This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/1N12BIRxHI41mSTm69ziM417BQM.roa File: 1N12BIRxHI41mSTm69ziM417BQM.roa (raw, json) Hash identifier: NWf2Ua6LuyO93ISX0t9PKrDP/YCuJk+SJvYdsbwbYYE= Subject key identifier: D4:DD:76:04:84:71:1C:8E:35:99:24:E6:EB:DC:E2:33:8D:7B:05:03 Certificate issuer: /CN=1b12120c351c14eec22109f603249fcdac1d3321 Certificate serial: 019B7F15324DE43C3DE6CE4A91E525DA6858 Authority key identifier: 1B:12:12:0C:35:1C:14:EE:C2:21:09:F6:03:24:9F:CD:AC:1D:33:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/1N12BIRxHI41mSTm69ziM417BQM.roa Signing time: Fri 02 Jan 2026 14:20:54 +0000 ROA not before: Fri 02 Jan 2026 14:20:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.7.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.crl rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.mft rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:32:4d:e4:3c:3d:e6:ce:4a:91:e5:25:da:68:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b12120c351c14eec22109f603249fcdac1d3321 Validity Not Before: Jan 2 14:20:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d4dd760484711c8e359924e6ebdce2338d7b0503 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1f:90:78:4c:2d:87:f7:4e:18:e1:df:3d:10: b1:1f:ee:2c:06:65:45:97:e4:b7:b9:e5:cc:7a:6e: 75:b6:bf:64:00:0c:79:c0:71:74:20:7f:28:bf:79: d3:61:76:87:93:7a:b3:3e:34:b9:4b:6c:bf:17:f1: de:9e:5f:53:31:b8:f3:52:cd:9a:03:93:fe:da:04: 3f:00:29:cf:87:b3:90:8d:0a:58:94:c0:91:e5:ea: f4:68:0d:0b:70:59:7b:1d:db:47:53:01:30:67:c5: fe:f9:4d:98:eb:39:4a:4a:ab:1a:c1:05:d0:56:af: c2:48:a0:10:05:e3:27:0a:d1:9c:e9:29:29:61:03: c6:ab:51:a6:bc:85:d1:5d:42:ab:b3:0e:65:10:e8: cd:c6:d0:2c:d0:15:1c:6f:61:d9:29:f7:16:6a:f1: e1:6a:d7:ac:a5:5e:f7:14:bd:39:e4:91:5f:0e:24: ad:38:0c:89:d0:42:81:5e:3c:26:3d:47:56:b5:f7: 2e:d9:e5:58:74:42:04:0e:68:99:b3:fc:de:35:af: 43:f7:c4:1f:3f:8c:1e:af:45:ee:eb:1e:64:e2:47: f5:15:f6:d7:43:d9:47:6a:85:9f:c4:2a:f2:c9:6e: 71:ae:6e:5b:40:b4:65:32:37:00:ed:fb:9a:59:6a: c8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DD:76:04:84:71:1C:8E:35:99:24:E6:EB:DC:E2:33:8D:7B:05:03 X509v3 Authority Key Identifier: keyid:1B:12:12:0C:35:1C:14:EE:C2:21:09:F6:03:24:9F:CD:AC:1D:33:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxISDDUcFO7CIQn2AySfzawdMyE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/1N12BIRxHI41mSTm69ziM417BQM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3daf7f-301d-423e-946e-43df47d5a1e7/1/GxISDDUcFO7CIQn2AySfzawdMyE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.7.240.