBrxCQMB8GA1UdIwQY MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct MjliMDg1ZGQyM2FkLzEvci0yOURmY0JGcXRyUW94eTQzQ2s5QUd2RUpBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1GZrMA0G CSqGSIb3DQEBCwUAA4IBAQAdtojcNMdEzrIt2LPuMCCsGbhvWQ65NQdoM6KDJoQ1 lmEaQ/Fi83pteEPDm7fkpKlzMDozgIow8fzQBo+5l+OBzkJJO2SjUE1DhjqPxuG3 tiOW5KrTmfhT5X/yruAI1/Tfvg7vL4CY+VGmbYZn/VI4IX15HeXDYoHVFiUoTV8e YoG6o1w5F6zqS/OBz+Dr4Wk3CQkKXHpXfBRXw3irRW5eU5js5qpMXDIqeThboHe6 xpqfc5t5dEiDrrbZDMboqHodzkIVGijC+TEEM5Ug6FYPxhPn+sBUK4iT29rVHAEr r2QyrDdvjfwC5R5n5vRm3Vv+TDzPUPjp5jsT0+wu2QA0 -----END CERTIFICATE-----Generated at Fri Jan 23 09:21:41 2026 by rpki-client