This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/72e91a-014f-483a-a544-4e33427f734e/1/1--MCc3gpVBQtwbB9avYkUxDFIvM.roa File: 1--MCc3gpVBQtwbB9avYkUxDFIvM.roa (raw, json) Hash identifier: wb75GUC4q+RfY4Cw2WuF/jF6L+kLxsSKpYw9015kCjQ= Subject key identifier: FB:E3:02:73:78:29:54:14:2D:C1:B0:7D:6A:F6:24:53:10:C5:22:F3 Certificate issuer: /CN=0eb1bd30d3191a87c7d0a462e67932431633dd1e Certificate serial: 019B7C13219CFE25CE966B637910E17CCF97 Authority key identifier: 0E:B1:BD:30:D3:19:1A:87:C7:D0:A4:62:E6:79:32:43:16:33:DD:1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DrG9MNMZGofH0KRi5nkyQxYz3R4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/72e91a-014f-483a-a544-4e33427f734e/1/1--MCc3gpVBQtwbB9avYkUxDFIvM.roa Signing time: Fri 02 Jan 2026 00:19:47 +0000 ROA not before: Fri 02 Jan 2026 00:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31027 IP address blocks: 171.25.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/72e91a-014f-483a-a544-4e33427f734e/1/DrG9MNMZGofH0KRi5nkyQxYz3R4.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/72e91a-014f-483a-a544-4e33427f734e/1/DrG9MNMZGofH0KRi5nkyQxYz3R4.mft rsync://rpki.ripe.net/repository/DEFAULT/DrG9MNMZGofH0KRi5nkyQxYz3R4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:21:9c:fe:25:ce:96:6b:63:79:10:e1:7c:cf:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0eb1bd30d3191a87c7d0a462e67932431633dd1e Validity Not Before: Jan 2 00:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fbe30273782954142dc1b07d6af6245310c522f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b5:fe:af:c6:f8:66:1c:4d:72:ae:13:ff:29: a9:62:f1:df:78:a7:30:63:12:29:51:8e:04:4b:5d: 51:62:1f:d8:98:da:0b:d5:e9:a1:d7:6e:5f:72:d4: ef:d4:60:5f:61:43:b8:be:66:2c:b2:73:fe:fd:c1: 36:47:99:18:7f:91:32:f5:7b:63:5f:5c:e3:30:83: d4:4f:b7:9c:c2:95:a3:5f:93:f8:24:c2:4b:88:f3: 07:c9:f0:2a:a1:f3:0e:78:ee:02:01:7e:1a:5b:7c: ab:67:f8:34:15:d5:a5:5d:d2:37:f9:86:94:f5:77: 07:7d:0e:6a:b6:d6:3b:a0:98:f7:3c:10:91:d9:35: 5c:bf:f0:70:9e:32:4c:9b:d6:64:41:f8:99:50:b3: ef:e1:33:11:8b:b9:a0:1f:2b:ba:66:1b:4c:57:86: fe:d8:26:ff:cc:48:fb:f6:60:82:c6:80:2e:52:f8: f0:99:c3:af:59:67:2f:bd:b9:22:6a:77:1f:7a:1d: 80:17:79:da:4d:ac:b6:ed:70:2a:c5:a1:0f:de:6e: 97:f6:e7:6c:e6:73:07:5f:d3:2b:bd:29:d7:dc:ac: c1:59:06:e7:bc:96:a5:3d:a8:06:2a:ec:c9:1f:a5: 2b:bf:43:78:da:88:7e:60:2d:ff:dd:94:38:31:cf: a6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E3:02:73:78:29:54:14:2D:C1:B0:7D:6A:F6:24:53:10:C5:22:F3 X509v3 Authority Key Identifier: keyid:0E:B1:BD:30:D3:19:1A:87:C7:D0:A4:62:E6:79:32:43:16:33:DD:1E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DrG9MNMZGofH0KRi5nkyQxYz3R4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/72e91a-014f-483a-a544-4e33427f734e/1/1--MCc3gpVBQtwbB9avYkUxDFIvM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/72e91a-014f-483a-a544-4e33427f734e/1/DrG9MNMZGofH0KRi5nkyQxYz3R4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 