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:5e:67:e7:85:0e:0b:e6:7c:8b:35:49:c6:a6:88:cf:90:24: 02:d4:ae:53:ef:9c:f5:49:93:66:af:ac:97:e4:2f:a9:1e:61: 40:46:97:f2:6e:81:b1:9f:61:2c:22:88:eb:6a:1c:23:13:8f: d3:de:f2:8b:e2:04:3c:4e:31:74:b0:68:ac:db:e1:e7:61:24: fd:57:1f:a7:a2:2c:d0:db:c1:81:91:44:92:3f:1c:67:3e:d9: a9:a5:ba:b3:c1:dd:5e:7f:90:7b:b4:b6:e1:16:48:cd:93:7c: 56:42:1f:0e:6a:65:1f:d0:9a:e9:aa:e9:79:ae:da:3d:4f:00: a9:89:e0:a0:17:ed:87:c3:ef:75:d3:2c:43:55:15:a7:e0:93: 04:6e:2f:c1:17:2c:ee:47:06:4f:23:ce:ef:d0:2c:69:4a:66: 2f:a5:3b:ab:d7:8a:cd:78:13:e5:4d:8a:28:ae:9a:a2:fa:5e: 17:49:16:9f:be:a3:be:6e:b4:21:c8:cf:57:8f:f5:f8:3d:fd: 97:68:2e:48:63:f9:e1:33:a5:c8:db:9f:21:81:d5:c1:69:f1: cf:74:ff:25:3c:43:3b:a2:b9:29:16:f5:21:2c:51:aa:6f:38: a7:20:c8:17:59:13:e1:e4:71:9c:ae:f8:69:aa:ba:7e:a3:88: f4:1e:31:9b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FTJN5Dw95s5KkeUl2mhYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMTIxMjBjMzUxYzE0ZWVjMjIxMDlmNjAzMjQ5ZmNkYWMx ZDMzMjEwHhcNMjYwMTAyMTQyMDU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNGRkNzYwNDg0NzExYzhlMzU5OTI0ZTZlYmRjZTIzMzhkN2IwNTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAox+QeEwth/dOGOHfPRCxH+4sBmVF l+S3ueXMem51tr9kAAx5wHF0IH8ov3nTYXaHk3qzPjS5S2y/F/Henl9TMbjzUs2a A5P+2gQ/ACnPh7OQjQpYlMCR5er0aA0LcFl7HdtHUwEwZ8X++U2Y6zlKSqsawQXQ Vq/CSKAQBeMnCtGc6SkpYQPGq1GmvIXRXUKrsw5lEOjNxtAs0BUcb2HZKfcWavHh atespV73FL055JFfDiStOAyJ0EKBXjwmPUdWtfcu2eVYdEIEDmiZs/zeNa9D98Qf P4wer0Xu6x5k4kf1FfbXQ9lHaoWfxCryyW5xrm5bQLRlMjcA7fuaWWrIcwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNTddgSEcRyONZkk5uvc4jONewUDMB8GA1UdIwQY MBaAFBsSEgw1HBTuwiEJ9gMkn82sHTMhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3hJU0REVWNGTzdDSVFuMkF5U2Z6YXdkTXlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS8zZGFmN2YtMzAxZC00MjNlLTk0NmUt NDNkZjQ3ZDVhMWU3LzEvMU4xMkJJUnhISTQxbVNUbTY5emlNNDE3QlFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS8zZGFmN2YtMzAxZC00MjNlLTk0NmUtNDNkZjQ3ZDVhMWU3 LzEvR3hJU0REVWNGTzdDSVFuMkF5U2Z6YXdkTXlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuQfwMA0G CSqGSIb3DQEBCwUAA4IBAQA7XmfnhQ4L5nyLNUnGpojPkCQC1K5T75z1SZNmr6yX 5C+pHmFARpfyboGxn2EsIojrahwjE4/T3vKL4gQ8TjF0sGis2+HnYST9Vx+noizQ 28GBkUSSPxxnPtmppbqzwd1ef5B7tLbhFkjNk3xWQh8OamUf0Jrpqul5rto9TwCp ieCgF+2Hw+910yxDVRWn4JMEbi/BFyzuRwZPI87v0CxpSmYvpTur14rNeBPlTYoo rpqi+l4XSRafvqO+brQhyM9Xj/X4Pf2XaC5IY/nhM6XI258hgdXBafHPdP8lPEM7 orkpFvUhLFGqbzinIMgXWRPh5HGcrvhpqrp+o4j0HjGb -----END CERTIFICATE-----Generated at Wed Jan 7 23:51:49 2026 by rpki-client