This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/IHsIqdWKW3oXqrv8CC_-_K3HeCM.roa File: IHsIqdWKW3oXqrv8CC_-_K3HeCM.roa (raw, json) Hash identifier: dZCFigPRpz1prER5FdjelyGWWX2YW17+YhrDgGzAMCw= Subject key identifier: 20:7B:08:A9:D5:8A:5B:7A:17:AA:BB:FC:08:2F:FE:FC:AD:C7:78:23 Certificate issuer: /CN=d423a5be5e21ca460732ae48f385a3ea150a2be1 Certificate serial: 019B7AC86481C634ED9311162C74F19213F9 Authority key identifier: D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/IHsIqdWKW3oXqrv8CC_-_K3HeCM.roa Signing time: Thu 01 Jan 2026 18:18:31 +0000 ROA not before: Thu 01 Jan 2026 18:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7843 IP address blocks: 81.31.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/1COlvl4hykYHMq5I84Wj6hUKK-E.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/1COlvl4hykYHMq5I84Wj6hUKK-E.mft rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:64:81:c6:34:ed:93:11:16:2c:74:f1:92:13:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d423a5be5e21ca460732ae48f385a3ea150a2be1 Validity Not Before: Jan 1 18:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=207b08a9d58a5b7a17aabbfc082ffefcadc77823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:46:4a:d6:26:00:48:c9:0b:8d:b6:54:85:33: 65:63:77:ce:eb:95:2a:b8:ef:23:70:71:61:96:de: 27:67:8d:8d:ca:98:7a:a3:07:5e:42:55:35:93:6d: 50:7a:a2:89:85:52:c1:dc:54:22:55:e3:bd:f4:42: 07:35:e8:c6:e6:b0:6b:d1:22:62:1e:84:47:90:31: 25:82:84:93:f7:4b:40:be:c9:8c:56:0e:87:1d:18: f7:7c:c4:b1:0d:5e:ca:a9:34:1b:3a:25:0a:55:ca: 8f:58:15:bc:12:1c:f1:b3:c6:63:09:38:c6:21:98: a9:0b:75:a4:9e:12:9c:86:c4:1e:02:32:0f:bc:c7: c0:46:03:9a:5e:2c:e0:1c:5c:26:af:74:4b:dc:90: 58:e3:46:ed:17:a4:9c:a2:ff:5e:1d:98:51:43:13: 99:d0:13:4b:dd:21:eb:d5:d7:1f:7b:07:75:42:8c: d2:1a:81:1a:77:e9:c6:9f:95:bf:ee:8d:08:05:ea: 0f:44:42:2f:e9:20:54:95:8d:db:05:ef:27:ae:89: 0e:c8:d1:fc:83:20:8e:02:82:63:78:bf:4b:d3:aa: 08:31:77:25:df:2a:69:d0:97:9a:e6:e2:ef:af:e4: 50:8a:56:9b:3f:55:30:4c:0e:06:33:3f:d1:0d:42: 43:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:7B:08:A9:D5:8A:5B:7A:17:AA:BB:FC:08:2F:FE:FC:AD:C7:78:23 X509v3 Authority Key Identifier: keyid:D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/IHsIqdWKW3oXqrv8CC_-_K3HeCM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/1COlvl4hykYHMq5I84Wj6hUKK-E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.31.128.0/20 Signature Algorithm: sha256WithRSAEncryption 9c:c8:0a:06:1c:a8:1f:3e:b4:b0:fd:d8:6e:03:2d:56:92:1f: 