This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/1doWHsCdpiLZbH1TyuGCz4_uPuE.roa File: 1doWHsCdpiLZbH1TyuGCz4_uPuE.roa (raw, json) Hash identifier: 6hnbKIrxKZ8l259jd9ZN+QofadcjXx8mCyWOsRzZwg0= Subject key identifier: D5:DA:16:1E:C0:9D:A6:22:D9:6C:7D:53:CA:E1:82:CF:8F:EE:3E:E1 Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Certificate serial: 019B78A2190BEE0077BD0692FA5AA3AF6131 Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/1doWHsCdpiLZbH1TyuGCz4_uPuE.roa Signing time: Thu 01 Jan 2026 08:17:27 +0000 ROA not before: Thu 01 Jan 2026 08:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205227 IP address blocks: 2001:3183::/32 maxlen: 32 2a13:bfc0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.mft rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:19:0b:ee:00:77:bd:06:92:fa:5a:a3:af:61:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54 Validity Not Before: Jan 1 08:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d5da161ec09da622d96c7d53cae182cf8fee3ee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6a:f2:f3:7b:95:a4:84:e1:a1:f6:92:7e:ce: 74:d7:7e:f2:10:b4:02:e8:b1:f0:a2:2b:63:1d:bd: c2:9b:96:9c:42:8d:5b:33:86:ae:84:dc:b2:78:b7: ef:ee:f5:10:d1:43:eb:13:83:4a:d7:ab:8d:20:12: 0a:93:46:74:2f:74:b2:f2:9a:01:05:0e:4d:d5:f2: f4:b1:49:8a:8e:3f:4d:27:a1:1e:09:c5:26:c1:27: 92:58:06:46:5d:eb:2c:0d:b1:24:19:ac:88:00:0a: 98:4c:10:da:a2:c4:c9:81:ba:af:a8:c4:42:0a:42: 1f:cb:a6:3e:6e:27:8a:64:a7:12:c6:a1:91:e9:bb: e7:49:56:1e:60:56:7c:f8:ec:be:db:ae:12:2b:d2: 04:53:16:64:95:8d:b3:5c:3a:41:fb:c5:ae:81:a1: b4:38:06:56:ff:a5:b5:0f:02:90:50:98:8c:07:b2: ca:62:18:9a:a1:69:35:cf:af:f3:9e:c2:b1:95:af: 81:72:5d:84:57:d9:37:63:61:d6:9e:12:f9:09:49: e3:35:3e:bd:2e:d0:c1:76:53:b3:09:5c:ba:40:36: ca:d6:66:f2:ab:f1:64:03:9d:77:8e:2e:d8:f5:cd: 8d:5a:f8:51:9c:22:9f:eb:78:83:d5:96:77:f1:dd: 8d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:DA:16:1E:C0:9D:A6:22:D9:6C:7D:53:CA:E1:82:CF:8F:EE:3E:E1 X509v3 Authority Key Identifier: keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/1doWHsCdpiLZbH1TyuGCz4_uPuE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:3183::/32 2a13:bfc0::/29 Signature Algorithm: sha256WithRSAEncryption 49:63:9f:d6:c8:1e:f4:8e:9d:61:b0:54:5a:d2:1e:ef:42:07: 03:f5:6d:a2:95:76:16:d5:c4:c1:a0:a8:44:c9:b0:f9:d0:c8: b7:68:08:2a:7d:76:ee:c6:f0:c7:be:35:a7:41:66:2a:65:b3: 02:dc:28:6d:43:bd:7f:7d:12:da:29:fb:d4:13:99:b6:c2:e0: e6:ce:29:9e:42:7f:ec:60:d1:55:18:e2:a4:6e:54:51:7f:50: 3d:ff:cc:72:23:dd:3a:7c:32:4b:4a:cd:08:bb:52:60:ad:4f: 17:2a:76:97:3f:5c:11:74:20:9f:c2:bf:01:56:43:0b:1a:7f: bd:50:6d:33:fc:81:da:7d:83:f8:29:d8:d0:20:97:71:28:82: 35:73:16:2d:bd:bd:ed:18:27:bc:53:d9:bb:12:93:66:66:89: 31:92:42:60:96:03:7b:2e:9b:c7:44:60:7e:49:06:82:df:9e: bc:bc:9f:bb:48:1f:48:f0:d7:75:eb:48:09:e4:95:65:17:f6: 5e:fb:96:83:7e:ea:0a:05:ee:e1:a5:f9:1b:1e:ff:13:1e:cf: 76:36:7d:04:5b:d6:19:a3:87:1f:72:ec:9b:1c:af:f2:b2:2e: 30:52:ca:b0:95:22:21:6e:92:ba:7d:c8:3b:8a:75:ea:87:7e: 84:51:6c:de -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt4ohkL7gB3vQaS+lqjr2ExMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU2Yjk4ZjgzY2NiZGE3YzE5ZjAwNDE1MWM5OGI1N2M1OWQy NjhmNTQwHhcNMjYwMTAxMDgxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNWRhMTYxZWMwOWRhNjIyZDk2YzdkNTNjYWUxODJjZjhmZWUzZWUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWry83uVpIThofaSfs50137yELQC 6LHwoitjHb3Cm5acQo1bM4auhNyyeLfv7vUQ0UPrE4NK16uNIBIKk0Z0L3Sy8poB BQ5N1fL0sUmKjj9NJ6EeCcUmwSeSWAZGXessDbEkGayIAAqYTBDaosTJgbqvqMRC CkIfy6Y+bieKZKcSxqGR6bvnSVYeYFZ8+Oy+264SK9IEUxZklY2zXDpB+8WugaG0 OAZW/6W1DwKQUJiMB7LKYhiaoWk1z6/znsKxla+Bcl2EV9k3Y2HWnhL5CUnjNT69 LtDBdlOzCVy6QDbK1mbyq/FkA513ji7Y9c2NWvhRnCKf63iD1ZZ38d2NnQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFNXaFh7AnaYi2Wx9U8rhgs+P7j7hMB8GA1UdIwQY MBaAFFa5j4PMvafBnwBBUcmLV8WdJo9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2Yt N2FhN2ZjMzU5NjU1LzEvMWRvV0hzQ2RwaUxaYkgxVHl1R0N6NF91UHVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My84Y2I5MzUtNzFhMy00ZGIzLTlmM2YtN2FhN2ZjMzU5NjU1 LzEvVnJtUGc4eTlwOEdmQUVGUnlZdFh4WjBtajFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAIAExgwMF AyoTv8AwDQYJKoZIhvcNAQELBQADggEBAEljn9bIHvSOnWGwVFrSHu9CBwP1baKV dhbVxMGgqETJsPnQyLdoCCp9du7G8Me+NadBZiplswLcKG1DvX99Etop+9QTmbbC 4ObOKZ5Cf+xg0VUY4qRuVFF/UD3/zHIj3Tp8MktKzQi7UmCtTxcqdpc/XBF0IJ/C vwFWQwsaf71QbTP8gdp9g/gp2NAgl3EogjVzFi29ve0YJ7xT2bsSk2ZmiTGSQmCW A3sum8dEYH5JBoLfnry8n7tIH0jw13XrSAnklWUX9l77loN+6goF7uGl+Rse/xMe z3Y2fQRb1hmjhx9y7Jscr/KyLjBSyrCVIiFukrp9yDuKdeqHfoRRbN4= -----END CERTIFICATE-----Generated at Sun Jan 25 17:32:48 2026 by rpki-client