This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/DD43OBuORwvs1otnl043iWJ9zU8.roa File: DD43OBuORwvs1otnl043iWJ9zU8.roa (raw, json) Hash identifier: x0e72FMAGE0gxBlwm+Cw85lgtcTDWsoMi+U0KAYDm4M= Subject key identifier: 0C:3E:37:38:1B:8E:47:0B:EC:D6:8B:67:97:4E:37:89:62:7D:CD:4F Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Certificate serial: 019B7B35F9C45D567AEE90804140A3BFA628 Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/DD43OBuORwvs1otnl043iWJ9zU8.roa Signing time: Thu 01 Jan 2026 20:18:13 +0000 ROA not before: Thu 01 Jan 2026 20:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 40676 IP address blocks: 87.236.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.mft rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 16 Jan 2026 04:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:f9:c4:5d:56:7a:ee:90:80:41:40:a3:bf:a6:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56 Validity Not Before: Jan 1 20:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c3e37381b8e470becd68b67974e3789627dcd4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:92:f4:6d:fe:ae:b8:aa:37:74:17:7a:38:39: e3:9b:bb:e0:19:80:89:c6:61:0c:cc:76:e3:31:04: 46:9e:27:ea:ae:60:95:94:15:7f:29:ea:9a:8b:89: 84:25:4d:e8:1f:73:af:b1:b3:7a:06:e9:63:e8:9f: 0d:7e:ed:3a:d4:59:ee:6b:50:e9:ff:8e:6d:ee:cb: 99:13:85:1a:ab:5d:32:d5:bc:12:3c:87:03:35:36: 32:31:6e:ab:5f:ec:94:1e:3e:3f:60:76:b8:63:23: c1:66:2c:31:12:ac:27:cb:c9:2b:ec:31:07:ea:ff: fc:de:57:41:ed:cb:c6:98:97:84:6a:10:d1:13:3c: 47:10:a5:61:b5:17:50:d6:05:bc:cb:fa:a0:87:80: 5c:b9:3b:ca:bc:f2:39:3c:05:45:ea:71:1d:9d:75: 38:93:3f:c5:c5:2a:70:4f:33:0b:00:21:4c:41:2b: 79:01:20:72:7d:ed:62:63:78:36:bf:a7:9b:1e:e7: 87:88:24:0f:d2:bf:2e:04:6d:00:d2:3e:da:64:45: 6b:09:37:54:0c:9b:77:88:c4:17:12:dd:f6:72:33: 84:a9:f0:6c:70:e6:88:27:e4:6a:be:2b:1d:c7:16: 8a:89:e6:91:48:86:d5:0d:08:22:2a:36:96:2d:5b: 16:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:3E:37:38:1B:8E:47:0B:EC:D6:8B:67:97:4E:37:89:62:7D:CD:4F X509v3 Authority Key Identifier: keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/DD43OBuORwvs1otnl043iWJ9zU8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.236.167.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:28:ae:ec:1a:90:ab:57:58:77:d6:e7:32:b6:a3:3d:ad:ea: f6:94:a0:c4:37:2b:93:fc:53:54:d7:31:a2:76:fd:ad:51:1f: b6:2d:07:5f:d7:6b:43:e7:f5:86:ba:bc:8a:98:20:e2:be:83: e5:ee:eb:fc:41:76:83:76:fc:64:6e:07:bd:f1:ee:ee:12:d8: 16:5d:4a:86:09:88:f3:f0:a4:99:bb:fc:8b:86:ad:27:5f:a1: e0:bf:ee:27:32:06:6b:c5:90:58:5f:9d:bb:22:39:5b:ed:ed: de:cf:aa:b6:c1:41:a6:4f:af:b2:a2:53:b5:70:c0:e0:cc:68: 95:65:9c:d1:4e:91:43:84:72:9d:26:51:a8:c3:87:2c:ec:ad: da:97:67:08:1d:45:e5:d8:a0:03:5f:90:1a:00:47:a9:b0:19: 28:3e:3b:f0:d3:5d:2a:c9:a9:68:6c:19:b2:d8:fd:ef:2c:6c: a4:e8:9e:6d:8b:e4:09:41:01:ab:4b:44:17:a7:f3:f7:7a:29: 8a:10:7b:53:31:c1:56:dd:da:cc:44:8a:23:2c:41:17:87:1c: 1e:cf:97:8c:08:61:51:04:46:eb:e6:1f:b7:65:5b:9f:4b:da: 50:ec:3b:0b:ae:fe:65:13:f1:42:af:6a:7b:73:3e:ac:84:45: b2:d6:d4:3b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7NfnEXVZ67pCAQUCjv6YoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw N2VlNTYwHhcNMjYwMTAxMjAxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzNlMzczODFiOGU0NzBiZWNkNjhiNjc5NzRlMzc4OTYyN2RjZDRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZL0bf6uuKo3dBd6ODnjm7vgGYCJ xmEMzHbjMQRGnifqrmCVlBV/Keqai4mEJU3oH3OvsbN6Bulj6J8Nfu061Fnua1Dp /45t7suZE4Uaq10y1bwSPIcDNTYyMW6rX+yUHj4/YHa4YyPBZiwxEqwny8kr7DEH 6v/83ldB7cvGmJeEahDREzxHEKVhtRdQ1gW8y/qgh4BcuTvKvPI5PAVF6nEdnXU4 kz/FxSpwTzMLACFMQSt5ASByfe1iY3g2v6ebHueHiCQP0r8uBG0A0j7aZEVrCTdU DJt3iMQXEt32cjOEqfBscOaIJ+RqvisdxxaKieaRSIbVDQgiKjaWLVsWSwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAw+NzgbjkcL7NaLZ5dON4lifc1PMB8GA1UdIwQY MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt OGJmYmRkNDVjYjYyLzEvREQ0M09CdU9Sd3ZzMW90bmwwNDNpV0o5elU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV+ynMA0G CSqGSIb3DQEBCwUAA4IBAQA6KK7sGpCrV1h31ucytqM9rer2lKDENyuT/FNU1zGi dv2tUR+2LQdf12tD5/WGuryKmCDivoPl7uv8QXaDdvxkbge98e7uEtgWXUqGCYjz 8KSZu/yLhq0nX6Hgv+4nMgZrxZBYX527Ijlb7e3ez6q2wUGmT6+yolO1cMDgzGiV ZZzRTpFDhHKdJlGow4cs7K3al2cIHUXl2KADX5AaAEepsBkoPjvw010qyalobBmy 2P3vLGyk6J5ti+QJQQGrS0QXp/P3eimKEHtTMcFW3drMRIojLEEXhxwez5eMCGFR BEbr5h+3ZVufS9pQ7DsLrv5lE/FCr2p7cz6shEWy1tQ7 -----END CERTIFICATE-----Generated at Thu Jan 15 13:16:59 2026 by rpki-client