This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1kR1m4lsAJFadeqo7RxWBQj94lk.roa File: 1kR1m4lsAJFadeqo7RxWBQj94lk.roa (raw, json) Hash identifier: Kkk0gWUpay04BMFW/zunXhQwmtWxpMilEdhu0fEMvZo= Subject key identifier: D6:44:75:9B:89:6C:00:91:5A:75:EA:A8:ED:1C:56:05:08:FD:E2:59 Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Certificate serial: 019B7F847CF068E991C310E7C3DE9EA7822D Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1kR1m4lsAJFadeqo7RxWBQj94lk.roa Signing time: Fri 02 Jan 2026 16:22:27 +0000 ROA not before: Fri 02 Jan 2026 16:22:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 135402 IP address blocks: 31.56.123.0/24 maxlen: 24 31.57.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.mft rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 Jan 2026 11:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:7c:f0:68:e9:91:c3:10:e7:c3:de:9e:a7:82:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5 Validity Not Before: Jan 2 16:22:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d644759b896c00915a75eaa8ed1c560508fde259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:fd:f6:ba:72:03:fe:6f:78:a4:a3:33:4d:3c: 36:1f:3c:e0:15:7d:9f:20:f6:26:a0:cd:c2:c0:b6: e0:24:43:75:78:47:99:1a:44:e5:48:b1:c4:42:b7: 2d:9f:af:dc:2d:d2:88:6e:5a:0d:e7:db:ce:d8:6d: 80:87:07:cd:07:22:c8:16:6f:f4:50:24:7a:e9:f2: 78:26:ea:a9:16:14:20:89:89:74:5d:f2:4a:c3:07: b4:8f:66:11:4f:df:10:38:a3:90:c1:5f:c6:dd:98: 5f:e8:90:54:76:16:be:b3:57:bf:0b:42:f3:be:ea: 64:ad:2e:e3:12:e6:a1:ec:5e:9a:66:b3:10:6d:5a: 54:a6:e8:8e:4a:6e:78:10:83:f7:8b:2a:ce:22:9b: 63:7d:9e:5c:bd:ea:4a:42:01:61:ad:93:f6:42:27: d9:c9:64:47:71:17:0c:56:c1:8f:fb:45:bc:42:f0: 7b:13:c5:cd:24:b6:3d:74:d8:52:66:8a:84:90:ce: a6:be:fb:68:e9:da:21:15:ab:26:c4:16:73:5c:5e: e4:91:a1:67:dc:9e:05:a1:36:db:6f:61:b5:99:91: 9a:4a:d7:20:fd:86:f2:6f:8d:4b:d3:8e:09:17:54: 53:45:e5:9a:a0:91:2f:61:de:26:eb:c7:66:c2:7b: b9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:44:75:9B:89:6C:00:91:5A:75:EA:A8:ED:1C:56:05:08:FD:E2:59 X509v3 Authority Key Identifier: keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/1kR1m4lsAJFadeqo7RxWBQj94lk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.56.123.0/24 31.57.182.0/24 Signature Algorithm: sha256WithRSAEncryption c2:8d:2b:c2:e9:a2:9e:f1:b7:a6:aa:06:82:9c:67:c9:e2:66: 7a:b3:39:72:ae:d5:d6:1f:de:26:cd:82:20:75:af:32:38:5c: 43:c9:73:2d:d8:9c:d2:c8:c1:c8:ab:e3:8d:90:8e:c7:ca:98: c4:a7:d7:35:c4:64:b2:b0:54:33:58:1e:8f:35:17:5a:35:2b: d2:1b:6f:f6:f9:2f:3a:2a:0e:b5:fb:a1:a0:7f:bc:02:20:eb: 18:2b:2e:3f:46:16:0a:cd:e3:c4:aa:1e:9e:80:60:d7:99:34: c9:19:4d:0a:f4:13:1c:76:76:81:a5:35:36:55:e2:04:a1:c7: af:e2:1d:9f:22:3a:19:6c:ec:d1:0a:15:78:1f:79:2d:96:ce: f2:3d:6d:82:92:01:c3:33:15:62:c1:b1:a5:04:99:81:c8:ae: 4c:d8:16:ea:0d:91:3d:aa:b6:13:cf:0b:55:da:7d:20:ff:19: 2a:05:9c:44:ef:20:24:85:59:ba:d7:0a:10:e8:84:1d:95:b2: 58:ce:a6:f4:5c:ff:57:f2:06:d9:a0:34:a3:74:a0:a4:8b:f1: b8:66:47:c0:99:44:40:61:34:06:96:84:fd:2b:f8:1b:eb:82: 63:ff:b2:74:f7:a5:9a:1f:7f:ef:e9:3b:7c:86:5a:c2:44:d7: da:78:e7:a4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hHzwaOmRwxDnw96ep4ItMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMWIwOTVmYWI2NzYzM2MwMTI3ZDYxZmY2ODU3ODY0ZWE2 YjI1YzUwHhcNMjYwMTAyMTYyMjI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjQ0NzU5Yjg5NmMwMDkxNWE3NWVhYThlZDFjNTYwNTA4ZmRlMjU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkP32unID/m94pKMzTTw2HzzgFX2f IPYmoM3CwLbgJEN1eEeZGkTlSLHEQrctn6/cLdKIbloN59vO2G2AhwfNByLIFm/0 UCR66fJ4JuqpFhQgiYl0XfJKwwe0j2YRT98QOKOQwV/G3Zhf6JBUdha+s1e/C0Lz vupkrS7jEuah7F6aZrMQbVpUpuiOSm54EIP3iyrOIptjfZ5cvepKQgFhrZP2QifZ yWRHcRcMVsGP+0W8QvB7E8XNJLY9dNhSZoqEkM6mvvto6dohFasmxBZzXF7kkaFn 3J4FoTbbb2G1mZGaStcg/Ybyb41L044JF1RTReWaoJEvYd4m68dmwnu5cQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNZEdZuJbACRWnXqqO0cVgUI/eJZMB8GA1UdIwQY MBaAFE8bCV+rZ2M8ASfWH/aFeGTqayXFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYt YjgxMWNmY2I5ZmQ1LzEvMWtSMW00bHNBSkZhZGVxbzdSeFdCUWo5NGxrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi81MTFmOTUtZTRiZi00M2YxLWFmMmYtYjgxMWNmY2I5ZmQ1 LzEvVHhzSlg2dG5ZendCSjlZZjlvVjRaT3BySmNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAHzh7AwQA Hzm2MA0GCSqGSIb3DQEBCwUAA4IBAQDCjSvC6aKe8bemqgaCnGfJ4mZ6szlyrtXW H94mzYIgda8yOFxDyXMt2JzSyMHIq+ONkI7HypjEp9c1xGSysFQzWB6PNRdaNSvS G2/2+S86Kg61+6Ggf7wCIOsYKy4/RhYKzePEqh6egGDXmTTJGU0K9BMcdnaBpTU2 VeIEocev4h2fIjoZbOzRChV4H3ktls7yPW2CkgHDMxViwbGlBJmByK5M2BbqDZE9 qrYTzwtV2n0g/xkqBZxE7yAkhVm61woQ6IQdlbJYzqb0XP9X8gbZoDSjdKCki/G4 ZkfAmURAYTQGloT9K/gb64Jj/7J096WaH3/v6Tt8hlrCRNfaeOek -----END CERTIFICATE-----Generated at Mon Jan 5 14:32:50 2026 by rpki-client