This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/530064-2482-45be-bffe-fdde58ab29f9/1/1AlRjHDHPerXd5ndCFjnN-RkvrM.roa File: 1AlRjHDHPerXd5ndCFjnN-RkvrM.roa (raw, json) Hash identifier: ZLKTq9Q4KNpxNVoqpx9iO6C2WOOfE/x2d5mOP6ZbGXQ= Subject key identifier: D4:09:51:8C:70:C7:3D:EA:D7:77:99:DD:08:58:E7:37:E4:64:BE:B3 Certificate issuer: /CN=1942817a29882d433bf1bb8ebc59b2ff256e803f Certificate serial: 019B7AC81F7394ED44A31150423365A356EE Authority key identifier: 19:42:81:7A:29:88:2D:43:3B:F1:BB:8E:BC:59:B2:FF:25:6E:80:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUKBeimILUM78buOvFmy_yVugD8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/530064-2482-45be-bffe-fdde58ab29f9/1/1AlRjHDHPerXd5ndCFjnN-RkvrM.roa Signing time: Thu 01 Jan 2026 18:18:14 +0000 ROA not before: Thu 01 Jan 2026 18:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214945 IP address blocks: 31.130.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/530064-2482-45be-bffe-fdde58ab29f9/1/GUKBeimILUM78buOvFmy_yVugD8.crl rsync://rpki.ripe.net/repository/DEFAULT/19/530064-2482-45be-bffe-fdde58ab29f9/1/GUKBeimILUM78buOvFmy_yVugD8.mft rsync://rpki.ripe.net/repository/DEFAULT/GUKBeimILUM78buOvFmy_yVugD8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:1f:73:94:ed:44:a3:11:50:42:33:65:a3:56:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1942817a29882d433bf1bb8ebc59b2ff256e803f Validity Not Before: Jan 1 18:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d409518c70c73dead77799dd0858e737e464beb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:ce:98:d4:75:0b:a7:93:6c:56:c1:d6:1c: bc:ec:4b:58:9e:51:6a:8e:c4:d1:77:30:40:3f:24: 8c:66:ef:0d:fd:b4:c7:93:08:29:9c:17:26:b7:3c: 18:01:ee:99:be:c2:70:97:c2:55:69:f1:a1:e1:88: 7b:ba:38:e7:b7:00:89:46:ad:64:1e:53:14:9f:3f: cd:b1:13:fb:5e:b1:09:1e:35:57:ff:6c:41:11:60: 4f:fc:e9:d1:52:92:72:76:77:ec:99:62:2d:6f:1b: 16:4c:99:a3:88:00:72:59:ca:78:60:75:1c:82:b0: f6:d4:8b:1a:81:2e:04:ce:69:a2:04:7d:ba:1e:3f: 04:3e:06:fb:79:a0:b0:b5:6c:c7:cf:ea:ec:18:84: a9:5d:c9:d2:83:53:d1:fa:1f:21:b6:95:6d:a0:2a: 10:0d:c3:c5:f5:40:bd:7e:fa:79:de:62:78:ae:c4: c6:7b:8c:41:eb:92:ce:82:f5:21:f7:09:1c:bb:ef: 74:40:41:e8:53:aa:5d:fa:03:a9:a4:08:0d:68:59: 1c:b0:7e:46:83:14:d6:0e:80:a1:b8:5b:9a:62:4b: 8d:b1:ee:52:39:67:b2:c0:f4:e8:4d:38:f3:15:16: 06:24:66:68:df:70:18:a9:21:95:90:8f:26:a3:02: 9e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:09:51:8C:70:C7:3D:EA:D7:77:99:DD:08:58:E7:37:E4:64:BE:B3 X509v3 Authority Key Identifier: keyid:19:42:81:7A:29:88:2D:43:3B:F1:BB:8E:BC:59:B2:FF:25:6E:80:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUKBeimILUM78buOvFmy_yVugD8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/530064-2482-45be-bffe-fdde58ab29f9/1/1AlRjHDHPerXd5ndCFjnN-RkvrM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/530064-2482-45be-bffe-fdde58ab29f9/1/GUKBeimILUM78buOvFmy_yVugD8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.130.168.0/21 