This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/d0cD2OQNwvBbl6ZoayOyhKGW84E.roa File: d0cD2OQNwvBbl6ZoayOyhKGW84E.roa (raw, json) Hash identifier: 0hRHMR3AECHRvpDLm6VnO82EHkZj8wfWxDmhhkfMCS8= Subject key identifier: 77:47:03:D8:E4:0D:C2:F0:5B:97:A6:68:6B:23:B2:84:A1:96:F3:81 Certificate issuer: /CN=70f5d9eeefa305aecaee31e6fcb4e22321b2804a Certificate serial: 019B7C11091B4249418823E6429A1D0E5144 Authority key identifier: 70:F5:D9:EE:EF:A3:05:AE:CA:EE:31:E6:FC:B4:E2:23:21:B2:80:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPXZ7u-jBa7K7jHm_LTiIyGygEo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/d0cD2OQNwvBbl6ZoayOyhKGW84E.roa Signing time: Fri 02 Jan 2026 00:17:29 +0000 ROA not before: Fri 02 Jan 2026 00:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210858 IP address blocks: 185.141.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/cPXZ7u-jBa7K7jHm_LTiIyGygEo.crl rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/cPXZ7u-jBa7K7jHm_LTiIyGygEo.mft rsync://rpki.ripe.net/repository/DEFAULT/cPXZ7u-jBa7K7jHm_LTiIyGygEo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:09:1b:42:49:41:88:23:e6:42:9a:1d:0e:51:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70f5d9eeefa305aecaee31e6fcb4e22321b2804a Validity Not Before: Jan 2 00:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=774703d8e40dc2f05b97a6686b23b284a196f381 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:79:dd:ad:39:79:8b:fb:ff:a1:ff:aa:90:ae: c4:32:23:89:76:75:eb:60:d1:b2:d5:e7:4f:32:9a: 0b:51:80:c8:c8:ed:3b:e3:af:72:c5:eb:6d:2e:88: be:ef:ed:41:bd:60:51:50:89:cc:03:51:5c:4f:ec: d2:1f:77:68:08:8e:2a:7e:1c:c9:c5:fa:c1:23:67: 8b:05:3b:02:79:8d:aa:fb:52:0f:bf:3c:83:a7:4c: 96:80:dd:11:fb:ec:7b:8e:c6:22:39:1b:1e:f2:60: 0e:52:aa:e8:64:d1:73:bd:9d:bd:07:3c:a1:00:8f: 6e:37:3c:19:06:1a:db:0b:9f:3d:4e:cd:75:42:13: 73:4f:d3:47:13:cb:0f:6e:87:f6:99:76:ff:98:03: 49:4d:4b:13:1d:16:ab:33:e2:a5:8d:88:18:88:74: 54:28:99:bf:8f:0c:a1:32:df:77:2f:54:70:9b:5e: f0:16:c3:64:f4:9c:c2:f4:5e:26:49:59:bf:a6:54: 1e:ee:81:25:31:84:5f:ef:cb:60:56:c4:1d:7f:84: 14:22:d2:fe:84:e2:79:f2:2f:24:a9:74:67:81:cb: 6b:ed:c8:f0:3a:77:ba:a9:23:0d:f3:28:c4:f5:bf: 3c:a3:ad:42:4a:bd:28:a1:6e:03:96:aa:1f:bc:e6: ff:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:47:03:D8:E4:0D:C2:F0:5B:97:A6:68:6B:23:B2:84:A1:96:F3:81 X509v3 Authority Key Identifier: keyid:70:F5:D9:EE:EF:A3:05:AE:CA:EE:31:E6:FC:B4:E2:23:21:B2:80:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPXZ7u-jBa7K7jHm_LTiIyGygEo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/d0cD2OQNwvBbl6ZoayOyhKGW84E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/140105-e462-48d2-a58f-a57035792e57/1/cPXZ7u-jBa7K7jHm_LTiIyGygEo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.141.131.0/24 