This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/c1HdnsaldKTIKaEky6ateQiz5kY.roa File: c1HdnsaldKTIKaEky6ateQiz5kY.roa (raw, json) Hash identifier: C5p2Kdt/yLKTGq1QeYyJYKudSwTzAauf7jP1eJuSAr8= Subject key identifier: 73:51:DD:9E:C6:A5:74:A4:C8:29:A1:24:CB:A6:AD:79:08:B3:E6:46 Certificate issuer: /CN=87b1396fd11c730ef20448129b282856ac504cb7 Certificate serial: 019B7C114351BD490A008650A569A940740F Authority key identifier: 87:B1:39:6F:D1:1C:73:0E:F2:04:48:12:9B:28:28:56:AC:50:4C:B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7E5b9Eccw7yBEgSmygoVqxQTLc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/c1HdnsaldKTIKaEky6ateQiz5kY.roa Signing time: Fri 02 Jan 2026 00:17:44 +0000 ROA not before: Fri 02 Jan 2026 00:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57043 IP address blocks: 192.109.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/h7E5b9Eccw7yBEgSmygoVqxQTLc.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/h7E5b9Eccw7yBEgSmygoVqxQTLc.mft rsync://rpki.ripe.net/repository/DEFAULT/h7E5b9Eccw7yBEgSmygoVqxQTLc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:43:51:bd:49:0a:00:86:50:a5:69:a9:40:74:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87b1396fd11c730ef20448129b282856ac504cb7 Validity Not Before: Jan 2 00:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7351dd9ec6a574a4c829a124cba6ad7908b3e646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:78:73:3b:60:b7:d3:01:57:2d:ad:2a:f7:0b: e3:aa:54:80:d1:f0:4c:88:2f:84:37:22:be:e3:37: 92:0f:4a:ee:65:28:c2:37:ae:b1:76:ec:c4:19:bf: 46:69:07:22:1c:62:da:42:58:61:2a:c3:e9:82:32: 36:21:b9:78:91:6c:80:01:4a:c8:9b:89:64:d1:97: bf:7a:02:02:55:bd:e4:e6:1e:bf:7a:e2:6d:a3:7d: 56:ba:dd:09:08:31:a1:c1:d2:82:f4:dc:44:00:e3: 1c:42:cd:68:75:ec:dc:4d:1a:76:9d:20:a0:79:dc: 25:19:c1:0e:94:07:a9:85:82:2f:6f:64:20:63:04: 01:09:a6:31:4e:f5:89:4f:37:f0:64:74:12:ad:b4: 58:e5:fa:f2:6b:3b:fb:44:ee:5e:9e:3d:bf:e2:68: 9e:3e:a9:a5:38:6d:c2:f2:c3:12:66:d1:cf:dd:ea: dd:31:15:64:33:35:6c:80:d4:26:3e:f6:51:f5:ec: 17:1e:65:be:66:25:cc:62:bf:5d:e6:97:f2:66:c9: 21:7e:4e:c3:25:a9:76:7c:15:da:0e:6e:d2:60:c9: 12:34:65:3e:e5:68:6f:c2:11:f4:f7:b1:d3:bd:07: 39:14:80:34:a2:01:af:3c:fb:0b:b5:aa:af:b1:fc: 6e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:51:DD:9E:C6:A5:74:A4:C8:29:A1:24:CB:A6:AD:79:08:B3:E6:46 X509v3 Authority Key Identifier: keyid:87:B1:39:6F:D1:1C:73:0E:F2:04:48:12:9B:28:28:56:AC:50:4C:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7E5b9Eccw7yBEgSmygoVqxQTLc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/c1HdnsaldKTIKaEky6ateQiz5kY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/38bc90-1d53-4d47-bbdb-f4e7c9cc43ff/1/h7E5b9Eccw7yBEgSmygoVqxQTLc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.109.206.0/24 