This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/ndKj7sv7siAhskI-Ujr55HM8Eqg.roa File: ndKj7sv7siAhskI-Ujr55HM8Eqg.roa (raw, json) Hash identifier: BrZsXiOk25bH6V5XZK8dlayhh/dOH8cXdKNgo01yyrw= Subject key identifier: 9D:D2:A3:EE:CB:FB:B2:20:21:B2:42:3E:52:3A:F9:E4:73:3C:12:A8 Certificate issuer: /CN=dbd7fc50548287deaea7ce92099e47a04a70d451 Certificate serial: 019B7F15C05B163022B3854EB3559A8220D3 Authority key identifier: DB:D7:FC:50:54:82:87:DE:AE:A7:CE:92:09:9E:47:A0:4A:70:D4:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/ndKj7sv7siAhskI-Ujr55HM8Eqg.roa Signing time: Fri 02 Jan 2026 14:21:30 +0000 ROA not before: Fri 02 Jan 2026 14:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.73.224.0/24 maxlen: 24 2a10:f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.mft rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c0:5b:16:30:22:b3:85:4e:b3:55:9a:82:20:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbd7fc50548287deaea7ce92099e47a04a70d451 Validity Not Before: Jan 2 14:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9dd2a3eecbfbb22021b2423e523af9e4733c12a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:15:a6:c6:d3:25:63:2c:03:70:17:8a:5c:2e: 75:5f:e5:11:1a:7b:a7:05:b6:74:22:78:75:72:3b: c6:a9:ca:19:6a:42:ca:e3:46:94:30:06:0d:e0:ab: 98:49:96:78:c2:a2:e3:f2:3a:ea:bf:7d:22:86:aa: 33:27:76:3b:32:30:db:e2:14:47:ec:1d:95:54:25: 7d:ac:cf:65:64:f4:a8:83:e7:e4:02:4c:3b:48:19: 09:9f:dd:64:41:16:cf:ab:b3:d1:d8:87:b3:57:5b: 1e:d7:05:97:f0:5c:62:89:f8:20:6b:13:f6:1b:76: 16:91:96:f8:0f:b3:2e:2c:80:a7:45:1b:8e:47:fd: 2b:2c:62:29:e6:86:27:88:86:6c:d7:15:d1:5e:59: 4f:cb:00:bc:91:d7:e0:26:86:89:8f:94:46:23:89: ad:ee:08:36:c6:cb:e2:9c:32:23:54:00:1b:a8:ac: 52:fc:4a:cc:71:5a:a6:83:d2:cc:6f:96:36:09:55: 84:d4:3f:6b:7d:ad:94:f3:13:8a:7a:e0:4a:b2:2a: 9b:1a:87:89:3a:a4:25:85:dc:2a:9a:05:cc:9d:f4: f9:93:bb:40:61:61:11:14:25:0f:57:9a:ad:8f:4d: c1:93:2c:d4:ad:97:ad:74:4d:31:f9:30:75:ac:ad: e7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D2:A3:EE:CB:FB:B2:20:21:B2:42:3E:52:3A:F9:E4:73:3C:12:A8 X509v3 Authority Key Identifier: keyid:DB:D7:FC:50:54:82:87:DE:AE:A7:CE:92:09:9E:47:A0:4A:70:D4:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/ndKj7sv7siAhskI-Ujr55HM8Eqg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.73.224.0/24 IPv6: 2a10:f80::/32 Signature Algorithm: sha256WithRSAEncryption 20:a9:f0:6d:45:54:65:a3:29:a1:1d:84:61:69:80:30:3d:f2: 