This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/DaZzDQgvGO4sxvRga44UnidzjOU.roa File: DaZzDQgvGO4sxvRga44UnidzjOU.roa (raw, json) Hash identifier: hzxc0DOYU4+E+78cWWVlIpTLQKQcX9IfRNusX7B4ADA= Subject key identifier: 0D:A6:73:0D:08:2F:18:EE:2C:C6:F4:60:6B:8E:14:9E:27:73:8C:E5 Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Certificate serial: 019B7D5B2D47A7FC2797371433F153A882D9 Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/DaZzDQgvGO4sxvRga44UnidzjOU.roa Signing time: Fri 02 Jan 2026 06:18:05 +0000 ROA not before: Fri 02 Jan 2026 06:18:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 269070 IP address blocks: 130.185.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.mft rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:2d:47:a7:fc:27:97:37:14:33:f1:53:a8:82:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Validity Not Before: Jan 2 06:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0da6730d082f18ee2cc6f4606b8e149e27738ce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:51:b1:99:c2:c2:a5:b4:79:31:9f:0a:08:1c: 4d:29:ba:5b:78:0e:5f:2b:57:fe:17:1c:72:ee:fa: eb:9d:33:fc:dc:23:6b:9e:2c:66:e0:7b:f1:bf:10: ac:dc:d1:f2:cd:b5:97:17:88:26:08:43:aa:04:e5: 48:83:f0:f4:e9:8e:0c:1e:4c:4f:7f:78:8d:5a:38: 2b:95:2a:ce:58:ff:33:83:6e:20:c3:91:3a:ef:e0: dc:f0:25:09:59:e7:81:b5:cc:2d:3d:be:25:a3:58: 02:ae:83:ba:44:ab:00:6f:42:68:9e:b4:d3:12:14: fd:8e:dc:fd:f0:1b:86:b1:cd:3d:4f:23:e8:2e:9b: 41:f8:89:57:ff:f2:ea:eb:3d:59:09:7a:3b:f4:a4: 52:27:4b:45:a5:47:e1:d9:98:82:4e:eb:53:aa:e6: 4e:69:33:96:62:02:5a:22:33:c9:db:c9:0b:c6:a6: c0:48:d8:89:c7:d8:bf:9e:29:43:f0:72:4b:59:c0: ec:96:0a:e4:20:a2:c9:a1:58:14:d5:7c:78:a1:04: 1b:c9:bb:6f:42:d2:ac:8d:2d:6d:03:e6:61:a6:7f: 0e:51:76:26:82:9c:b9:0b:a8:d5:68:53:76:8d:cc: c4:2f:d1:58:0c:73:79:8e:08:02:eb:d3:76:d9:e9: 84:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A6:73:0D:08:2F:18:EE:2C:C6:F4:60:6B:8E:14:9E:27:73:8C:E5 X509v3 Authority Key Identifier: keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/DaZzDQgvGO4sxvRga44UnidzjOU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.185.238.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:a1:ab:44:5a:d6:59:a9:ed:94:e0:87:16:64:94:d1:f5:ac: 77:e5:92:2e:58:86:5f:fa:11:fa:bb:bb:86:9f:75:52:81:17: 9d:42:20:0c:46:44:b1:dc:07:75:fd:27:16:7b:47:a5:0a:ab: 26:cd:f1:fb:13:81:86:ec:8e:0a:8e:7c:02:5a:4b:93:57:8c: 47:3c:df:ad:b8:44:23:da:e2:c9:42:2f:fb:06:ed:90:de:9a: 55:d2:66:3f:12:29:8d:5a:59:e2:0d:de:49:7a:37:4b:c6:09: d0:88:7a:d9:e2:05:13:0b:88:76:db:dc:dd:44:2b:18:f8:64: 1f:75:da:f5:33:3d:53:55:39:3e:16:8d:c8:4c:e4:6f:b8:87: 91:b8:2b:2f:d8:b7:9a:02:11:5e:aa:be:ad:2c:19:fe:10:38: d6:9d:41:90:7b:ff:6a:5a:11:aa:9a:4c:20:d4:f6:f8:5f:d5: 04:18:01:73:8d:ce:b8:42:c4:27:62:14:7d:a9:cf:28:31:80: cf:f8:c2:94:fe:62:86:17:4f:78:82:42:e9:eb:a8:c2:b0:52: 91:40:0c:33:5f:f6:60:dc:ec:a0:c6:6a:6b:14:23:09:a5:4e: 79:bf:4c:92:92:87:9e:58:0c:b2:0f:9e:ab:1d:3e:44:2e:ac: 75:11:5e:09 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9Wy1Hp/wnlzcUM/FTqILZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1 Y2IyYWEwHhcNMjYwMTAyMDYxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGE2NzMwZDA4MmYxOGVlMmNjNmY0NjA2YjhlMTQ5ZTI3NzM4Y2U1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjFGxmcLCpbR5MZ8KCBxNKbpbeA5f K1f+Fxxy7vrrnTP83CNrnixm4HvxvxCs3NHyzbWXF4gmCEOqBOVIg/D06Y4MHkxP f3iNWjgrlSrOWP8zg24gw5E67+Dc8CUJWeeBtcwtPb4lo1gCroO6RKsAb0JonrTT EhT9jtz98BuGsc09TyPoLptB+IlX//Lq6z1ZCXo79KRSJ0tFpUfh2ZiCTutTquZO aTOWYgJaIjPJ28kLxqbASNiJx9i/nilD8HJLWcDslgrkIKLJoVgU1Xx4oQQbybtv QtKsjS1tA+Zhpn8OUXYmgpy5C6jVaFN2jczEL9FYDHN5jggC69N22emEfQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA2mcw0ILxjuLMb0YGuOFJ4nc4zlMB8GA1UdIwQY MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt ZGFjYjVmMzU2ZWEzLzEvRGFaekRRZ3ZHTzRzeHZSZ2E0NFVuaWR6ak9VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAgrnuMA0G CSqGSIb3DQEBCwUAA4IBAQBeoatEWtZZqe2U4IcWZJTR9ax35ZIuWIZf+hH6u7uG n3VSgRedQiAMRkSx3Ad1/ScWe0elCqsmzfH7E4GG7I4KjnwCWkuTV4xHPN+tuEQj 2uLJQi/7Bu2Q3ppV0mY/EimNWlniDd5JejdLxgnQiHrZ4gUTC4h229zdRCsY+GQf ddr1Mz1TVTk+Fo3ITORvuIeRuCsv2LeaAhFeqr6tLBn+EDjWnUGQe/9qWhGqmkwg 1Pb4X9UEGAFzjc64QsQnYhR9qc8oMYDP+MKU/mKGF094gkLp66jCsFKRQAwzX/Zg 3OygxmprFCMJpU55v0ySkoeeWAyyD56rHT5ELqx1EV4J -----END CERTIFICATE-----Generated at Fri Jan 23 18:48:23 2026 by rpki-client