This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/835a82-8bbe-40b2-b2d4-0481c66c2b5a/1/idDaY1VTvrLRkWidrdXliwIuIzI.roa File: idDaY1VTvrLRkWidrdXliwIuIzI.roa (raw, json) Hash identifier: EWX8rnTiEBVz0Xovhy0D3aDV6ClMyz5OVPYjQXf/BgY= Subject key identifier: 89:D0:DA:63:55:53:BE:B2:D1:91:68:9D:AD:D5:E5:8B:02:2E:23:32 Certificate issuer: /CN=c1cd870d60a1a6c42067158aeebcc0e3fd6dd81f Certificate serial: 019B7C1255DE1D1AC162E2CFC069618E30D1 Authority key identifier: C1:CD:87:0D:60:A1:A6:C4:20:67:15:8A:EE:BC:C0:E3:FD:6D:D8:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wc2HDWChpsQgZxWK7rzA4_1t2B8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/835a82-8bbe-40b2-b2d4-0481c66c2b5a/1/idDaY1VTvrLRkWidrdXliwIuIzI.roa Signing time: Fri 02 Jan 2026 00:18:55 +0000 ROA not before: Fri 02 Jan 2026 00:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2116 IP address blocks: 193.161.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/835a82-8bbe-40b2-b2d4-0481c66c2b5a/1/wc2HDWChpsQgZxWK7rzA4_1t2B8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/835a82-8bbe-40b2-b2d4-0481c66c2b5a/1/wc2HDWChpsQgZxWK7rzA4_1t2B8.mft rsync://rpki.ripe.net/repository/DEFAULT/wc2HDWChpsQgZxWK7rzA4_1t2B8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:55:de:1d:1a:c1:62:e2:cf:c0:69:61:8e:30:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c1cd870d60a1a6c42067158aeebcc0e3fd6dd81f Validity Not Before: Jan 2 00:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89d0da635553beb2d191689dadd5e58b022e2332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bd:88:bd:29:c0:4a:8c:9f:42:7f:27:2c:0c: 38:37:e4:59:df:6f:90:4d:5f:bf:ef:6a:1c:55:22: d6:69:21:5d:2f:92:50:fb:3e:68:83:4f:df:6e:5d: 18:a2:3e:2f:12:e6:4e:da:e9:ab:1b:0d:1a:19:13: 77:8c:8f:48:1d:7a:11:f3:14:70:dd:09:da:2d:a9: b3:61:35:e3:c8:c4:7f:c1:d6:f0:fe:fa:4a:23:22: f7:d1:e0:f6:6e:dc:28:b2:51:84:c4:6f:2e:9c:cc: 5f:f6:5a:1a:33:e2:ec:8b:8a:6e:b6:2f:ba:f8:f7: e5:f3:7c:09:ef:da:de:29:01:96:0c:45:e3:0a:e7: fc:85:be:75:1f:df:8b:34:16:33:82:df:55:f5:81: 83:d6:70:d5:25:f7:10:1b:98:f4:c0:e9:cb:2f:9d: 89:ab:68:5f:68:99:0e:ed:17:1d:46:d9:db:41:77: 64:11:5a:a5:b7:10:1c:50:80:03:f4:22:a7:a4:3b: 39:f2:99:11:70:c9:a8:61:fa:46:81:0c:7f:d9:14: 39:53:c5:e0:cb:b7:2a:80:21:55:be:fe:22:0f:8e: 76:03:20:75:0e:46:d0:d5:ce:36:7a:ab:27:3b:ed: fc:47:e0:28:77:b5:f0:f4:84:78:23:c2:53:ce:50: 2e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D0:DA:63:55:53:BE:B2:D1:91:68:9D:AD:D5:E5:8B:02:2E:23:32 X509v3 Authority Key Identifier: keyid:C1:CD:87:0D:60:A1:A6:C4:20:67:15:8A:EE:BC:C0:E3:FD:6D:D8:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wc2HDWChpsQgZxWK7rzA4_1t2B8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/835a82-8bbe-40b2-b2d4-0481c66c2b5a/1/idDaY1VTvrLRkWidrdXliwIuIzI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/835a82-8bbe-40b2-b2d4-0481c66c2b5a/1/wc2HDWChpsQgZxWK7rzA4_1t2B8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.161.16.0/21 