This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/cJm02hXD31NI7pVQ-Zg6zC-hgq4.roa File: cJm02hXD31NI7pVQ-Zg6zC-hgq4.roa (raw, json) Hash identifier: HsDfNZqhgWgKKit0y0ockf+XjyRYYtlEbZ6HrEVkmGs= Subject key identifier: 70:99:B4:DA:15:C3:DF:53:48:EE:95:50:F9:98:3A:CC:2F:A1:82:AE Certificate issuer: /CN=d1fd3436d7a19a7343fa800d87a01af183da318b Certificate serial: 019B791109DA6C565F3252B1CC9796236509 Authority key identifier: D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/cJm02hXD31NI7pVQ-Zg6zC-hgq4.roa Signing time: Thu 01 Jan 2026 10:18:38 +0000 ROA not before: Thu 01 Jan 2026 10:18:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1299 IP address blocks: 185.13.208.0/22 maxlen: 24 2a03:a540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.mft rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 22:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:09:da:6c:56:5f:32:52:b1:cc:97:96:23:65:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1fd3436d7a19a7343fa800d87a01af183da318b Validity Not Before: Jan 1 10:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7099b4da15c3df5348ee9550f9983acc2fa182ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:92:cc:73:3b:1b:6a:9c:e5:b1:a8:11:02:be: b1:b4:88:df:40:0d:56:75:af:51:3c:04:1d:25:07: 67:54:6a:54:5e:9c:47:a2:95:36:c0:4b:f5:d4:46: 70:c8:57:e8:28:97:e8:73:d7:d8:fd:52:56:8d:16: 56:c1:f6:37:30:e0:88:d2:70:55:7f:18:88:be:0b: 1c:29:f4:a4:d5:26:fd:aa:b3:85:5a:6d:5e:52:18: da:7f:0a:51:57:6d:61:2b:bb:a4:34:41:59:66:a6: 96:bd:02:a7:62:cc:5d:2d:96:07:ba:0d:e4:a9:eb: 21:d4:20:9a:c1:29:26:1a:11:fe:13:dc:74:57:cb: c1:9c:c1:4e:e7:44:03:19:9b:5f:c4:df:62:29:65: 34:c6:51:17:a1:9a:42:a0:0e:0b:db:e2:c6:13:d0: e7:a4:32:e6:a0:48:5b:16:45:62:37:73:6c:c3:76: d6:39:65:61:cd:68:68:34:73:43:74:f5:3b:1c:36: df:93:c1:24:fd:a2:e7:6a:50:dd:18:2c:4c:30:10: 81:a3:67:29:91:2f:d9:5d:5d:75:52:be:ba:8c:12: 0f:db:01:77:80:ce:87:fe:a3:5f:23:52:41:86:7b: ba:5d:a8:ae:5f:d8:7d:e2:7b:9c:ed:fa:fa:98:2c: 7f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:99:B4:DA:15:C3:DF:53:48:EE:95:50:F9:98:3A:CC:2F:A1:82:AE X509v3 Authority Key Identifier: keyid:D1:FD:34:36:D7:A1:9A:73:43:FA:80:0D:87:A0:1A:F1:83:DA:31:8B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f00NtehmnND-oANh6Aa8YPaMYs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/cJm02hXD31NI7pVQ-Zg6zC-hgq4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bcd5e8-5d1f-46b1-96bc-39a66cbe1e4d/1/0f00NtehmnND-oANh6Aa8YPaMYs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.13.208.0/22 