This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/_D31CaslokzBzJb570s1tCqC6rU.roa File: _D31CaslokzBzJb570s1tCqC6rU.roa (raw, json) Hash identifier: vPfarYHxZRzOYIcHGYTZOf+++xHO9r+2vS0OJV7F/0s= Subject key identifier: FC:3D:F5:09:AB:25:A2:4C:C1:CC:96:F9:EF:4B:35:B4:2A:82:EA:B5 Certificate issuer: /CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a Certificate serial: 019B76EAE485A05B30F662F9288CCD13F2D4 Authority key identifier: 12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/_D31CaslokzBzJb570s1tCqC6rU.roa Signing time: Thu 01 Jan 2026 00:17:44 +0000 ROA not before: Thu 01 Jan 2026 00:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41555 IP address blocks: 170.236.180.0/24 maxlen: 24 170.237.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.mft rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 20:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:e4:85:a0:5b:30:f6:62:f9:28:8c:cd:13:f2:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a Validity Not Before: Jan 1 00:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc3df509ab25a24cc1cc96f9ef4b35b42a82eab5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e6:d5:cc:77:b7:c0:43:c2:c0:6f:b4:82:3e: 56:43:5f:03:cc:dd:fb:a1:a4:8d:37:93:f5:e5:e4: 73:12:83:16:89:fe:79:0a:40:14:b9:d4:d4:c9:75: 10:a6:5d:aa:69:4a:bf:86:38:0a:84:a3:01:93:15: 96:12:d6:01:8b:90:06:54:4f:78:39:3f:5e:3c:45: c4:a4:ae:00:73:42:40:c7:0d:0c:5b:62:74:3b:6a: 42:ee:8b:65:64:df:c4:d0:e8:64:49:d5:dd:08:43: 94:91:55:89:22:0d:56:ef:50:ae:a5:b1:7d:5c:36: f2:d3:d2:4a:f2:af:1e:c6:84:1c:01:38:3c:cd:ca: f6:6e:44:29:47:c7:e2:ac:5b:c1:3b:71:0d:73:21: 33:91:10:7a:8a:72:21:4b:73:55:4f:65:63:b2:38: fa:31:ed:01:31:ad:22:e8:3b:47:b2:14:d7:1d:82: 11:f9:14:d3:91:51:51:c8:18:ab:8e:c9:4c:df:56: e8:a7:6b:0e:6b:5f:14:a1:2a:0c:9f:ec:e0:3f:5c: a3:f0:4f:3d:c2:e2:ce:fe:fb:4f:59:e4:0d:d8:4e: b3:6f:6c:f8:cf:db:1a:ba:04:95:31:64:b3:2c:bf: f9:ee:cc:f9:cd:8a:c7:19:d1:de:cb:c7:fa:45:11: c6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3D:F5:09:AB:25:A2:4C:C1:CC:96:F9:EF:4B:35:B4:2A:82:EA:B5 X509v3 Authority Key Identifier: keyid:12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/_D31CaslokzBzJb570s1tCqC6rU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.236.180.0/24 170.237.95.0/24 Signature Algorithm: sha256WithRSAEncryption 65:1a:f4:ea:67:a7:4a:18:43:0a:76:ca:4f:9a:df:b7:49:54: ae:96:e1:0a:3c:a3:51:00:78:1f:64:3c:df:b0:65:ae:4e:00: 81:1b:9a:90:32:66:55:e4:92:c7:22:c7:17:10:80:6c:a6:a9: 6a:57:c9:52:af:7d:26:e1:a1:ba:55:c1:45:8e:e9:cf:39:b4: 58:39:52:94:f0:b5:6a:8d:29:5f:12:c9:3c:91:e6:77:8f:09: c5:e1:3d:bf:26:62:54:1c:f1:a6:6d:88:a4:59:27:5d:a1:f3: 79:ce:86:c2:68:22:3d:c6:d9:70:78:5e:ff:29:29:24:34:c6: fa:34:98:66:90:5b:91:b2:f4:a9:f5:24:65:33:48:a2:41:9a: 00:6c:e5:33:37:0a:f6:ce:fe:17:94:a4:19:a7:3e:86:39:29: 0c:42:d6:c6:4c:47:43:4b:8d:99:81:7f:52:e9:ed:3a:6c:a6: bb:8b:82:b0:4c:69:a2:c5:a5:a3:6a:ba:de:b1:ec:d2:ee:1e: d8:b7:e2:7f:7c:87:20:0c:7e:ad:bc:5f:04:f1:0b:7a:54:64: bb:18:c9:04:71:e5:47:6b:df:dd:18:d4:66:6c:ba:e8:bd:9a: 39:d5:c5:d4:00:1b:64:a3:d1:0b:fa:d6:af:00:5c:db:73:96: a9:89:c5:0c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26uSFoFsw9mL5KIzNE/LUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyMjRlNWVmZjFhYmMwZTZkOGJmMDI5ZTRmNzMyZTBhYjcx YmMxNmEwHhcNMjYwMTAxMDAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzNkZjUwOWFiMjVhMjRjYzFjYzk2ZjllZjRiMzViNDJhODJlYWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyebVzHe3wEPCwG+0gj5WQ18DzN37 oaSNN5P15eRzEoMWif55CkAUudTUyXUQpl2qaUq/hjgKhKMBkxWWEtYBi5AGVE94 OT9ePEXEpK4Ac0JAxw0MW2J0O2pC7otlZN/E0OhkSdXdCEOUkVWJIg1W71CupbF9 XDby09JK8q8exoQcATg8zcr2bkQpR8firFvBO3ENcyEzkRB6inIhS3NVT2Vjsjj6 Me0BMa0i6DtHshTXHYIR+RTTkVFRyBirjslM31bop2sOa18UoSoMn+zgP1yj8E89 wuLO/vtPWeQN2E6zb2z4z9saugSVMWSzLL/57sz5zYrHGdHey8f6RRHGJQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFPw99QmrJaJMwcyW+e9LNbQqguq1MB8GA1UdIwQY MBaAFBIk5e/xq8Dm2L8Cnk9zLgq3G8FqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWlUbDdfR3J3T2JZdndLZVQzTXVDcmNid1dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8xMWJlMjMtM2JlNi00ODgxLWEzZDEt NTM4NmIxZDk2M2JjLzEvX0QzMUNhc2xva3pCekpiNTcwczF0Q3FDNnJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi8xMWJlMjMtM2JlNi00ODgxLWEzZDEtNTM4NmIxZDk2M2Jj LzEvRWlUbDdfR3J3T2JZdndLZVQzTXVDcmNid1dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAquy0AwQA qu1fMA0GCSqGSIb3DQEBCwUAA4IBAQBlGvTqZ6dKGEMKdspPmt+3SVSuluEKPKNR AHgfZDzfsGWuTgCBG5qQMmZV5JLHIscXEIBspqlqV8lSr30m4aG6VcFFjunPObRY OVKU8LVqjSlfEsk8keZ3jwnF4T2/JmJUHPGmbYikWSddofN5zobCaCI9xtlweF7/ KSkkNMb6NJhmkFuRsvSp9SRlM0iiQZoAbOUzNwr2zv4XlKQZpz6GOSkMQtbGTEdD S42ZgX9S6e06bKa7i4KwTGmixaWjarresezS7h7Yt+J/fIcgDH6tvF8E8Qt6VGS7 GMkEceVHa9/dGNRmbLrovZo51cXUABtko9EL+tavAFzbc5apicUM -----END CERTIFICATE-----Generated at Tue Jan 20 04:48:54 2026 by rpki-client