This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/3bd7d2-2415-431c-b97d-d85853688b43/1/dPSk-c4bH_WcHIoaoM8dNoTJhZs.roa File: dPSk-c4bH_WcHIoaoM8dNoTJhZs.roa (raw, json) Hash identifier: N4nD9OuzOng1XYo/p2ucgs7hmPYqTpDYdJHoF2hlGak= Subject key identifier: 74:F4:A4:F9:CE:1B:1F:F5:9C:1C:8A:1A:A0:CF:1D:36:84:C9:85:9B Certificate issuer: /CN=303aae37bf3ebf95f14bad8647d3d58ef6e783b2 Certificate serial: 019B78A2A6DC54AE858CD3FFCC625348F663 Authority key identifier: 30:3A:AE:37:BF:3E:BF:95:F1:4B:AD:86:47:D3:D5:8E:F6:E7:83:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MDquN78-v5XxS62GR9PVjvbng7I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/3bd7d2-2415-431c-b97d-d85853688b43/1/dPSk-c4bH_WcHIoaoM8dNoTJhZs.roa Signing time: Thu 01 Jan 2026 08:18:03 +0000 ROA not before: Thu 01 Jan 2026 08:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49463 IP address blocks: 5.179.120.0/21 maxlen: 24 31.216.16.0/20 maxlen: 24 46.21.112.0/20 maxlen: 24 46.21.112.0/24 maxlen: 24 46.21.114.0/24 maxlen: 24 46.21.115.0/24 maxlen: 24 46.21.116.0/24 maxlen: 24 46.21.127.0/24 maxlen: 24 185.7.160.0/22 maxlen: 24 2a02:27d0::/32 maxlen: 48 2a02:27d0:100::/48 maxlen: 48 2a02:27d0:1671::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/3bd7d2-2415-431c-b97d-d85853688b43/1/MDquN78-v5XxS62GR9PVjvbng7I.crl rsync://rpki.ripe.net/repository/DEFAULT/11/3bd7d2-2415-431c-b97d-d85853688b43/1/MDquN78-v5XxS62GR9PVjvbng7I.mft rsync://rpki.ripe.net/repository/DEFAULT/MDquN78-v5XxS62GR9PVjvbng7I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:a6:dc:54:ae:85:8c:d3:ff:cc:62:53:48:f6:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=303aae37bf3ebf95f14bad8647d3d58ef6e783b2 Validity Not Before: Jan 1 08:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74f4a4f9ce1b1ff59c1c8a1aa0cf1d3684c9859b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:21:47:be:ff:37:cc:2e:7d:6e:2c:b2:9b:97: b4:91:09:bf:64:dd:f7:55:f9:1b:45:79:83:2d:a6: 19:33:bb:f5:85:14:9c:f5:68:a5:d6:88:a0:1c:7c: 26:b8:99:e4:2e:3d:c5:27:55:49:98:99:f6:1a:56: 35:2c:47:89:d7:83:67:19:8f:f4:12:09:48:40:f5: 16:32:e1:13:e7:85:08:39:6d:68:2a:12:00:12:3d: 37:d8:20:b2:7b:c9:01:a6:9f:78:37:15:5a:9f:75: b3:0d:b4:89:c0:ea:39:19:c0:8e:e5:22:a1:82:7d: be:ef:f0:9f:ec:55:d3:c1:dc:17:d7:30:3e:6d:3d: 4e:ff:f3:36:16:8e:55:d3:32:6e:1d:e3:00:15:8f: 1c:89:3a:b0:08:ae:31:1a:59:cd:c4:d6:42:bb:aa: 9f:6c:08:7c:78:8e:ef:37:90:41:fa:43:b0:2c:ad: e1:3e:64:e2:95:34:13:52:df:3d:e7:9a:34:23:7b: b7:b3:24:37:c8:8f:8c:cb:16:5e:0b:30:ff:9a:90: 29:e7:2d:f1:0f:48:2f:73:5c:9b:41:55:9d:79:5d: dd:ec:99:65:6a:82:05:4f:ba:5b:3b:a0:dd:ea:9d: 43:86:29:65:0c:5b:d1:a7:0e:38:08:a5:a4:33:b7: e6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F4:A4:F9:CE:1B:1F:F5:9C:1C:8A:1A:A0:CF:1D:36:84:C9:85:9B X509v3 Authority Key Identifier: