This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/jdHMVRkeTn1Nth9vlUo9BvR2wng.roa File: jdHMVRkeTn1Nth9vlUo9BvR2wng.roa (raw, json) Hash identifier: AAK6SfAISoxobwueyJaaBYkoMj4IspGZGMaQBhwb7VE= Subject key identifier: 8D:D1:CC:55:19:1E:4E:7D:4D:B6:1F:6F:95:4A:3D:06:F4:76:C2:78 Certificate issuer: /CN=da0389d85ea126e0efbebc5d8459ef709fb895cb Certificate serial: 019B7A5A0F173DC70CBA6FC1B77298F6FEB3 Authority key identifier: DA:03:89:D8:5E:A1:26:E0:EF:BE:BC:5D:84:59:EF:70:9F:B8:95:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/jdHMVRkeTn1Nth9vlUo9BvR2wng.roa Signing time: Thu 01 Jan 2026 16:18:00 +0000 ROA not before: Thu 01 Jan 2026 16:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60446 IP address blocks: 185.112.74.0/24 maxlen: 24 2a10:5540::/29 maxlen: 29 2a10:5540::/33 maxlen: 48 2a10:5540:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.crl rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.mft rsync://rpki.ripe.net/repository/DEFAULT/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 13:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:0f:17:3d:c7:0c:ba:6f:c1:b7:72:98:f6:fe:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da0389d85ea126e0efbebc5d8459ef709fb895cb Validity Not Before: Jan 1 16:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8dd1cc55191e4e7d4db61f6f954a3d06f476c278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a8:57:47:c2:e2:86:5c:2a:d4:f4:c6:08:e6: 51:99:4c:3b:0e:b0:2d:3f:7c:0f:c6:db:7f:f1:7c: d2:50:78:85:e5:cc:df:a6:e7:bf:f4:d7:16:be:54: 9c:d5:6b:65:6e:95:06:4b:41:ce:60:e7:f6:23:b5: c5:0d:04:60:38:15:c3:3f:24:53:ae:41:c2:d0:7f: 6a:b4:9e:d9:ca:fc:a6:ea:30:55:e1:54:24:00:75: cb:ac:8b:1e:a1:82:49:2c:84:91:bb:fd:fb:bb:c0: 34:d2:77:50:40:cf:fa:53:df:51:89:84:09:77:6e: ca:6f:0e:83:b0:0e:ce:7d:8b:d6:5e:d1:61:63:f1: 6f:f8:26:6e:58:91:93:32:ef:92:f3:a9:01:f7:8c: 40:2d:d2:f9:73:4e:e9:00:f4:18:9b:44:6b:2e:d6: 1d:f7:4c:a5:2a:1d:d4:18:78:9b:e2:13:e1:9a:af: 20:d0:df:49:a5:9f:b1:2f:d4:60:bc:c5:00:38:1c: 5c:f0:88:b8:e0:17:71:66:e7:96:ea:b9:9c:71:2c: b8:21:30:70:e6:b3:65:1e:38:b4:3f:78:17:ef:da: 24:1d:8a:6d:5f:8f:37:f7:d6:fd:e4:40:a8:53:c6: c6:93:41:34:60:8a:a0:c8:5d:c6:e0:8a:fa:bd:e8: 61:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D1:CC:55:19:1E:4E:7D:4D:B6:1F:6F:95:4A:3D:06:F4:76:C2:78 X509v3 Authority Key Identifier: keyid:DA:03:89:D8:5E:A1:26:E0:EF:BE:BC:5D:84:59:EF:70:9F:B8:95:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/jdHMVRkeTn1Nth9vlUo9BvR2wng.