This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DgKUZVM52DsFgkkeLjetM9mS4Q8.roa File: DgKUZVM52DsFgkkeLjetM9mS4Q8.roa (raw, json) Hash identifier: omoPjR5KauPUPoUdAp1DNSKSJn1HONKVQ3qaokxMTkw= Subject key identifier: 0E:02:94:65:53:39:D8:3B:05:82:49:1E:2E:37:AD:33:D9:92:E1:0F Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Certificate serial: 019B78A328EDA4984B0BB154C109BA4B21BE Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DgKUZVM52DsFgkkeLjetM9mS4Q8.roa Signing time: Thu 01 Jan 2026 08:18:37 +0000 ROA not before: Thu 01 Jan 2026 08:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201749 IP address blocks: 45.139.105.0/24 maxlen: 24 80.76.50.0/24 maxlen: 24 83.171.204.0/24 maxlen: 24 83.171.205.0/24 maxlen: 24 83.171.206.0/24 maxlen: 24 83.171.207.0/24 maxlen: 24 87.120.87.0/24 maxlen: 24 176.125.255.0/24 maxlen: 24 194.49.87.0/24 maxlen: 24 194.55.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.mft rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:28:ed:a4:98:4b:0b:b1:54:c1:09:ba:4b:21:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d Validity Not Before: Jan 1 08:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e0294655339d83b0582491e2e37ad33d992e10f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:43:c0:ca:00:b2:b7:16:2f:18:bb:48:8f:cc: ad:62:46:37:df:05:0e:8a:e6:0a:ed:68:ca:73:19: cb:3b:d0:c4:6e:23:aa:16:6f:7a:11:ec:7b:db:8f: aa:41:34:76:c3:50:d8:6f:98:40:95:bd:32:32:4d: 8d:a9:c5:77:85:f1:70:74:a7:9f:76:36:c4:76:b9: 35:9b:f8:7e:11:e8:89:c5:62:63:f2:77:c9:ce:ec: c9:22:3b:83:f1:c3:7d:41:d0:a9:d0:09:15:e1:aa: f2:ed:73:f5:6d:0c:c1:8d:de:16:37:db:ea:f3:58: f0:7f:69:58:86:5b:08:64:ca:34:85:fb:b9:78:69: d5:59:ea:c7:49:8e:3b:1c:32:27:d0:8d:26:97:95: 88:1f:48:d9:6b:de:a5:82:73:74:8f:0d:aa:89:aa: c8:fe:bd:54:25:22:ec:c1:2c:87:37:33:f6:57:0c: 71:6b:98:6e:de:2c:0b:f6:78:02:f1:ca:81:0f:37: 80:f6:ed:20:28:d5:40:28:a8:7b:7a:d7:a1:e7:78: 81:df:58:26:b9:5f:93:20:63:0e:8f:bc:04:fe:6d: 2a:8d:8e:02:1b:de:81:e0:b4:29:20:43:08:47:fd: 84:bf:81:61:30:69:a2:e9:64:64:67:5d:15:ee:40: ab:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:02:94:65:53:39:D8:3B:05:82:49:1E:2E:37:AD:33:D9:92:E1:0F X509v3 Authority Key Identifier: keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/DgKUZVM52DsFgkkeLjetM9mS4Q8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.139.105.0/24 80.76.50.0/24 83.171.204.0/22 87.120.87.0/24 176.125.255.0/24 194.49.87.0/24 194.55.226.0/24 Signature Algorithm: sha256WithRSAEncryption 64:af:c6:f7:dd:e2:a1:65:2b:e7:7a:d5:71:23:c3:98:e4:21: 67:1e:fd:f3:b4:96:8b:6e:6b:80:81:47:97:e8:03:6f:f1:14: f3:8f:40:98:2d:b2:b5:b9:73:dc:3d:5f:91:6f:e2:ff:a5:31: fc:a8:41:05:1c:24:d0:21:c0:71:2b:b5:e6:7e:33:73:5d:e9: df:d2:06:8a:b0:f9:2f:8c:2c:67:5d:6f:52:8e:90:9a:02:78: 95:aa:dd:ac:a8:e2:53:98:c5:01:f7:3c:10:89:1b:3d:69:19: 6e:1f:d9:43:fd:7e:2a:47:2c:d6:47:73:6b:83:63:80:93:7e: 08:fb:97:b6:26:f5:37:ff:9b:11:85:9a:65:34:b3:c1:6f:48: 49:4b:cb:1d:b3:33:61:1b:b6:86:e9:44:02:a2:99:6c:69:c6: 31:bf:d7:e8:c5:61:d5:bd:e4:b4:20:18:3f:c4:15:cb:05:67: 52:c3:d8:7d:6d:b3:34:c8:03:22:6b:8c:78:97:ba:20:4b:84: 4b:9f:a8:60:e3:ef:c9:36:f0:00:24:3f:0b:d0:44:a9:f3:63: 8b:55:09:5d:78:d7:3c:08:37:67:d7:ea:33:45:a2:11:25:62: b0:e9:4a:6f:ad:82:ab:48:14:b9:41:99:bf:93:c4:4b:52:d2: 8f:41:dd:82 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt4oyjtpJhLC7FUwQm6SyG+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3 NzVlOWQwHhcNMjYwMTAxMDgxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTAyOTQ2NTUzMzlkODNiMDU4MjQ5MWUyZTM3YWQzM2Q5OTJlMTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkPAygCytxYvGLtIj8ytYkY33wUO iuYK7WjKcxnLO9DEbiOqFm96Eex724+qQTR2w1DYb5hAlb0yMk2NqcV3hfFwdKef djbEdrk1m/h+EeiJxWJj8nfJzuzJIjuD8cN9QdCp0AkV4ary7XP1bQzBjd4WN9vq 81jwf2lYhlsIZMo0hfu5eGnVWerHSY47HDIn0I0ml5WIH0jZa96lgnN0jw2qiarI /r1UJSLswSyHNzP2Vwxxa5hu3iwL9ngC8cqBDzeA9u0gKNVAKKh7eteh53iB31gm uV+TIGMOj7wE/m0qjY4CG96B4LQpIEMIR/2Ev4FhMGmi6WRkZ10V7kCr7wIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFA4ClGVTOdg7BYJJHi43rTPZkuEPMB8GA1UdIwQY MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct Y2QzY2E1OTc1NzEyLzEvRGdLVVpWTTUyRHNGZ2trZUxqZXRNOW1TNFE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQALYtpAwQA UEwyAwQCU6vMAwQAV3hXAwQAsH3/AwQAwjFXAwQAwjfiMA0GCSqGSIb3DQEBCwUA A4IBAQBkr8b33eKhZSvnetVxI8OY5CFnHv3ztJaLbmuAgUeX6ANv8RTzj0CYLbK1 uXPcPV+Rb+L/pTH8qEEFHCTQIcBxK7XmfjNzXenf0gaKsPkvjCxnXW9SjpCaAniV qt2sqOJTmMUB9zwQiRs9aRluH9lD/X4qRyzWR3Nrg2OAk34I+5e2JvU3/5sRhZpl NLPBb0hJS8sdszNhG7aG6UQCoplsacYxv9foxWHVveS0IBg/xBXLBWdSw9h9bbM0 yAMia4x4l7ogS4RLn6hg4+/JNvAAJD8L0ESp82OLVQldeNc8CDdn1+ozRaIRJWKw 6UpvrYKrSBS5QZm/k8RLUtKPQd2C -----END CERTIFICATE-----Generated at Fri Jan 2 12:04:26 2026 by rpki-client