IPv6: 2a03:a540::/32 Signature Algorithm: sha256WithRSAEncryption 41:dd:14:e2:49:d2:1c:c1:94:f9:cf:62:35:d3:c2:6f:d6:9d: 87:c1:1f:46:81:00:25:03:51:c5:3d:f2:31:f8:99:b3:4e:0e: eb:30:f7:68:2e:59:4d:b2:96:f1:1b:3b:48:59:d2:d8:b6:80: a2:66:6c:ee:5a:f4:3c:5c:be:d5:9d:55:09:2e:1c:ef:19:cb: bf:9f:3f:0f:56:bf:5e:b3:9c:e6:0f:3a:ed:76:b2:1f:be:c4: e7:e5:f8:fb:5f:1f:3e:33:5f:cb:66:f2:f2:9f:fd:0e:f1:b3: bb:23:01:76:2a:03:70:2d:e6:7b:24:42:ca:9c:84:a9:d2:ac: fe:59:ee:c6:17:78:61:03:4f:80:35:6d:6b:97:df:6f:a2:3d: e1:52:d5:9d:1b:e9:3c:32:df:b2:76:b7:b6:0b:6f:a5:8e:99: fb:c7:aa:b2:c9:3b:c6:f0:2a:e0:c6:3b:18:c0:69:ab:85:39: 94:22:28:6a:8b:07:bc:5f:ab:8b:32:6d:53:ce:8e:5b:4f:80: 23:da:82:bc:4a:13:77:38:c0:36:a1:aa:89:7b:03:89:bc:2d: 57:7b:19:e6:7b:9c:2b:42:a5:0c:2c:10:e7:83:52:23:81:5c: d3:83:f2:f9:b3:13:57:02:60:29:65:e7:09:4a:e1:a5:ac:6e: f9:39:76:d5 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EQnabFZfMlKxzJeWI2UJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxZmQzNDM2ZDdhMTlhNzM0M2ZhODAwZDg3YTAxYWYxODNk YTMxOGIwHhcNMjYwMTAxMTAxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDk5YjRkYTE1YzNkZjUzNDhlZTk1NTBmOTk4M2FjYzJmYTE4MmFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJLMczsbapzlsagRAr6xtIjfQA1W da9RPAQdJQdnVGpUXpxHopU2wEv11EZwyFfoKJfoc9fY/VJWjRZWwfY3MOCI0nBV fxiIvgscKfSk1Sb9qrOFWm1eUhjafwpRV21hK7ukNEFZZqaWvQKnYsxdLZYHug3k qesh1CCawSkmGhH+E9x0V8vBnMFO50QDGZtfxN9iKWU0xlEXoZpCoA4L2+LGE9Dn pDLmoEhbFkViN3Nsw3bWOWVhzWhoNHNDdPU7HDbfk8Ek/aLnalDdGCxMMBCBo2cp kS/ZXV11Ur66jBIP2wF3gM6H/qNfI1JBhnu6XaiuX9h94nuc7fr6mCx/eQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHCZtNoVw99TSO6VUPmYOswvoYKuMB8GA1UdIwQY MBaAFNH9NDbXoZpzQ/qADYegGvGD2jGLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMt MzlhNjZjYmUxZTRkLzEvY0ptMDJoWEQzMU5JN3BWUS1aZzZ6Qy1oZ3E0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yy9iY2Q1ZTgtNWQxZi00NmIxLTk2YmMtMzlhNjZjYmUxZTRk LzEvMGYwME50ZWhtbk5ELW9BTmg2QWE4WVBhTVlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuQ3QMA0E AgACMAcDBQAqA6VAMA0GCSqGSIb3DQEBCwUAA4IBAQBB3RTiSdIcwZT5z2I108Jv 1p2HwR9GgQAlA1HFPfIx+JmzTg7rMPdoLllNspbxGztIWdLYtoCiZmzuWvQ8XL7V nVUJLhzvGcu/nz8PVr9es5zmDzrtdrIfvsTn5fj7Xx8+M1/LZvLyn/0O8bO7IwF2 KgNwLeZ7JELKnISp0qz+We7GF3hhA0+ANW1rl99voj3hUtWdG+k8Mt+ydre2C2+l jpn7x6qyyTvG8CrgxjsYwGmrhTmUIihqiwe8X6uLMm1Tzo5bT4Aj2oK8ShN3OMA2 oaqJewOJvC1Xexnme5wrQqUMLBDng1IjgVzTg/L5sxNXAmApZecJSuGlrG75OXbV -----END CERTIFICATE-----Generated at Wed Jan 21 07:24:39 2026 by rpki-client