This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/iCDpMweR3UnjQ3t5pDnJ4r1H_Z8.roa File: iCDpMweR3UnjQ3t5pDnJ4r1H_Z8.roa (raw, json) Hash identifier: p7eqJ/28CY3BrDo7BINDBAyzyYyfthKUBP0i3u+PKTY= Subject key identifier: 88:20:E9:33:07:91:DD:49:E3:43:7B:79:A4:39:C9:E2:BD:47:FD:9F Certificate issuer: /CN=543c5c34a62ffbed8fc0f0ec01b42c0c50ee7ef7 Certificate serial: 019B7AC8FD17EE4E6BF7131838348DD7AECB Authority key identifier: 54:3C:5C:34:A6:2F:FB:ED:8F:C0:F0:EC:01:B4:2C:0C:50:EE:7E:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxcNKYv--2PwPDsAbQsDFDufvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/iCDpMweR3UnjQ3t5pDnJ4r1H_Z8.roa Signing time: Thu 01 Jan 2026 18:19:10 +0000 ROA not before: Thu 01 Jan 2026 18:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61272 IP address blocks: 185.23.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/VDxcNKYv--2PwPDsAbQsDFDufvc.crl rsync://rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/VDxcNKYv--2PwPDsAbQsDFDufvc.mft rsync://rpki.ripe.net/repository/DEFAULT/VDxcNKYv--2PwPDsAbQsDFDufvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:fd:17:ee:4e:6b:f7:13:18:38:34:8d:d7:ae:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=543c5c34a62ffbed8fc0f0ec01b42c0c50ee7ef7 Validity Not Before: Jan 1 18:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8820e9330791dd49e3437b79a439c9e2bd47fd9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:13:80:bd:35:fc:00:b4:b5:9f:a5:22:e0:d5: 8e:6e:87:94:14:08:71:01:b8:4c:04:a1:d7:8b:f7: fe:d4:9d:3b:fd:cf:df:98:d2:bf:99:0b:15:51:16: 24:3a:c1:b3:8b:3c:fd:b4:5b:82:b5:ef:b1:43:16: 8d:d7:d0:6c:60:fa:2b:60:e1:67:da:0a:b1:1f:a1: 30:c4:27:41:81:c4:85:c1:5c:c6:44:49:cc:99:82: 2b:8f:01:36:dd:ed:c6:3b:fd:3f:b2:4d:48:ed:e1: 3a:f2:a2:75:5d:63:c9:cd:34:e5:58:dd:2f:d2:37: 60:20:6b:74:02:26:c8:8e:df:29:23:05:94:73:bf: fb:c4:ba:ad:d7:42:bb:f5:a4:54:4f:7e:66:d9:a7: 14:8d:e4:fd:49:a8:26:0f:56:43:e9:2b:41:db:74: 11:d7:5c:17:bc:56:7e:cc:62:55:0c:8c:9e:a9:23: 5b:85:8d:82:a6:f5:9e:80:5e:48:ae:f7:15:57:a0: 2f:07:e6:9f:b6:3c:ed:c4:94:fc:ec:1c:9b:65:2a: 15:06:74:96:2d:e3:6e:38:fb:6d:ba:81:fd:28:8f: 81:6e:df:9a:a1:3a:a8:0b:65:22:f0:c3:93:f6:7f: 70:86:d4:6f:93:dc:4c:e6:50:37:aa:09:ee:65:09: bf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:20:E9:33:07:91:DD:49:E3:43:7B:79:A4:39:C9:E2:BD:47:FD:9F X509v3 Authority Key Identifier: keyid:54:3C:5C:34:A6:2F:FB:ED:8F:C0:F0:EC:01:B4:2C:0C:50:EE:7E:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxcNKYv--2PwPDsAbQsDFDufvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/iCDpMweR3UnjQ3t5pDnJ4r1H_Z8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/16e022-4da8-4684-85e6-f4f1f93e0467/1/VDxcNKYv--2PwPDsAbQsDFDufvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.23.16.0/24 