This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/19uEfWn-zh0D0reCJO0cpSfrYQg.roa File: 19uEfWn-zh0D0reCJO0cpSfrYQg.roa (raw, json) Hash identifier: 0P8Q0fwfcBSxyDIj88CG7xFlhzAGUURVNbk5Ehn2fvs= Subject key identifier: D7:DB:84:7D:69:FE:CE:1D:03:D2:B7:82:24:ED:1C:A5:27:EB:61:08 Certificate issuer: /CN=ffa3e55141c1a1f9f2e28811ed7e77fad378a579 Certificate serial: 019B7E38E5E9F5672525FEC8113D28C18708 Authority key identifier: FF:A3:E5:51:41:C1:A1:F9:F2:E2:88:11:ED:7E:77:FA:D3:78:A5:79 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/19uEfWn-zh0D0reCJO0cpSfrYQg.roa Signing time: Fri 02 Jan 2026 10:20:16 +0000 ROA not before: Fri 02 Jan 2026 10:20:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 984 IP address blocks: 109.122.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.mft rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 10:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:e5:e9:f5:67:25:25:fe:c8:11:3d:28:c1:87:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ffa3e55141c1a1f9f2e28811ed7e77fad378a579 Validity Not Before: Jan 2 10:20:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7db847d69fece1d03d2b78224ed1ca527eb6108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:40:62:85:ac:90:87:a2:e5:cf:45:2d:32:dc: d6:e5:7f:33:36:5c:0c:cb:01:dd:12:80:b7:e6:58: 85:cd:88:36:1e:ae:fd:cb:88:d4:2d:73:08:b1:ef: 50:99:25:9b:cb:a6:da:1b:79:9e:45:75:a5:10:01: b0:7d:cb:91:21:ee:fd:04:b1:6b:0c:d9:e1:24:1b: 62:a5:01:47:cc:dc:6d:ac:aa:79:4d:c8:42:bc:65: 13:c7:30:71:a0:e3:54:66:02:42:31:93:1f:ca:74: 1a:cc:41:26:71:d4:31:0d:74:cc:57:5a:62:17:32: 8b:e0:ca:04:c8:de:ad:e1:bb:b6:32:1b:82:79:75: 09:a2:69:a8:3b:45:04:6f:b9:46:57:48:e9:ec:41: f8:a0:98:b9:e1:e1:ee:0e:03:35:c3:62:ec:f4:18: 56:d7:eb:8d:af:a8:6a:b3:72:1c:05:ea:1f:b5:e4: 1d:a0:be:f0:dd:ac:10:fe:da:a2:3e:13:2e:0c:7e: ab:2d:51:18:4c:3d:51:f8:17:40:0d:39:eb:4d:6f: c3:20:b0:cc:12:37:40:5a:4b:7d:7f:f5:6b:95:da: ff:d5:36:f1:f1:54:69:cc:57:e6:db:15:83:70:df: 25:86:98:9c:eb:ca:82:4c:d0:cc:b5:4a:72:50:bd: cb:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:DB:84:7D:69:FE:CE:1D:03:D2:B7:82:24:ED:1C:A5:27:EB:61:08 X509v3 Authority Key Identifier: keyid:FF:A3:E5:51:41:C1:A1:F9:F2:E2:88:11:ED:7E:77:FA:D3:78:A5:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_6PlUUHBofny4ogR7X53-tN4pXk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/19uEfWn-zh0D0reCJO0cpSfrYQg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b263a2-0f6f-4f5d-af9e-a39ac2539fc5/1/_6PlUUHBofny4ogR7X53-tN4pXk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.122.30.0/24 