This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/dKeJnasb-ZXSDsGqtQYSTdGDW8g.roa File: dKeJnasb-ZXSDsGqtQYSTdGDW8g.roa (raw, json) Hash identifier: hdb5WqBfOFgE4JFZ+L+CLjT6pKiHBup32Mfr4W2p1ms= Subject key identifier: 74:A7:89:9D:AB:1B:F9:95:D2:0E:C1:AA:B5:06:12:4D:D1:83:5B:C8 Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b Certificate serial: 019B7A5AFB9DE005C5DFE32130EED18B5EFD Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/dKeJnasb-ZXSDsGqtQYSTdGDW8g.roa Signing time: Thu 01 Jan 2026 16:19:01 +0000 ROA not before: Thu 01 Jan 2026 16:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 834 IP address blocks: 81.31.234.0/23 maxlen: 24 81.31.242.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.mft rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:fb:9d:e0:05:c5:df:e3:21:30:ee:d1:8b:5e:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b Validity Not Before: Jan 1 16:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74a7899dab1bf995d20ec1aab506124dd1835bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:93:c8:4b:a5:3b:1b:79:8b:7a:6c:d4:35:32: 9f:ac:22:4d:bf:38:ca:f8:58:db:4b:f9:19:e0:50: 4b:93:51:b3:9d:b9:df:12:b5:23:ab:0d:e5:50:9f: 26:5f:ea:6c:32:1d:41:be:45:d9:47:66:d5:ce:ee: 4d:89:f6:3f:55:59:fb:82:a1:a7:e8:7b:6c:81:ba: 83:4d:6b:38:85:56:60:4f:a9:c2:bf:4d:6e:a1:03: 16:dc:3a:a3:b1:a7:23:a6:59:55:c0:80:cd:a7:71: 7b:4d:05:11:b1:88:9b:8d:ee:d5:b3:d3:b7:ea:2d: 60:f0:64:60:49:9d:9a:5e:1a:7d:fd:ee:cf:b4:07: 9d:86:95:b0:42:f3:a5:84:0d:d1:aa:91:2b:f3:ad: 70:f0:f7:75:06:8b:2e:9f:ee:6d:d3:cd:cd:67:50: 94:b6:93:30:0a:61:fa:9d:0c:3e:07:02:0b:15:a5: c5:7f:6a:60:4b:67:4e:56:ce:62:41:70:4f:a0:ee: dd:af:28:88:de:1a:07:d3:56:c9:47:02:86:ee:1a: 24:46:67:8b:84:6f:3e:60:79:18:e9:b1:55:c6:2a: 8f:82:08:b6:4f:bd:3a:6e:04:36:3d:d0:63:20:96: 90:a8:79:c5:83:81:e6:e2:ba:5f:25:4c:97:8f:0d: a8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A7:89:9D:AB:1B:F9:95:D2:0E:C1:AA:B5:06:12:4D:D1:83:5B:C8 X509v3 Authority Key Identifier: keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/dKeJnasb-ZXSDsGqtQYSTdGDW8g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.31.234.0/23 81.31.242.0/23 Signature Algorithm: sha256WithRSAEncryption bc:2c:5a:c9:11:97:18:0e:88:f7:10:46:a4:04:2e:11:bc:32: ce:19:15:b1:21:4c:55:ba:6c:b0:1a:d4:54:ee:4e:48:ce:ea: 03:b4:a9:21:2d:eb:8a:bf:e9:f6:09:0c:ad:3f:05:d9:0e:6e: 