This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/03K81b7pfVVjypqVCITF7p4JxKM.roa File: 03K81b7pfVVjypqVCITF7p4JxKM.roa (raw, json) Hash identifier: PP40BChMOh4s2ABeNP+SORVGIO6bgC5+kty6waeJlqk= Subject key identifier: D3:72:BC:D5:BE:E9:7D:55:63:CA:9A:95:08:84:C5:EE:9E:09:C4:A3 Certificate issuer: /CN=121f13882dd06d098ec49a759101329b1f201f1d Certificate serial: 019B7DCAC5959DFD92BAA7538D601B1A8C28 Authority key identifier: 12:1F:13:88:2D:D0:6D:09:8E:C4:9A:75:91:01:32:9B:1F:20:1F:1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/03K81b7pfVVjypqVCITF7p4JxKM.roa Signing time: Fri 02 Jan 2026 08:19:59 +0000 ROA not before: Fri 02 Jan 2026 08:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2200 IP address blocks: 147.210.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/Eh8TiC3QbQmOxJp1kQEymx8gHx0.crl rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/Eh8TiC3QbQmOxJp1kQEymx8gHx0.mft rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 17:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:c5:95:9d:fd:92:ba:a7:53:8d:60:1b:1a:8c:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=121f13882dd06d098ec49a759101329b1f201f1d Validity Not Before: Jan 2 08:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d372bcd5bee97d5563ca9a950884c5ee9e09c4a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:50:f8:af:4d:90:c5:9e:8c:4a:dd:fd:34:35: d9:c4:6f:96:1a:a1:ae:d2:e1:e5:cb:f8:b7:11:5b: 49:7d:ee:29:12:86:87:a4:00:a0:5d:11:0c:9e:bc: 51:05:c7:a8:f7:44:f1:2a:22:1a:49:d3:02:b5:c1: ea:02:93:24:8f:54:65:7a:a7:e2:e1:d2:b0:27:04: d5:df:61:2d:df:fc:fc:73:99:4b:f2:5a:aa:f7:b3: cb:8e:e1:fb:d4:9f:18:87:f9:b4:9b:c1:a6:10:6c: 4a:3d:11:12:bd:43:35:c0:62:85:f5:5e:e3:59:1d: 8b:50:7f:d6:f5:9f:ec:cb:c9:c7:33:bf:95:6b:86: 3f:af:da:52:72:88:69:9b:0c:ef:bb:55:f2:ef:b2: 50:f7:d2:4d:86:04:e2:97:bd:46:83:42:d5:71:09: f6:16:0d:85:42:fd:22:fd:c7:90:fe:79:a9:7d:23: 70:3e:ec:67:9b:ba:ef:7b:c8:fe:cd:73:62:1b:3c: 92:fe:02:cf:62:58:ac:c6:1d:43:35:52:ad:74:10: aa:00:86:7d:f6:f9:43:f9:f1:c7:ca:c2:fb:42:8b: ab:65:22:1d:97:d6:25:5e:a9:5e:85:7b:36:81:82: 0a:d8:be:56:06:ee:3b:a6:b0:cc:ca:52:10:24:1a: ab:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:72:BC:D5:BE:E9:7D:55:63:CA:9A:95:08:84:C5:EE:9E:09:C4:A3 X509v3 Authority Key Identifier: keyid:12:1F:13:88:2D:D0:6D:09:8E:C4:9A:75:91:01:32:9B:1F:20:1F:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Eh8TiC3QbQmOxJp1kQEymx8gHx0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/03K81b7pfVVjypqVCITF7p4JxKM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/35df0a-8af6-4ff0-b345-0d27767374ec/1/Eh8TiC3QbQmOxJp1kQEymx8gHx0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.210.