This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/K73dtyT-j6os5z8SB0qYrfWZXDM.roa File: K73dtyT-j6os5z8SB0qYrfWZXDM.roa (raw, json) Hash identifier: XjyDCqaovf6/aRiyZW1XaL2wsiZtD81NVEWxRlQmjss= Subject key identifier: 2B:BD:DD:B7:24:FE:8F:AA:2C:E7:3F:12:07:4A:98:AD:F5:99:5C:33 Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Certificate serial: 019B7D5B1DF16C44E61C50AE93A9E14B151B Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/K73dtyT-j6os5z8SB0qYrfWZXDM.roa Signing time: Fri 02 Jan 2026 06:18:01 +0000 ROA not before: Fri 02 Jan 2026 06:18:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205085 IP address blocks: 78.128.110.0/23 maxlen: 24 78.142.7.0/24 maxlen: 24 78.142.37.0/24 maxlen: 24 78.142.38.0/24 maxlen: 24 78.142.39.0/24 maxlen: 24 79.124.87.0/24 maxlen: 24 91.148.188.0/23 maxlen: 24 91.191.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.mft rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:1d:f1:6c:44:e6:1c:50:ae:93:a9:e1:4b:15:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa Validity Not Before: Jan 2 06:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2bbdddb724fe8faa2ce73f12074a98adf5995c33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:de:1d:70:84:cb:c9:24:a2:7c:13:f6:d8: 4f:ea:5a:3d:98:e5:f0:0a:c4:d1:0c:eb:80:7b:e3: a1:17:25:3d:9e:2a:40:5f:0b:52:7e:85:dc:9b:86: 7a:9b:92:fc:58:1e:a3:46:11:62:54:a3:84:2d:14: d3:20:23:c6:25:d7:0c:33:1c:d2:85:b0:52:d6:e8: bf:7b:3b:e3:b1:74:f2:e2:f7:be:2e:ac:7d:12:b2: 2b:4f:02:c2:08:60:45:de:c3:51:19:b7:eb:2c:e2: ab:9e:06:65:a4:7c:6d:52:e7:83:10:76:57:d5:c4: 90:04:c3:6d:2f:92:27:1c:0f:98:12:9c:cc:31:8d: 26:e3:1c:d6:1e:51:72:57:c7:ab:37:e1:0f:7e:e6: 84:fa:07:20:cf:30:23:df:cc:0a:91:75:a6:c2:15: 3d:ef:46:74:4b:6f:a1:a0:3b:66:fa:5c:f8:ac:f3: 30:0e:73:9d:0e:00:c9:cb:d8:12:98:1b:72:0d:2b: 4d:7b:0e:ae:39:02:5d:7f:68:28:05:ea:7e:d9:6e: fd:f0:bc:0d:8b:5d:c4:79:a3:9c:86:29:98:01:65: 8a:ea:2d:ab:76:39:e1:45:75:d4:f7:ce:44:79:61: 66:73:53:8c:47:1b:0b:03:b1:cd:a7:db:e1:51:38: 0a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:BD:DD:B7:24:FE:8F:AA:2C:E7:3F:12:07:4A:98:AD:F5:99:5C:33 X509v3 Authority Key Identifier: keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/K73dtyT-j6os5z8SB0qYrfWZXDM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.128.110.0/23 78.142.7.0/24 78.142.37.0-78.142.39.255 79.124.87.0/24 91.148.188.0/23 91.191.219.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:f7:df:70:f3:b5:4e:c2:53:21:cc:d4:cd:04:33:0b:92:55: 66:8b:f8:d5:aa:e3:e6:84:a5:6b:1a:29:e9:43:b1:95:cb:ef: c6:3b:18:a4:f5:9f:cb:5c:4c:0e:dc:d7:bd:41:6a:bb:14:e0: ee:d1:3b:7f:e5:62:0a:d0:8d:fb:71:6c:96:bf:11:4d:da:54: 14:a0:b8:1e:3a:c2:be:b7:ae:58:23:11:f0:9b:84:b2:cb:a4: 17:2e:b8:a4:9a:97:e9:5f:9f:db:d2:01:44:03:03:c3:b6:af: d4:6e:b6:f2:3a:29:c1:a1:e5:ea:b9:51:53:32:1a:42:aa:0d: 45:98:b1:7c:69:38:fe:c7:34:a6:df:ef:ca:5b:8b:86:c2:85: 47:4e:5b:90:8f:a3:fa:48:f5:5b:f3:f5:1d:00:19:82:ae:eb: 8b:7e:8d:78:32:6a:75:11:33:07:46:f5:50:85:d3:21:72:80: c0:4d:4c:19:bf:20:23:c2:69:a5:25:f3:21:0d:01:59:23:56: 09:11:40:d9:ce:48:91:57:c1:bb:8a:3f:dd:25:cd:10:8c:bb: a0:21:bc:97:3a:f4:7e:b1:ef:d3:96:1d:b3:45:c2:cb:eb:87: ae:a0:b3:5d:31:6e:ec:51:11:a3:67:56:6a:d4:85:18:ec:7b: b5:3e:9c:e6 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt9Wx3xbETmHFCuk6nhSxUbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1 Y2IyYWEwHhcNMjYwMTAyMDYxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYmJkZGRiNzI0ZmU4ZmFhMmNlNzNmMTIwNzRhOThhZGY1OTk1YzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxHeHXCEy8kkonwT9thP6lo9mOXw CsTRDOuAe+OhFyU9nipAXwtSfoXcm4Z6m5L8WB6jRhFiVKOELRTTICPGJdcMMxzS hbBS1ui/ezvjsXTy4ve+Lqx9ErIrTwLCCGBF3sNRGbfrLOKrngZlpHxtUueDEHZX 1cSQBMNtL5InHA+YEpzMMY0m4xzWHlFyV8erN+EPfuaE+gcgzzAj38wKkXWmwhU9 70Z0S2+hoDtm+lz4rPMwDnOdDgDJy9gSmBtyDStNew6uOQJdf2goBep+2W798LwN i13EeaOchimYAWWK6i2rdjnhRXXU985EeWFmc1OMRxsLA7HNp9vhUTgKGwIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFCu93bck/o+qLOc/EgdKmK31mVwzMB8GA1UdIwQY MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt ZGFjYjVmMzU2ZWEzLzEvSzczZHR5VC1qNm9zNXo4U0IwcVlyZldaWERNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQBToBuAwQA To4HMAwDBABOjiUDBANOjiADBABPfFcDBAFblLwDBABbv9swDQYJKoZIhvcNAQEL BQADggEBAD/333DztU7CUyHM1M0EMwuSVWaL+NWq4+aEpWsaKelDsZXL78Y7GKT1 n8tcTA7c171BarsU4O7RO3/lYgrQjftxbJa/EU3aVBSguB46wr63rlgjEfCbhLLL pBcuuKSal+lfn9vSAUQDA8O2r9RutvI6KcGh5eq5UVMyGkKqDUWYsXxpOP7HNKbf 78pbi4bChUdOW5CPo/pI9Vvz9R0AGYKu64t+jXgyanURMwdG9VCF0yFygMBNTBm/ ICPCaaUl8yENAVkjVgkRQNnOSJFXwbuKP90lzRCMu6AhvJc69H6x79OWHbNFwsvr h66gs10xbuxREaNnVmrUhRjse7U+nOY= -----END CERTIFICATE-----Generated at Fri Jan 23 18:47:52 2026 by rpki-client