Signature Algorithm: sha256WithRSAEncryption a0:a5:91:2f:79:00:1a:ea:91:76:73:a7:9d:fe:52:31:bf:ca: eb:c7:3c:a4:10:c8:a3:c4:3f:0b:5c:08:5a:04:7d:02:83:06: 9e:dd:d8:54:3d:e9:96:f7:0b:ba:ca:85:fe:8e:7e:80:17:ef: fd:1a:19:79:f1:3b:ce:62:4b:93:1c:b9:a0:f6:b6:d6:d3:34: e8:e3:22:9d:54:2f:db:7b:ea:bd:5c:5a:1b:d5:2b:13:96:6a: 66:df:df:c5:54:cc:bd:1f:9b:00:a4:6d:5e:39:bc:d3:bb:b8: c3:3a:0e:a1:97:88:7c:55:d5:4d:7c:3a:33:db:cb:1f:8f:11: 57:5d:4c:d4:c2:aa:4d:6a:dd:fd:0c:a0:3b:59:37:39:ce:03: db:9f:59:08:4c:9b:79:69:b6:dc:d7:ad:00:91:5b:31:39:1b: 1e:cc:87:92:26:e6:26:17:46:bd:50:be:30:98:0d:a1:2b:5f: 55:23:cc:f0:88:cd:81:0d:db:20:42:d0:6e:98:3f:6c:a0:6b: 03:96:a7:2e:f1:95:1d:41:7f:39:2c:6f:2a:82:31:09:cc:b6: c2:ad:1e:ae:5f:c7:2d:cc:4a:f8:8b:e6:4f:8c:8d:3e:9d:f8: c7:e2:b4:8f:52:69:af:ae:fd:2b:0d:0f:44:4a:48:9b:4a:53: 16:e3:9d:76 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yP0X7k5r9xMYODSN167LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0M2M1YzM0YTYyZmZiZWQ4ZmMwZjBlYzAxYjQyYzBjNTBl ZTdlZjcwHhcNMjYwMTAxMTgxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODIwZTkzMzA3OTFkZDQ5ZTM0MzdiNzlhNDM5YzllMmJkNDdmZDlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxOAvTX8ALS1n6Ui4NWOboeUFAhx AbhMBKHXi/f+1J07/c/fmNK/mQsVURYkOsGzizz9tFuCte+xQxaN19BsYPorYOFn 2gqxH6EwxCdBgcSFwVzGREnMmYIrjwE23e3GO/0/sk1I7eE68qJ1XWPJzTTlWN0v 0jdgIGt0AibIjt8pIwWUc7/7xLqt10K79aRUT35m2acUjeT9SagmD1ZD6StB23QR 11wXvFZ+zGJVDIyeqSNbhY2CpvWegF5IrvcVV6AvB+aftjztxJT87BybZSoVBnSW LeNuOPttuoH9KI+Bbt+aoTqoC2Ui8MOT9n9whtRvk9xM5lA3qgnuZQm/YQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIgg6TMHkd1J40N7eaQ5yeK9R/2fMB8GA1UdIwQY MBaAFFQ8XDSmL/vtj8Dw7AG0LAxQ7n73MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkR4Y05LWXYtLTJQd1BEc0FiUXNERkR1ZnZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8xNmUwMjItNGRhOC00Njg0LTg1ZTYt ZjRmMWY5M2UwNDY3LzEvaUNEcE13ZVIzVW5qUTN0NXBEbko0cjFIX1o4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS8xNmUwMjItNGRhOC00Njg0LTg1ZTYtZjRmMWY5M2UwNDY3 LzEvVkR4Y05LWXYtLTJQd1BEc0FiUXNERkR1ZnZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRcQMA0G CSqGSIb3DQEBCwUAA4IBAQCgpZEveQAa6pF2c6ed/lIxv8rrxzykEMijxD8LXAha BH0Cgwae3dhUPemW9wu6yoX+jn6AF+/9Ghl58TvOYkuTHLmg9rbW0zTo4yKdVC/b e+q9XFob1SsTlmpm39/FVMy9H5sApG1eObzTu7jDOg6hl4h8VdVNfDoz28sfjxFX XUzUwqpNat39DKA7WTc5zgPbn1kITJt5abbc160AkVsxORsezIeSJuYmF0a9UL4w mA2hK19VI8zwiM2BDdsgQtBumD9soGsDlqcu8ZUdQX85LG8qgjEJzLbCrR6uX8ct zEr4i+ZPjI0+nfjH4rSPUmmvrv0rDQ9ESkibSlMW4512 -----END CERTIFICATE-----Generated at Tue Jan 27 09:57:08 2026 by rpki-client