This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/aDzvIFmPuasW-wZl4h5nCLEftQ0.roa File: aDzvIFmPuasW-wZl4h5nCLEftQ0.roa (raw, json) Hash identifier: V99/4bZyDIbs4HJhhHYscdVnYmUcdsRDsQGQFwRiELE= Subject key identifier: 68:3C:EF:20:59:8F:B9:AB:16:FB:06:65:E2:1E:67:08:B1:1F:B5:0D Certificate issuer: /CN=b343514630dc17f3fe9b51dd434184d0b62b03c0 Certificate serial: 019B797DFD1BA10545970EC7DFA2E9974C40 Authority key identifier: B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/aDzvIFmPuasW-wZl4h5nCLEftQ0.roa Signing time: Thu 01 Jan 2026 12:17:38 +0000 ROA not before: Thu 01 Jan 2026 12:17:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207648 IP address blocks: 81.29.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.mft rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7d:fd:1b:a1:05:45:97:0e:c7:df:a2:e9:97:4c:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b343514630dc17f3fe9b51dd434184d0b62b03c0 Validity Not Before: Jan 1 12:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=683cef20598fb9ab16fb0665e21e6708b11fb50d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e2:99:ea:a5:91:ed:de:7c:1a:e3:33:16:62: 65:0c:5d:63:6f:3f:03:1c:b4:9e:40:12:53:01:01: 9b:dc:59:a4:bd:24:9e:10:a5:b0:7d:91:1f:c4:a4: 3b:28:b3:b7:f7:e5:5e:69:4a:8e:aa:1a:89:eb:5f: 3d:9a:5f:b9:aa:8f:79:d8:f3:b9:a3:1f:24:05:58: a3:e8:86:10:25:1a:4f:05:24:4a:43:81:14:a1:1d: ed:8e:76:b6:20:90:86:2c:d3:38:1d:ba:d8:83:85: 50:fe:b1:ee:99:06:50:2c:8f:6f:87:76:81:81:3b: 4f:a7:80:99:b3:c8:f7:d2:f5:bb:53:e7:56:80:94: 97:d9:f4:bc:1d:84:50:19:20:c1:d8:52:c7:f9:2a: 81:a1:bb:79:df:4d:31:93:f1:0a:81:d9:0b:80:c1: 97:5d:c2:ef:a4:88:2e:d3:08:5f:ba:88:fb:cf:d9: e3:b5:d2:d8:5c:44:c7:e7:39:d5:a2:75:31:99:26: a0:53:32:53:f8:2a:34:30:1c:ef:b8:64:d1:65:37: 86:57:27:f8:ce:8c:74:5d:7a:e5:b4:44:63:f7:f4: 90:34:ff:6b:85:24:b6:8d:64:6b:f4:09:48:92:10: a5:77:01:26:ad:5d:f3:ee:ba:cf:e8:3c:f3:3f:a6: e4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:3C:EF:20:59:8F:B9:AB:16:FB:06:65:E2:1E:67:08:B1:1F:B5:0D X509v3 Authority Key Identifier: keyid:B3:43:51:46:30:DC:17:F3:FE:9B:51:DD:43:41:84:D0:B6:2B:03:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/aDzvIFmPuasW-wZl4h5nCLEftQ0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/138046-7be0-4017-a98b-a7247e9d5f3a/1/s0NRRjDcF_P-m1HdQ0GE0LYrA8A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.29.133.0/24 Signature Algorithm: sha256WithRSAEncryption 35:a1:71:82:c4:66:fc:95:8b:c7:81:29:16:c0:9f:e0:e4:a1: 