This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/idnfdrhgXtDVR1aINwgs1pF-5Z0.roa File: idnfdrhgXtDVR1aINwgs1pF-5Z0.roa (raw, json) Hash identifier: Zsu78wjZemkpbnYJp/D0qkjG+mU9xm9vmrGoqAJVwMY= Subject key identifier: 89:D9:DF:76:B8:60:5E:D0:D5:47:56:88:37:08:2C:D6:91:7E:E5:9D Certificate issuer: /CN=68c0f2d0776f7e1d349075881c35e9d387463405 Certificate serial: 019B7BA528EA9F4FB30DBC783F0B97568B49 Authority key identifier: 68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/idnfdrhgXtDVR1aINwgs1pF-5Z0.roa Signing time: Thu 01 Jan 2026 22:19:40 +0000 ROA not before: Thu 01 Jan 2026 22:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58192 IP address blocks: 194.0.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.mft rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:28:ea:9f:4f:b3:0d:bc:78:3f:0b:97:56:8b:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68c0f2d0776f7e1d349075881c35e9d387463405 Validity Not Before: Jan 1 22:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89d9df76b8605ed0d547568837082cd6917ee59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:43:ce:67:3d:1e:53:34:42:dd:83:8f:e1:8a: 52:18:00:b4:a7:58:30:11:c7:ea:34:df:8f:bb:da: 9f:c4:b2:c3:c4:26:ad:20:f8:17:e8:f3:09:b3:b2: 29:56:52:3c:e8:75:b4:a2:3f:07:99:d5:90:56:d9: db:dd:cd:66:e2:d1:f4:cf:e6:be:cd:fa:78:a2:4f: 1d:ba:a6:86:69:ee:23:7b:78:fc:f4:3a:76:2a:ef: 40:1a:d1:17:c3:ba:fc:d7:64:f5:c3:c2:8b:f9:25: 87:e0:a5:3c:70:5a:83:78:c7:d4:59:a3:4a:58:e9: 2d:a3:91:83:d2:94:2d:db:f3:45:18:57:81:3b:ce: 19:25:2d:43:5a:c0:1f:48:3f:dc:ae:65:98:20:69: 1a:6e:cc:a9:3e:f5:c1:04:5e:19:ba:96:83:da:d0: 0c:bb:c5:9e:31:87:7a:de:1a:0f:ec:ba:7c:24:66: b1:77:22:45:b0:bb:31:8a:77:f8:d4:5a:cd:1e:17: 26:5f:42:20:41:91:78:d2:b3:24:ef:e0:b8:2a:38: 6f:02:9b:bb:0b:56:57:96:66:3c:de:46:0a:53:a7: bd:44:c8:61:4a:19:10:2d:8d:4f:29:56:02:1d:0d: 47:4c:c8:95:08:2e:73:20:de:33:6b:dd:64:ee:c8: 91:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D9:DF:76:B8:60:5E:D0:D5:47:56:88:37:08:2C:D6:91:7E:E5:9D X509v3 Authority Key Identifier: keyid:68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/idnfdrhgXtDVR1aINwgs1pF-5Z0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.0.234.0/24 Signature Algorithm: sha256WithRSAEncryption 28:5e:6a:9d:65:8a:00:54:a3:5a:93:a1:75:2c:ef:8c:62:9f: 5b:02:b0:0b:24:97:ae:00:16:52:7d:7b:51:2e:d4:d3:08:ee: 5f:bb:c5:86:4a:52:8d:aa:7c:79:ce:a8:35:9f:6a:42:df:e4: db:22:b1:9c:74:35:70:2c:4e:32:46:8c:92:cb:d5:f0:98:1f: f3:f8:32:3f:f7:0d:16:2e:91:ae:80:2c:61:d0:38:80:ce:a6: 17:ff:b0:6a:74:73:d2:e6:d7:9a:fe:cd:f3:5e:eb:fd:4e:44: 7d:e9:62:08:f7:d3:19:4d:df:46:60:1a:c6:5b:c3:14:d2:57: 56:4b:be:63:22:92:15:eb:c9:60:61:a8:df:e0:b2:3d:6e:e8: 6a:8e:5e:cb:28:d6:bf:bd:17:77:ea:8c:39:4b:e9:6d:20:d1: d1:d8:76:e0:1d:b8:ba:f1:fb:11:3f:9f:82:14:b6:c5:07:19: 37:00:89:1c:a6:07:98:1b:36:74:6a:89:38:13:30:e4:65:61: 08:cb:be:58:0e:e7:72:90:42:ab:61:25:e8:c7:be:c5:62:d2: 2e:f4:db:9a:29:f4:58:23:fd:57:18:f4:67:9d:2b:27:ad:72: f6:2e:e2:06:c3:c6:39:b8:56:5b:43:a2:4e:90:31:3f:c8:9c: 16:bf:eb:cb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pSjqn0+zDbx4PwuXVotJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YzBmMmQwNzc2ZjdlMWQzNDkwNzU4ODFjMzVlOWQzODc0 NjM0MDUwHhcNMjYwMTAxMjIxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWQ5ZGY3NmI4NjA1ZWQwZDU0NzU2ODgzNzA4MmNkNjkxN2VlNTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUPOZz0eUzRC3YOP4YpSGAC0p1gw EcfqNN+Pu9qfxLLDxCatIPgX6PMJs7IpVlI86HW0oj8HmdWQVtnb3c1m4tH0z+a+ zfp4ok8duqaGae4je3j89Dp2Ku9AGtEXw7r812T1w8KL+SWH4KU8cFqDeMfUWaNK WOkto5GD0pQt2/NFGFeBO84ZJS1DWsAfSD/crmWYIGkabsypPvXBBF4ZupaD2tAM u8WeMYd63hoP7Lp8JGaxdyJFsLsxinf41FrNHhcmX0IgQZF40rMk7+C4KjhvApu7 C1ZXlmY83kYKU6e9RMhhShkQLY1PKVYCHQ1HTMiVCC5zIN4za91k7siRgQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFInZ33a4YF7Q1UdWiDcILNaRfuWdMB8GA1UdIwQY MBaAFGjA8tB3b34dNJB1iBw16dOHRjQFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYU1EeTBIZHZmaDAwa0hXSUhEWHAwNGRHTkFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS84NGVlZGMtYTJmNi00YTM5LWE5MTgt ZjlkOWMwM2Q0YjRjLzEvaWRuZmRyaGdYdERWUjFhSU53Z3MxcEYtNVowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS84NGVlZGMtYTJmNi00YTM5LWE5MTgtZjlkOWMwM2Q0YjRj LzEvYU1EeTBIZHZmaDAwa0hXSUhEWHAwNGRHTkFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgDqMA0G CSqGSIb3DQEBCwUAA4IBAQAoXmqdZYoAVKNak6F1LO+MYp9bArALJJeuABZSfXtR LtTTCO5fu8WGSlKNqnx5zqg1n2pC3+TbIrGcdDVwLE4yRoySy9XwmB/z+DI/9w0W LpGugCxh0DiAzqYX/7BqdHPS5tea/s3zXuv9TkR96WII99MZTd9GYBrGW8MU0ldW S75jIpIV68lgYajf4LI9buhqjl7LKNa/vRd36ow5S+ltINHR2HbgHbi68fsRP5+C FLbFBxk3AIkcpgeYGzZ0aok4EzDkZWEIy75YDudykEKrYSXox77FYtIu9NuaKfRY I/1XGPRnnSsnrXL2LuIGw8Y5uFZbQ6JOkDE/yJwWv+vL -----END CERTIFICATE-----Generated at Mon Jan 26 00:39:23 2026 by rpki-client