3a:3c:92:74:67:ef:ca:e7:e0:a3:f1:7c:5a:7f:82:da:4b:bf: 94:bd:f2:d5:40:18:3a:2d:be:5f:ab:76:74:14:77:76:fc:b9: 36:c1:97:ad:ca:7b:91:58:78:a5:6e:06:81:07:fb:f7:a4:35: ec:9a:4d:a9:0f:f3:82:2b:8c:c4:0d:a1:63:d0:70:1d:4d:a3: ba:f4:0d:f9:0e:2c:54:0e:c5:ef:97:05:b3:fe:99:66:2e:07: 2c:01:90:68:8a:de:13:02:23:a4:d8:60:c6:48:bf:c3:38:bc: 07:a5:52:2d:c9:d3:3b:ae:e4:0f:03:a6:1f:b3:ab:49:b3:de: 83:2c:17:f4:18:97:54:5c:66:0e:3f:48:c6:21:96:dd:a0:0a: f6:e2:a5:90:f8:91:2c:80:d9:62:b2:bd:9e:7a:d9:24:ba:7b: 6a:40:ed:53:57:49:9d:f5:93:29:ed:13:ff:d5:97:22:66:c9: d4:be:44:10:44:92:7e:d1:6e:70:a8:4a:91:0a:0c:30:93:7b: ae:29:0b:ac:2b:5a:6d:94:19:7f:b5:a2:35:8b:8c:8d:b7:f1: 71:48:25:d1:7f:a6:45:a4:b6:52:23:2d:55:00:f9:4a:2c:3c: fb:b4:e0:e1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FcBbFjAis4VOs1WagiDTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZDdmYzUwNTQ4Mjg3ZGVhZWE3Y2U5MjA5OWU0N2EwNGE3 MGQ0NTEwHhcNMjYwMTAyMTQyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZGQyYTNlZWNiZmJiMjIwMjFiMjQyM2U1MjNhZjllNDczM2MxMmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBWmxtMlYywDcBeKXC51X+URGnun BbZ0Inh1cjvGqcoZakLK40aUMAYN4KuYSZZ4wqLj8jrqv30ihqozJ3Y7MjDb4hRH 7B2VVCV9rM9lZPSog+fkAkw7SBkJn91kQRbPq7PR2IezV1se1wWX8FxiifggaxP2 G3YWkZb4D7MuLICnRRuOR/0rLGIp5oYniIZs1xXRXllPywC8kdfgJoaJj5RGI4mt 7gg2xsvinDIjVAAbqKxS/ErMcVqmg9LMb5Y2CVWE1D9rfa2U8xOKeuBKsiqbGoeJ OqQlhdwqmgXMnfT5k7tAYWERFCUPV5qtj03BkyzUrZetdE0x+TB1rK3nQQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJ3So+7L+7IgIbJCPlI6+eRzPBKoMB8GA1UdIwQY MBaAFNvX/FBUgoferqfOkgmeR6BKcNRRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjlmOFVGU0NoOTZ1cDg2U0NaNUhvRXB3MUZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS82MDZlYTktNDgzNC00YjYzLTllMGEt ZjI1NjA0YzRiZTgyLzEvbmRLajdzdjdzaUFoc2tJLVVqcjU1SE04RXFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS82MDZlYTktNDgzNC00YjYzLTllMGEtZjI1NjA0YzRiZTgy LzEvMjlmOFVGU0NoOTZ1cDg2U0NaNUhvRXB3MUZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuUngMA0E AgACMAcDBQAqEA+AMA0GCSqGSIb3DQEBCwUAA4IBAQAgqfBtRVRloymhHYRhaYAw PfI6PJJ0Z+/K5+Cj8Xxaf4LaS7+UvfLVQBg6Lb5fq3Z0FHd2/Lk2wZetynuRWHil bgaBB/v3pDXsmk2pD/OCK4zEDaFj0HAdTaO69A35DixUDsXvlwWz/plmLgcsAZBo it4TAiOk2GDGSL/DOLwHpVItydM7ruQPA6Yfs6tJs96DLBf0GJdUXGYOP0jGIZbd oAr24qWQ+JEsgNlisr2eetkkuntqQO1TV0md9ZMp7RP/1ZciZsnUvkQQRJJ+0W5w qEqRCgwwk3uuKQusK1ptlBl/taI1i4yNt/FxSCXRf6ZFpLZSIy1VAPlKLDz7tODh -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:58 2026 by rpki-client