This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/_KdTD9Hfu5k6hVTondfZQJ_OxLo.roa File: _KdTD9Hfu5k6hVTondfZQJ_OxLo.roa (raw, json) Hash identifier: 4TQXprbZCs5Jf+ifvEFuTZxSKFFhMf/XaJeUj1L8wlE= Subject key identifier: FC:A7:53:0F:D1:DF:BB:99:3A:85:54:E8:9D:D7:D9:40:9F:CE:C4:BA Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c Certificate serial: 019B7DCB25278DB42A1096BE804F4FA1D2C0 Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/_KdTD9Hfu5k6hVTondfZQJ_OxLo.roa Signing time: Fri 02 Jan 2026 08:20:23 +0000 ROA not before: Fri 02 Jan 2026 08:20:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12859 IP address blocks: 82.150.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.mft rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:25:27:8d:b4:2a:10:96:be:80:4f:4f:a1:d2:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c Validity Not Before: Jan 2 08:20:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fca7530fd1dfbb993a8554e89dd7d9409fcec4ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:35:00:fc:ca:45:b6:d1:8b:22:1f:f2:d3:75: db:54:30:6a:42:c9:45:9f:a6:d9:f1:44:75:c4:fe: 7c:5b:bf:0b:2f:7c:3e:ae:f6:64:fd:d8:0a:93:ac: 92:f4:01:22:94:bc:a3:40:9d:74:42:7b:fb:58:75: 73:48:04:c3:b8:d9:0e:03:76:ba:5e:7f:2e:5b:92: 49:9e:6e:44:7c:fc:64:2f:22:96:23:62:13:fe:20: cf:17:b1:66:3a:6f:ad:92:01:48:90:b0:c9:1a:0e: bd:39:7f:7b:b8:bb:4d:a1:ea:fc:30:d8:31:d1:25: f3:25:03:b6:52:44:05:eb:ed:3d:4a:0b:29:75:15: 95:04:38:a8:7c:82:7d:f8:60:14:de:48:07:37:1b: 72:62:b4:a5:bb:8b:ef:fb:8e:fc:77:ef:8b:65:2e: 24:0f:68:43:61:30:5b:33:6d:93:7b:df:b6:26:55: a0:b6:3a:7e:07:34:a1:9a:d0:b9:35:b5:6d:e3:fa: 26:60:d1:20:80:b4:00:99:80:a9:91:ca:66:f2:21: 8b:d0:2e:da:76:56:c1:09:c2:22:d9:a7:84:69:22: a2:7c:b7:fe:6d:d1:74:a6:4b:81:94:95:45:ae:98: f9:bd:00:97:54:bb:2f:84:35:ac:9f:eb:07:a2:50: 45:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:A7:53:0F:D1:DF:BB:99:3A:85:54:E8:9D:D7:D9:40:9F:CE:C4:BA X509v3 Authority Key Identifier: keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/_KdTD9Hfu5k6hVTondfZQJ_OxLo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.150.137.0/24 Signature Algorithm: sha256WithRSAEncryption 04:d2:4a:c3:6c:b8:31:10:0d:fd:90:a2:aa:56:0f:63:8e:de: 1f:67:ba:e7:52:d0:42:0b:23:62:e7:74:ff:61:fa:20:a9:32: b6:4c:df:54:e8:21:80:35:a8:bc:e2:d3:fb:12:a7:58:b6:2c: 88:b0:77:1f:19:72:1d:8c:3e:6f:90:c9:8f:29:f8:18:45:73: 8f:55:10:59:fa:67:df:54:3e:44:3a:7d:5e:45:6e:fd:89:63: ad:bd:05:74:a3:ad:d0:5b:39:59:0c:c5:f6:b4:fb:8e:ea:09: 80:47:5c:5f:a3:7b:ad:3e:c7:de:79:c1:b3:c0:4e:72:a9:68: ca:70:c2:9c:2f:78:4c:61:3f:48:b7:42:12:c8:89:51:77:e2: cf:6d:6a:76:67:21:ef:a7:c4:22:ee:5d:5e:fd:5f:68:f2:4f: 3b:18:d6:74:8b:96:a7:e0:b3:f2:a1:8c:7c:da:2c:03:fe:d1: 01:32:3e:0c:5d:c1:83:5c:3c:ff:83:8b:57:46:c1:2c:bf:67: e6:d0:b6:cf:60:97:e7:d6:4a:ba:ea:f3:72:89:c1:35:cd:38: 31:83:25:c1:86:9e:4d:95:70:79:dc:b1:b7:5a:de:1f:82:17: 1a:f3:9a:07:88:a4:95:13:60:77:25:a3:3a:e0:80:6d:a8:34: d6:19:ed:41 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yyUnjbQqEJa+gE9PodLAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIwMWZlMzBmYzZiNGIwZDBmNmRiNGUxYmZiYmQ1MDE5NWRj YTU3NWMwHhcNMjYwMTAyMDgyMDIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmY2E3NTMwZmQxZGZiYjk5M2E4NTU0ZTg5ZGQ3ZDk0MDlmY2VjNGJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDUA/MpFttGLIh/y03XbVDBqQslF n6bZ8UR1xP58W78LL3w+rvZk/dgKk6yS9AEilLyjQJ10Qnv7WHVzSATDuNkOA3a6 Xn8uW5JJnm5EfPxkLyKWI2IT/iDPF7FmOm+tkgFIkLDJGg69OX97uLtNoer8MNgx 0SXzJQO2UkQF6+09SgspdRWVBDiofIJ9+GAU3kgHNxtyYrSlu4vv+478d++LZS4k D2hDYTBbM22Te9+2JlWgtjp+BzShmtC5NbVt4/omYNEggLQAmYCpkcpm8iGL0C7a dlbBCcIi2aeEaSKifLf+bdF0pkuBlJVFrpj5vQCXVLsvhDWsn+sHolBFZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPynUw/R37uZOoVU6J3X2UCfzsS6MB8GA1UdIwQY MBaAFCAf4w/GtLDQ9ttOG/u9UBldyldcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSUJfakQ4YTBzTkQyMjA0Yi03MVFHVjNLVjF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My84ZDgwZjktNDk0ZS00YWJiLTk5NTYt ZmMxMjFjODAwYjMwLzEvX0tkVEQ5SGZ1NWs2aFZUb25kZlpRSl9PeExvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My84ZDgwZjktNDk0ZS00YWJiLTk5NTYtZmMxMjFjODAwYjMw LzEvSUJfakQ4YTBzTkQyMjA0Yi03MVFHVjNLVjF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUpaJMA0G CSqGSIb3DQEBCwUAA4IBAQAE0krDbLgxEA39kKKqVg9jjt4fZ7rnUtBCCyNi53T/ YfogqTK2TN9U6CGANai84tP7EqdYtiyIsHcfGXIdjD5vkMmPKfgYRXOPVRBZ+mff VD5EOn1eRW79iWOtvQV0o63QWzlZDMX2tPuO6gmAR1xfo3utPsfeecGzwE5yqWjK cMKcL3hMYT9It0ISyIlRd+LPbWp2ZyHvp8Qi7l1e/V9o8k87GNZ0i5an4LPyoYx8 2iwD/tEBMj4MXcGDXDz/g4tXRsEsv2fm0LbPYJfn1kq66vNyicE1zTgxgyXBhp5N lXB53LG3Wt4fghca85oHiKSVE2B3JaM64IBtqDTWGe1B -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:42 2026 by rpki-client