This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/b0144e-9f30-4f9f-a87f-d29a5d918fd8/1/1D-KzTs2x3YCvLX_diqn68dkjas.roa File: 1D-KzTs2x3YCvLX_diqn68dkjas.roa (raw, json) Hash identifier: G2T8kMybTdtstk/QjGzaaTiveaLxpF2RhcjDjiZFthc= Subject key identifier: D4:3F:8A:CD:3B:36:C7:76:02:BC:B5:FF:76:2A:A7:EB:C7:64:8D:AB Certificate issuer: /CN=c143204e97ad79ad6a1f0940ef41b16f207b489d Certificate serial: 019B7C11D2FF83B2B2F956A5A33CAF47FF15 Authority key identifier: C1:43:20:4E:97:AD:79:AD:6A:1F:09:40:EF:41:B1:6F:20:7B:48:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wUMgTpetea1qHwlA70GxbyB7SJ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/b0144e-9f30-4f9f-a87f-d29a5d918fd8/1/1D-KzTs2x3YCvLX_diqn68dkjas.roa Signing time: Fri 02 Jan 2026 00:18:21 +0000 ROA not before: Fri 02 Jan 2026 00:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44985 IP address blocks: 185.15.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/b0144e-9f30-4f9f-a87f-d29a5d918fd8/1/wUMgTpetea1qHwlA70GxbyB7SJ0.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/b0144e-9f30-4f9f-a87f-d29a5d918fd8/1/wUMgTpetea1qHwlA70GxbyB7SJ0.mft rsync://rpki.ripe.net/repository/DEFAULT/wUMgTpetea1qHwlA70GxbyB7SJ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:d2:ff:83:b2:b2:f9:56:a5:a3:3c:af:47:ff:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c143204e97ad79ad6a1f0940ef41b16f207b489d Validity Not Before: Jan 2 00:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d43f8acd3b36c77602bcb5ff762aa7ebc7648dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:78:6c:51:fa:7d:22:9a:55:82:25:8b:b0:b3: 5d:ce:7b:3d:b9:4e:e8:18:36:08:f1:98:32:23:90: c3:a5:96:c9:9d:d7:08:a0:3a:a2:77:cd:13:dc:c2: 3a:a9:7c:96:67:58:36:c6:57:36:b7:73:68:44:40: e7:27:5c:f9:d8:36:80:c3:31:d2:b5:2f:08:94:fe: 59:fe:33:55:65:1a:00:98:26:36:e7:73:6a:cd:dd: 3f:40:a3:d5:93:f0:0d:13:c0:0e:07:16:36:eb:19: 36:e8:c1:85:de:6b:ea:65:00:9d:24:e5:30:82:7a: 86:e5:46:82:54:aa:24:4c:5d:9f:15:f8:36:e8:86: fb:bd:7c:d2:04:85:fd:26:28:20:37:78:71:37:7c: 0a:78:7c:f1:10:82:0a:2c:09:a4:93:20:80:aa:b1: a6:04:61:f6:12:d3:f2:e2:fc:cc:e5:95:50:dc:a9: 92:b3:7b:c5:82:20:e5:93:2f:74:3a:cc:3f:9f:f1: 79:fe:0c:38:e4:84:6e:3d:f9:b7:12:c6:df:c8:dc: 4e:ac:5a:1a:5a:bb:a8:af:eb:1f:36:60:a8:6b:a5: 1a:71:22:f7:c6:03:a7:01:0d:b5:cb:f9:4a:22:e2: 9d:b1:9e:bf:b7:1f:a1:3e:ff:2d:a2:01:27:81:1c: ef:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3F:8A:CD:3B:36:C7:76:02:BC:B5:FF:76:2A:A7:EB:C7:64:8D:AB X509v3 Authority Key Identifier: keyid:C1:43:20:4E:97:AD:79:AD:6A:1F:09:40:EF:41:B1:6F:20:7B:48:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wUMgTpetea1qHwlA70GxbyB7SJ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/b0144e-9f30-4f9f-a87f-d29a5d918fd8/1/1D-KzTs2x3YCvLX_diqn68dkjas.