This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/1-31Qdpidhxq3xowdRMl7OHQzMLs.roa File: 1-31Qdpidhxq3xowdRMl7OHQzMLs.roa (raw, json) Hash identifier: oI7KFd2CFmvACdhWk+lCI6kk2+KzSDbEVQ5Q/GClnlA= Subject key identifier: FB:7D:50:76:98:9D:87:1A:B7:C6:8C:1D:44:C9:7B:38:74:33:30:BB Certificate issuer: /CN=887e81ba84344598c61462833aadf3204eae087c Certificate serial: 019B7AC7D701B5D5E05512297EC99751A2CD Authority key identifier: 88:7E:81:BA:84:34:45:98:C6:14:62:83:3A:AD:F3:20:4E:AE:08:7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/1-31Qdpidhxq3xowdRMl7OHQzMLs.roa Signing time: Thu 01 Jan 2026 18:17:55 +0000 ROA not before: Thu 01 Jan 2026 18:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30950 IP address blocks: 185.58.68.0/22 maxlen: 22 193.28.236.0/24 maxlen: 24 2001:67c:324::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.mft rsync://rpki.ripe.net/repository/DEFAULT/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 14:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d7:01:b5:d5:e0:55:12:29:7e:c9:97:51:a2:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=887e81ba84344598c61462833aadf3204eae087c Validity Not Before: Jan 1 18:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fb7d5076989d871ab7c68c1d44c97b38743330bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:33:e0:cb:34:02:1a:49:43:83:03:75:a7:73: be:fb:59:68:49:02:ef:12:3d:cb:4f:fe:94:a9:d2: d0:34:9b:3e:4b:b6:b7:fb:bf:a8:08:34:2b:be:23: df:e5:5c:92:a4:8f:09:59:9d:33:59:5c:38:7b:43: d8:35:2c:36:9e:c1:78:86:61:04:a2:77:35:52:18: fa:05:14:51:c2:22:e5:f0:f4:ee:59:32:74:ec:9e: 20:87:36:3d:82:96:8f:78:6c:01:30:53:df:64:3e: 0c:3b:4a:b0:a5:dd:bb:e2:2d:30:12:f8:90:5f:0d: ba:1c:20:3b:62:53:22:2a:f1:ee:4c:8e:fe:22:f0: 7a:82:a4:7d:79:e6:7f:87:02:d8:1e:24:85:43:55: 92:24:19:a9:30:63:d8:d6:e1:db:3c:30:b2:e6:38: f0:6b:61:4a:2b:54:c9:b0:91:bd:5c:23:04:d5:87: d4:54:24:11:76:5d:57:73:2b:ec:1a:6d:3e:f1:b8: 45:0e:07:e0:4e:23:b4:72:dd:b4:83:bc:29:10:96: 4d:d7:e6:59:11:04:6d:07:bd:a0:eb:57:8d:75:94: bf:32:fa:0c:8f:8c:89:01:d7:4c:86:ed:f3:53:d2: 9b:d5:8d:2c:d7:24:fe:bd:49:3f:5e:4f:ae:ee:7a: 33:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:7D:50:76:98:9D:87:1A:B7:C6:8C:1D:44:C9:7B:38:74:33:30:BB X509v3 Authority Key Identifier: keyid:88:7E:81:BA:84:34:45:98:C6:14:62:83:3A:AD:F3:20:4E:AE:08:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/1-31Qdpidhxq3xowdRMl7OHQzMLs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b45b47-c2fd-42af-98bd-e0162401ff7a/1/iH6BuoQ0RZjGFGKDOq3zIE6uCHw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.58.68.0/22 193.28.236.0/24 IPv6: 2001:67c:324::/48 