This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/d1TClHLhcUMb8ncWrYUz4SmBQ2I.roa File: d1TClHLhcUMb8ncWrYUz4SmBQ2I.roa (raw, json) Hash identifier: JEzpI03bgbERXMtAE8lIFvppXbv5/QDuRJO76VwhXqE= Subject key identifier: 77:54:C2:94:72:E1:71:43:1B:F2:77:16:AD:85:33:E1:29:81:43:62 Certificate issuer: /CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725 Certificate serial: 019B79EBE418825C80A8D20BDBC33C41A2BF Authority key identifier: 87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/d1TClHLhcUMb8ncWrYUz4SmBQ2I.roa Signing time: Thu 01 Jan 2026 14:17:41 +0000 ROA not before: Thu 01 Jan 2026 14:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205003 IP address blocks: 212.183.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.mft rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 17:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:e4:18:82:5c:80:a8:d2:0b:db:c3:3c:41:a2:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=870c589a4f22a9ca2ff99b4c48f8bdf492871725 Validity Not Before: Jan 1 14:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7754c29472e171431bf27716ad8533e129814362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5b:ae:60:36:30:55:6c:4d:c1:aa:8a:e5:b9: 04:1f:79:95:33:74:6e:fb:47:1a:1b:7f:0b:ea:ca: 05:9e:57:d6:3d:c5:ba:0d:65:97:7d:4b:47:76:b5: d0:f6:c9:18:4c:56:8a:5c:d6:32:9b:fe:8c:21:ca: ae:05:ca:a6:a7:05:7b:63:12:57:e5:b1:9f:b0:ee: b8:71:6f:26:89:ee:91:f2:2d:f3:33:1c:5a:a6:ca: 97:79:ff:25:a8:da:58:f8:7b:b1:3b:08:81:fc:a6: 92:bb:12:80:dc:11:76:39:c7:a1:b4:5b:38:ca:cb: 07:38:02:3f:2b:d2:3f:73:89:4a:53:c2:b0:6d:f5: f9:28:cd:4b:3e:af:fc:22:11:12:db:d8:5d:f3:28: 6b:94:af:d7:fa:22:e2:60:3e:6e:43:1d:4a:9c:e6: 6b:40:1d:2d:e3:ba:f1:e5:84:64:0a:db:4f:bc:7e: b8:0a:53:4b:77:67:cb:51:39:f2:1d:22:54:c7:8d: 64:6b:3f:8d:cb:ca:68:45:c4:82:4c:7f:85:39:06: 68:e1:83:07:6a:28:22:73:d9:d9:ae:3e:1b:ea:77: cb:32:15:e4:02:13:48:43:dd:87:82:85:44:93:15: 7d:0f:e9:a2:cb:f6:21:4a:0a:3f:8c:79:a1:b7:55: 75:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:54:C2:94:72:E1:71:43:1B:F2:77:16:AD:85:33:E1:29:81:43:62 X509v3 Authority Key Identifier: keyid:87:0C:58:9A:4F:22:A9:CA:2F:F9:9B:4C:48:F8:BD:F4:92:87:17:25 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hwxYmk8iqcov-ZtMSPi99JKHFyU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/d1TClHLhcUMb8ncWrYUz4SmBQ2I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f505b5-0e46-4b3f-bf1b-849d3a6b9c2d/1/hwxYmk8iqcov-ZtMSPi99JKHFyU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.183.28.0/24 