This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IdRscjbxDldTQ7XEt4UhA_a89z0.roa File: IdRscjbxDldTQ7XEt4UhA_a89z0.roa (raw, json) Hash identifier: 6phACXi86YbX6U1VYwlyZ9n2NgO8WbnMUcg7ulY87gU= Subject key identifier: 21:D4:6C:72:36:F1:0E:57:53:43:B5:C4:B7:85:21:03:F6:BC:F7:3D Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A3401E4D890B816F7D2CC06282C451 Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IdRscjbxDldTQ7XEt4UhA_a89z0.roa Signing time: Thu 01 Jan 2026 08:18:43 +0000 ROA not before: Thu 01 Jan 2026 08:18:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212591 IP address blocks: 31.13.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:40:1e:4d:89:0b:81:6f:7d:2c:c0:62:82:c4:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=21d46c7236f10e575343b5c4b7852103f6bcf73d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:11:14:1d:0a:6a:fe:8c:81:fd:e0:19:fe:4d: f7:2a:37:a8:25:5f:84:8a:08:9a:d1:ea:46:e9:a6: 43:64:cb:9f:8e:d0:90:fe:41:76:12:7b:f8:55:3f: d8:0c:0c:e4:01:71:f1:e5:43:a9:0b:1c:69:35:42: 58:94:77:5e:a5:9d:89:c2:03:51:43:d5:7c:33:f9: c7:2d:b1:fc:cf:01:44:8a:2e:53:8b:eb:6c:e3:3a: 05:6b:21:86:92:1d:a8:46:25:1d:9a:a6:06:e8:8c: 4c:73:53:eb:f0:ad:ad:57:1d:cf:bf:1f:f4:00:0a: 3d:54:fa:6c:96:08:7c:c0:fe:13:9e:a1:f8:b9:6b: 77:bb:fa:d0:4f:1a:6a:2a:5f:cc:ad:60:fd:05:59: 7e:b3:5e:67:20:19:c2:91:c9:10:cf:59:f9:46:54: 59:69:5e:2a:e8:1e:1d:b2:28:a0:23:fc:ef:63:96: 0b:94:dd:8c:c4:68:d4:44:f9:0c:17:ab:a8:f7:f8: f4:34:48:fb:55:eb:90:ad:7c:da:0b:8f:76:6b:3c: dc:b4:f5:48:85:40:8c:f7:6b:0e:5c:4a:88:44:0c: c6:d0:77:61:9e:cd:1b:f9:26:24:36:31:73:a6:7a: 08:13:2e:a1:8d:f1:ac:a8:4a:bf:a5:42:71:5f:dd: a2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D4:6C:72:36:F1:0E:57:53:43:B5:C4:B7:85:21:03:F6:BC:F7:3D X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IdRscjbxDldTQ7XEt4UhA_a89z0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.13.225.0/24 Signature Algorithm: sha256WithRSAEncryption 24:1f:97:f8:dc:0c:33:03:cf:6a:ee:f4:c3:75:0d:74:0c:d8: a8:db:7b:a1:62:af:e2:a2:87:64:77:fc:15:90:1f:17:b6:93: 78:7e:db:1f:ec:16:86:aa:bf:09:24:67:43:9e:cb:14:a8:c9: b7:e9:f6:2e:00:3d:e0:18:f0:3f:9f:91:d0:56:5d:99:41:38: 04:44:a0:ce:31:43:85:48:d5:dd:52:f6:ca:b7:6f:54:03:cc: 32:18:65:5e:5c:de:ba:90:4c:84:59:7c:bc:de:eb:02:f9:6f: e2:83:d3:f8:1b:23:93:39:c6:25:23:a0:32:bf:5e:1f:9c:6e: 04:a4:9d:78:d3:88:4d:96:b0:0b:eb:fb:82:9a:7b:33:3d:27: 97:97:26:dd:1a:60:f2:8e:e0:54:82:8e:59:56:47:55:a1:81: e3:46:77:04:48:5c:f1:59:97:d6:5d:7d:87:a5:15:ac:e0:11: b7:b6:e9:54:9f:41:d8:b5:92:b0:21:2a:ad:e6:f8:38:6f:ee: 0b:b4:4e:76:44:40:d9:f1:1f:ae:16:76:30:43:96:4a:db:df: 56:7d:7e:4f:42:79:fb:f8:71:d1:69:6d:4e:aa:4a:4c:28:75: 67:8e:29:ef:06:32:4b:ea:64:bb:61:a9:95:bb:f4:e4:d5:c5: c0:2e:1f:db -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o0AeTYkLgW99LMBigsRRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMWQ0NmM3MjM2ZjEwZTU3NTM0M2I1YzRiNzg1MjEwM2Y2YmNmNzNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxEUHQpq/oyB/eAZ/k33KjeoJV+E igia0epG6aZDZMufjtCQ/kF2Env4VT/YDAzkAXHx5UOpCxxpNUJYlHdepZ2JwgNR Q9V8M/nHLbH8zwFEii5Ti+ts4zoFayGGkh2oRiUdmqYG6IxMc1Pr8K2tVx3Pvx/0 AAo9VPpslgh8wP4TnqH4uWt3u/rQTxpqKl/MrWD9BVl+s15nIBnCkckQz1n5RlRZ aV4q6B4dsiigI/zvY5YLlN2MxGjURPkMF6uo9/j0NEj7VeuQrXzaC492azzctPVI hUCM92sOXEqIRAzG0Hdhns0b+SYkNjFzpnoIEy6hjfGsqEq/pUJxX92igQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCHUbHI28Q5XU0O1xLeFIQP2vPc9MB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvSWRSc2NqYnhEbGRUUTdYRXQ0VWhBX2E4OXowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHw3hMA0G CSqGSIb3DQEBCwUAA4IBAQAkH5f43AwzA89q7vTDdQ10DNio23uhYq/ioodkd/wV kB8XtpN4ftsf7BaGqr8JJGdDnssUqMm36fYuAD3gGPA/n5HQVl2ZQTgERKDOMUOF SNXdUvbKt29UA8wyGGVeXN66kEyEWXy83usC+W/ig9P4GyOTOcYlI6Ayv14fnG4E pJ1404hNlrAL6/uCmnszPSeXlybdGmDyjuBUgo5ZVkdVoYHjRncESFzxWZfWXX2H pRWs4BG3tulUn0HYtZKwISqt5vg4b+4LtE52REDZ8R+uFnYwQ5ZK299WfX5PQnn7 +HHRaW1OqkpMKHVnjinvBjJL6mS7YamVu/Tk1cXALh/b -----END CERTIFICATE-----Generated at Fri Jan 2 12:07:51 2026 by rpki-client