6e:b9:1f:04:cc:cf:9d:23:92:d7:26:9f:bb:5b:7a:9c:9d:81: 85:63:8a:d3:2e:b2:2b:68:95:1e:70:08:92:8c:67:ec:3a:57: 17:37:26:b3:9c:4c:71:ec:60:61:dc:39:1b:70:75:0e:aa:1b: bd:20:55:36:e6:db:3a:aa:5c:2b:df:0f:b0:2e:6e:da:94:d8: b7:74:41:2f:92:5a:5f:f3:bf:66:d6:9a:8e:b2:4b:46:70:3a: 61:89:a5:af:70:09:71:0d:f8:67:30:24:2c:ee:2d:eb:1c:72: dc:3d:d5:2f:7a:5f:eb:b7:46:c0:4f:20:d3:f5:72:84:62:d8: 01:3c:cf:c5:a0:ba:7c:03:ba:3e:76:08:a5:02:7f:6f:ab:ea: 46:57:56:b8:e6:94:ee:d5:c4:67:c1:0c:4a:46:50:fa:8b:46: 62:28:f5:22:fb:d5:65:5e:08:3e:66:39:ba:5d:38:ac:cc:96: 4b:42:4d:5e:35:b5:28:e0:4f:cf:4f:45:cb:73:e5:f4:0e:4f: 88:a1:19:48:f6:32:81:da:7d:39:68:77:0a:20:d9:2d:1c:68: 84:fc:1f:65:e2:62:1c:c5:1c:3d:8f:61:07:ac:d0:f6:6e:0f: 19:e5:8f:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ff0boQVFlw7H36Lpl0xAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzNDM1MTQ2MzBkYzE3ZjNmZTliNTFkZDQzNDE4NGQwYjYy YjAzYzAwHhcNMjYwMTAxMTIxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODNjZWYyMDU5OGZiOWFiMTZmYjA2NjVlMjFlNjcwOGIxMWZiNTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0uKZ6qWR7d58GuMzFmJlDF1jbz8D HLSeQBJTAQGb3FmkvSSeEKWwfZEfxKQ7KLO39+VeaUqOqhqJ6189ml+5qo952PO5 ox8kBVij6IYQJRpPBSRKQ4EUoR3tjna2IJCGLNM4HbrYg4VQ/rHumQZQLI9vh3aB gTtPp4CZs8j30vW7U+dWgJSX2fS8HYRQGSDB2FLH+SqBobt5300xk/EKgdkLgMGX XcLvpIgu0whfuoj7z9njtdLYXETH5znVonUxmSagUzJT+Co0MBzvuGTRZTeGVyf4 zox0XXrltERj9/SQNP9rhSS2jWRr9AlIkhCldwEmrV3z7rrP6DzzP6bkUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFGg87yBZj7mrFvsGZeIeZwixH7UNMB8GA1UdIwQY MBaAFLNDUUYw3Bfz/ptR3UNBhNC2KwPAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczBOUlJqRGNGX1AtbTFIZFEwR0UwTFlyQThBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMzgwNDYtN2JlMC00MDE3LWE5OGIt YTcyNDdlOWQ1ZjNhLzEvYUR6dklGbVB1YXNXLXdabDRoNW5DTEVmdFEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMzgwNDYtN2JlMC00MDE3LWE5OGItYTcyNDdlOWQ1ZjNh LzEvczBOUlJqRGNGX1AtbTFIZFEwR0UwTFlyQThBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR2FMA0G CSqGSIb3DQEBCwUAA4IBAQA1oXGCxGb8lYvHgSkWwJ/g5KFuuR8EzM+dI5LXJp+7 W3qcnYGFY4rTLrIraJUecAiSjGfsOlcXNyaznExx7GBh3DkbcHUOqhu9IFU25ts6 qlwr3w+wLm7alNi3dEEvklpf879m1pqOsktGcDphiaWvcAlxDfhnMCQs7i3rHHLc PdUvel/rt0bATyDT9XKEYtgBPM/FoLp8A7o+dgilAn9vq+pGV1a45pTu1cRnwQxK RlD6i0ZiKPUi+9VlXgg+Zjm6XTiszJZLQk1eNbUo4E/PT0XLc+X0Dk+IoRlI9jKB 2n05aHcKINktHGiE/B9l4mIcxRw9j2EHrND2bg8Z5Y/5 -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:36 2026 by rpki-client