Signature Algorithm: sha256WithRSAEncryption 62:a7:64:6d:d9:56:f5:2c:de:08:74:cb:c9:8a:b8:f7:ee:44: e0:75:15:5e:b8:3c:80:3b:bf:fc:c5:9e:b3:13:1d:bd:63:c7: 83:97:c8:53:9a:9f:cf:aa:a3:c1:2b:ac:4e:5d:7a:37:02:a8: 83:a0:aa:cc:60:fd:8a:f4:c1:1b:39:7c:bc:d9:58:29:57:93: 6a:e3:4b:b2:d4:3d:56:9c:4b:7c:f8:c4:1a:6e:fb:23:f8:0d: 16:01:20:f5:30:17:e1:21:fa:26:f3:19:2b:09:12:4a:29:3c: 49:43:64:95:1d:d8:bd:c9:22:b0:1f:63:80:51:d4:0f:50:b6: 2a:27:b8:15:97:43:dd:ca:7a:20:ed:32:f1:b5:a5:a3:9a:c0: 66:fb:1b:78:5c:eb:28:55:33:9a:9a:35:37:63:73:63:7d:01: 4c:88:59:0e:1e:b5:ea:b0:6a:f5:f2:5d:12:c0:08:2d:01:5b: 04:7b:72:79:46:cc:38:67:52:5b:a4:64:71:dd:09:82:66:a4: 71:3c:02:6d:02:69:3a:eb:cf:0e:f6:0c:ff:95:01:60:4b:e7: 43:a1:f3:8e:96:97:e2:0c:6b:a4:36:19:e8:94:ed:d8:49:ca: 01:da:43:b8:8a:d5:07:07:0f:e3:df:d5:e4:39:70:0e:83:46: 88:09:29:9b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt56+QYglyAqNIL28M8QaK/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3MGM1ODlhNGYyMmE5Y2EyZmY5OWI0YzQ4ZjhiZGY0OTI4 NzE3MjUwHhcNMjYwMTAxMTQxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzU0YzI5NDcyZTE3MTQzMWJmMjc3MTZhZDg1MzNlMTI5ODE0MzYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFuuYDYwVWxNwaqK5bkEH3mVM3Ru +0caG38L6soFnlfWPcW6DWWXfUtHdrXQ9skYTFaKXNYym/6MIcquBcqmpwV7YxJX 5bGfsO64cW8mie6R8i3zMxxapsqXef8lqNpY+HuxOwiB/KaSuxKA3BF2OcehtFs4 yssHOAI/K9I/c4lKU8KwbfX5KM1LPq/8IhES29hd8yhrlK/X+iLiYD5uQx1KnOZr QB0t47rx5YRkCttPvH64ClNLd2fLUTnyHSJUx41kaz+Ny8poRcSCTH+FOQZo4YMH aigic9nZrj4b6nfLMhXkAhNIQ92HgoVEkxV9D+miy/YhSgo/jHmht1V1gQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHdUwpRy4XFDG/J3Fq2FM+EpgUNiMB8GA1UdIwQY MBaAFIcMWJpPIqnKL/mbTEj4vfSShxclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWIt ODQ5ZDNhNmI5YzJkLzEvZDFUQ2xITGhjVU1iOG5jV3JZVXo0U21CUTJJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9mNTA1YjUtMGU0Ni00YjNmLWJmMWItODQ5ZDNhNmI5YzJk LzEvaHd4WW1rOGlxY292LVp0TVNQaTk5SktIRnlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1LccMA0G CSqGSIb3DQEBCwUAA4IBAQBip2Rt2Vb1LN4IdMvJirj37kTgdRVeuDyAO7/8xZ6z Ex29Y8eDl8hTmp/PqqPBK6xOXXo3AqiDoKrMYP2K9MEbOXy82VgpV5Nq40uy1D1W nEt8+MQabvsj+A0WASD1MBfhIfom8xkrCRJKKTxJQ2SVHdi9ySKwH2OAUdQPULYq J7gVl0Pdynog7TLxtaWjmsBm+xt4XOsoVTOamjU3Y3NjfQFMiFkOHrXqsGr18l0S wAgtAVsEe3J5Rsw4Z1JbpGRx3QmCZqRxPAJtAmk6688O9gz/lQFgS+dDofOOlpfi DGukNhnolO3YScoB2kO4itUHBw/j39XkOXAOg0aICSmb -----END CERTIFICATE-----Generated at Tue Jan 27 02:50:29 2026 by rpki-client