This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/iDMRka__bTiV5xrVoUOEpgx8MLc.roa File: iDMRka__bTiV5xrVoUOEpgx8MLc.roa (raw, json) Hash identifier: NSjhiVi7Zw8dUQYUc4aNh0C9JclGyQ0OuMzHtV0fFdU= Subject key identifier: 88:33:11:91:AF:FF:6D:38:95:E7:1A:D5:A1:43:84:A6:0C:7C:30:B7 Certificate issuer: /CN=0bed43f409cb35ceb5e77b56d0bbc9a4cc2d2693 Certificate serial: 019B7C11901B83536AB7EBB8A0AEFD2C548B Authority key identifier: 0B:ED:43:F4:09:CB:35:CE:B5:E7:7B:56:D0:BB:C9:A4:CC:2D:26:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C-1D9AnLNc6153tW0LvJpMwtJpM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/iDMRka__bTiV5xrVoUOEpgx8MLc.roa Signing time: Fri 02 Jan 2026 00:18:04 +0000 ROA not before: Fri 02 Jan 2026 00:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49981 IP address blocks: 193.176.184.0/24 maxlen: 24 193.176.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/C-1D9AnLNc6153tW0LvJpMwtJpM.crl rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/C-1D9AnLNc6153tW0LvJpMwtJpM.mft rsync://rpki.ripe.net/repository/DEFAULT/C-1D9AnLNc6153tW0LvJpMwtJpM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:90:1b:83:53:6a:b7:eb:b8:a0:ae:fd:2c:54:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0bed43f409cb35ceb5e77b56d0bbc9a4cc2d2693 Validity Not Before: Jan 2 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88331191afff6d3895e71ad5a14384a60c7c30b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1e:e4:a5:2e:65:10:c1:e0:75:49:aa:71:ca: df:58:8b:02:08:d4:3f:94:13:c2:3d:5c:c2:e7:76: 08:bb:eb:cc:e3:7d:76:b7:c7:35:9a:cc:eb:12:4e: 53:63:50:01:ac:d3:85:9d:17:61:4a:9f:1f:31:4a: 9d:2f:cb:99:ec:30:5b:55:9d:5a:cd:6d:7e:04:72: f7:37:a1:74:00:da:67:c7:4d:d2:83:02:06:8e:eb: 63:0b:b6:2c:e7:71:e4:41:29:b1:a5:c8:17:0a:82: 9d:c9:99:92:48:ec:4c:c0:67:06:01:72:a7:9f:d5: f2:e4:4a:b4:c6:64:53:1e:d7:c6:0c:46:f5:b8:b7: b6:f9:b0:80:82:6f:75:be:68:9d:03:89:ce:4d:bc: 1a:fa:eb:7e:5f:a5:9c:6e:0f:69:cb:a8:ac:33:16: 68:ed:f3:98:c4:18:88:f6:3c:5d:2a:67:80:63:7f: ed:17:27:ad:4d:c3:4f:8a:76:a9:1b:00:00:e7:1b: 17:0a:91:73:3c:77:a8:2e:13:78:02:b5:da:aa:91: 85:1c:82:e8:5e:4e:56:fa:d1:e3:08:fd:3a:2a:87: 42:97:83:a7:ce:65:07:41:d4:93:9e:07:a8:88:65: 81:0f:64:f8:b8:ce:cb:d6:2a:48:33:41:04:bb:da: 8f:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:33:11:91:AF:FF:6D:38:95:E7:1A:D5:A1:43:84:A6:0C:7C:30:B7 X509v3 Authority Key Identifier: keyid:0B:ED:43:F4:09:CB:35:CE:B5:E7:7B:56:D0:BB:C9:A4:CC:2D:26:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C-1D9AnLNc6153tW0LvJpMwtJpM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/iDMRka__bTiV5xrVoUOEpgx8MLc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/c743cb-8137-455a-a573-d808b1afa881/1/C-1D9AnLNc6153tW0LvJpMwtJpM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.176.184.0/24 