Signature Algorithm: sha256WithRSAEncryption 62:d2:9f:80:57:65:3b:3c:90:6d:4e:9c:a0:f6:af:56:75:38: 0f:e7:92:8e:3b:9c:6d:21:81:7f:cd:da:9c:6f:c9:fb:aa:1b: 6b:10:4b:40:a7:a7:cc:1b:b9:83:42:c9:4c:ec:15:d0:6b:e0: cb:13:c2:6c:da:d7:e3:99:ae:17:30:d2:fb:ef:d1:8c:d0:23: 1d:dc:fb:ac:dd:a8:84:c5:3c:22:a4:38:7d:0b:03:9e:c5:3a: 9a:72:bc:30:9b:d6:25:0b:dd:3e:1c:f1:fb:5e:97:d1:25:5f: 2f:3a:5b:66:15:7f:ab:cd:7f:6e:4a:e7:4d:82:94:d5:7f:79: fa:16:14:78:e5:f0:d4:ab:cd:d8:fa:d9:84:24:a2:f2:2e:fd: 4b:1f:cd:a3:01:7e:c1:0c:15:19:19:8a:a9:36:cf:30:88:6c: 45:12:a9:5a:2b:06:7d:08:75:b9:56:5a:1c:b5:17:71:1e:28: 1a:b4:d5:89:eb:00:e7:c4:d6:26:ef:2c:a9:46:e0:2a:92:51: 4c:f7:a3:1b:b9:a9:01:07:5c:4c:35:ee:e9:5e:20:8f:68:e8: 3d:9c:1b:fa:49:a3:a5:f0:86:7c:58:09:b5:fb:03:68:6f:b9: ef:6d:bf:2d:6c:c9:e1:27:07:47:f7:90:75:36:a5:13:c1:26: 2b:61:2c:85 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EQkbQklBiCPmQpodDlFEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZjVkOWVlZWZhMzA1YWVjYWVlMzFlNmZjYjRlMjIzMjFi MjgwNGEwHhcNMjYwMTAyMDAxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzQ3MDNkOGU0MGRjMmYwNWI5N2E2Njg2YjIzYjI4NGExOTZmMzgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHndrTl5i/v/of+qkK7EMiOJdnXr YNGy1edPMpoLUYDIyO07469yxettLoi+7+1BvWBRUInMA1FcT+zSH3doCI4qfhzJ xfrBI2eLBTsCeY2q+1IPvzyDp0yWgN0R++x7jsYiORse8mAOUqroZNFzvZ29Bzyh AI9uNzwZBhrbC589Ts11QhNzT9NHE8sPbof2mXb/mANJTUsTHRarM+KljYgYiHRU KJm/jwyhMt93L1Rwm17wFsNk9JzC9F4mSVm/plQe7oElMYRf78tgVsQdf4QUItL+ hOJ58i8kqXRngctr7cjwOne6qSMN8yjE9b88o61CSr0ooW4DlqofvOb/KQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHdHA9jkDcLwW5emaGsjsoShlvOBMB8GA1UdIwQY MBaAFHD12e7vowWuyu4x5vy04iMhsoBKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1BYWjd1LWpCYTdLN2pIbV9MVGlJeUd5Z0VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8xNDAxMDUtZTQ2Mi00OGQyLWE1OGYt YTU3MDM1NzkyZTU3LzEvZDBjRDJPUU53dkJibDZab2F5T3loS0dXODRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8xNDAxMDUtZTQ2Mi00OGQyLWE1OGYtYTU3MDM1NzkyZTU3 LzEvY1BYWjd1LWpCYTdLN2pIbV9MVGlJeUd5Z0VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuY2DMA0G CSqGSIb3DQEBCwUAA4IBAQBi0p+AV2U7PJBtTpyg9q9WdTgP55KOO5xtIYF/zdqc b8n7qhtrEEtAp6fMG7mDQslM7BXQa+DLE8Js2tfjma4XMNL779GM0CMd3Pus3aiE xTwipDh9CwOexTqacrwwm9YlC90+HPH7XpfRJV8vOltmFX+rzX9uSudNgpTVf3n6 FhR45fDUq83Y+tmEJKLyLv1LH82jAX7BDBUZGYqpNs8wiGxFEqlaKwZ9CHW5Vloc tRdxHigatNWJ6wDnxNYm7yypRuAqklFM96MbuakBB1xMNe7pXiCPaOg9nBv6SaOl 8IZ8WAm1+wNob7nvbb8tbMnhJwdH95B1NqUTwSYrYSyF -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:22 2026 by rpki-client