This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/DKJJrcnX3RnXlCDTnb0QnF9ph1c.roa File: DKJJrcnX3RnXlCDTnb0QnF9ph1c.roa (raw, json) Hash identifier: FBpHgtUQjl2CKc1kAMv5YEG4ocTTbuqpzf8/LW2ex4k= Subject key identifier: 0C:A2:49:AD:C9:D7:DD:19:D7:94:20:D3:9D:BD:10:9C:5F:69:87:57 Certificate issuer: /CN=8533ef46116fd9d21bfb533e44bde517890c24dc Certificate serial: 019B7BA3C417F575B5C82BEE5724A2F96791 Authority key identifier: 85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/DKJJrcnX3RnXlCDTnb0QnF9ph1c.roa Signing time: Thu 01 Jan 2026 22:18:08 +0000 ROA not before: Thu 01 Jan 2026 22:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9009 IP address blocks: 2.57.248.0/23 maxlen: 23 2.57.250.0/24 maxlen: 24 2.57.251.0/24 maxlen: 24 5.183.240.0/23 maxlen: 23 5.183.242.0/23 maxlen: 23 45.14.80.0/24 maxlen: 24 45.86.24.0/22 maxlen: 22 92.119.24.0/23 maxlen: 23 92.119.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.mft rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 01:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:c4:17:f5:75:b5:c8:2b:ee:57:24:a2:f9:67:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8533ef46116fd9d21bfb533e44bde517890c24dc Validity Not Before: Jan 1 22:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0ca249adc9d7dd19d79420d39dbd109c5f698757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:a8:d0:ff:46:86:4d:78:a6:49:95:5b:fe: 6f:f9:b6:77:0b:47:33:17:5c:7e:ce:7e:4a:c1:14: b3:d5:e5:bd:28:93:e8:df:95:aa:90:31:e2:3c:44: 66:47:16:51:e5:0e:54:52:b8:28:34:50:c2:d5:89: a0:1e:a2:55:d3:e8:05:bb:29:f8:7c:f6:1f:87:28: 6e:cf:a9:27:aa:09:c3:99:cc:86:0e:c9:22:f6:63: 5f:5b:71:eb:62:26:14:a8:de:e1:ae:55:70:98:e6: e7:6a:5d:5a:27:49:31:5b:f9:64:92:06:d9:fa:43: ae:48:65:0d:3a:fe:11:ad:70:e1:86:05:93:9e:49: b4:f8:93:40:6d:6e:65:9d:d2:fb:c8:1a:fd:08:fd: fb:f9:87:ed:2e:fb:c1:c7:e8:70:2d:8c:d0:56:c8: b9:e6:16:bc:1b:c5:db:84:42:26:ea:09:3a:7c:9a: ac:ae:e5:41:24:ab:42:45:7c:ca:9c:a8:6f:a0:90: 0d:c2:b5:7d:fb:d1:13:53:40:b8:ed:18:79:58:9f: 0d:41:17:45:44:9f:d7:5e:44:26:12:00:5a:43:ed: 5c:46:25:7a:aa:b5:c1:22:8c:e3:ca:16:7c:42:a3: 30:94:3f:41:d3:21:96:a8:58:23:f1:12:9a:e4:78: 53:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A2:49:AD:C9:D7:DD:19:D7:94:20:D3:9D:BD:10:9C:5F:69:87:57 X509v3 Authority Key Identifier: keyid:85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/DKJJrcnX3RnXlCDTnb0QnF9ph1c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.248.0/22 5.183.240.0/22 45.14.80.0/24 