Signature Algorithm: sha256WithRSAEncryption 89:8a:03:12:84:cd:c5:60:69:f3:82:0c:d2:51:0a:bb:22:7c: 79:2c:55:44:1b:82:1d:bf:81:78:e1:77:08:c1:0a:f2:d8:8f: 8f:04:a4:c4:4c:cc:60:bd:78:59:44:9a:50:ad:27:05:08:6b: ea:62:a9:3b:59:e9:68:51:d7:8d:95:0a:1c:d3:c1:d5:5b:a1: 68:a0:0e:25:90:0e:33:46:98:b6:1b:33:68:86:07:49:61:76: 8a:80:73:6e:23:39:fc:17:ae:0b:eb:0e:c4:75:7a:ca:30:45: 86:be:bd:7a:5d:8e:8e:07:69:ff:bc:d4:79:3e:45:bd:bd:42: 7b:56:2b:0f:58:16:49:12:da:22:01:cc:93:09:f8:2c:88:e1: bc:9d:51:83:f5:f6:a5:e1:98:bb:51:82:7d:7f:c2:34:9d:8d: 87:d7:32:e4:12:b6:4e:16:a9:a9:95:1b:51:7a:e4:39:a5:b9: 1c:79:34:81:f5:c0:a8:92:25:17:7d:22:c9:ed:95:b8:45:79: d2:76:6b:51:a9:5a:94:3f:ef:e5:6b:80:e8:6a:da:8d:7d:fb: 98:1f:74:33:1d:9f:56:8e:6d:1e:43:42:3c:66:bf:90:a1:aa: 8e:04:89:8c:21:57:a4:53:e1:f0:d3:db:53:a9:1b:ba:57:28: f5:c7:f8:02 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OOXp9WclJf7IET0owYcIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmYTNlNTUxNDFjMWExZjlmMmUyODgxMWVkN2U3N2ZhZDM3 OGE1NzkwHhcNMjYwMTAyMTAyMDE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkN2RiODQ3ZDY5ZmVjZTFkMDNkMmI3ODIyNGVkMWNhNTI3ZWI2MTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUBihayQh6Llz0UtMtzW5X8zNlwM ywHdEoC35liFzYg2Hq79y4jULXMIse9QmSWby6baG3meRXWlEAGwfcuRIe79BLFr DNnhJBtipQFHzNxtrKp5TchCvGUTxzBxoONUZgJCMZMfynQazEEmcdQxDXTMV1pi FzKL4MoEyN6t4bu2MhuCeXUJommoO0UEb7lGV0jp7EH4oJi54eHuDgM1w2Ls9BhW 1+uNr6hqs3IcBeofteQdoL7w3awQ/tqiPhMuDH6rLVEYTD1R+BdADTnrTW/DILDM EjdAWkt9f/Vrldr/1Tbx8VRpzFfm2xWDcN8lhpic68qCTNDMtUpyUL3LLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNfbhH1p/s4dA9K3giTtHKUn62EIMB8GA1UdIwQY MBaAFP+j5VFBwaH58uKIEe1+d/rTeKV5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvXzZQbFVVSEJvZm55NG9nUjdYNTMtdE40cFhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iMjYzYTItMGY2Zi00ZjVkLWFmOWUt YTM5YWMyNTM5ZmM1LzEvMTl1RWZXbi16aDBEMHJlQ0pPMGNwU2ZyWVFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iMjYzYTItMGY2Zi00ZjVkLWFmOWUtYTM5YWMyNTM5ZmM1 LzEvXzZQbFVVSEJvZm55NG9nUjdYNTMtdE40cFhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbXoeMA0G CSqGSIb3DQEBCwUAA4IBAQCJigMShM3FYGnzggzSUQq7Inx5LFVEG4Idv4F44XcI wQry2I+PBKTETMxgvXhZRJpQrScFCGvqYqk7WeloUdeNlQoc08HVW6FooA4lkA4z Rpi2GzNohgdJYXaKgHNuIzn8F64L6w7EdXrKMEWGvr16XY6OB2n/vNR5PkW9vUJ7 VisPWBZJEtoiAcyTCfgsiOG8nVGD9fal4Zi7UYJ9f8I0nY2H1zLkErZOFqmplRtR euQ5pbkceTSB9cCokiUXfSLJ7ZW4RXnSdmtRqVqUP+/la4DoatqNffuYH3QzHZ9W jm0eQ0I8Zr+QoaqOBImMIVekU+Hw09tTqRu6Vyj1x/gC -----END CERTIFICATE-----Generated at Sun Jan 11 21:02:28 2026 by rpki-client