This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/DKvJ6_ZwABtUURH8Yt7PlE4obQM.roa File: DKvJ6_ZwABtUURH8Yt7PlE4obQM.roa (raw, json) Hash identifier: SQ12RZHo5ponPOG8yDFnr8G4GatSHfSXuoY1WTcSZb4= Subject key identifier: 0C:AB:C9:EB:F6:70:00:1B:54:51:11:FC:62:DE:CF:94:4E:28:6D:03 Certificate issuer: /CN=dbd7fc50548287deaea7ce92099e47a04a70d451 Certificate serial: 019B7F15C1189699021FF943BB4C03F3F0BC Authority key identifier: DB:D7:FC:50:54:82:87:DE:AE:A7:CE:92:09:9E:47:A0:4A:70:D4:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/DKvJ6_ZwABtUURH8Yt7PlE4obQM.roa Signing time: Fri 02 Jan 2026 14:21:30 +0000 ROA not before: Fri 02 Jan 2026 14:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.73.224.0/24 maxlen: 24 2a10:f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.mft rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 20:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c1:18:96:99:02:1f:f9:43:bb:4c:03:f3:f0:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbd7fc50548287deaea7ce92099e47a04a70d451 Validity Not Before: Jan 2 14:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0cabc9ebf670001b545111fc62decf944e286d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:bd:b5:a9:18:01:5a:34:88:0e:08:f8:52:30: a3:2f:a6:38:fd:58:58:b2:e5:65:c2:b5:41:8b:c1: 7a:b9:ee:41:db:b9:bf:3b:cf:1a:4e:80:08:c1:1e: ba:32:b0:16:9e:cf:a9:57:e0:0e:c4:32:5b:77:e3: 7d:c9:76:75:56:5d:ae:49:ba:c2:23:d3:7e:13:f1: b3:a8:93:63:8c:78:b4:65:18:74:5c:da:f3:56:ad: 5a:eb:1b:24:a5:c0:8c:20:ea:f8:59:a8:ad:a2:f2: e2:84:25:ea:5e:a0:74:fc:18:6c:59:27:ac:58:aa: d8:0d:18:0c:1a:42:72:26:8d:8e:39:f4:d7:c2:65: c1:60:54:24:4b:ff:ba:11:53:d1:49:78:21:f1:5d: 69:d1:db:8a:09:5e:03:60:0b:9c:67:3d:5a:bd:35: a1:5a:9d:cb:3c:ea:75:c1:dd:48:f5:5e:5a:64:1c: 79:0a:29:5a:e5:74:27:b7:84:e0:0f:31:4e:3a:f2: ea:54:20:b3:f6:c0:3d:df:62:d9:1e:09:4f:7a:d2: fd:49:f4:31:d6:c1:22:d5:22:f3:a6:9c:cb:9c:19: c0:d2:5b:f5:bc:ae:4a:35:70:8b:86:0c:79:6b:c0: e9:15:e6:b0:7b:11:6f:30:f6:0b:d8:94:8b:51:02: 09:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:AB:C9:EB:F6:70:00:1B:54:51:11:FC:62:DE:CF:94:4E:28:6D:03 X509v3 Authority Key Identifier: keyid:DB:D7:FC:50:54:82:87:DE:AE:A7:CE:92:09:9E:47:A0:4A:70:D4:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/DKvJ6_ZwABtUURH8Yt7PlE4obQM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.73.224.0/24 IPv6: 2a10:f80::/32 Signature Algorithm: sha256WithRSAEncryption 38:d0:12:34:9d:5f:58:bf:55:41:6a:6c:b2:91:37:bd:90:92: