This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/cduC2GbU6mLXIEEHAt29JqjeJ_c.roa File: cduC2GbU6mLXIEEHAt29JqjeJ_c.roa (raw, json) Hash identifier: sBtHQn0mqBf5vLWH/WxAyxQgtkjINRc/CcTzUpuSllU= Subject key identifier: 71:DB:82:D8:66:D4:EA:62:D7:20:41:07:02:DD:BD:26:A8:DE:27:F7 Certificate issuer: /CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7 Certificate serial: 019B7FF1EF85C506F6DAFCAFEA0B878B0DE5 Authority key identifier: A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/cduC2GbU6mLXIEEHAt29JqjeJ_c.roa Signing time: Fri 02 Jan 2026 18:22:00 +0000 ROA not before: Fri 02 Jan 2026 18:22:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207459 IP address blocks: 46.31.76.0/24 maxlen: 24 46.31.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/p23Z2tdYd_fSjRTgjcVbEzC9E7c.crl rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/p23Z2tdYd_fSjRTgjcVbEzC9E7c.mft rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:ef:85:c5:06:f6:da:fc:af:ea:0b:87:8b:0d:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a76dd9dad75877f7d28d14e08dc55b1330bd13b7 Validity Not Before: Jan 2 18:22:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71db82d866d4ea62d720410702ddbd26a8de27f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:07:3c:bf:54:88:90:fd:58:58:65:16:26:1f: 87:d1:4b:b0:b4:6c:97:55:06:45:30:e7:89:41:96: b2:66:65:59:3e:5b:75:8d:c7:63:6a:b9:d7:e6:8e: ea:7e:18:12:21:49:9e:ab:3f:8f:f5:a2:dc:cd:8e: a2:d9:c8:fb:0f:42:50:65:be:62:14:76:c4:5d:cb: 11:4c:f4:54:1b:7e:ef:7e:34:ff:7f:21:76:f9:df: 51:ea:63:e3:bc:c5:e3:56:91:89:e5:c6:35:a5:83: cf:50:ab:fd:9c:ff:c8:1c:e5:be:b9:c0:28:f3:38: ae:35:22:fa:09:60:5a:ef:5c:22:dd:da:55:9f:3e: 2d:33:9a:72:12:ea:34:de:b7:a5:24:64:64:70:38: 9e:75:fd:a9:0c:03:7c:55:2d:3b:de:34:7c:ab:63: fc:12:5e:c6:66:e7:a9:5c:06:ea:49:5e:24:95:1e: 3b:ff:ac:dd:70:6d:d3:fe:91:5c:a9:e5:fc:36:1a: e4:77:3c:15:1f:87:11:7b:fb:3b:bb:68:d5:98:ec: 25:cf:11:d1:fd:a0:5a:ad:61:8d:ad:fb:cd:28:1e: 40:d9:93:89:35:04:07:d9:e1:31:6b:c2:cf:b7:a0: 76:33:6c:f1:72:0b:9b:3a:0f:29:84:6b:31:d1:83: 3a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:DB:82:D8:66:D4:EA:62:D7:20:41:07:02:DD:BD:26:A8:DE:27:F7 X509v3 Authority Key Identifier: keyid:A7:6D:D9:DA:D7:58:77:F7:D2:8D:14:E0:8D:C5:5B:13:30:BD:13:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p23Z2tdYd_fSjRTgjcVbEzC9E7c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/cduC2GbU6mLXIEEHAt29JqjeJ_c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/89/d00889-e5ca-4090-a6a4-2ac6ff75beb0/1/p23Z2tdYd_fSjRTgjcVbEzC9E7c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.31.76.0/24 