This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/IO4uIW0UIpJOr_RrZ7FJv-NSiAg.roa File: IO4uIW0UIpJOr_RrZ7FJv-NSiAg.roa (raw, json) Hash identifier: 56B95Qp7N2Mi/chLAavTbgyoP/5p8XnoFgB+sRTHGCg= Subject key identifier: 20:EE:2E:21:6D:14:22:92:4E:AF:F4:6B:67:B1:49:BF:E3:52:88:08 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 019B7B35EE0B988D226A3800F171ACBD6C3E Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/IO4uIW0UIpJOr_RrZ7FJv-NSiAg.roa Signing time: Thu 01 Jan 2026 20:18:10 +0000 ROA not before: Thu 01 Jan 2026 20:18:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208972 IP address blocks: 185.169.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:ee:0b:98:8d:22:6a:38:00:f1:71:ac:bd:6c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: Jan 1 20:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20ee2e216d1422924eaff46b67b149bfe3528808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ef:93:31:ae:5c:69:05:90:5b:e3:e2:f6:4c: da:be:e5:b2:ab:f4:d4:b5:cf:13:f4:23:5c:9e:68: 80:1b:38:3e:f5:46:2d:f4:7d:a5:08:9e:63:8d:26: 44:a5:d8:a0:83:4a:ea:b0:9d:bb:4e:4b:96:12:b3: 0b:34:95:26:2d:f0:ed:65:67:01:eb:f4:14:d3:c7: 3b:7c:61:37:ea:2e:4e:83:ad:53:cb:e2:a6:1d:f3: 4d:79:41:c9:1b:7d:64:8f:45:8e:02:ac:50:b5:38: b7:fd:c0:16:42:04:4b:cd:08:69:fa:6e:ec:13:9e: 5c:3c:fe:b6:00:da:aa:6b:d9:e7:52:19:b6:b4:16: 57:b9:92:ad:3d:24:6e:dd:fc:ee:51:c1:c4:8c:5e: 8d:c9:70:4b:f8:3e:fc:9b:f6:18:d5:b2:00:99:0d: 9f:22:6e:73:e2:50:65:c5:d8:e3:b8:61:15:8f:d7: 33:c2:71:6c:ba:f1:cb:6d:67:2b:bc:ce:85:79:21: e3:3a:8f:08:31:b0:66:59:f9:d7:66:c3:b2:55:46: f1:62:e6:39:01:53:06:37:9d:d3:f4:00:80:22:d4: 27:86:c8:f6:86:3c:0b:6e:86:92:b4:5e:26:66:b4: 46:09:36:08:ea:08:66:a4:6b:6e:60:0d:a2:72:ab: ed:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:EE:2E:21:6D:14:22:92:4E:AF:F4:6B:67:B1:49:BF:E3:52:88:08 X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/IO4uIW0UIpJOr_RrZ7FJv-NSiAg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.169.183.0/24 Signature Algorithm: sha256WithRSAEncryption 46:0d:a6:15:d4:20:76:4d:9b:02:10:99:b6:37:7b:a3:5b:03: 12:57:d3:1e:49:3c:66:0b:5e:c3:7a:32:03:85:e8:94:7c:20: ac:6e:68:a9:ed:5f:72:8f:71:15:65:50:ce:fd:02:90:90:8f: 64:47:e2:55:31:39:e8:d8:ff:eb:16:ac:75:3c:d4:9f:62:54: e3:5f:68:e2:5b:53:0a:c5:22:de:8f:36:45:66:ed:c9:6e:cc: 7e:b7:a8:7c:af:3f:b4:cf:c3:c7:6f:f8:79:87:e8:be:82:41: e0:4f:22:17:84:a0:21:c9:5d:ea:99:65:c7:2c:2e:49:bd:5a: 76:2a:37:a5:73:ef:8e:53:f8:34:27:26:55:5f:13:51:a4:15: 18:f5:71:70:fe:65:46:ea:62:6b:f8:8f:af:d7:50:15:64:52: d5:02:07:d5:b4:df:93:2f:72:07:b8:fc:e8:f7:e2:ea:b6:48: 2f:15:88:d9:95:9f:3c:b9:54:fe:d4:80:09:8b:c3:39:44:bf: ca:b2:58:74:b3:c7:d0:06:bb:96:e6:e0:8c:96:db:e0:11:f5: 3f:d7:45:f1:69:d3:6f:ad:5d:32:d4:94:73:77:c9:8a:fa:f3: 75:12:57:35:97:83:25:60:10:71:43:69:19:44:5b:7e:ef:b9: 0a:67:14:af -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Ne4LmI0iajgA8XGsvWw+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjYwMTAxMjAxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGVlMmUyMTZkMTQyMjkyNGVhZmY0NmI2N2IxNDliZmUzNTI4ODA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3++TMa5caQWQW+Pi9kzavuWyq/TU tc8T9CNcnmiAGzg+9UYt9H2lCJ5jjSZEpdigg0rqsJ27TkuWErMLNJUmLfDtZWcB 6/QU08c7fGE36i5Og61Ty+KmHfNNeUHJG31kj0WOAqxQtTi3/cAWQgRLzQhp+m7s E55cPP62ANqqa9nnUhm2tBZXuZKtPSRu3fzuUcHEjF6NyXBL+D78m/YY1bIAmQ2f Im5z4lBlxdjjuGEVj9czwnFsuvHLbWcrvM6FeSHjOo8IMbBmWfnXZsOyVUbxYuY5 AVMGN53T9ACAItQnhsj2hjwLboaStF4mZrRGCTYI6ghmpGtuYA2icqvtpwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCDuLiFtFCKSTq/0a2exSb/jUogIMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvSU80dUlXMFVJcEpPcl9Sclo3Rkp2LU5TaUFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuam3MA0G CSqGSIb3DQEBCwUAA4IBAQBGDaYV1CB2TZsCEJm2N3ujWwMSV9MeSTxmC17DejID heiUfCCsbmip7V9yj3EVZVDO/QKQkI9kR+JVMTno2P/rFqx1PNSfYlTjX2jiW1MK xSLejzZFZu3Jbsx+t6h8rz+0z8PHb/h5h+i+gkHgTyIXhKAhyV3qmWXHLC5JvVp2 Kjelc++OU/g0JyZVXxNRpBUY9XFw/mVG6mJr+I+v11AVZFLVAgfVtN+TL3IHuPzo 9+LqtkgvFYjZlZ88uVT+1IAJi8M5RL/Kslh0s8fQBruW5uCMltvgEfU/10XxadNv rV0y1JRzd8mK+vN1Elc1l4MlYBBxQ2kZRFt+77kKZxSv -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:28 2026 by rpki-client