Signature Algorithm: sha256WithRSAEncryption ca:2d:18:dd:a1:21:19:84:b2:7e:6a:fc:86:7d:dd:2c:e2:43: b0:30:0e:13:69:09:b3:93:0f:e4:bf:6b:f4:09:af:f4:98:32: 94:10:14:02:42:72:52:e9:96:41:99:21:7c:d9:b3:90:95:ea: 06:de:f5:b3:23:fc:2c:f0:64:a0:79:da:b1:ec:7c:34:b2:13: f7:8b:d4:4f:30:9e:df:57:0b:7b:d3:0d:b2:82:8d:e5:1d:03: 67:61:cd:71:7e:a7:25:f1:ee:e7:25:f9:64:c0:ab:ce:00:f4: 9c:b9:92:24:14:61:83:b5:e5:12:04:74:e1:15:69:aa:0c:7d: f3:d7:36:7d:0e:1e:e6:a4:99:97:12:da:38:47:ec:82:a0:df: c4:1c:de:96:47:b8:94:ae:7d:75:a4:ca:30:a7:47:67:9d:2a: 43:e4:cb:db:74:d0:5f:59:1c:50:24:7d:37:0f:c4:ee:ea:8b: 9c:7b:a9:b7:c0:ea:47:1c:ee:aa:11:d5:91:dd:d8:98:9d:51: 0a:51:47:21:1a:fe:5c:05:35:13:34:0c:a8:7f:a9:0a:ed:f8: 28:4f:01:dc:07:86:4c:a3:ba:21:87:b8:a9:6f:b3:43:0e:03: 08:7d:d5:2a:f5:58:7e:52:6b:f9:9c:5e:fd:72:81:7f:2b:37: 94:f0:23:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EUNRvUkKAIZQpWmpQHQPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3YjEzOTZmZDExYzczMGVmMjA0NDgxMjliMjgyODU2YWM1 MDRjYjcwHhcNMjYwMTAyMDAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzUxZGQ5ZWM2YTU3NGE0YzgyOWExMjRjYmE2YWQ3OTA4YjNlNjQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnhzO2C30wFXLa0q9wvjqlSA0fBM iC+ENyK+4zeSD0ruZSjCN66xduzEGb9GaQciHGLaQlhhKsPpgjI2Ibl4kWyAAUrI m4lk0Ze/egICVb3k5h6/euJto31Wut0JCDGhwdKC9NxEAOMcQs1odezcTRp2nSCg edwlGcEOlAephYIvb2QgYwQBCaYxTvWJTzfwZHQSrbRY5fryazv7RO5enj2/4mie PqmlOG3C8sMSZtHP3erdMRVkMzVsgNQmPvZR9ewXHmW+ZiXMYr9d5pfyZskhfk7D Jal2fBXaDm7SYMkSNGU+5WhvwhH097HTvQc5FIA0ogGvPPsLtaqvsfxuyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHNR3Z7GpXSkyCmhJMumrXkIs+ZGMB8GA1UdIwQY MBaAFIexOW/RHHMO8gRIEpsoKFasUEy3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDdFNWI5RWNjdzd5QkVnU215Z29WcXhRVExjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8zOGJjOTAtMWQ1My00ZDQ3LWJiZGIt ZjRlN2M5Y2M0M2ZmLzEvYzFIZG5zYWxkS1RJS2FFa3k2YXRlUWl6NWtZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC8zOGJjOTAtMWQ1My00ZDQ3LWJiZGItZjRlN2M5Y2M0M2Zm LzEvaDdFNWI5RWNjdzd5QkVnU215Z29WcXhRVExjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwG3OMA0G CSqGSIb3DQEBCwUAA4IBAQDKLRjdoSEZhLJ+avyGfd0s4kOwMA4TaQmzkw/kv2v0 Ca/0mDKUEBQCQnJS6ZZBmSF82bOQleoG3vWzI/ws8GSgedqx7Hw0shP3i9RPMJ7f Vwt70w2ygo3lHQNnYc1xfqcl8e7nJflkwKvOAPScuZIkFGGDteUSBHThFWmqDH3z 1zZ9Dh7mpJmXEto4R+yCoN/EHN6WR7iUrn11pMowp0dnnSpD5MvbdNBfWRxQJH03 D8Tu6ouce6m3wOpHHO6qEdWR3diYnVEKUUchGv5cBTUTNAyof6kK7fgoTwHcB4ZM o7ohh7ipb7NDDgMIfdUq9Vh+Umv5nF79coF/KzeU8CPH -----END CERTIFICATE-----Generated at Sun Jan 25 14:30:52 2026 by rpki-client