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.112.74.0/24 IPv6: 2a10:5540::/29 Signature Algorithm: sha256WithRSAEncryption 5a:af:c2:ec:26:fe:73:bc:4b:09:81:b9:8e:20:74:4a:4d:74: e4:89:26:ee:3c:1d:c8:42:cc:98:bb:b6:95:a8:0f:e7:d6:bc: 53:63:af:4b:a5:77:f8:ea:15:78:2f:39:eb:0e:54:a7:51:90: 62:d0:09:df:70:cd:b6:7d:18:07:5c:50:9c:8c:82:57:3f:46: f0:d7:93:0d:95:e0:2a:30:34:0e:92:e8:4d:77:58:46:0a:1a: f9:27:fc:ef:9b:32:a2:d5:eb:89:f1:6b:39:e1:4d:f5:48:de: 5a:96:f1:f6:37:e8:52:7e:36:ac:f9:98:52:c7:1d:61:d2:02: e9:91:b1:1b:ab:9c:21:0e:46:2c:e0:73:6a:fb:8f:b3:28:97: f9:7d:4a:b0:b6:2e:9d:eb:4e:74:52:46:7c:ac:0b:d5:5e:a4: 16:61:b9:ce:01:70:47:df:95:d3:7c:aa:69:09:e5:50:10:3d: 64:08:01:a5:84:7f:09:41:74:df:25:32:78:69:1b:c7:c3:d2: 1f:98:3c:cd:13:48:11:18:9d:76:99:92:1d:d8:c5:b7:69:39: a5:8e:a4:44:f8:9b:90:da:db:75:9f:73:fd:59:b5:15:a2:e2: 13:a1:3f:a4:38:5f:5d:b5:b4:4b:b6:a6:34:42:c4:bd:53:15: 8f:2b:e7:70 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6Wg8XPccMum/Bt3KY9v6zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhMDM4OWQ4NWVhMTI2ZTBlZmJlYmM1ZDg0NTllZjcwOWZi ODk1Y2IwHhcNMjYwMTAxMTYxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZGQxY2M1NTE5MWU0ZTdkNGRiNjFmNmY5NTRhM2QwNmY0NzZjMjc4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqahXR8Lihlwq1PTGCOZRmUw7DrAt P3wPxtt/8XzSUHiF5czfpue/9NcWvlSc1WtlbpUGS0HOYOf2I7XFDQRgOBXDPyRT rkHC0H9qtJ7Zyvym6jBV4VQkAHXLrIseoYJJLISRu/37u8A00ndQQM/6U99RiYQJ d27Kbw6DsA7OfYvWXtFhY/Fv+CZuWJGTMu+S86kB94xALdL5c07pAPQYm0RrLtYd 90ylKh3UGHib4hPhmq8g0N9JpZ+xL9RgvMUAOBxc8Ii44BdxZueW6rmccSy4ITBw 5rNlHji0P3gX79okHYptX48399b95ECoU8bGk0E0YIqgyF3G4Ir6vehhUQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFI3RzFUZHk59TbYfb5VKPQb0dsJ4MB8GA1UdIwQY MBaAFNoDidheoSbg7768XYRZ73CfuJXLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmdPSjJGNmhKdUR2dnJ4ZGhGbnZjSi00bGNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yNzU4NWMtYjg2Ni00OTYyLTgwZmQt ZWE2MTM0NzA2YTQwLzEvamRITVZSa2VUbjFOdGg5dmxVbzlCdlIyd25nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS8yNzU4NWMtYjg2Ni00OTYyLTgwZmQtZWE2MTM0NzA2YTQw LzEvMmdPSjJGNmhKdUR2dnJ4ZGhGbnZjSi00bGNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuXBKMA0E AgACMAcDBQMqEFVAMA0GCSqGSIb3DQEBCwUAA4IBAQBar8LsJv5zvEsJgbmOIHRK TXTkiSbuPB3IQsyYu7aVqA/n1rxTY69LpXf46hV4LznrDlSnUZBi0AnfcM22fRgH XFCcjIJXP0bw15MNleAqMDQOkuhNd1hGChr5J/zvmzKi1euJ8Ws54U31SN5alvH2 N+hSfjas+ZhSxx1h0gLpkbEbq5whDkYs4HNq+4+zKJf5fUqwti6d6050UkZ8rAvV XqQWYbnOAXBH35XTfKppCeVQED1kCAGlhH8JQXTfJTJ4aRvHw9IfmDzNE0gRGJ12 mZId2MW3aTmljqRE+JuQ2tt1n3P9WbUVouIToT+kOF9dtbRLtqY0QsS9UxWPK+dw -----END CERTIFICATE-----Generated at Wed Jan 21 16:16:41 2026 by rpki-client