This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/DQVqjzC5rdONHq62ZKGqNPJyrRw.roa File: DQVqjzC5rdONHq62ZKGqNPJyrRw.roa (raw, json) Hash identifier: dDYajOCYrao79EK9Kj5vMqOndXhk7A3V1BOKDwNdvCc= Subject key identifier: 0D:05:6A:8F:30:B9:AD:D3:8D:1E:AE:B6:64:A1:AA:34:F2:72:AD:1C Certificate issuer: /CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01 Certificate serial: 019B7CEE60F7678DF468416DAEDCC5FBAD1B Authority key identifier: 2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/DQVqjzC5rdONHq62ZKGqNPJyrRw.roa Signing time: Fri 02 Jan 2026 04:19:15 +0000 ROA not before: Fri 02 Jan 2026 04:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212027 IP address blocks: 194.150.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.mft rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 22:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:60:f7:67:8d:f4:68:41:6d:ae:dc:c5:fb:ad:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2d3c3987e7c34b366aa0f09c40ea4c80bfed0e01 Validity Not Before: Jan 2 04:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d056a8f30b9add38d1eaeb664a1aa34f272ad1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:cd:de:54:1b:cd:9b:f5:32:a6:3e:57:ba:fa: 73:46:f1:d4:01:68:f0:7f:d2:00:aa:e3:0b:2b:03: f0:db:48:f8:41:51:c2:17:33:6f:31:5b:20:0b:83: 3e:1c:91:99:f1:b5:f5:5d:0a:58:9c:e3:af:fb:81: 62:a4:17:79:07:37:7a:55:8b:36:d4:57:4e:fc:17: 96:d5:75:65:39:c8:af:76:7e:aa:50:2d:2e:25:89: ce:af:8a:a3:8c:da:a5:25:cc:3f:cb:80:58:d5:50: c2:8f:11:ad:00:d9:42:2f:94:0c:6a:b0:7f:9b:b9: a7:fa:b6:3f:89:e8:99:e6:68:7e:1a:e5:d2:02:ee: be:cc:65:b5:2c:76:37:47:1d:fc:db:c7:05:e5:5f: a3:93:e6:3e:ee:9b:e9:34:c6:da:0c:ca:55:73:35: 56:ed:c7:84:f3:45:f2:f7:28:df:79:d4:d5:bc:dc: ef:23:b6:ba:90:a5:c5:a3:14:f8:54:26:75:7b:e0: da:09:f5:85:c0:e1:e4:18:04:b5:35:66:bc:85:7f: f2:24:1f:b6:30:eb:03:9f:ef:fa:0e:c8:5a:15:2d: bb:41:07:50:88:90:df:e8:ad:af:96:c0:d0:d9:03: fa:22:ae:83:e9:4f:4d:13:7b:c5:67:0d:de:9a:14: 12:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:05:6A:8F:30:B9:AD:D3:8D:1E:AE:B6:64:A1:AA:34:F2:72:AD:1C X509v3 Authority Key Identifier: keyid:2D:3C:39:87:E7:C3:4B:36:6A:A0:F0:9C:40:EA:4C:80:BF:ED:0E:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LTw5h-fDSzZqoPCcQOpMgL_tDgE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/DQVqjzC5rdONHq62ZKGqNPJyrRw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/068a6c-921b-4e0b-ba7e-3a6de99ede47/1/LTw5h-fDSzZqoPCcQOpMgL_tDgE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.150.73.0/24 Signature