Signature Algorithm: sha256WithRSAEncryption 3d:c0:2f:7f:50:2a:95:09:c0:30:36:bd:06:0f:bf:c0:20:9c: 5b:6b:46:75:24:0b:7a:89:b8:c6:07:a6:8d:59:0a:c6:6b:d2: ad:22:be:2e:b9:d1:2e:08:f3:f7:db:8a:b5:67:af:02:90:84: 20:a2:52:fe:e3:db:a0:dc:94:07:36:1f:1e:66:84:61:90:6b: 84:8c:0c:6a:cd:02:ba:8c:b5:47:6e:85:12:c7:33:af:ae:fd: 98:1f:b3:a5:78:13:c0:26:34:8f:fe:69:0a:c9:fe:3f:f3:32: 49:2e:86:9e:a3:bb:ae:c5:38:97:50:ec:74:3d:68:b6:39:c0: 49:b2:76:50:7c:9e:2b:9e:52:d3:4e:e8:84:cd:f9:3e:2e:cf: 3a:7e:16:38:e9:37:e6:6c:dc:a4:5c:80:65:f7:40:a8:b0:90: 64:48:b3:44:76:e3:63:42:5f:03:4e:22:96:a9:29:51:d1:8b: 68:c6:fa:26:6b:b7:4b:63:c6:ac:4d:cf:d5:e6:ce:91:86:05: 24:31:36:4e:35:29:3d:61:a6:dd:86:ad:e9:e6:ac:a4:d7:56: 2c:32:4f:c1:e1:7c:32:68:4f:e9:71:2b:b4:f6:0d:86:14:75: c4:bf:35:2f:04:1e:39:28:f7:33:1b:60:27:b7:c1:ec:9c:db: 3e:24:ce:9a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yB9zlO1EoxFQQjNlo1buMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5NDI4MTdhMjk4ODJkNDMzYmYxYmI4ZWJjNTliMmZmMjU2 ZTgwM2YwHhcNMjYwMTAxMTgxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNDA5NTE4YzcwYzczZGVhZDc3Nzk5ZGQwODU4ZTczN2U0NjRiZWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBrOmNR1C6eTbFbB1hy87EtYnlFq jsTRdzBAPySMZu8N/bTHkwgpnBcmtzwYAe6ZvsJwl8JVafGh4Yh7ujjntwCJRq1k HlMUnz/NsRP7XrEJHjVX/2xBEWBP/OnRUpJydnfsmWItbxsWTJmjiAByWcp4YHUc grD21IsagS4EzmmiBH26Hj8EPgb7eaCwtWzHz+rsGISpXcnSg1PR+h8htpVtoCoQ DcPF9UC9fvp53mJ4rsTGe4xB65LOgvUh9wkcu+90QEHoU6pd+gOppAgNaFkcsH5G gxTWDoChuFuaYkuNse5SOWeywPToTTjzFRYGJGZo33AYqSGVkI8mowKeBwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNQJUYxwxz3q13eZ3QhY5zfkZL6zMB8GA1UdIwQY MBaAFBlCgXopiC1DO/G7jrxZsv8lboA/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1VLQmVpbUlMVU03OGJ1T3ZGbXlfeVZ1Z0Q4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS81MzAwNjQtMjQ4Mi00NWJlLWJmZmUt ZmRkZTU4YWIyOWY5LzEvMUFsUmpIREhQZXJYZDVuZENGam5OLVJrdnJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS81MzAwNjQtMjQ4Mi00NWJlLWJmZmUtZmRkZTU4YWIyOWY5 LzEvR1VLQmVpbUlMVU03OGJ1T3ZGbXlfeVZ1Z0Q4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDH4KoMA0G CSqGSIb3DQEBCwUAA4IBAQA9wC9/UCqVCcAwNr0GD7/AIJxba0Z1JAt6ibjGB6aN WQrGa9KtIr4uudEuCPP324q1Z68CkIQgolL+49ug3JQHNh8eZoRhkGuEjAxqzQK6 jLVHboUSxzOvrv2YH7OleBPAJjSP/mkKyf4/8zJJLoaeo7uuxTiXUOx0PWi2OcBJ snZQfJ4rnlLTTuiEzfk+Ls86fhY46TfmbNykXIBl90CosJBkSLNEduNjQl8DTiKW qSlR0Ytoxvoma7dLY8asTc/V5s6RhgUkMTZONSk9Yabdhq3p5qyk11YsMk/B4Xwy aE/pcSu09g2GFHXEvzUvBB45KPczG2Ant8HsnNs+JM6a -----END CERTIFICATE-----Generated at Mon Jan 26 12:55:18 2026 by rpki-client