This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/DZMUgwqZTew_AIq02ZLPKDpbTYE.roa File: DZMUgwqZTew_AIq02ZLPKDpbTYE.roa (raw, json) Hash identifier: zHfVpuiksrUGKB8ICNHjrDl5IxhuSu4hChZHL57TIOU= Subject key identifier: 0D:93:14:83:0A:99:4D:EC:3F:00:8A:B4:D9:92:CF:28:3A:5B:4D:81 Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9 Certificate serial: 019B7F83ABF54118A996F29461F1DC414CF7 Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/DZMUgwqZTew_AIq02ZLPKDpbTYE.roa Signing time: Fri 02 Jan 2026 16:21:34 +0000 ROA not before: Fri 02 Jan 2026 16:21:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213784 IP address blocks: 188.191.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.mft rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 01:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:ab:f5:41:18:a9:96:f2:94:61:f1:dc:41:4c:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9 Validity Not Before: Jan 2 16:21:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d9314830a994dec3f008ab4d992cf283a5b4d81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:11:67:29:e5:b0:72:94:5b:ed:95:67:32:88: 88:45:ea:25:59:0d:da:a3:cb:5b:95:10:32:c0:a2: a9:e7:48:98:0d:c9:04:0d:39:25:ae:eb:d7:ca:ec: 2c:01:49:70:58:46:dd:87:ff:34:2c:43:bf:3c:fe: 8d:52:88:52:ac:68:2b:90:74:51:3f:ed:f9:be:0b: 02:22:bc:6c:4d:9d:2c:03:2e:7c:13:78:2f:e0:0c: 77:ce:76:a2:ab:83:56:89:bc:73:2c:38:a0:06:1b: 54:91:da:2f:2e:64:58:f6:06:d9:cc:92:c1:4a:15: 68:a1:74:4d:d7:b2:2b:8e:eb:97:48:3a:0e:6c:98: 38:39:2c:58:1d:df:14:bc:3b:30:ff:df:70:53:6d: 3a:5e:7b:b8:9e:f7:9e:b7:b2:d3:3d:d2:b0:80:05: 0c:62:39:af:4b:77:61:b3:07:66:6d:3b:21:13:c2: ee:8e:d6:4a:11:03:19:cc:80:2f:89:4c:db:0b:e2: c3:88:b0:61:69:44:3a:cd:64:8d:4e:54:23:f9:f8: d9:75:e7:b4:e1:44:81:a8:21:46:84:e5:e4:1c:90: 07:33:7d:ae:bf:ab:45:ec:d5:99:49:d0:91:16:74: 28:66:58:b1:22:2e:ae:ed:4a:78:fc:37:60:84:86: ce:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:93:14:83:0A:99:4D:EC:3F:00:8A:B4:D9:92:CF:28:3A:5B:4D:81 X509v3 Authority Key Identifier: keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/DZMUgwqZTew_AIq02ZLPKDpbTYE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.191.48.0/24 Signature Algorithm: sha256WithRSAEncryption 39:9b:0e:5a:f1:d2:26:22:13:3d:13:73:50:3c:59:c9:ec:6b: 7d:ea:fd:8d:c5:0e:34:ed:f4:8b:66:e4:8e:8a:45:c6:b3:78: 7c:f8:5c:5f:66:77:9a:6e:31:40:79:97:b2:5f:9d:3f:ea:30: c1:9b:2d:c6:cf:43:74:80:d9:bd:e6:1c:8c:72:51:8b:dc:2f: 4b:5b:27:cd:35:48:b3:81:fa:b6:f7:56:72:b3:41:e9:0c:e9: 8d:42:32:0d:9e:6d:b3:cc:84:4a:25:6a:da:f3:86:4d:8d:b8: 8d:09:a4:4c:1f:5c:92:53:0b:0d:65:d8:19:7a:8c:9b:c9:85: 72:be:d0:13:53:95:6d:1b:f9:d6:37:be:43:9b:d2:f9:03:da: 86:b5:bb:ef:e3:a6:08:bd:47:b0:15:2e:46:ee:66:45:af:2e: 40:27:1c:6b:de:68:3f:e0:44:a2:57:cf:15:b1:ce:52:80:10: e6:d0:35:84:99:95:34:ca:6d:c1:6d:d3:84:d2:eb:d0:c5:f5: 1f:48:f9:c0:50:93:bc:01:e2:9c:1c:66:ca:f3:9c:ea:9d:a0: 05:53:74:e4:87:11:f9:ac:b1:fc:ca:87:74:22:b6:22:4a:79: 3a:55:9f:33:a3:e6:94:8e:51:47:5b:b7:aa:f9:cb:3f:01:82: 17:96:1d:0f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g6v1QRiplvKUYfHcQUz3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczZjIxMGYxMjk5YTFlMGFlZTcxZGMxZDc5ZTVmYjEyMDky ZDMwYTkwHhcNMjYwMTAyMTYyMTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDkzMTQ4MzBhOTk0ZGVjM2YwMDhhYjRkOTkyY2YyODNhNWI0ZDgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBFnKeWwcpRb7ZVnMoiIReolWQ3a o8tblRAywKKp50iYDckEDTklruvXyuwsAUlwWEbdh/80LEO/PP6NUohSrGgrkHRR P+35vgsCIrxsTZ0sAy58E3gv4Ax3znaiq4NWibxzLDigBhtUkdovLmRY9gbZzJLB ShVooXRN17IrjuuXSDoObJg4OSxYHd8UvDsw/99wU206Xnu4nveet7LTPdKwgAUM YjmvS3dhswdmbTshE8LujtZKEQMZzIAviUzbC+LDiLBhaUQ6zWSNTlQj+fjZdee0 4USBqCFGhOXkHJAHM32uv6tF7NWZSdCRFnQoZlixIi6u7Up4/DdghIbOhQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA2TFIMKmU3sPwCKtNmSzyg6W02BMB8GA1UdIwQY MBaAFHPyEPEpmh4K7nHcHXnl+xIJLTCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDkt Yjk0NjQ3MThiYTM3LzEvRFpNVWd3cVpUZXdfQUlxMDJaTFBLRHBiVFlFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDktYjk0NjQ3MThiYTM3 LzEvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvL8wMA0G CSqGSIb3DQEBCwUAA4IBAQA5mw5a8dImIhM9E3NQPFnJ7Gt96v2NxQ407fSLZuSO ikXGs3h8+FxfZneabjFAeZeyX50/6jDBmy3Gz0N0gNm95hyMclGL3C9LWyfNNUiz gfq291Zys0HpDOmNQjINnm2zzIRKJWra84ZNjbiNCaRMH1ySUwsNZdgZeoybyYVy vtATU5VtG/nWN75Dm9L5A9qGtbvv46YIvUewFS5G7mZFry5AJxxr3mg/4ESiV88V sc5SgBDm0DWEmZU0ym3BbdOE0uvQxfUfSPnAUJO8AeKcHGbK85zqnaAFU3TkhxH5 rLH8yod0IrYiSnk6VZ8zo+aUjlFHW7eq+cs/AYIXlh0P -----END CERTIFICATE-----Generated at Sun Jan 18 08:52:58 2026 by rpki-client