Signature Algorithm: sha256WithRSAEncryption 60:b5:cf:45:98:a4:24:d7:be:09:31:17:18:99:7e:f1:f8:a7: b3:f2:67:b4:14:c7:f4:62:56:36:5f:3e:c2:fc:33:79:04:b9: c7:72:ae:1f:63:21:85:02:8c:23:b2:4e:e6:27:09:58:e2:32: 06:3b:52:34:8c:50:d9:4b:f5:dc:6a:53:91:31:93:ff:54:c5: 97:84:e7:8e:7b:88:02:53:f8:09:52:1e:70:45:72:85:34:78: be:9f:fa:2b:fb:92:13:40:e9:db:f7:eb:c6:01:19:6c:d3:fb: 3e:18:20:76:0d:1a:e3:c0:41:92:80:57:c7:c3:fd:7b:77:19: 8d:d3:ae:71:de:21:ab:17:ae:92:4a:84:26:01:3b:7f:55:79: ce:19:21:89:9b:30:13:69:99:86:53:8e:5d:0d:44:71:fa:f8: f7:0a:f7:2f:a9:70:d8:9d:57:91:11:44:1f:46:74:0b:f1:fb: a9:d8:00:f8:92:db:87:a0:26:29:8d:48:ea:71:87:97:af:46: 54:f5:94:03:20:09:86:6b:02:7c:59:43:b7:b9:33:64:85:6f: d3:94:00:07:56:76:54:8f:6f:b9:5e:1f:28:73:5c:35:37:70: c1:bf:8e:bd:af:ad:ba:e7:99:c5:00:c3:5e:8d:b7:3f:32:0e: 88:87:75:f6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8ElXeHRrBYuLPwGlhjjDRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxY2Q4NzBkNjBhMWE2YzQyMDY3MTU4YWVlYmNjMGUzZmQ2 ZGQ4MWYwHhcNMjYwMTAyMDAxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWQwZGE2MzU1NTNiZWIyZDE5MTY4OWRhZGQ1ZTU4YjAyMmUyMzMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuL2IvSnASoyfQn8nLAw4N+RZ32+Q TV+/72ocVSLWaSFdL5JQ+z5og0/fbl0Yoj4vEuZO2umrGw0aGRN3jI9IHXoR8xRw 3QnaLamzYTXjyMR/wdbw/vpKIyL30eD2btwoslGExG8unMxf9loaM+Lsi4puti+6 +Pfl83wJ79reKQGWDEXjCuf8hb51H9+LNBYzgt9V9YGD1nDVJfcQG5j0wOnLL52J q2hfaJkO7RcdRtnbQXdkEVqltxAcUIAD9CKnpDs58pkRcMmoYfpGgQx/2RQ5U8Xg y7cqgCFVvv4iD452AyB1DkbQ1c42eqsnO+38R+Aod7Xw9IR4I8JTzlAuYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFInQ2mNVU76y0ZFona3V5YsCLiMyMB8GA1UdIwQY MBaAFMHNhw1goabEIGcViu68wOP9bdgfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2MySERXQ2hwc1FnWnhXSzdyekE0XzF0MkI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy84MzVhODItOGJiZS00MGIyLWIyZDQt MDQ4MWM2NmMyYjVhLzEvaWREYVkxVlR2ckxSa1dpZHJkWGxpd0l1SXpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy84MzVhODItOGJiZS00MGIyLWIyZDQtMDQ4MWM2NmMyYjVh LzEvd2MySERXQ2hwc1FnWnhXSzdyekE0XzF0MkI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDwaEQMA0G CSqGSIb3DQEBCwUAA4IBAQBgtc9FmKQk174JMRcYmX7x+Kez8me0FMf0YlY2Xz7C /DN5BLnHcq4fYyGFAowjsk7mJwlY4jIGO1I0jFDZS/XcalORMZP/VMWXhOeOe4gC U/gJUh5wRXKFNHi+n/or+5ITQOnb9+vGARls0/s+GCB2DRrjwEGSgFfHw/17dxmN 065x3iGrF66SSoQmATt/VXnOGSGJmzATaZmGU45dDURx+vj3CvcvqXDYnVeREUQf RnQL8fup2AD4ktuHoCYpjUjqcYeXr0ZU9ZQDIAmGawJ8WUO3uTNkhW/TlAAHVnZU j2+5Xh8oc1w1N3DBv469r62655nFAMNejbc/Mg6Ih3X2 -----END CERTIFICATE-----Generated at Mon Jan 26 05:48:59 2026 by rpki-client