This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/rd1TYdEXPHhLUYvq912Q58Dh15E.roa File: rd1TYdEXPHhLUYvq912Q58Dh15E.roa (raw, json) Hash identifier: ged8RYg6t00YYbjATYOf0qeEgk1jUhkA3s1XP4KCL6s= Subject key identifier: AD:DD:53:61:D1:17:3C:78:4B:51:8B:EA:F7:5D:90:E7:C0:E1:D7:91 Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e Certificate serial: 019B7C80D42ED8D050D3C78573E7DF20DAED Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/rd1TYdEXPHhLUYvq912Q58Dh15E.roa Signing time: Fri 02 Jan 2026 02:19:36 +0000 ROA not before: Fri 02 Jan 2026 02:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62053 IP address blocks: 188.215.115.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.mft rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:d4:2e:d8:d0:50:d3:c7:85:73:e7:df:20:da:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e Validity Not Before: Jan 2 02:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=addd5361d1173c784b518beaf75d90e7c0e1d791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a0:d0:e0:cd:ea:90:42:a1:82:a8:1f:3f:01: 24:4f:31:eb:60:bf:be:9e:3d:67:1b:f2:64:cf:9e: 2b:b2:da:1e:ba:08:18:bb:db:b5:60:5f:62:11:55: c3:45:b0:d5:5c:98:de:35:5b:78:2c:cc:fb:e3:74: 83:d6:2a:4e:55:21:8c:eb:7f:d0:73:12:ca:a7:d7: e2:40:83:05:88:8a:a0:ab:f9:01:c1:75:67:c9:01: c6:48:6b:9b:0c:ac:fa:5c:3e:8d:72:c4:87:89:1d: 24:38:53:21:89:48:cd:11:8a:4f:63:e6:5a:bc:ec: 4e:5d:2e:92:39:6d:6a:c3:60:77:47:11:a0:ef:6f: 17:40:f2:be:18:21:2d:19:2f:57:ff:d4:9e:56:55: 89:3e:07:61:d9:46:6d:fb:7d:e0:94:57:da:d8:85: 5b:49:70:d5:56:ca:75:31:d2:46:b6:b5:63:b6:23: 8b:d4:20:f1:2d:72:86:04:1e:11:8e:ec:7e:15:2d: be:22:ef:f1:bc:9f:2b:d4:8e:1b:30:9c:30:3b:eb: b0:56:e2:c1:f9:df:e5:15:af:e8:4f:2e:0c:76:9b: b6:03:4d:2f:66:4e:64:db:ac:22:49:d3:8b:12:47: cf:5a:c1:da:75:14:e0:40:7b:f7:fe:aa:3f:c8:55: 08:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:DD:53:61:D1:17:3C:78:4B:51:8B:EA:F7:5D:90:E7:C0:E1:D7:91 X509v3 Authority Key Identifier: keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/rd1TYdEXPHhLUYvq912Q58Dh15E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.215.115.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:3f:27:3d:ae:54:dc:47:cf:19:1d:95:18:1b:82:fb:2f:c0: b2:a8:5d:7c:7f:d5:01:d3:16:27:e8:31:e4:95:94:fb:50:d4: 31:13:49:ef:08:32:c3:34:39:af:40:9a:b7:87:ff:65:dd:61: ad:d3:cd:46:8f:32:1c:c9:2f:7e:e4:c1:07:7e:49:27:cf:be: 59:51:82:a8:e2:0f:be:fa:84:32:b9:72:6d:70:ba:5d:2e:d7: f2:45:4e:87:2e:93:71:e7:5c:e4:0a:f8:05:6f:51:8a:39:04: 57:a0:70:40:6e:2b:c7:a3:b1:25:e7:77:ba:22:38:9e:70:b3: 86:dd:1d:b3:06:9f:bd:a5:bb:fe:86:ea:d5:50:9a:ca:c8:64: e0:50:b4:6a:8e:73:74:c4:b4:c9:7b:62:e9:bc:89:f9:b4:09: ff:9f:f9:49:3f:cb:ce:f4:58:a5:61:e6:52:c4:3c:6b:b7:6a: ae:d9:72:b4:5b:42:c2:84:b7:34:ff:f9:38:1a:f8:36:40:dd: 20:f5:72:f1:90:ec:01:a9:8b:f6:70:32:40:b0:df:f9:5b:a5: 52:fa:91:9c:d7:a1:d8:8e:16:25:15:63:46:b9:dd:59:81:4a: 19:dd:6c:e8:23:6f:5b:52:70:d0:41:8d:a5:1a:5d:be:f9:cb: 99:41:f3:17 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gNQu2NBQ08eFc+ffINrtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkNzBhZjFhOTk4ODZjOTEwMWQxMzVmNTRiZDJiZGVmMzU4 YjI2NmUwHhcNMjYwMTAyMDIxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZGRkNTM2MWQxMTczYzc4NGI1MThiZWFmNzVkOTBlN2MwZTFkNzkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaDQ4M3qkEKhgqgfPwEkTzHrYL++ nj1nG/Jkz54rstoeuggYu9u1YF9iEVXDRbDVXJjeNVt4LMz743SD1ipOVSGM63/Q cxLKp9fiQIMFiIqgq/kBwXVnyQHGSGubDKz6XD6NcsSHiR0kOFMhiUjNEYpPY+Za vOxOXS6SOW1qw2B3RxGg728XQPK+GCEtGS9X/9SeVlWJPgdh2UZt+33glFfa2IVb SXDVVsp1MdJGtrVjtiOL1CDxLXKGBB4Rjux+FS2+Iu/xvJ8r1I4bMJwwO+uwVuLB +d/lFa/oTy4Mdpu2A00vZk5k26wiSdOLEkfPWsHadRTgQHv3/qo/yFUIUQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK3dU2HRFzx4S1GL6vddkOfA4deRMB8GA1UdIwQY MBaAFE1wrxqZiGyRAdE19UvSve81iyZuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFhDdkdwbUliSkVCMFRYMVM5Szk3eldMSm00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hOThmYzctNzkzNS00ZWFlLTk2MmEt NDYxYWIwZWNlZTAxLzEvcmQxVFlkRVhQSGhMVVl2cTkxMlE1OERoMTVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi9hOThmYzctNzkzNS00ZWFlLTk2MmEtNDYxYWIwZWNlZTAx LzEvVFhDdkdwbUliSkVCMFRYMVM5Szk3eldMSm00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvNdzMA0G CSqGSIb3DQEBCwUAA4IBAQBKPyc9rlTcR88ZHZUYG4L7L8CyqF18f9UB0xYn6DHk lZT7UNQxE0nvCDLDNDmvQJq3h/9l3WGt081GjzIcyS9+5MEHfkknz75ZUYKo4g++ +oQyuXJtcLpdLtfyRU6HLpNx51zkCvgFb1GKOQRXoHBAbivHo7El53e6IjiecLOG 3R2zBp+9pbv+hurVUJrKyGTgULRqjnN0xLTJe2LpvIn5tAn/n/lJP8vO9FilYeZS xDxrt2qu2XK0W0LChLc0//k4Gvg2QN0g9XLxkOwBqYv2cDJAsN/5W6VS+pGc16HY jhYlFWNGud1ZgUoZ3WzoI29bUnDQQY2lGl2++cuZQfMX -----END CERTIFICATE-----Generated at Mon Jan 26 07:56:34 2026 by rpki-client