This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/1DQSzPrvQ3OeFghlHTnuhy2FnaM.roa File: 1DQSzPrvQ3OeFghlHTnuhy2FnaM.roa (raw, json) Hash identifier: Vmf1qe1ZeyDSqw1yyd0cnWQjwEuyFWxzKfF8ftVIQuo= Subject key identifier: D4:34:12:CC:FA:EF:43:73:9E:16:08:65:1D:39:EE:87:2D:85:9D:A3 Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f Certificate serial: 019BC38D58DF70B525E6F8626F2245A52587 Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/1DQSzPrvQ3OeFghlHTnuhy2FnaM.roa Signing time: Thu 15 Jan 2026 21:26:19 +0000 ROA not before: Thu 15 Jan 2026 21:26:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215245 IP address blocks: 31.22.72.0/24 maxlen: 24 31.22.73.0/24 maxlen: 24 31.22.75.0/24 maxlen: 24 31.22.76.0/24 maxlen: 24 31.22.77.0/24 maxlen: 24 185.230.160.0/24 maxlen: 24 194.117.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.mft rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 03:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c3:8d:58:df:70:b5:25:e6:f8:62:6f:22:45:a5:25:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f Validity Not Before: Jan 15 21:26:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d43412ccfaef43739e1608651d39ee872d859da3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:18:fa:57:e7:0b:bd:08:6a:25:5b:5d:cc:33: a1:fe:5a:f5:47:4e:c7:d3:2f:e3:b5:ed:9a:64:f9: 7a:10:2d:c8:1f:c9:cc:09:c3:67:ed:f7:0e:8b:7d: 94:f3:9f:21:49:e4:5a:2a:95:d8:02:5c:7a:3f:5e: 5a:c9:a9:20:46:85:96:bb:c3:8f:84:2e:6e:35:a7: ea:93:0c:13:d4:70:c4:4c:84:15:b5:a5:0b:91:47: 42:a1:b3:73:f3:49:ef:af:e8:48:df:d2:31:dd:6f: 27:56:47:7a:ac:42:3b:3a:bb:a9:05:7f:70:b8:83: 4c:c4:d5:61:b3:89:72:82:5b:6b:df:f9:34:ca:49: 59:fb:90:3d:af:12:ec:52:4e:12:31:53:f0:75:df: 84:83:e1:54:c2:89:ad:43:a7:8c:4e:bf:10:55:5e: f0:c9:ad:7d:a2:86:7c:0a:49:ce:f9:c9:4f:76:1e: 32:41:4b:82:36:af:ec:29:73:71:af:ce:a9:e6:11: ca:48:9d:77:6f:07:c1:22:9b:f7:0f:d1:41:a5:f3: d7:53:59:d4:00:a6:bb:6d:21:d8:42:8e:58:f6:8d: ce:de:4a:0c:2c:30:5c:d3:91:f4:e0:8d:56:cb:42: aa:a6:4e:91:c7:d9:77:d6:56:54:80:ef:c3:bf:2a: ed:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:34:12:CC:FA:EF:43:73:9E:16:08:65:1D:39:EE:87:2D:85:9D:A3 X509v3 Authority Key Identifier: keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/1DQSzPrvQ3OeFghlHTnuhy2FnaM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.22.72.0/23 31.22.75.0-31.22.77.255 185.230.160.0/24 194.117.225.0/24 Signature Algorithm: sha256WithRSAEncryption 72:cd:20:27:f3:97:9f:21:5d:cf:87:a6:1c:d1:57:a0:d8:1c: ac:aa:20:77:ea:4e:cf:45:29:d0:20:19:cd:29:5e:28:61:d6: c9:09:84:6c:fb:58:c5:5f:30:2d:b0:53:96:1b:fe:f1:7e:dd: 31:b2:31:57:fa:4a:f2:69:c2:ba:d7:c7:ae:8f:70:c8:e0:16: 98:60:13:09:48:4e:56:30:51:dd:5f:e3:13:7b:a1:2b:82:09: b4:b3:d2:6a:70:f9:af:a0:ae:7c:51:f1:e7:32:8d:cb:7e:6b: da:5b:ac:8e:75:a2:5f:9a:e3:5a:c5:d9:02:68:ba:b4:7d:b7: a2:b2:5f:bc:d9:24:6f:fa:ef:e3:20:5c:ff:23:c9:12:0f:86: 6e:c0:b3:b4:86:64:94:05:57:17:9c:01:71:ca:57:10:87:3c: 51:02:73:a5:c3:45:fe:3a:18:af:ae:d5:d7:cc:d8:72:8a:81: aa:53:b3:9d:c1:62:f3:2e:4e:fc:6e:44:50:d1:66:8f:1b:ac: 46:56:3c:2c:00:2e:fb:88:f7:33:08:83:6d:0d:85:fa:b8:36: 2d:40:71:40:a7:50:3c:b6:22:43:d1:85:fe:6f:27:32:5c:9d: 50:76:8c:d5:f1:53:d9:ba:a2:99:d0:21:43:bf:14:bc:89:09: 25:56:f8:1a -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZvDjVjfcLUl5vhibyJFpSWHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyYmUyOWM5NTY4OTRjNDljNmQ0YmUwZWQ5ODg4MmI5MGQx YmM3N2YwHhcNMjYwMTE1MjEyNjE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNDM0MTJjY2ZhZWY0MzczOWUxNjA4NjUxZDM5ZWU4NzJkODU5ZGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyRj6V+cLvQhqJVtdzDOh/lr1R07H 0y/jte2aZPl6EC3IH8nMCcNn7fcOi32U858hSeRaKpXYAlx6P15ayakgRoWWu8OP hC5uNafqkwwT1HDETIQVtaULkUdCobNz80nvr+hI39Ix3W8nVkd6rEI7OrupBX9w uINMxNVhs4lygltr3/k0yklZ+5A9rxLsUk4SMVPwdd+Eg+FUwomtQ6eMTr8QVV7w ya19ooZ8CknO+clPdh4yQUuCNq/sKXNxr86p5hHKSJ13bwfBIpv3D9FBpfPXU1nU AKa7bSHYQo5Y9o3O3koMLDBc05H04I1Wy0Kqpk6Rx9l31lZUgO/DvyrtfwIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFNQ0Esz670NznhYIZR057octhZ2jMB8GA1UdIwQY MBaAFBK+KclWiUxJxtS+DtmIgrkNG8d/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRXI0cHlWYUpURW5HMUw0TzJZaUN1UTBieDM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS9jMjc4OGYtOGM4Yy00N2JiLWI5MjIt YWE2ZWQ0ZGFmYjNiLzEvMURRU3pQcnZRM09lRmdobEhUbnVoeTJGbmFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS9jMjc4OGYtOGM4Yy00N2JiLWI5MjItYWE2ZWQ0ZGFmYjNi LzEvRXI0cHlWYUpURW5HMUw0TzJZaUN1UTBieDM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQBHxZIMAwD BAAfFksDBAEfFkwDBAC55qADBADCdeEwDQYJKoZIhvcNAQELBQADggEBAHLNICfz l58hXc+HphzRV6DYHKyqIHfqTs9FKdAgGc0pXihh1skJhGz7WMVfMC2wU5Yb/vF+ 3TGyMVf6SvJpwrrXx66PcMjgFphgEwlITlYwUd1f4xN7oSuCCbSz0mpw+a+grnxR 8ecyjct+a9pbrI51ol+a41rF2QJourR9t6KyX7zZJG/67+MgXP8jyRIPhm7As7SG ZJQFVxecAXHKVxCHPFECc6XDRf46GK+u1dfM2HKKgapTs53BYvMuTvxuRFDRZo8b rEZWPCwALvuI9zMIg20Nhfq4Ni1AcUCnUDy2IkPRhf5vJzJcnVB2jNXxU9m6opnQ IUO/FLyJCSVW+Bo= -----END CERTIFICATE-----Generated at Wed Jan 21 11:09:19 2026 by rpki-client