45.86.24.0/22 92.119.24.0/22 Signature Algorithm: sha256WithRSAEncryption 11:42:76:33:af:a8:9d:46:38:46:28:7c:25:b7:6d:92:5f:47: dc:9a:0a:3b:d5:9f:4d:4d:fe:8e:14:65:68:e5:43:15:b0:48: 84:2f:2e:6c:ca:d0:3c:14:88:92:70:d1:f8:86:c8:3e:4f:82: 5d:fd:da:9d:26:36:a5:7d:46:84:f3:49:d5:97:fa:0e:2d:12: 4b:76:eb:a6:ee:9e:3b:0a:8e:22:b7:54:12:1b:ec:6a:3c:63: 51:bb:00:47:94:19:29:ec:f0:91:b5:d4:87:fe:6c:14:4e:4b: c1:d6:ec:cc:d9:30:06:9a:a2:f8:66:1e:73:62:2a:b6:a9:07: 01:54:05:5c:98:a0:80:78:34:08:d5:36:5a:8e:6e:4f:b2:de: a3:59:d4:c5:89:02:4a:a3:14:31:80:88:46:9c:51:73:ab:40: 48:41:b5:b6:09:45:5f:3f:7c:f7:cd:49:78:74:59:bc:46:80: f2:fe:fb:c1:d7:35:fa:9f:68:c1:a6:e1:43:24:cf:30:8e:55: 2b:30:d5:69:08:ea:56:73:17:fa:51:6b:4f:df:c7:be:68:c5: ca:b1:9e:f5:44:01:79:17:78:8f:16:f1:98:5f:6f:38:6c:89: 8f:f8:b8:6d:bf:59:15:2c:a9:fe:40:9d:8c:0f:a8:b6:c0:07: 34:3f:97:01 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt7o8QX9XW1yCvuVySi+WeRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MzNlZjQ2MTE2ZmQ5ZDIxYmZiNTMzZTQ0YmRlNTE3ODkw YzI0ZGMwHhcNMjYwMTAxMjIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwY2EyNDlhZGM5ZDdkZDE5ZDc5NDIwZDM5ZGJkMTA5YzVmNjk4NzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwqo0P9Ghk14pkmVW/5v+bZ3C0cz F1x+zn5KwRSz1eW9KJPo35WqkDHiPERmRxZR5Q5UUrgoNFDC1YmgHqJV0+gFuyn4 fPYfhyhuz6knqgnDmcyGDski9mNfW3HrYiYUqN7hrlVwmObnal1aJ0kxW/lkkgbZ +kOuSGUNOv4RrXDhhgWTnkm0+JNAbW5lndL7yBr9CP37+YftLvvBx+hwLYzQVsi5 5ha8G8XbhEIm6gk6fJqsruVBJKtCRXzKnKhvoJANwrV9+9ETU0C47Rh5WJ8NQRdF RJ/XXkQmEgBaQ+1cRiV6qrXBIozjyhZ8QqMwlD9B0yGWqFgj8RKa5HhTUQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFAyiSa3J190Z15Qg0529EJxfaYdXMB8GA1UdIwQY MBaAFIUz70YRb9nSG/tTPkS95ReJDCTcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9lMDQ3MmEtM2FkZi00M2NkLWJmMzAt NzM5MjNkYWVmMTE0LzEvREtKSnJjblgzUm5YbENEVG5iMFFuRjlwaDFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMy9lMDQ3MmEtM2FkZi00M2NkLWJmMzAtNzM5MjNkYWVmMTE0 LzEvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCAjn4AwQC BbfwAwQALQ5QAwQCLVYYAwQCXHcYMA0GCSqGSIb3DQEBCwUAA4IBAQARQnYzr6id RjhGKHwlt22SX0fcmgo71Z9NTf6OFGVo5UMVsEiELy5sytA8FIiScNH4hsg+T4Jd /dqdJjalfUaE80nVl/oOLRJLduum7p47Co4it1QSG+xqPGNRuwBHlBkp7PCRtdSH /mwUTkvB1uzM2TAGmqL4Zh5zYiq2qQcBVAVcmKCAeDQI1TZajm5Pst6jWdTFiQJK oxQxgIhGnFFzq0BIQbW2CUVfP3z3zUl4dFm8RoDy/vvB1zX6n2jBpuFDJM8wjlUr MNVpCOpWcxf6UWtP38e+aMXKsZ71RAF5F3iPFvGYX284bImP+Lhtv1kVLKn+QJ2M D6i2wAc0P5cB -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:54 2026 by rpki-client