This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/cRdmmZiNILryID4MaoZH-egP0Pc.roa File: cRdmmZiNILryID4MaoZH-egP0Pc.roa (raw, json) Hash identifier: Tc3P5pw52D848VbuoEwG61qEEaFgbEGdqefrzUmOWZA= Subject key identifier: 71:17:66:99:98:8D:20:BA:F2:20:3E:0C:6A:86:47:F9:E8:0F:D0:F7 Certificate issuer: /CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c Certificate serial: 019B7AC8B50375090C71C749CEF21F719B40 Authority key identifier: 0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/cRdmmZiNILryID4MaoZH-egP0Pc.roa Signing time: Thu 01 Jan 2026 18:18:52 +0000 ROA not before: Thu 01 Jan 2026 18:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8560 IP address blocks: 185.127.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.mft rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:b5:03:75:09:0c:71:c7:49:ce:f2:1f:71:9b:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c Validity Not Before: Jan 1 18:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71176699988d20baf2203e0c6a8647f9e80fd0f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a8:d6:c7:7c:b4:51:29:93:cb:41:2d:b6:4d: 68:37:a8:ba:04:b1:1d:5c:16:38:59:25:e2:4c:dd: 13:d9:02:65:3e:f9:46:4a:52:bd:33:d8:9b:7b:82: 8c:fe:50:3a:0c:e6:3e:88:19:d2:27:82:3e:02:3e: cb:7d:17:fb:8f:3a:53:ab:cf:64:20:cf:9c:02:85: c4:cc:8a:74:ba:ef:0b:23:a4:2d:e1:3c:76:4a:ed: dc:e2:cb:e6:13:21:f3:ff:c0:e0:0e:a1:0f:15:b2: 4f:d6:9b:03:23:d3:85:f3:79:d9:91:45:3f:9f:f9: 86:41:3e:57:94:ba:6a:eb:68:b2:01:34:80:b1:ed: 4b:47:ee:ed:b2:cd:a7:e2:54:bf:22:85:67:6e:a0: 92:b8:05:d0:d6:a3:eb:49:12:6a:22:52:7c:ed:54: 92:96:d6:fc:6a:12:98:07:49:8d:67:f7:cd:74:05: 26:b2:d8:aa:6a:f5:33:1e:02:f7:c8:0c:fe:a3:b2: 44:23:83:ff:26:f2:f5:6e:af:e7:15:5a:f5:2e:56: 95:96:ef:48:f8:8c:71:03:f7:f8:50:6a:7f:be:6f: a7:f2:b3:fd:a5:bc:af:4a:f1:38:9d:0e:be:c7:39: ea:d2:7e:1f:83:c1:85:8b:06:46:3e:64:e8:96:9e: 0d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:17:66:99:98:8D:20:BA:F2:20:3E:0C:6A:86:47:F9:E8:0F:D0:F7 X509v3 Authority Key Identifier: keyid:0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/cRdmmZiNILryID4MaoZH-egP0Pc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.127.30.0/24 Signature Algorithm: sha256WithRSAEncryption 75:e5:44:22:7f:a0:bf:d4:96:95:5d:ac:51:b8:be:4f:25:86: 60:0e:f1:88:0d:73:65:28:60:e2:1d:b6:53:2d:c8:9e:2d:30: fc:25:9c:87:ce:bd:b9:79:6e:68:2b:48:a3:a6:5d:27:2f:ca: 41:33:7f:91:20:9f:43:d5:f9:d9:50:a2:69:21:fe:9d:88:89: a9:af:9d:f6:3d:84:f0:f3:6d:ef:36:6b:ea:47:27:86:ea:13: 70:58:73:3a:7b:d5:a9:ee:35:6b:9f:21:2f:70:1c:d1:49:1f: b1:53:91:ca:67:16:16:0a:40:26:db:d1:ec:23:f7:86:ab:b5: 1f:f6:04:b6:96:df:6b:59:af:fd:f0:a9:36:66:b6:27:58:b0: b3:ce:3c:77:8b:15:75:c2:d2:4b:3b:d7:a2:81:26:87:fd:c3: 89:2d:c6:a4:fa:70:11:cd:97:3c:b9:df:f1:f6:86:1b:b7:51: b4:37:df:16:6f:71:41:a6:c8:31:8f:58:69:9b:cf:0a:a0:dc: ab:b3:6b:f7:8a:da:48:05:e9:45:52:a3:60:99:bc:fe:9e:0a: c8:91:07:49:fc:d6:b2:d5:23:da:88:b6:4f:27:4b:55:7f:3b: 40:26:e3:26:bf:38:ec:db:b8:63:fc:7a:bf:a7:07:22:8b:f7: 66:07:5d:73 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yLUDdQkMccdJzvIfcZtAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMGIwZGNiNmFkMGNhODE2ZDJiZDIwNGUxM2YxZWFmMTEw NDI3NGMwHhcNMjYwMTAxMTgxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTE3NjY5OTk4OGQyMGJhZjIyMDNlMGM2YTg2NDdmOWU4MGZkMGY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuajWx3y0USmTy0Ettk1oN6i6BLEd XBY4WSXiTN0T2QJlPvlGSlK9M9ibe4KM/lA6DOY+iBnSJ4I+Aj7LfRf7jzpTq89k IM+cAoXEzIp0uu8LI6Qt4Tx2Su3c4svmEyHz/8DgDqEPFbJP1psDI9OF83nZkUU/ n/mGQT5XlLpq62iyATSAse1LR+7tss2n4lS/IoVnbqCSuAXQ1qPrSRJqIlJ87VSS ltb8ahKYB0mNZ/fNdAUmstiqavUzHgL3yAz+o7JEI4P/JvL1bq/nFVr1LlaVlu9I +IxxA/f4UGp/vm+n8rP9pbyvSvE4nQ6+xznq0n4fg8GFiwZGPmTolp4N0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHEXZpmYjSC68iA+DGqGR/noD9D3MB8GA1UdIwQY MBaAFA4LDctq0MqBbSvSBOE/Hq8RBCdMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGdzTnkyclF5b0Z0SzlJRTRUOGVyeEVFSjB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9mMTlkMDYtYzdmYS00MGU1LWI4MTMt N2ZlMzk1MWE3MzViLzEvY1JkbW1aaU5JTHJ5SUQ0TWFvWkgtZWdQMFBjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9mMTlkMDYtYzdmYS00MGU1LWI4MTMtN2ZlMzk1MWE3MzVi LzEvRGdzTnkyclF5b0Z0SzlJRTRUOGVyeEVFSjB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuX8eMA0G CSqGSIb3DQEBCwUAA4IBAQB15UQif6C/1JaVXaxRuL5PJYZgDvGIDXNlKGDiHbZT LcieLTD8JZyHzr25eW5oK0ijpl0nL8pBM3+RIJ9D1fnZUKJpIf6diImpr532PYTw 823vNmvqRyeG6hNwWHM6e9Wp7jVrnyEvcBzRSR+xU5HKZxYWCkAm29HsI/eGq7Uf 9gS2lt9rWa/98Kk2ZrYnWLCzzjx3ixV1wtJLO9eigSaH/cOJLcak+nARzZc8ud/x 9oYbt1G0N98Wb3FBpsgxj1hpm88KoNyrs2v3itpIBelFUqNgmbz+ngrIkQdJ/Nay 1SPaiLZPJ0tVfztAJuMmvzjs27hj/Hq/pwcii/dmB11z -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:54 2026 by rpki-client