46.31.79.0/24 Signature Algorithm: sha256WithRSAEncryption cc:ee:8a:18:01:7b:ae:ce:59:8e:40:15:06:7b:29:67:42:78: e9:0d:db:bf:df:a6:ed:a0:a4:c3:e4:8a:2e:d8:27:d9:9e:ae: c2:9d:d5:14:20:9c:eb:3e:d6:0d:9b:b8:a4:0c:56:f2:91:68: da:23:94:7a:bd:08:bd:3b:b1:1a:f3:b5:28:b4:f8:4a:ec:a9: 3c:09:5a:8b:b4:72:41:a6:9e:9c:17:32:69:f7:63:69:04:e8: 85:47:83:5a:5a:6b:cc:e4:df:80:1e:30:0c:2f:61:62:3e:59: d0:20:7d:b7:a7:07:48:04:fa:f7:d6:f4:d4:c8:ae:98:7a:83: 56:f2:a9:10:b5:38:f6:c6:dd:d3:99:cc:28:d1:7e:a9:c3:ab: c5:a1:a8:cf:ab:49:c1:2f:e1:f4:36:7b:85:9b:23:fa:0b:25: f1:fc:c1:f5:72:12:6f:e7:ba:73:c8:6b:d6:d8:d0:a0:88:1f: 56:da:eb:26:cc:a1:f6:ae:b5:5b:a4:9b:81:94:89:5b:d6:8e: 1f:e3:6c:d1:c6:48:d5:f6:13:2b:c7:17:01:da:64:4b:bc:7b: ec:8f:17:33:6e:2a:b3:5d:54:f5:7d:22:3a:52:03:e2:58:ec: 78:85:90:8f:c2:6d:b8:9e:05:e0:9b:70:c7:d1:76:b3:ef:81: ad:45:b5:14 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/8e+FxQb22vyv6guHiw3lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3NmRkOWRhZDc1ODc3ZjdkMjhkMTRlMDhkYzU1YjEzMzBi ZDEzYjcwHhcNMjYwMTAyMTgyMjAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MWRiODJkODY2ZDRlYTYyZDcyMDQxMDcwMmRkYmQyNmE4ZGUyN2Y3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqAc8v1SIkP1YWGUWJh+H0UuwtGyX VQZFMOeJQZayZmVZPlt1jcdjarnX5o7qfhgSIUmeqz+P9aLczY6i2cj7D0JQZb5i FHbEXcsRTPRUG37vfjT/fyF2+d9R6mPjvMXjVpGJ5cY1pYPPUKv9nP/IHOW+ucAo 8ziuNSL6CWBa71wi3dpVnz4tM5pyEuo03relJGRkcDiedf2pDAN8VS073jR8q2P8 El7GZuepXAbqSV4klR47/6zdcG3T/pFcqeX8NhrkdzwVH4cRe/s7u2jVmOwlzxHR /aBarWGNrfvNKB5A2ZOJNQQH2eExa8LPt6B2M2zxcgubOg8phGsx0YM6EQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHHbgthm1Opi1yBBBwLdvSao3if3MB8GA1UdIwQY MBaAFKdt2drXWHf30o0U4I3FWxMwvRO3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDIzWjJ0ZFlkX2ZTalJUZ2pjVmJFekM5RTdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9kMDA4ODktZTVjYS00MDkwLWE2YTQt MmFjNmZmNzViZWIwLzEvY2R1QzJHYlU2bUxYSUVFSEF0MjlKcWplSl9jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OS9kMDA4ODktZTVjYS00MDkwLWE2YTQtMmFjNmZmNzViZWIw LzEvcDIzWjJ0ZFlkX2ZTalJUZ2pjVmJFekM5RTdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALh9MAwQA Lh9PMA0GCSqGSIb3DQEBCwUAA4IBAQDM7ooYAXuuzlmOQBUGeylnQnjpDdu/36bt oKTD5Iou2CfZnq7CndUUIJzrPtYNm7ikDFbykWjaI5R6vQi9O7Ea87UotPhK7Kk8 CVqLtHJBpp6cFzJp92NpBOiFR4NaWmvM5N+AHjAML2FiPlnQIH23pwdIBPr31vTU yK6YeoNW8qkQtTj2xt3Tmcwo0X6pw6vFoajPq0nBL+H0NnuFmyP6CyXx/MH1chJv 57pzyGvW2NCgiB9W2usmzKH2rrVbpJuBlIlb1o4f42zRxkjV9hMrxxcB2mRLvHvs jxczbiqzXVT1fSI6UgPiWOx4hZCPwm24ngXgm3DH0Xaz74GtRbUU -----END CERTIFICATE-----Generated at Wed Jan 21 22:21:05 2026 by rpki-client