This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/iND10yDnhWrgVVqJGJLPP7OOec4.roa File: iND10yDnhWrgVVqJGJLPP7OOec4.roa (raw, json) Hash identifier: KVmnN+3y+F1rcCMkcOlul5JPC56mtzljC5FodLEztnk= Subject key identifier: 88:D0:F5:D3:20:E7:85:6A:E0:55:5A:89:18:92:CF:3F:B3:8E:79:CE Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Certificate serial: 019B22BFBFB081C31C2E737411D0F77606AF Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/iND10yDnhWrgVVqJGJLPP7OOec4.roa Signing time: Mon 15 Dec 2025 16:02:30 +0000 ROA not before: Mon 15 Dec 2025 16:02:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215427 IP address blocks: 2001:3185::/32 maxlen: 32 2a11:ad80::/29 maxlen: 29 2a13:c0c0::/29 maxlen: 29 2a13:c140::/29 maxlen: 29 2a13:d240::/29 maxlen: 29 2a14:5740::/29 maxlen: 29 2a14:58c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:bf:bf:b0:81:c3:1c:2e:73:74:11:d0:f7:76:06:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Validity Not Before: Dec 15 16:02:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=88d0f5d320e7856ae0555a891892cf3fb38e79ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d8:de:11:9f:0a:2c:a4:f1:80:b0:ea:25:4c: a9:b8:b7:82:99:db:58:48:a6:d7:9e:ca:6c:75:00: 48:de:7b:02:74:fe:e5:56:bd:1a:2e:d5:51:49:25: d7:47:7a:6e:e4:6f:cb:24:79:95:63:28:95:35:34: 26:fd:2e:e0:12:6e:2b:ec:a1:b8:7c:2b:d3:5b:f8: 8e:54:a3:30:d2:d0:3f:62:47:ff:8a:2e:70:6c:86: 3f:48:0b:d8:a4:03:68:36:ab:dc:fb:f4:d7:6c:2a: f3:fb:77:9f:19:79:68:99:7b:90:12:f4:cf:91:9a: 64:2e:98:db:63:31:98:47:10:77:66:db:c6:1d:74: 4f:27:81:b2:e1:b3:06:79:c3:e9:87:be:4f:23:28: 31:93:88:9a:5e:17:0f:35:b0:5d:f8:6d:f8:90:8e: b7:a9:12:41:21:d5:6d:9c:f6:6d:7f:6c:06:e0:64: ff:79:46:d7:87:a5:ff:aa:81:b0:62:98:db:f4:58: 85:5f:37:b0:d6:76:ac:3d:83:01:7e:46:00:b0:00: 49:d1:03:90:66:c9:27:dc:61:d9:2a:fb:09:48:e1: e4:29:9a:c3:bc:f1:f4:e0:dd:72:48:31:ee:94:e7: f8:a9:75:ce:25:54:d3:61:3c:cc:6b:6c:4b:53:7a: b2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D0:F5:D3:20:E7:85:6A:E0:55:5A:89:18:92:CF:3F:B3:8E:79:CE X509v3 Authority Key Identifier: keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/iND10yDnhWrgVVqJGJLPP7OOec4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3185::/32 2a11:ad80::/29 2a13:c0c0::/29 2a13:c140::/29 2a13:d240::/29 2a14:5740::/29 2a14:58c0::/29 Signature Algorithm: sha256WithRSAEncryption 74:2f:bf:d6:58:2f:02:c3:7f:1f:58:18:d3:a7:7d:f1:d4:a7: a1:61:22:e2:46:b3:e0:a9:2e:0b:ed:19:0c:a0:6d:3c:fd:7d: c4:dd:1a:de:d2:eb:89:0e:44:04:f3:21:5c:61:90:05:cc:70: 31:e8:87:98:b0:40:05:63:94:c7:4a:97:b2:28:92:6f:1d:77: 7d:13:17:7e:f3:f7:bf:1c:c8:09:c0:80:b0:95:5a:5b:5f:2a: dc:c0:57:e7:d3:71:8e:86:b5:aa:c3:73:46:d8:20:8a:bd:8a: 22:10:5f:d8:04:0d:dd:e8:56:4c:fb:b7:c6:f0:d8:ec:08:55: 4a:fc:92:c1:d5:99:13:47:c7:6b:f4:93:fe:aa:f4:f8:0d:43: bc:ab:58:62:a6:ee:f2:1e:bb:dc:25:c3:5d:01:cf:2c:74:12: e7:72:a1:36:de:21:7f:0d:fd:2d:e7:23:2f:10:e0:73:66:d6: 42:6e:e9:ee:d5:c5:60:11:1b:1e:49:a6:1b:cf:35:b9:3f:fa: 7a:01:af:19:fa:e9:13:78:40:b5:ed:e5:db:6f:9e:b4:5b:77: 6a:31:ff:c1:1c:3e:c3:aa:13:d1:8e:a4:0f:a1:81:a0:a8:dd: fe:b4:a1:16:6a:a8:5b:56:15:76:7e:81:2d:c2:59:1d:39:b8: b7:17:32:1d -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgISAZsiv7+wgcMcLnN0EdD3dgavMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy NjhmNTQwHhcNMjUxMjE1MTYwMjMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OGQwZjVkMzIwZTc4NTZhZTA1NTVhODkxODkyY2YzZmIzOGU3OWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdjeEZ8KLKTxgLDqJUypuLeCmdtY SKbXnspsdQBI3nsCdP7lVr0aLtVRSSXXR3pu5G/LJHmVYyiVNTQm/S7gEm4r7KG4 fCvTW/iOVKMw0tA/Ykf/ii5wbIY/SAvYpANoNqvc+/TXbCrz+3efGXlomXuQEvTP kZpkLpjbYzGYRxB3ZtvGHXRPJ4Gy4bMGecPph75PIygxk4iaXhcPNbBd+G34kI63 qRJBIdVtnPZtf2wG4GT/eUbXh6X/qoGwYpjb9FiFXzew1nasPYMBfkYAsABJ0QOQ Zskn3GHZKvsJSOHkKZrDvPH04N1ySDHulOf4qXXOJVTTYTzMa2xLU3qySQIDAQAB o4ICNDCCAjAwHQYDVR0OBBYEFIjQ9dMg54Vq4FVaiRiSzz+zjnnOMB8GA1UdIwQY MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt N2FhN2ZjMzU5NjU1LzEvaU5EMTB5RG5oV3JnVlZxSkdKTFBQN09PZWM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1 LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTA3BAIAAjAxAwUAIAExhQMF AyoRrYADBQMqE8DAAwUDKhPBQAMFAyoT0kADBQMqFFdAAwUDKhRYwDANBgkqhkiG 9w0BAQsFAAOCAQEAdC+/1lgvAsN/H1gY06d98dSnoWEi4kaz4KkuC+0ZDKBtPP19 xN0a3tLriQ5EBPMhXGGQBcxwMeiHmLBABWOUx0qXsiiSbx13fRMXfvP3vxzICcCA sJVaW18q3MBX59Nxjoa1qsNzRtggir2KIhBf2AQN3ehWTPu3xvDY7AhVSvySwdWZ E0fHa/ST/qr0+A1DvKtYYqbu8h673CXDXQHPLHQS53KhNt4hfw39LecjLxDgc2bW Qm7p7tXFYBEbHkmmG881uT/6egGvGfrpE3hAte3l22+etFt3ajH/wRw+w6oT0Y6k D6GBoKjd/rShFmqoW1YVdn6BLcJZHTm4txcyHQ== -----END CERTIFICATE-----Generated at Wed Dec 17 06:34:32 2025 by rpki-client