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/b0144e-9f30-4f9f-a87f-d29a5d918fd8/1/wUMgTpetea1qHwlA70GxbyB7SJ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.15.116.0/24 Signature Algorithm: sha256WithRSAEncryption a9:fd:04:30:dd:8c:a6:e8:b6:fd:d0:c7:ef:44:29:58:f0:f7: 12:a0:f9:59:a7:19:69:af:4f:11:78:04:5f:44:6f:ce:bc:0c: 93:0b:9c:92:01:6a:8f:a7:96:9f:3d:3c:a3:c0:7d:8b:8a:5b: c6:5b:7e:61:d7:79:4b:e0:b9:49:f6:11:53:6c:88:c6:93:06: c9:aa:9a:78:8c:25:82:fa:67:13:55:d9:ec:fb:65:42:7c:ae: 97:a2:36:68:f3:9c:44:68:6d:2f:38:f0:84:fa:36:bb:a5:a5: d6:c1:ba:e4:eb:68:ad:7c:f4:6e:55:d5:b7:d1:b8:07:3e:d4: 6b:af:5b:a0:30:be:ca:57:18:f6:f4:75:72:48:57:cb:74:bd: 23:0f:45:d3:e8:66:b0:8d:2c:0d:81:9d:bd:3d:c1:d3:1c:e5: 56:92:a1:19:fc:cc:82:60:01:38:2e:0e:4e:09:21:9f:2e:3e: 77:5d:e1:bd:62:a5:11:51:4b:12:23:6d:7d:b2:94:89:70:93: 66:b8:94:84:8c:b8:63:31:f3:c4:aa:31:16:22:a7:7a:fb:a7: b0:54:bc:9b:44:e6:27:ce:cf:34:be:f8:bd:47:f3:66:54:90: f6:0b:4f:3a:ea:f0:43:69:b0:ce:53:18:52:62:b5:0e:3b:85: 28:bd:94:a4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EdL/g7Ky+ValozyvR/8VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxNDMyMDRlOTdhZDc5YWQ2YTFmMDk0MGVmNDFiMTZmMjA3 YjQ4OWQwHhcNMjYwMTAyMDAxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNDNmOGFjZDNiMzZjNzc2MDJiY2I1ZmY3NjJhYTdlYmM3NjQ4ZGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3hsUfp9IppVgiWLsLNdzns9uU7o GDYI8ZgyI5DDpZbJndcIoDqid80T3MI6qXyWZ1g2xlc2t3NoREDnJ1z52DaAwzHS tS8IlP5Z/jNVZRoAmCY253Nqzd0/QKPVk/ANE8AOBxY26xk26MGF3mvqZQCdJOUw gnqG5UaCVKokTF2fFfg26Ib7vXzSBIX9JiggN3hxN3wKeHzxEIIKLAmkkyCAqrGm BGH2EtPy4vzM5ZVQ3KmSs3vFgiDlky90Osw/n/F5/gw45IRuPfm3EsbfyNxOrFoa Wruor+sfNmCoa6UacSL3xgOnAQ21y/lKIuKdsZ6/tx+hPv8togEngRzvRQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNQ/is07Nsd2Ary1/3Yqp+vHZI2rMB8GA1UdIwQY MBaAFMFDIE6XrXmtah8JQO9BsW8ge0idMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd1VNZ1RwZXRlYTFxSHdsQTcwR3hieUI3U0owLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi9iMDE0NGUtOWYzMC00ZjlmLWE4N2Yt ZDI5YTVkOTE4ZmQ4LzEvMUQtS3pUczJ4M1lDdkxYX2RpcW42OGRramFzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi9iMDE0NGUtOWYzMC00ZjlmLWE4N2YtZDI5YTVkOTE4ZmQ4 LzEvd1VNZ1RwZXRlYTFxSHdsQTcwR3hieUI3U0owLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQ90MA0G CSqGSIb3DQEBCwUAA4IBAQCp/QQw3Yym6Lb90MfvRClY8PcSoPlZpxlpr08ReARf RG/OvAyTC5ySAWqPp5afPTyjwH2LilvGW35h13lL4LlJ9hFTbIjGkwbJqpp4jCWC +mcTVdns+2VCfK6XojZo85xEaG0vOPCE+ja7paXWwbrk62itfPRuVdW30bgHPtRr r1ugML7KVxj29HVySFfLdL0jD0XT6GawjSwNgZ29PcHTHOVWkqEZ/MyCYAE4Lg5O CSGfLj53XeG9YqURUUsSI219spSJcJNmuJSEjLhjMfPEqjEWIqd6+6ewVLybROYn zs80vvi9R/NmVJD2C0866vBDabDOUxhSYrUOO4UovZSk -----END CERTIFICATE-----Generated at Mon Jan 26 08:37:34 2026 by rpki-client