This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/dZ2RP4LG3dMrz7gDjWz_DofcN18.roa File: dZ2RP4LG3dMrz7gDjWz_DofcN18.roa (raw, json) Hash identifier: KVOJwh69OxlYqfJUg/2Rgap5CfHQCNo4dVpUmo+MUDQ= Subject key identifier: 75:9D:91:3F:82:C6:DD:D3:2B:CF:B8:03:8D:6C:FF:0E:87:DC:37:5F Certificate issuer: /CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Certificate serial: 019B7CEE70A05006155483BB4AD369C90166 Authority key identifier: 7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/dZ2RP4LG3dMrz7gDjWz_DofcN18.roa Signing time: Fri 02 Jan 2026 04:19:19 +0000 ROA not before: Fri 02 Jan 2026 04:19:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215672 IP address blocks: 79.172.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.mft rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:70:a0:50:06:15:54:83:bb:4a:d3:69:c9:01:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7b5e37f6e3b9bd1cf3684b9c03c03ad1ca642497 Validity Not Before: Jan 2 04:19:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=759d913f82c6ddd32bcfb8038d6cff0e87dc375f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f8:f3:88:78:42:91:b1:2f:7b:ad:db:18:68: 01:f9:66:41:24:76:3a:7e:6d:ad:61:84:e7:30:41: 30:f9:9c:e8:4e:30:87:3a:25:bf:40:0d:f6:c1:13: 9b:7e:49:53:82:51:64:5c:42:8b:dd:bb:73:33:7e: d4:f7:c3:2b:a4:b0:27:76:99:79:ba:a4:ac:c8:97: 15:8a:81:61:89:4e:c3:eb:c3:e0:b9:61:9e:ec:a2: 2c:c0:4b:ec:07:78:04:2e:e8:65:bb:27:ce:ba:4c: 76:8f:8c:1b:66:ba:3d:1a:ed:f9:49:e0:ad:6a:19: ca:25:26:3a:be:c2:1c:eb:90:83:27:f3:70:af:7f: ed:5e:ee:bd:5e:2c:3d:46:55:b1:dd:17:3b:ee:28: 00:c8:54:1b:f1:09:a1:57:b9:49:1d:0f:9a:b3:86: f1:59:b4:34:d2:1f:5c:52:d8:aa:df:6d:76:a7:2b: 67:21:f2:06:26:49:a8:a0:db:71:6b:91:49:74:6f: b6:3a:6b:d1:60:fd:9a:c2:d8:41:93:2b:5a:9a:a3: 73:ac:55:e2:7c:04:09:2e:db:a7:a3:66:3c:d1:ad: 3d:12:89:03:68:61:25:c6:e9:e5:06:61:ef:d8:7c: 5f:f6:7e:68:66:a3:dd:12:34:cb:4c:23:27:b7:ba: 04:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9D:91:3F:82:C6:DD:D3:2B:CF:B8:03:8D:6C:FF:0E:87:DC:37:5F X509v3 Authority Key Identifier: keyid:7B:5E:37:F6:E3:B9:BD:1C:F3:68:4B:9C:03:C0:3A:D1:CA:64:24:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1439uO5vRzzaEucA8A60cpkJJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/dZ2RP4LG3dMrz7gDjWz_DofcN18.