Algorithm: sha256WithRSAEncryption 74:55:5a:b4:3c:17:2c:9d:93:45:58:7c:b1:97:4b:be:ce:6a: e1:cc:ab:96:60:1c:34:5a:f2:e6:0d:7e:ee:b1:49:08:05:00: c2:c5:1c:10:05:b9:ae:e4:83:4f:ad:ed:99:25:e5:a0:92:53: ed:8d:b9:25:93:9a:b6:7d:53:6c:1b:a5:c5:5c:f5:10:14:84: c2:a0:da:44:1c:17:4c:25:21:f4:80:c8:2f:d5:d6:51:71:20: be:ea:d9:03:a7:a7:21:db:80:a8:ab:c7:09:b6:48:de:0c:d1: 22:b4:4d:e1:6c:bf:07:a8:dd:18:07:6a:b0:af:4e:05:f9:a8: 5d:ff:d9:98:57:e6:1f:13:17:a8:9f:f2:a5:e2:b4:0c:6c:9d: b3:0d:bb:17:b4:dc:13:9c:e2:30:51:6d:0b:17:fd:a5:c1:b6: a1:74:6d:7f:33:99:f2:eb:68:ff:f6:ad:64:9f:a8:d3:f6:03: 87:7d:c2:2a:09:e9:61:d6:a8:e4:6d:b4:b3:e5:a5:fc:58:37: fa:e7:06:b4:84:64:05:c2:57:a0:f0:d0:f3:aa:54:b7:e1:c6: 40:a9:da:bd:d3:ab:07:1f:18:ee:fc:21:bd:5f:37:be:0d:bc: 21:22:c6:b1:df:ec:ee:19:d6:32:77:22:4c:d9:90:9c:50:9c: fd:f3:85:7e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87mD3Z430aEFtrtzF+60bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJkM2MzOTg3ZTdjMzRiMzY2YWEwZjA5YzQwZWE0YzgwYmZl ZDBlMDEwHhcNMjYwMTAyMDQxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDA1NmE4ZjMwYjlhZGQzOGQxZWFlYjY2NGExYWEzNGYyNzJhZDFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6s3eVBvNm/Uypj5XuvpzRvHUAWjw f9IAquMLKwPw20j4QVHCFzNvMVsgC4M+HJGZ8bX1XQpYnOOv+4FipBd5Bzd6VYs2 1FdO/BeW1XVlOcivdn6qUC0uJYnOr4qjjNqlJcw/y4BY1VDCjxGtANlCL5QMarB/ m7mn+rY/ieiZ5mh+GuXSAu6+zGW1LHY3Rx3828cF5V+jk+Y+7pvpNMbaDMpVczVW 7ceE80Xy9yjfedTVvNzvI7a6kKXFoxT4VCZ1e+DaCfWFwOHkGAS1NWa8hX/yJB+2 MOsDn+/6DshaFS27QQdQiJDf6K2vlsDQ2QP6Iq6D6U9NE3vFZw3emhQSAwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA0Fao8wua3TjR6utmShqjTycq0cMB8GA1UdIwQY MBaAFC08OYfnw0s2aqDwnEDqTIC/7Q4BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFR3NWgtZkRTelpxb1BDY1FPcE1nTF90RGdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8wNjhhNmMtOTIxYi00ZTBiLWJhN2Ut M2E2ZGU5OWVkZTQ3LzEvRFFWcWp6QzVyZE9OSHE2MlpLR3FOUEp5clJ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8wNjhhNmMtOTIxYi00ZTBiLWJhN2UtM2E2ZGU5OWVkZTQ3 LzEvTFR3NWgtZkRTelpxb1BDY1FPcE1nTF90RGdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpZJMA0G CSqGSIb3DQEBCwUAA4IBAQB0VVq0PBcsnZNFWHyxl0u+zmrhzKuWYBw0WvLmDX7u sUkIBQDCxRwQBbmu5INPre2ZJeWgklPtjbklk5q2fVNsG6XFXPUQFITCoNpEHBdM JSH0gMgv1dZRcSC+6tkDp6ch24Coq8cJtkjeDNEitE3hbL8HqN0YB2qwr04F+ahd /9mYV+YfExeon/Kl4rQMbJ2zDbsXtNwTnOIwUW0LF/2lwbahdG1/M5ny62j/9q1k n6jT9gOHfcIqCelh1qjkbbSz5aX8WDf65wa0hGQFwleg8NDzqlS34cZAqdq906sH Hxju/CG9Xze+DbwhIsax3+zuGdYydyJM2ZCcUJz984V+ -----END CERTIFICATE-----Generated at Wed Jan 21 07:24:31 2026 by rpki-client