193.176.187.0/24 Signature Algorithm: sha256WithRSAEncryption 42:e0:52:da:84:3a:41:d0:20:a7:c8:37:50:ee:5a:c0:d6:d9: eb:33:c3:5e:a4:60:5c:5b:5a:12:aa:d0:36:2e:12:31:ff:64: 92:86:fd:bd:2f:bd:95:d8:72:d1:b3:2b:71:a0:57:da:f0:ac: 55:6a:92:e0:b3:83:59:9a:b1:ba:8a:12:8e:bd:67:31:8a:9f: b3:b0:04:27:28:ab:2b:1d:7f:ba:dc:66:24:0a:ed:5d:b0:1e: fe:0a:2d:d3:4a:1a:20:47:bb:f6:4d:5b:30:00:d4:86:92:9c: 64:6b:a2:b6:ad:b7:00:78:4c:14:dc:63:20:b7:38:c4:78:26: 3d:3f:14:2a:5b:65:d1:11:a5:ab:7a:f5:b6:4c:d8:b6:05:d5: 9f:cc:37:d2:cd:d4:83:cb:22:51:46:8e:c2:fe:85:9c:05:ae: e9:ac:c5:3b:0b:1d:97:b0:5c:2d:89:2d:d7:41:80:08:49:51: 17:03:72:4c:a6:5f:09:75:34:81:4c:76:bc:96:0f:ac:91:15: cf:23:fd:8c:97:1a:fa:b6:da:08:50:dc:e7:23:f8:ce:1b:7f: 6f:a8:86:26:79:f8:06:0e:50:bc:8d:9f:07:55:67:aa:79:41: 09:ec:0b:23:81:71:f3:72:c2:3b:b0:74:2b:af:7b:61:05:87: 08:12:02:e3 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EZAbg1Nqt+u4oK79LFSLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiZWQ0M2Y0MDljYjM1Y2ViNWU3N2I1NmQwYmJjOWE0Y2My ZDI2OTMwHhcNMjYwMTAyMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODMzMTE5MWFmZmY2ZDM4OTVlNzFhZDVhMTQzODRhNjBjN2MzMGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtB7kpS5lEMHgdUmqccrfWIsCCNQ/ lBPCPVzC53YIu+vM4312t8c1mszrEk5TY1ABrNOFnRdhSp8fMUqdL8uZ7DBbVZ1a zW1+BHL3N6F0ANpnx03SgwIGjutjC7Ys53HkQSmxpcgXCoKdyZmSSOxMwGcGAXKn n9Xy5Eq0xmRTHtfGDEb1uLe2+bCAgm91vmidA4nOTbwa+ut+X6Wcbg9py6isMxZo 7fOYxBiI9jxdKmeAY3/tFyetTcNPinapGwAA5xsXCpFzPHeoLhN4ArXaqpGFHILo Xk5W+tHjCP06KodCl4OnzmUHQdSTngeoiGWBD2T4uM7L1ipIM0EEu9qP3wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIgzEZGv/204leca1aFDhKYMfDC3MB8GA1UdIwQY MBaAFAvtQ/QJyzXOted7VtC7yaTMLSaTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQy0xRDlBbkxOYzYxNTN0VzBMdkpwTXd0SnBNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNi9jNzQzY2ItODEzNy00NTVhLWE1NzMt ZDgwOGIxYWZhODgxLzEvaURNUmthX19iVGlWNXhyVm9VT0VwZ3g4TUxjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNi9jNzQzY2ItODEzNy00NTVhLWE1NzMtZDgwOGIxYWZhODgx LzEvQy0xRDlBbkxOYzYxNTN0VzBMdkpwTXd0SnBNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwbC4AwQA wbC7MA0GCSqGSIb3DQEBCwUAA4IBAQBC4FLahDpB0CCnyDdQ7lrA1tnrM8NepGBc W1oSqtA2LhIx/2SShv29L72V2HLRsytxoFfa8KxVapLgs4NZmrG6ihKOvWcxip+z sAQnKKsrHX+63GYkCu1dsB7+Ci3TShogR7v2TVswANSGkpxka6K2rbcAeEwU3GMg tzjEeCY9PxQqW2XREaWrevW2TNi2BdWfzDfSzdSDyyJRRo7C/oWcBa7prMU7Cx2X sFwtiS3XQYAISVEXA3JMpl8JdTSBTHa8lg+skRXPI/2Mlxr6ttoIUNznI/jOG39v qIYmefgGDlC8jZ8HVWeqeUEJ7AsjgXHzcsI7sHQrr3thBYcIEgLj -----END CERTIFICATE-----Generated at Mon Jan 19 17:32:54 2026 by rpki-client