Signature Algorithm: sha256WithRSAEncryption 19:02:da:79:ad:51:ba:7f:90:ba:3b:b2:b2:79:7a:7d:75:ef: fd:a8:e4:97:4b:8d:78:fc:cd:fa:08:17:09:c6:0d:b2:c0:d5: e1:56:ab:9f:7d:d0:9f:30:06:63:1f:f4:b7:52:63:6f:48:b4: a8:26:c9:fe:af:42:e0:db:31:16:b8:3e:e0:cf:07:8b:d5:d1: a6:7e:df:3b:5c:00:bd:75:7f:20:80:fc:c1:72:f1:3e:90:c8: e3:7a:5e:ff:1c:ed:16:60:13:50:3f:f0:a3:f3:83:4d:62:9a: 11:91:72:09:62:11:89:32:ee:c0:a3:51:45:0f:53:13:ec:a8: 4f:d9:6f:90:af:a3:08:ae:16:df:2c:f2:e1:9a:d7:97:78:d3: 1e:44:10:2a:5c:15:d0:06:08:36:1f:ea:18:4c:03:10:90:72: e2:8e:62:8f:13:d1:55:be:04:5c:f0:54:68:05:8a:48:40:3b: ff:ec:0e:30:69:80:8c:79:da:6b:9e:be:b0:18:e4:61:a8:34: 66:72:e9:9a:28:dc:86:94:13:af:5f:91:29:48:27:c1:de:3d: 80:8e:48:bd:44:4b:52:24:78:17:80:b8:ec:b0:d9:99:64:99: c8:cc:00:34:f3:09:03:5f:88:7a:65:de:d9:b8:22:6d:56:55: 4a:a4:99:f0 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt6x9cBtdXgVRIpfsmXUaLNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg4N2U4MWJhODQzNDQ1OThjNjE0NjI4MzNhYWRmMzIwNGVh ZTA4N2MwHhcNMjYwMTAxMTgxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYjdkNTA3Njk4OWQ4NzFhYjdjNjhjMWQ0NGM5N2IzODc0MzMzMGJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjPgyzQCGklDgwN1p3O++1loSQLv Ej3LT/6UqdLQNJs+S7a3+7+oCDQrviPf5VySpI8JWZ0zWVw4e0PYNSw2nsF4hmEE onc1Uhj6BRRRwiLl8PTuWTJ07J4ghzY9gpaPeGwBMFPfZD4MO0qwpd274i0wEviQ Xw26HCA7YlMiKvHuTI7+IvB6gqR9eeZ/hwLYHiSFQ1WSJBmpMGPY1uHbPDCy5jjw a2FKK1TJsJG9XCME1YfUVCQRdl1XcyvsGm0+8bhFDgfgTiO0ct20g7wpEJZN1+ZZ EQRtB72g61eNdZS/MvoMj4yJAddMhu3zU9Kb1Y0s1yT+vUk/Xk+u7nozbwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFPt9UHaYnYcat8aMHUTJezh0MzC7MB8GA1UdIwQY MBaAFIh+gbqENEWYxhRigzqt8yBOrgh8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaUg2QnVvUTBSWmpHRkdLRE9xM3pJRTZ1Q0h3LmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iNDViNDctYzJmZC00MmFmLTk4YmQt ZTAxNjI0MDFmZjdhLzEvMS0zMVFkcGlkaHhxM3hvd2RSTWw3T0hRek1Mcy5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOGMvYjQ1YjQ3LWMyZmQtNDJhZi05OGJkLWUwMTYyNDAxZmY3 YS8xL2lINkJ1b1EwUlpqR0ZHS0RPcTN6SUU2dUNIdy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjA2BggrBgEFBQcBBwEB/wQnMCUwEgQCAAEwDAMEArk6RAME AMEc7DAPBAIAAjAJAwcAIAEGfAMkMA0GCSqGSIb3DQEBCwUAA4IBAQAZAtp5rVG6 f5C6O7KyeXp9de/9qOSXS414/M36CBcJxg2ywNXhVquffdCfMAZjH/S3UmNvSLSo Jsn+r0Lg2zEWuD7gzweL1dGmft87XAC9dX8ggPzBcvE+kMjjel7/HO0WYBNQP/Cj 84NNYpoRkXIJYhGJMu7Ao1FFD1MT7KhP2W+Qr6MIrhbfLPLhmteXeNMeRBAqXBXQ Bgg2H+oYTAMQkHLijmKPE9FVvgRc8FRoBYpIQDv/7A4waYCMedprnr6wGORhqDRm cumaKNyGlBOvX5EpSCfB3j2Ajki9REtSJHgXgLjssNmZZJnIzAA08wkDX4h6Zd7Z uCJtVlVKpJnw -----END CERTIFICATE-----Generated at Sun Jan 18 19:22:22 2026 by rpki-client