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/26728e-ddc7-4b0f-9d1e-9593a488afcc/1/e1439uO5vRzzaEucA8A60cpkJJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.172.250.0/24 Signature Algorithm: sha256WithRSAEncryption 43:85:05:6d:b1:ac:58:80:db:09:05:55:c4:e8:b5:d7:28:53: 5f:b2:21:32:6c:92:2a:3d:c1:67:a5:dc:1f:18:99:18:3b:a7: ef:ed:49:e2:7e:39:1f:84:c8:a3:fb:67:85:39:1d:54:fb:4f: 93:d5:07:c1:6a:56:c6:0e:28:c4:9d:a6:b4:ea:d8:82:b0:51: e8:ed:80:33:9d:b8:ad:10:9d:79:19:79:c3:13:4e:7a:78:00: 81:09:97:c2:90:82:2e:1a:ae:d7:d2:e6:45:c1:a2:75:c2:b2: e1:a5:4c:54:01:8c:fd:43:5f:7c:51:d1:8b:61:d6:48:7c:d6: 43:51:c9:36:48:9a:08:1b:22:22:10:73:d2:ce:2a:f3:95:79: 01:20:f0:30:f4:c5:7b:1d:b7:9c:f1:a9:ea:d9:cf:05:73:b6: 5c:2a:be:ff:2e:29:32:8c:5b:41:cb:9d:e1:56:8f:d4:ed:1c: 2c:c4:ab:4f:76:8e:1d:33:fd:2f:4c:e2:e7:c7:11:4b:26:b2: c7:59:15:07:d3:8c:be:99:23:10:f9:6e:1e:83:40:d7:0d:74: 1f:8b:41:5b:0a:99:63:40:8e:a3:e7:50:14:e1:34:91:1e:0c: dc:31:02:99:c0:65:f6:2f:a0:20:f7:7e:71:15:3f:20:01:54: 0d:48:07:c2 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87nCgUAYVVIO7StNpyQFmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdiNWUzN2Y2ZTNiOWJkMWNmMzY4NGI5YzAzYzAzYWQxY2E2 NDI0OTcwHhcNMjYwMTAyMDQxOTE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NTlkOTEzZjgyYzZkZGQzMmJjZmI4MDM4ZDZjZmYwZTg3ZGMzNzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuvjziHhCkbEve63bGGgB+WZBJHY6 fm2tYYTnMEEw+ZzoTjCHOiW/QA32wRObfklTglFkXEKL3btzM37U98MrpLAndpl5 uqSsyJcVioFhiU7D68PguWGe7KIswEvsB3gELuhluyfOukx2j4wbZro9Gu35SeCt ahnKJSY6vsIc65CDJ/Nwr3/tXu69Xiw9RlWx3Rc77igAyFQb8QmhV7lJHQ+as4bx WbQ00h9cUtiq3212pytnIfIGJkmooNtxa5FJdG+2OmvRYP2awthBkytamqNzrFXi fAQJLtuno2Y80a09EokDaGElxunlBmHv2Hxf9n5oZqPdEjTLTCMnt7oEawIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHWdkT+Cxt3TK8+4A41s/w6H3DdfMB8GA1UdIwQY MBaAFHteN/bjub0c82hLnAPAOtHKZCSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUt OTU5M2E0ODhhZmNjLzEvZFoyUlA0TEczZE1yejdnRGpXel9Eb2ZjTjE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ny8yNjcyOGUtZGRjNy00YjBmLTlkMWUtOTU5M2E0ODhhZmNj LzEvZTE0Mzl1TzV2Unp6YUV1Y0E4QTYwY3BrSkpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAT6z6MA0G CSqGSIb3DQEBCwUAA4IBAQBDhQVtsaxYgNsJBVXE6LXXKFNfsiEybJIqPcFnpdwf GJkYO6fv7UnifjkfhMij+2eFOR1U+0+T1QfBalbGDijEnaa06tiCsFHo7YAznbit EJ15GXnDE056eACBCZfCkIIuGq7X0uZFwaJ1wrLhpUxUAYz9Q198UdGLYdZIfNZD Uck2SJoIGyIiEHPSzirzlXkBIPAw9MV7Hbec8anq2c8Fc7ZcKr7/LikyjFtBy53h Vo/U7RwsxKtPdo4dM/0vTOLnxxFLJrLHWRUH04y+mSMQ+W4eg0DXDXQfi0FbCplj QI6j51AU4TSRHgzcMQKZwGX2L6Ag935xFT8gAVQNSAfC -----END CERTIFICATE-----Generated at Mon Jan 19 23:21:43 2026 by rpki-client