keyid:30:3A:AE:37:BF:3E:BF:95:F1:4B:AD:86:47:D3:D5:8E:F6:E7:83:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MDquN78-v5XxS62GR9PVjvbng7I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/3bd7d2-2415-431c-b97d-d85853688b43/1/dPSk-c4bH_WcHIoaoM8dNoTJhZs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/3bd7d2-2415-431c-b97d-d85853688b43/1/MDquN78-v5XxS62GR9PVjvbng7I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.179.120.0/21 31.216.16.0/20 46.21.112.0/20 185.7.160.0/22 IPv6: 2a02:27d0::/32 Signature Algorithm: sha256WithRSAEncryption 31:66:e0:33:e5:33:ff:35:f0:d8:68:5c:36:bc:0f:83:1a:dd: da:c6:20:95:83:48:39:63:e1:15:19:79:2b:04:b6:d7:da:2f: af:42:d4:ff:a4:d4:80:36:b1:cf:a6:cc:c1:bd:13:d6:7e:ae: a5:d4:4c:fa:35:4c:db:16:9a:b1:ec:03:fb:38:f9:ad:cd:5d: d4:81:12:a3:68:6f:ee:f0:25:ae:c8:da:8e:33:5b:3d:39:fa: 0d:58:ee:da:85:4f:97:76:5d:d3:87:cd:07:83:a6:bb:88:82: d3:fe:84:c0:f6:a3:c0:2c:9e:f7:55:ec:9a:9f:f7:47:26:eb: 54:6f:7b:b3:61:bc:fe:d5:81:b7:95:81:11:6c:27:6f:25:a8: 00:20:74:12:a7:4d:5f:b6:47:b9:1b:58:d2:b8:ab:ae:8a:bc: 3a:0d:d7:ff:2d:9e:61:6e:92:12:f1:ff:2d:6c:4f:3b:92:62: 96:f4:c1:c0:1a:fd:da:4b:eb:50:d2:ed:f8:5d:82:b0:b2:26: 6c:a1:88:d6:da:76:17:ec:07:bd:4c:9a:4b:76:3f:cb:29:d6: ad:19:b2:8f:8f:b0:5f:16:cf:74:c8:05:f0:c1:49:f1:4e:b8: c2:66:ad:ef:8d:11:6d:65:1c:13:90:c4:62:cd:25:0e:f0:45: a1:df:3d:f6 -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt4oqbcVK6FjNP/zGJTSPZjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwM2FhZTM3YmYzZWJmOTVmMTRiYWQ4NjQ3ZDNkNThlZjZl NzgzYjIwHhcNMjYwMTAxMDgxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGY0YTRmOWNlMWIxZmY1OWMxYzhhMWFhMGNmMWQzNjg0Yzk4NTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtCFHvv83zC59biyym5e0kQm/ZN33 VfkbRXmDLaYZM7v1hRSc9Wil1oigHHwmuJnkLj3FJ1VJmJn2GlY1LEeJ14NnGY/0 EglIQPUWMuET54UIOW1oKhIAEj032CCye8kBpp94NxVan3WzDbSJwOo5GcCO5SKh gn2+7/Cf7FXTwdwX1zA+bT1O//M2Fo5V0zJuHeMAFY8ciTqwCK4xGlnNxNZCu6qf bAh8eI7vN5BB+kOwLK3hPmTilTQTUt8955o0I3u3syQ3yI+MyxZeCzD/mpAp5y3x D0gvc1ybQVWdeV3d7JllaoIFT7pbO6Dd6p1DhillDFvRpw44CKWkM7fmrQIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFHT0pPnOGx/1nByKGqDPHTaEyYWbMB8GA1UdIwQY MBaAFDA6rje/Pr+V8UuthkfT1Y7254OyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTURxdU43OC12NVh4UzYyR1I5UFZqdmJuZzdJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8zYmQ3ZDItMjQxNS00MzFjLWI5N2Qt ZDg1ODUzNjg4YjQzLzEvZFBTay1jNGJIX1djSElvYW9NOGROb1RKaFpzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8zYmQ3ZDItMjQxNS00MzFjLWI5N2QtZDg1ODUzNjg4YjQz LzEvTURxdU43OC12NVh4UzYyR1I5UFZqdmJuZzdJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQDBbN4AwQE H9gQAwQELhVwAwQCuQegMA0EAgACMAcDBQAqAifQMA0GCSqGSIb3DQEBCwUAA4IB AQAxZuAz5TP/NfDYaFw2vA+DGt3axiCVg0g5Y+EVGXkrBLbX2i+vQtT/pNSANrHP pszBvRPWfq6l1Ez6NUzbFpqx7AP7OPmtzV3UgRKjaG/u8CWuyNqOM1s9OfoNWO7a hU+Xdl3Th80Hg6a7iILT/oTA9qPALJ73Veyan/dHJutUb3uzYbz+1YG3lYERbCdv JagAIHQSp01ftke5G1jSuKuuirw6Ddf/LZ5hbpIS8f8tbE87kmKW9MHAGv3aS+tQ 0u34XYKwsiZsoYjW2nYX7Ae9TJpLdj/LKdatGbKPj7BfFs90yAXwwUnxTrjCZq3v jRFtZRwTkMRizSUO8EWh3z32 -----END CERTIFICATE-----Generated at Fri Jan 9 21:22:27 2026 by rpki-client