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:8c:71:26:4f:d5:a8:29:45:5b:a1:a2:a3:cd:f3:12:c5:cd: 96:70:56:74:f6:d0:3f:01:26:27:78:9e:59:16:24:11:a4:d2: 9d:93:15:46:5d:22:e0:2a:ed:60:18:7f:61:3f:ea:f1:d2:91: ae:4e:0a:81:45:a0:69:91:cd:b2:08:88:1c:70:94:ae:25:be: 2a:4e:1a:5d:de:32:82:4e:09:6c:6f:82:55:b1:9a:36:aa:f6: 76:49:2a:eb:e1:0f:60:f8:e9:65:e7:ad:ea:ec:97:c1:4e:a3: 68:52:6c:f3:fe:b9:7d:8e:4c:27:e5:1f:bf:9c:97:7d:37:44: 60:b6:ea:3f:b5:7d:22:7a:28:23:46:0a:92:d7:43:5e:27:44: 89:96:ed:c0:c5:02:e9:0c:5a:10:1a:ad:64:25:0b:c9:c9:67: ab:57:b2:ad:8e:1c:a6:08:10:be:94:47:f2:5c:8e:2e:5c:9e: f5:5a:fd:ac:a2:fa:88:e1:7c:41:eb:5c:99:ae:1a:e4:5c:50: 1d:2e:bf:5c:8a:0c:05:9a:24:05:70:bc:b3:b9:ae:97:21:c0: dd:85:be:25:ad:ae:eb:cd:2c:78:e3:91:80:3c:4f:4a:82:a0: 94:e0:8a:56:ce:10:a4:2e:4a:ed:ad:c9:bf:ec:9d:5d:f9:b4: 88:b9:9b:93 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt9ysWVnf2SuqdTjWAbGowoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEyMWYxMzg4MmRkMDZkMDk4ZWM0OWE3NTkxMDEzMjliMWYy MDFmMWQwHhcNMjYwMTAyMDgxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzcyYmNkNWJlZTk3ZDU1NjNjYTlhOTUwODg0YzVlZTllMDljNGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0VD4r02QxZ6MSt39NDXZxG+WGqGu 0uHly/i3EVtJfe4pEoaHpACgXREMnrxRBceo90TxKiIaSdMCtcHqApMkj1Rleqfi 4dKwJwTV32Et3/z8c5lL8lqq97PLjuH71J8Yh/m0m8GmEGxKPRESvUM1wGKF9V7j WR2LUH/W9Z/sy8nHM7+Va4Y/r9pScohpmwzvu1Xy77JQ99JNhgTil71Gg0LVcQn2 Fg2FQv0i/ceQ/nmpfSNwPuxnm7rve8j+zXNiGzyS/gLPYlisxh1DNVKtdBCqAIZ9 9vlD+fHHysL7QourZSIdl9YlXqlehXs2gYIK2L5WBu47prDMylIQJBqrWQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFNNyvNW+6X1VY8qalQiExe6eCcSjMB8GA1UdIwQY MBaAFBIfE4gt0G0JjsSadZEBMpsfIB8dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRWg4VGlDM1FiUW1PeEpwMWtRRXlteDhnSHgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8zNWRmMGEtOGFmNi00ZmYwLWIzNDUt MGQyNzc2NzM3NGVjLzEvMDNLODFiN3BmVlZqeXBxVkNJVEY3cDRKeEtNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi8zNWRmMGEtOGFmNi00ZmYwLWIzNDUtMGQyNzc2NzM3NGVj LzEvRWg4VGlDM1FiUW1PeEpwMWtRRXlteDhnSHgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAk9IwDQYJ KoZIhvcNAQELBQADggEBAIiMcSZP1agpRVuhoqPN8xLFzZZwVnT20D8BJid4nlkW JBGk0p2TFUZdIuAq7WAYf2E/6vHSka5OCoFFoGmRzbIIiBxwlK4lvipOGl3eMoJO CWxvglWxmjaq9nZJKuvhD2D46WXnrersl8FOo2hSbPP+uX2OTCflH7+cl303RGC2 6j+1fSJ6KCNGCpLXQ14nRImW7cDFAukMWhAarWQlC8nJZ6tXsq2OHKYIEL6UR/Jc ji5cnvVa/ayi+ojhfEHrXJmuGuRcUB0uv1yKDAWaJAVwvLO5rpchwN2FviWtruvN LHjjkYA8T0qCoJTgilbOEKQuSu2tyb/snV35tIi5m5M= -----END CERTIFICATE-----Generated at Sun Jan 11 23:47:28 2026 by rpki-client