16:11:cf:08:81:a7:13:83:71:9a:fd:4b:bd:70:b3:be:ee:d9: cb:3a:4a:ca:a0:f2:d1:f4:2b:ce:bd:3f:d2:a6:3e:9a:10:9c: b8:08:ff:1e:da:18:72:c5:0e:73:4e:be:59:8d:86:a7:c3:6b: 7a:b5:44:8c:a3:2f:a9:07:c0:31:b7:ee:46:bb:6d:4f:17:9e: 90:d6:cc:9a:a7:5e:e5:09:71:bd:fb:41:c2:3d:42:02:e9:c6: 6c:26:8d:f0:7c:29:08:0a:35:d1:81:23:b2:2f:e8:20:f5:fd: a3:1f:3d:39:a4:57:9a:3f:15:8a:c2:c4:23:32:ee:b3:25:d6: 92:d1:92:3b:1c:93:b1:2a:7c:9b:61:0b:3d:80:48:15:d2:73: 7d:e3:01:93:a0:78:2c:0b:b0:51:a1:ac:23:6b:98:51:48:24: c9:e8:40:cb:80:a6:04:7c:7b:78:06:df:09:c2:a9:54:c1:e0: bc:5c:a6:5f:ec:4f:62:b7:8b:86:f2:4e:cf:91:37:18:72:1e: 18:14:a0:d4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6Wvud4AXF3+MhMO7Ri179MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwNTZiY2Q0MjZmZDg3Y2Q2ZjQxNDdlMTMzMjE2ZDAzMTEy YjE4MWIwHhcNMjYwMTAxMTYxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGE3ODk5ZGFiMWJmOTk1ZDIwZWMxYWFiNTA2MTI0ZGQxODM1YmM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6JPIS6U7G3mLemzUNTKfrCJNvzjK +FjbS/kZ4FBLk1GznbnfErUjqw3lUJ8mX+psMh1BvkXZR2bVzu5NifY/VVn7gqGn 6HtsgbqDTWs4hVZgT6nCv01uoQMW3DqjsacjpllVwIDNp3F7TQURsYibje7Vs9O3 6i1g8GRgSZ2aXhp9/e7PtAedhpWwQvOlhA3RqpEr861w8Pd1Bosun+5t083NZ1CU tpMwCmH6nQw+BwILFaXFf2pgS2dOVs5iQXBPoO7dryiI3hoH01bJRwKG7hokRmeL hG8+YHkY6bFVxiqPggi2T706bgQ2PdBjIJaQqHnFg4Hm4rpfJUyXjw2o/QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHSniZ2rG/mV0g7BqrUGEk3Rg1vIMB8GA1UdIwQY MBaAFBBWvNQm/YfNb0FH4TMhbQMRKxgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUZhODFDYjloODF2UVVmaE15RnRBeEVyR0JzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy9lNmY0ZTQtNjhiYi00NDk2LTkwYzct YWE4NTllMTkyYjE2LzEvZEtlSm5hc2ItWlhTRHNHcXRRWVNUZEdEVzhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy9lNmY0ZTQtNjhiYi00NDk2LTkwYzctYWE4NTllMTkyYjE2 LzEvRUZhODFDYjloODF2UVVmaE15RnRBeEVyR0JzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBUR/qAwQB UR/yMA0GCSqGSIb3DQEBCwUAA4IBAQC8LFrJEZcYDoj3EEakBC4RvDLOGRWxIUxV umywGtRU7k5IzuoDtKkhLeuKv+n2CQytPwXZDm4WEc8IgacTg3Ga/Uu9cLO+7tnL OkrKoPLR9CvOvT/Spj6aEJy4CP8e2hhyxQ5zTr5ZjYanw2t6tUSMoy+pB8Axt+5G u21PF56Q1syap17lCXG9+0HCPUIC6cZsJo3wfCkICjXRgSOyL+gg9f2jHz05pFea PxWKwsQjMu6zJdaS0ZI7HJOxKnybYQs9gEgV0nN94wGToHgsC7BRoawja5hRSCTJ 6EDLgKYEfHt4Bt8JwqlUweC8XKZf7E9it4uG8k7PkTcYch4YFKDU -----END CERTIFICATE-----Generated at Thu Jan 8 16:20:28 2026 by rpki-client