da:6e:cc:2e:ad:85:af:df:6b:6f:b3:ff:dd:27:f0:25:db:ba: e5:0d:2e:4e:bf:eb:7e:f6:ef:55:18:87:cc:61:62:d3:61:96: 36:f4:ae:bd:85:b6:f9:3d:78:b1:57:f6:c0:8d:b0:d0:6c:2f: f9:00:48:8e:d4:46:f5:fe:81:26:a5:2a:0c:38:ad:85:22:21: 35:08:e0:58:ca:b3:81:16:6b:4c:56:29:0c:4a:79:a2:f0:a9: 07:96:0c:ac:1a:19:fc:66:f8:1d:5d:d7:b8:ce:f1:93:e4:a4: 07:68:d2:e3:f0:26:a3:c7:3c:58:9b:4c:82:1a:e8:9f:21:89: 36:86:b0:30:14:b0:31:8e:12:52:c2:8c:57:c7:7a:db:f2:66: b6:f4:f6:8d:64:e2:84:07:d3:50:c7:dc:96:bd:be:96:78:be: d8:e3:73:a8:78:6e:88:e9:86:5a:61:ed:79:15:3e:98:10:73: d3:00:16:e3:6c:66:e9:43:76:51:f1:2c:c6:b0:3b:ef:02:f7: 46:74:de:56:31:96:0a:bb:4a:da:9a:ef:4d:8f:53:05:25:94: 60:bd:64:31:7c:b8:01:f1:12:6d:d1:d2:f3:60:1e:f8:a7:db: 1f:ac:4c:9a -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FcEYlpkCH/lDu0wD8/C8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZDdmYzUwNTQ4Mjg3ZGVhZWE3Y2U5MjA5OWU0N2EwNGE3 MGQ0NTEwHhcNMjYwMTAyMTQyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwY2FiYzllYmY2NzAwMDFiNTQ1MTExZmM2MmRlY2Y5NDRlMjg2ZDAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoL21qRgBWjSIDgj4UjCjL6Y4/VhY suVlwrVBi8F6ue5B27m/O88aToAIwR66MrAWns+pV+AOxDJbd+N9yXZ1Vl2uSbrC I9N+E/GzqJNjjHi0ZRh0XNrzVq1a6xskpcCMIOr4WaitovLihCXqXqB0/BhsWSes WKrYDRgMGkJyJo2OOfTXwmXBYFQkS/+6EVPRSXgh8V1p0duKCV4DYAucZz1avTWh Wp3LPOp1wd1I9V5aZBx5Cila5XQnt4TgDzFOOvLqVCCz9sA932LZHglPetL9SfQx 1sEi1SLzppzLnBnA0lv1vK5KNXCLhgx5a8DpFeawexFvMPYL2JSLUQIJkwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAyryev2cAAbVFER/GLez5ROKG0DMB8GA1UdIwQY MBaAFNvX/FBUgoferqfOkgmeR6BKcNRRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjlmOFVGU0NoOTZ1cDg2U0NaNUhvRXB3MUZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS82MDZlYTktNDgzNC00YjYzLTllMGEt ZjI1NjA0YzRiZTgyLzEvREt2SjZfWndBQnRVVVJIOFl0N1BsRTRvYlFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS82MDZlYTktNDgzNC00YjYzLTllMGEtZjI1NjA0YzRiZTgy LzEvMjlmOFVGU0NoOTZ1cDg2U0NaNUhvRXB3MUZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuUngMA0E AgACMAcDBQAqEA+AMA0GCSqGSIb3DQEBCwUAA4IBAQA40BI0nV9Yv1VBamyykTe9 kJLabswurYWv32tvs//dJ/Al27rlDS5Ov+t+9u9VGIfMYWLTYZY29K69hbb5PXix V/bAjbDQbC/5AEiO1Eb1/oEmpSoMOK2FIiE1COBYyrOBFmtMVikMSnmi8KkHlgys Ghn8ZvgdXde4zvGT5KQHaNLj8CajxzxYm0yCGuifIYk2hrAwFLAxjhJSwoxXx3rb 8ma29PaNZOKEB9NQx9yWvb6WeL7Y43OoeG6I6YZaYe15FT6YEHPTABbjbGbpQ3ZR 8SzGsDvvAvdGdN5WMZYKu0ramu9Nj1MFJZRgvWQxfLgB8RJt0dLzYB74p9sfrEya -----END CERTIFICATE-----Generated at Sat Jan 17 06:46:19 2026 by rpki-client