6f:86:5a:18:1f:6e:11:fa:ae:21:63:31:28:88:62:02:6d:3a: 75:08:0a:dc:cf:08:7f:5e:a2:b9:6f:43:13:3b:9d:fd:ce:c7: 29:33:56:ae:63:c1:c1:1b:08:ed:e0:29:b6:ec:16:a2:1e:2c: 9f:c7:99:06:f2:ce:e8:24:b0:14:e2:e6:28:c2:f8:cd:39:3a: f4:6a:c5:76:70:a4:0d:d4:8f:b5:bb:b2:1d:7e:f3:57:83:60: 8d:74:96:b3:16:f7:71:9e:2e:e4:7b:c0:98:7d:1f:f3:05:e2: a8:86:da:17:e6:51:a6:38:5b:e2:f2:9d:d9:2c:39:f0:2e:01: 0f:73:b1:a1:c5:a1:2a:a9:0e:04:17:0c:3c:42:39:b2:9d:52: 27:6f:b7:d4:d5:bd:02:cc:9b:d3:e0:ef:da:5f:85:28:10:1a: d7:9e:80:05:7a:2c:8f:fb:32:31:62:16:1f:c4:ec:e0:2a:9b: 88:da:7d:f5:ec:c9:13:c4:02:94:d0:a0:81:e3:e0:99:90:2c: c4:37:a9:b8:cd:44:42:4d:66:0b:1f:c3:6b:a5:4f:34:04:31: 4b:5d:77:77:9e:33:fc:bc:7c:be:db:15:96:cf:6b:44:79:1c: 13:f2:e7:e8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yGSBxjTtkxEWLHTxkhP5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0MjNhNWJlNWUyMWNhNDYwNzMyYWU0OGYzODVhM2VhMTUw YTJiZTEwHhcNMjYwMTAxMTgxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDdiMDhhOWQ1OGE1YjdhMTdhYWJiZmMwODJmZmVmY2FkYzc3ODIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEZK1iYASMkLjbZUhTNlY3fO65Uq uO8jcHFhlt4nZ42Nyph6owdeQlU1k21QeqKJhVLB3FQiVeO99EIHNejG5rBr0SJi HoRHkDElgoST90tAvsmMVg6HHRj3fMSxDV7KqTQbOiUKVcqPWBW8Ehzxs8ZjCTjG IZipC3WknhKchsQeAjIPvMfARgOaXizgHFwmr3RL3JBY40btF6Scov9eHZhRQxOZ 0BNL3SHr1dcfewd1QozSGoEad+nGn5W/7o0IBeoPREIv6SBUlY3bBe8nrokOyNH8 gyCOAoJjeL9L06oIMXcl3ypp0Jea5uLvr+RQilabP1UwTA4GMz/RDUJD/QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCB7CKnVilt6F6q7/Agv/vytx3gjMB8GA1UdIwQY MBaAFNQjpb5eIcpGBzKuSPOFo+oVCivhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUNPbHZsNGh5a1lITXE1STg0V2o2aFVLSy1FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9hM2UzYmItZmQ5Zi00MDQyLWIyY2It ZDk0NzY2NjU3NTVhLzEvSUhzSXFkV0tXM29YcXJ2OENDXy1fSzNIZUNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9hM2UzYmItZmQ5Zi00MDQyLWIyY2ItZDk0NzY2NjU3NTVh LzEvMUNPbHZsNGh5a1lITXE1STg0V2o2aFVLSy1FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUR+AMA0G CSqGSIb3DQEBCwUAA4IBAQCcyAoGHKgfPrSw/dhuAy1Wkh9vhloYH24R+q4hYzEo iGICbTp1CArczwh/XqK5b0MTO539zscpM1auY8HBGwjt4Cm27BaiHiyfx5kG8s7o JLAU4uYowvjNOTr0asV2cKQN1I+1u7IdfvNXg2CNdJazFvdxni7ke8CYfR/zBeKo htoX5lGmOFvi8p3ZLDnwLgEPc7GhxaEqqQ4EFww8QjmynVInb7fU1b0CzJvT4O/a X4UoEBrXnoAFeiyP+zIxYhYfxOzgKpuI2n317MkTxAKU0KCB4+CZkCzEN6m4zURC TWYLH8NrpU80BDFLXXd3njP8vHy+2xWWz2tEeRwT8ufo -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:06 2026 by rpki-client