171.25.228.0/24 Signature Algorithm: sha256WithRSAEncryption 10:e1:15:b9:76:a8:c2:87:6c:83:ff:bd:29:41:47:8c:c3:69: 6f:98:42:16:3f:5a:e8:dd:34:b7:50:9f:ac:11:dc:1d:e8:a5: 8b:e5:ce:cb:77:46:3f:5f:ce:ce:e4:15:3b:07:28:27:03:d9: 58:4b:b8:0c:7c:69:bc:09:ae:60:ff:1e:db:5d:08:bc:06:e4: b0:a3:d6:1a:9c:d5:48:d8:fd:b7:83:dc:5e:27:bb:ff:d4:c0: eb:c7:a2:91:65:f9:2a:01:a9:cd:9b:0d:67:e0:3e:5a:a1:da: 71:00:78:73:2e:75:4b:ab:eb:21:3a:4a:4b:07:a5:f2:df:dc: c9:78:d7:75:f9:e5:8e:41:f7:c5:4a:b2:2f:99:c6:23:06:5f: 22:00:da:43:89:92:cc:9a:b8:06:05:98:53:67:9b:9a:cc:f8: 42:91:55:d5:06:17:fb:f8:e1:ed:e2:2e:20:8b:01:07:ab:97: f4:15:4d:90:2c:2d:30:03:6f:26:ec:fb:10:6e:11:16:a6:d6: 30:74:e1:97:4b:fd:3f:99:11:8a:1f:cc:a0:54:8f:ae:11:55: ed:90:11:ef:28:f9:5c:bb:4b:30:03:eb:48:c8:30:c7:b6:9c: f3:2f:fb:6c:52:ce:14:09:f3:48:13:73:6c:a7:cf:15:1c:22: fd:86:f6:98 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt8EyGc/iXOlmtjeRDhfM+XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlYjFiZDMwZDMxOTFhODdjN2QwYTQ2MmU2NzkzMjQzMTYz M2RkMWUwHhcNMjYwMTAyMDAxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYmUzMDI3Mzc4Mjk1NDE0MmRjMWIwN2Q2YWY2MjQ1MzEwYzUyMmYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4bX+r8b4ZhxNcq4T/ympYvHfeKcw YxIpUY4ES11RYh/YmNoL1emh125fctTv1GBfYUO4vmYssnP+/cE2R5kYf5Ey9Xtj X1zjMIPUT7ecwpWjX5P4JMJLiPMHyfAqofMOeO4CAX4aW3yrZ/g0FdWlXdI3+YaU 9XcHfQ5qttY7oJj3PBCR2TVcv/BwnjJMm9ZkQfiZULPv4TMRi7mgHyu6ZhtMV4b+ 2Cb/zEj79mCCxoAuUvjwmcOvWWcvvbkiancfeh2AF3naTay27XAqxaEP3m6X9uds 5nMHX9MrvSnX3KzBWQbnvJalPagGKuzJH6Urv0N42oh+YC3/3ZQ4Mc+m+wIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPvjAnN4KVQULcGwfWr2JFMQxSLzMB8GA1UdIwQY MBaAFA6xvTDTGRqHx9CkYuZ5MkMWM90eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHJHOU1OTVpHb2ZIMEtSaTVua3lReFl6M1I0LmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy83MmU5MWEtMDE0Zi00ODNhLWE1NDQt NGUzMzQyN2Y3MzRlLzEvMS0tTUNjM2dwVkJRdHdiQjlhdllrVXhERkl2TS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZGMvNzJlOTFhLTAxNGYtNDgzYS1hNTQ0LTRlMzM0MjdmNzM0 ZS8xL0RyRzlNTk1aR29mSDBLUmk1bmt5UXhZejNSNC5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKsZ5DAN BgkqhkiG9w0BAQsFAAOCAQEAEOEVuXaowodsg/+9KUFHjMNpb5hCFj9a6N00t1Cf rBHcHeili+XOy3dGP1/OzuQVOwcoJwPZWEu4DHxpvAmuYP8e210IvAbksKPWGpzV SNj9t4PcXie7/9TA68eikWX5KgGpzZsNZ+A+WqHacQB4cy51S6vrITpKSwel8t/c yXjXdfnljkH3xUqyL5nGIwZfIgDaQ4mSzJq4BgWYU2ebmsz4QpFV1QYX+/jh7eIu IIsBB6uX9BVNkCwtMANvJuz7EG4RFqbWMHThl0v9P5kRih/MoFSPrhFV7ZAR7yj5 XLtLMAPrSMgwx7ac8y/7bFLOFAnzSBNzbKfPFRwi/Yb2mA== -----END CERTIFICATE-----Generated at Mon Jan 26 00:24:37 2026 by rpki-client