This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/D3wkpKKSoJovDsiCfvbh1DYTkx8.roa File: D3wkpKKSoJovDsiCfvbh1DYTkx8.roa (raw, json) Hash identifier: c0FcHGYTB+tG9IR/+QbyBfjUn2VqFpbtfy3DDserGhM= Subject key identifier: 0F:7C:24:A4:A2:92:A0:9A:2F:0E:C8:82:7E:F6:E1:D4:36:13:93:1F Certificate issuer: /CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8 Certificate serial: 019B7BA546FAC0659874A34F5D9D637C865F Authority key identifier: CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/D3wkpKKSoJovDsiCfvbh1DYTkx8.roa Signing time: Thu 01 Jan 2026 22:19:47 +0000 ROA not before: Thu 01 Jan 2026 22:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47692 IP address blocks: 185.26.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:46:fa:c0:65:98:74:a3:4f:5d:9d:63:7c:86:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8 Validity Not Before: Jan 1 22:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f7c24a4a292a09a2f0ec8827ef6e1d43613931f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3b:88:b7:8e:59:1d:35:89:19:36:13:25:cf: 42:83:9a:5e:dd:3f:22:7d:f2:51:1d:45:71:bf:68: 98:cc:c9:b5:d9:d4:3c:c3:bb:49:a1:c4:05:7f:55: 14:d0:f5:a7:81:e1:05:f3:26:88:be:a9:a2:8d:fc: 03:41:1e:4e:46:a2:c0:a8:2d:0a:cd:8c:8e:85:40: eb:67:2e:6b:df:8b:50:82:ea:bd:1e:60:7b:d1:c2: 75:2a:88:af:b3:f2:77:6d:8b:37:ac:50:f9:a1:45: 3e:2f:bf:50:26:f8:86:42:75:01:3b:59:79:ae:36: e6:c7:82:10:8c:7e:a1:1a:20:fe:a6:d4:d9:6c:64: f0:37:16:70:e3:5b:13:5c:89:97:e8:d1:44:f3:5e: dc:e3:0c:e8:88:9a:05:bb:f3:4c:09:8d:64:49:8f: f3:28:7b:5e:23:dc:75:16:96:8f:20:23:64:f5:08: c5:2c:a4:37:00:2f:b1:9e:78:17:b1:72:c3:f5:d9: 0e:52:57:47:7d:7e:07:72:37:8e:83:06:2b:e8:2d: 59:43:a7:c6:27:f4:60:99:c4:6d:fa:d2:33:6c:cb: 8a:c1:9a:f1:cf:23:80:9f:f4:80:eb:74:6a:a4:2e: 29:9f:3b:92:c5:12:2e:8e:5a:d6:57:61:b5:b2:c1: 53:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:7C:24:A4:A2:92:A0:9A:2F:0E:C8:82:7E:F6:E1:D4:36:13:93:1F X509v3 Authority Key Identifier: keyid:CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/D3wkpKKSoJovDsiCfvbh1DYTkx8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.26.191.0/24 Signature Algorithm: sha256WithRSAEncryption 20:fa:5a:ba:81:dc:80:92:e4:42:fe:1a:d9:bd:3c:d0:90:c3: d0:34:a4:fc:24:17:5f:52:26:ff:79:e1:65:39:fc:28:02:90: 49:8e:e6:01:79:5b:89:21:eb:31:3d:67:cb:79:04:91:46:53: a1:92:b8:d5:0d:1f:0b:ea:e3:4f:35:c5:f3:63:71:75:1a:54: 37:1c:49:48:56:94:78:dd:60:65:30:95:40:c3:3a:08:73:cf: 41:96:cc:0a:8a:5e:b7:e2:83:19:d9:c9:3b:33:34:17:8b:ee: 37:08:e0:c3:c7:81:d3:10:bf:80:97:ca:e0:09:ff:a5:27:1e: 68:8d:0c:52:85:ad:c3:05:d0:99:21:a0:cd:d5:4a:ce:98:1d: 54:26:a9:58:e7:ef:6a:6b:28:8d:d2:5e:18:c9:e9:0b:8a:d0: f2:b8:b7:c0:37:30:aa:2d:b8:7d:89:d1:3a:60:7e:20:a0:8f: 08:fd:57:47:00:29:15:ae:c2:d9:a0:12:4a:78:13:3e:97:1d: a7:1b:ee:eb:2b:7c:f1:d6:af:28:f8:e9:00:5a:d2:65:87:26: 28:97:12:8d:60:38:d5:70:ef:f7:a6:b3:f3:ad:4d:c4:13:e5: c8:ab:18:35:61:e6:29:68:8d:02:77:d2:4a:31:92:cd:24:7d: c2:4c:03:dc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pUb6wGWYdKNPXZ1jfIZfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhOWUyMGQxMDM0YjQ0ZWY3NWU5NWZkZjdlYjg4ODE1YjZm N2QyZjgwHhcNMjYwMTAxMjIxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjdjMjRhNGEyOTJhMDlhMmYwZWM4ODI3ZWY2ZTFkNDM2MTM5MzFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjuIt45ZHTWJGTYTJc9Cg5pe3T8i ffJRHUVxv2iYzMm12dQ8w7tJocQFf1UU0PWngeEF8yaIvqmijfwDQR5ORqLAqC0K zYyOhUDrZy5r34tQguq9HmB70cJ1Koivs/J3bYs3rFD5oUU+L79QJviGQnUBO1l5 rjbmx4IQjH6hGiD+ptTZbGTwNxZw41sTXImX6NFE817c4wzoiJoFu/NMCY1kSY/z KHteI9x1FpaPICNk9QjFLKQ3AC+xnngXsXLD9dkOUldHfX4HcjeOgwYr6C1ZQ6fG J/RgmcRt+tIzbMuKwZrxzyOAn/SA63RqpC4pnzuSxRIujlrWV2G1ssFTWwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA98JKSikqCaLw7Ign724dQ2E5MfMB8GA1UdIwQY MBaAFMqeINEDS0Tvdelf3364iBW299L4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXA0ZzBRTkxSTzkxNlZfZmZyaUlGYmIzMHZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny8xM2E2ODAtZjY5OC00Yzk3LTliYjYt MTI3MDFhYjUxYWNmLzEvRDN3a3BLS1NvSm92RHNpQ2Z2YmgxRFlUa3g4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny8xM2E2ODAtZjY5OC00Yzk3LTliYjYtMTI3MDFhYjUxYWNm LzEveXA0ZzBRTkxSTzkxNlZfZmZyaUlGYmIzMHZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRq/MA0G CSqGSIb3DQEBCwUAA4IBAQAg+lq6gdyAkuRC/hrZvTzQkMPQNKT8JBdfUib/eeFl OfwoApBJjuYBeVuJIesxPWfLeQSRRlOhkrjVDR8L6uNPNcXzY3F1GlQ3HElIVpR4 3WBlMJVAwzoIc89BlswKil634oMZ2ck7MzQXi+43CODDx4HTEL+Al8rgCf+lJx5o jQxSha3DBdCZIaDN1UrOmB1UJqlY5+9qayiN0l4YyekLitDyuLfANzCqLbh9idE6 YH4goI8I/VdHACkVrsLZoBJKeBM+lx2nG+7rK3zx1q8o+OkAWtJlhyYolxKNYDjV cO/3prPzrU3EE+XIqxg1YeYpaI0Cd9JKMZLNJH3CTAPc -----END CERTIFICATE-----Generated at Mon Jan 26 00:40:00 2026 by rpki-client