This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/D8zda_ChDoAjZGlgPw6K_5cywcY.roa File: D8zda_ChDoAjZGlgPw6K_5cywcY.roa (raw, json) Hash identifier: mwma6W29W7avf4dr3qkR7gjI+Nge1hu5WeLoY9PLb+E= Subject key identifier: 0F:CC:DD:6B:F0:A1:0E:80:23:64:69:60:3F:0E:8A:FF:97:32:C1:C6 Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7BEFEFF6F42C6BDF08FD122918B44 Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/D8zda_ChDoAjZGlgPw6K_5cywcY.roa Signing time: Thu 01 Jan 2026 18:17:49 +0000 ROA not before: Thu 01 Jan 2026 18:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5511 IP address blocks: 159.148.109.0/24 maxlen: 24 159.148.157.0/24 maxlen: 24 159.148.236.0/24 maxlen: 24 159.148.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 05:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:be:fe:ff:6f:42:c6:bd:f0:8f:d1:22:91:8b:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0fccdd6bf0a10e80236469603f0e8aff9732c1c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9c:65:5b:81:42:50:c4:99:9b:26:3c:79:cd: 9d:8b:10:43:f3:96:07:67:e4:8a:99:d0:fc:9e:33: 04:a7:5c:7e:f9:54:7e:2a:bb:dd:9f:49:d6:1d:09: b2:87:e3:54:36:39:01:bd:36:fd:cf:d1:ee:1d:e9: d2:af:81:fc:53:74:4b:73:4c:d0:1a:1e:23:67:97: 11:42:f1:f4:d3:04:ab:0f:9d:5f:b2:08:9f:07:ec: 81:e8:b2:e6:db:c3:8c:f7:b1:ef:5a:99:d0:01:c1: 7d:a9:f9:de:38:85:10:4a:91:1f:d3:b7:6c:dd:97: 57:89:53:dd:ba:84:d5:a4:ba:d5:1c:1c:1f:e0:c9: 02:2b:57:86:b7:58:01:79:6f:9c:d7:cb:33:42:65: 7a:2b:d9:5e:47:60:cf:74:65:b8:09:38:c2:61:c4: a9:e7:24:d2:3d:19:71:7c:fd:89:f3:4a:1e:25:c6: 17:59:1a:63:dd:fe:b9:da:13:9f:a3:90:95:86:a9: d0:b1:ac:a4:ae:59:7d:78:2d:f9:7c:da:ea:f6:7e: 19:c5:60:72:ef:64:f1:86:e0:5e:6f:ee:a2:30:84: c4:0b:fd:b3:b0:0c:55:b4:53:b7:e1:8c:3c:e5:17: 44:99:7d:a2:77:93:5b:1d:2a:f6:5d:1d:e2:f1:3d: 0a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:CC:DD:6B:F0:A1:0E:80:23:64:69:60:3F:0E:8A:FF:97:32:C1:C6 X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/D8zda_ChDoAjZGlgPw6K_5cywcY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.148.109.0/24 159.148.157.0/24 159.148.236.0/24 159.148.239.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:18:3d:25:15:95:a8:9f:b9:95:a5:59:1b:fd:3b:e0:22:69: 69:76:a1:dd:96:ff:a2:9b:6f:7e:4c:08:2c:ef:f9:25:1e:83: 58:b4:d1:0c:c8:84:8f:bf:d6:cb:96:4c:12:82:43:66:ed:f8: 8f:65:c1:6a:73:06:3e:23:54:8e:75:a2:a7:c8:21:86:c2:59: c8:f0:9b:3b:d8:f4:b0:15:c7:da:c8:a9:fa:ed:e7:ad:88:97: 8d:4a:57:e5:5f:a7:53:7c:6c:e3:2b:50:76:28:ae:06:c1:82: ac:8b:c8:c7:5a:24:46:71:e5:ee:49:5a:fa:ab:69:1e:39:a0: e4:59:85:9c:9d:00:c0:2a:77:fa:ef:f4:e7:f1:0e:d2:32:20: 12:f1:88:d4:ba:1c:fb:62:5e:41:11:fb:61:86:07:46:5a:78: 0f:33:60:51:6f:9c:b1:61:d7:d8:3f:6a:1e:d7:a0:23:20:19: d6:b4:72:f2:05:ad:73:4a:e3:c9:b7:93:e4:2e:ea:fb:7a:32: b5:b2:59:22:da:20:21:3e:7c:bd:71:94:14:5d:9e:55:57:04: be:1d:b5:fb:3a:88:78:50:76:84:7d:53:79:9c:a7:61:93:e6: 11:3a:bb:a5:09:54:14:01:37:8f:14:bc:a2:63:d8:03:f9:9f: d3:22:20:d5 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt6x77+/29Cxr3wj9EikYtEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmNjZGQ2YmYwYTEwZTgwMjM2NDY5NjAzZjBlOGFmZjk3MzJjMWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5xlW4FCUMSZmyY8ec2dixBD85YH Z+SKmdD8njMEp1x++VR+Krvdn0nWHQmyh+NUNjkBvTb9z9HuHenSr4H8U3RLc0zQ Gh4jZ5cRQvH00wSrD51fsgifB+yB6LLm28OM97HvWpnQAcF9qfneOIUQSpEf07ds 3ZdXiVPduoTVpLrVHBwf4MkCK1eGt1gBeW+c18szQmV6K9leR2DPdGW4CTjCYcSp 5yTSPRlxfP2J80oeJcYXWRpj3f652hOfo5CVhqnQsaykrll9eC35fNrq9n4ZxWBy 72TxhuBeb+6iMITEC/2zsAxVtFO34Yw85RdEmX2id5NbHSr2XR3i8T0KgQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFA/M3WvwoQ6AI2RpYD8Oiv+XMsHGMB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEvRDh6ZGFfQ2hEb0FqWkdsZ1B3NktfNWN5d2NZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAn5RtAwQA n5SdAwQAn5TsAwQAn5TvMA0GCSqGSIb3DQEBCwUAA4IBAQAtGD0lFZWon7mVpVkb /TvgImlpdqHdlv+im29+TAgs7/klHoNYtNEMyISPv9bLlkwSgkNm7fiPZcFqcwY+ I1SOdaKnyCGGwlnI8Js72PSwFcfayKn67eetiJeNSlflX6dTfGzjK1B2KK4GwYKs i8jHWiRGceXuSVr6q2keOaDkWYWcnQDAKnf67/Tn8Q7SMiAS8YjUuhz7Yl5BEfth hgdGWngPM2BRb5yxYdfYP2oe16AjIBnWtHLyBa1zSuPJt5PkLur7ejK1slki2iAh Pny9cZQUXZ5VVwS+HbX7Ooh4UHaEfVN5nKdhk+YROrulCVQUATePFLyiY9gD+Z/T IiDV -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:13 2026 by rpki-client