This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/dJ99YeIlqHaqk3MFFpF1s00gLYY.roa File: dJ99YeIlqHaqk3MFFpF1s00gLYY.roa (raw, json) Hash identifier: 2get34VvGB/+dlsQY7O9iVM7eMGsBo6doetqxUk2mpw= Subject key identifier: 74:9F:7D:61:E2:25:A8:76:AA:93:73:05:16:91:75:B3:4D:20:2D:86 Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc Certificate serial: 019B7AC8B22FBEBF7C40B01EF617F6B75908 Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/dJ99YeIlqHaqk3MFFpF1s00gLYY.roa Signing time: Thu 01 Jan 2026 18:18:51 +0000 ROA not before: Thu 01 Jan 2026 18:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34416 IP address blocks: 188.214.26.0/24 maxlen: 24 188.215.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:b2:2f:be:bf:7c:40:b0:1e:f6:17:f6:b7:59:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc Validity Not Before: Jan 1 18:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=749f7d61e225a876aa937305169175b34d202d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f9:e6:f3:ee:bf:eb:c1:03:9e:2c:dd:37:4e: 44:02:57:c7:79:b5:e8:2a:0a:fc:f1:f1:ed:62:ce: 12:1d:99:51:43:04:eb:ce:c3:5b:e3:bf:2b:99:0f: 5d:c5:57:ea:42:2a:0b:cc:b3:af:97:e2:43:47:fe: 4f:fd:59:c3:47:fb:3a:97:e9:47:4c:0b:1f:a1:02: 17:b7:5e:58:b7:f3:02:75:a9:fc:ac:a5:a0:c4:7b: b3:ac:03:3a:48:cc:8a:36:c8:bc:46:cf:67:21:91: 08:e8:73:93:94:0c:d4:e6:94:cf:e6:80:a6:15:19: 07:1d:1f:8e:9a:51:5c:a3:56:8a:5b:77:78:28:5f: 4c:9b:cb:d1:4c:96:21:6c:c5:16:dd:b1:b5:77:60: f5:fd:0e:0c:c6:a4:6b:0f:43:8b:39:aa:87:0e:6e: ed:87:6f:55:ee:91:e2:45:49:41:a4:2a:b2:d4:28: d2:52:d9:94:16:e0:61:d9:95:2c:ff:57:fa:d6:2f: c3:d9:95:d9:35:2c:24:9a:73:c5:58:21:bf:dc:9b: 49:b5:8f:24:d9:c0:d9:f4:ca:fd:4a:ea:43:e9:d7: 96:a2:0c:89:be:87:fa:95:e3:fd:03:7e:5e:97:aa: 79:fd:06:ad:a2:66:8b:54:5d:76:39:de:77:52:36: f0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:9F:7D:61:E2:25:A8:76:AA:93:73:05:16:91:75:B3:4D:20:2D:86 X509v3 Authority Key Identifier: keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/dJ99YeIlqHaqk3MFFpF1s00gLYY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.214.26.0/24 188.215.234.0/24 Signature Algorithm: sha256WithRSAEncryption 31:92:c5:d2:11:d5:9f:10:91:10:a8:b8:7d:4e:46:a4:bf:f8: 87:08:df:9a:3e:ae:5b:16:65:1e:4d:0c:c6:cf:12:3b:6b:b5: 85:7a:44:23:19:30:52:29:bf:e1:20:fe:8a:f5:a7:4a:69:34: db:75:45:de:b2:38:26:89:d6:9c:8c:10:68:bf:fa:46:33:85: 5d:b7:4e:2a:75:02:fd:12:2b:67:63:90:c6:c8:f6:77:77:35: 67:ab:90:77:ad:03:cc:11:1f:94:81:53:a7:d6:5c:2f:1c:79: d4:17:00:88:cf:88:d2:7f:fe:a8:6b:41:2e:62:58:76:42:f5: 74:d2:83:f3:fa:9f:90:6b:15:ed:d2:f5:ff:23:d8:7c:2f:69: f9:7f:52:17:54:5f:3f:6c:78:31:68:8f:84:3d:98:b6:60:0b: 7c:dc:c1:3e:39:23:11:f0:99:2f:9d:cf:18:10:78:66:97:de: a0:4d:44:45:07:1c:7c:5a:1e:06:a8:a3:8b:cc:90:a7:26:de: 92:e7:eb:d1:80:d2:0b:64:a8:33:c0:a4:ae:96:ae:c1:fa:d8: 49:a2:fc:bb:cb:7b:a8:5e:7b:61:61:ef:40:1b:0d:fd:f0:a2: 71:32:56:02:3c:f4:49:fb:89:a5:60:ca:a5:ef:fa:1f:98:69: 05:f8:39:b7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6yLIvvr98QLAe9hf2t1kIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNDVlYWQ4ZDNmMTI4NDQwMmI2Zjc1NjE0YTg3MjU3NTAz Y2UxYmMwHhcNMjYwMTAxMTgxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDlmN2Q2MWUyMjVhODc2YWE5MzczMDUxNjkxNzViMzRkMjAyZDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/nm8+6/68EDnizdN05EAlfHebXo Kgr88fHtYs4SHZlRQwTrzsNb478rmQ9dxVfqQioLzLOvl+JDR/5P/VnDR/s6l+lH TAsfoQIXt15Yt/MCdan8rKWgxHuzrAM6SMyKNsi8Rs9nIZEI6HOTlAzU5pTP5oCm FRkHHR+OmlFco1aKW3d4KF9Mm8vRTJYhbMUW3bG1d2D1/Q4MxqRrD0OLOaqHDm7t h29V7pHiRUlBpCqy1CjSUtmUFuBh2ZUs/1f61i/D2ZXZNSwkmnPFWCG/3JtJtY8k 2cDZ9Mr9SupD6deWogyJvof6leP9A35el6p5/QatomaLVF12Od53UjbwlQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHSffWHiJah2qpNzBRaRdbNNIC2GMB8GA1UdIwQY MBaAFJFF6tjT8ShEArb3VhSocldQPOG8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzct MmFkMTk1MjY0YzcyLzEvZEo5OVllSWxxSGFxazNNRkZwRjFzMDBnTFlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9hNTIzNWYtNjJmYi00YWJiLTgwMzctMmFkMTk1MjY0Yzcy LzEva1VYcTJOUHhLRVFDdHZkV0ZLaHlWMUE4NGJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAvNYaAwQA vNfqMA0GCSqGSIb3DQEBCwUAA4IBAQAxksXSEdWfEJEQqLh9Tkakv/iHCN+aPq5b FmUeTQzGzxI7a7WFekQjGTBSKb/hIP6K9adKaTTbdUXesjgmidacjBBov/pGM4Vd t04qdQL9EitnY5DGyPZ3dzVnq5B3rQPMER+UgVOn1lwvHHnUFwCIz4jSf/6oa0Eu Ylh2QvV00oPz+p+QaxXt0vX/I9h8L2n5f1IXVF8/bHgxaI+EPZi2YAt83ME+OSMR 8Jkvnc8YEHhml96gTURFBxx8Wh4GqKOLzJCnJt6S5+vRgNILZKgzwKSulq7B+thJ ovy7y3uoXnthYe9AGw398KJxMlYCPPRJ+4mlYMql7/ofmGkF+Dm3 -----END CERTIFICATE-----Generated at Mon Feb 9 18:43:45 2026 by rpki-client