This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/671ee4-ad81-454f-965f-62a4e675eaeb/1/DoWhtMhiJd62u67yTypXkNyKc54.roa File: DoWhtMhiJd62u67yTypXkNyKc54.roa (raw, json) Hash identifier: rOFqk1lXAk5Zo2qrvR0lJblhfPY81qij2Skbo2/XBYI= Subject key identifier: 0E:85:A1:B4:C8:62:25:DE:B6:BB:AE:F2:4F:2A:57:90:DC:8A:73:9E Certificate issuer: /CN=f9df80f7c692e86d3cd6b755d06cf7ce9c137ff2 Certificate serial: 019B7D5AFAC9EDB9E14A256D5E063D15A2A7 Authority key identifier: F9:DF:80:F7:C6:92:E8:6D:3C:D6:B7:55:D0:6C:F7:CE:9C:13:7F:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-d-A98aS6G081rdV0Gz3zpwTf_I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/671ee4-ad81-454f-965f-62a4e675eaeb/1/DoWhtMhiJd62u67yTypXkNyKc54.roa Signing time: Fri 02 Jan 2026 06:17:53 +0000 ROA not before: Fri 02 Jan 2026 06:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5505 IP address blocks: 185.123.204.0/22 maxlen: 22 185.123.204.0/24 maxlen: 24 185.123.205.0/24 maxlen: 24 185.123.206.0/24 maxlen: 24 185.123.207.0/24 maxlen: 24 185.210.226.0/24 maxlen: 24 185.210.227.0/24 maxlen: 24 2a03:9320::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/671ee4-ad81-454f-965f-62a4e675eaeb/1/1-d-A98aS6G081rdV0Gz3zpwTf_I.crl rsync://rpki.ripe.net/repository/DEFAULT/57/671ee4-ad81-454f-965f-62a4e675eaeb/1/1-d-A98aS6G081rdV0Gz3zpwTf_I.mft rsync://rpki.ripe.net/repository/DEFAULT/1-d-A98aS6G081rdV0Gz3zpwTf_I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:fa:c9:ed:b9:e1:4a:25:6d:5e:06:3d:15:a2:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f9df80f7c692e86d3cd6b755d06cf7ce9c137ff2 Validity Not Before: Jan 2 06:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e85a1b4c86225deb6bbaef24f2a5790dc8a739e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2c:3d:86:95:1b:c3:3f:0a:10:95:e5:e0:b9: 9d:79:70:81:35:c4:23:24:4e:ba:c9:e4:5f:9f:2b: b5:e8:89:fa:74:eb:16:98:5d:8d:19:fc:39:35:fc: 72:5f:c8:0b:1e:b1:5e:52:a1:74:d0:b2:34:41:c1: 16:b1:22:78:99:5c:fa:5a:ab:3a:f9:83:c2:6a:9a: 17:06:53:a6:04:82:fc:ce:50:4a:9a:7c:d5:e9:c1: b6:38:a4:0a:cb:64:57:d1:8d:33:93:fb:c2:63:76: d8:71:ca:64:a6:83:8b:55:a7:35:36:47:54:34:ce: 20:c0:b1:53:98:6b:2b:a0:4a:1c:78:d1:95:07:3e: 7c:3b:df:b5:03:33:61:b8:0f:c1:6d:f0:4a:58:10: cb:28:c8:b4:e8:41:29:82:11:8a:b6:da:8b:e6:bd: 3e:34:79:33:aa:57:fc:d1:d9:cb:c2:ce:5f:7d:7d: 9a:88:45:76:f0:21:bf:c9:a4:19:39:44:0a:9a:9f: d6:41:7d:ae:ef:6e:68:13:f1:1d:ac:53:15:9b:9c: 02:79:32:be:2c:0f:db:bd:3b:80:eb:fa:c5:10:3c: 0e:8a:5a:cb:37:9e:03:9f:0c:c4:db:57:1a:b0:56: 2f:90:b0:68:4e:94:c9:b7:a8:fa:76:ed:53:10:12: ed:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:85:A1:B4:C8:62:25:DE:B6:BB:AE:F2:4F:2A:57:90:DC:8A:73:9E X509v3 Authority Key Identifier: keyid:F9:DF:80:F7:C6:92:E8:6D:3C:D6:B7:55:D0:6C:F7:CE:9C:13:7F:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-d-A98aS6G081rdV0Gz3zpwTf_I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/671ee4-ad81-454f-965f-62a4e675eaeb/1/DoWhtMhiJd62u67yTypXkNyKc54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/57/671ee4-ad81-454f-965f-62a4e675eaeb/1/1-d-A98aS6G081rdV0Gz3zpwTf_I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.123.204.0/22 185.210.226.0/23 IPv6: 2a03:9320::/32 Signature Algorithm: sha256WithRSAEncryption 37:31:70:4c:3c:26:be:b2:66:11:f4:77:18:08:60:45:47:69: ba:bf:d6:d6:ee:4a:77:69:f9:d1:d1:7e:8f:28:ef:6a:79:85: 99:56:f8:10:4d:ac:2f:07:cd:c1:d2:69:31:3e:c2:c1:98:b2: 61:22:6c:68:e1:ba:db:d7:9f:81:0d:6e:34:d8:bf:9d:7c:08: c7:64:03:86:71:bf:85:a8:83:e1:14:3e:38:7f:2f:d7:06:03: 79:f8:20:21:e2:46:75:12:8c:9c:62:32:c4:86:82:fe:a4:f2: 36:f2:66:fe:59:78:9d:99:19:db:88:09:64:ad:d5:11:a8:1f: da:af:9f:34:18:05:fd:36:f9:13:52:8d:0f:45:08:b4:72:d3: b6:ae:8e:8c:fa:bc:a9:ac:39:97:68:bd:c3:0e:f6:30:a5:92: 02:96:94:15:0f:2b:cf:ad:67:e8:66:40:3c:00:8f:10:65:18: c9:00:e6:5d:fb:81:f7:da:92:32:f7:3c:84:f8:8e:88:f7:c1: 29:31:20:5d:2e:5e:25:d5:e1:81:f5:ca:84:9c:0a:f1:c2:1c: 71:f3:40:b2:4e:fb:30:b1:4e:2b:f1:0b:cb:37:e3:98:2c:ac: 91:40:9b:d4:50:b8:e4:eb:6a:4a:3b:be:d1:f9:a5:2b:b6:4a: ae:d8:6f:e7 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt9WvrJ7bnhSiVtXgY9FaKnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY5ZGY4MGY3YzY5MmU4NmQzY2Q2Yjc1NWQwNmNmN2NlOWMx MzdmZjIwHhcNMjYwMTAyMDYxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTg1YTFiNGM4NjIyNWRlYjZiYmFlZjI0ZjJhNTc5MGRjOGE3MzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4iw9hpUbwz8KEJXl4LmdeXCBNcQj JE66yeRfnyu16In6dOsWmF2NGfw5NfxyX8gLHrFeUqF00LI0QcEWsSJ4mVz6Wqs6 +YPCapoXBlOmBIL8zlBKmnzV6cG2OKQKy2RX0Y0zk/vCY3bYccpkpoOLVac1NkdU NM4gwLFTmGsroEoceNGVBz58O9+1AzNhuA/BbfBKWBDLKMi06EEpghGKttqL5r0+ NHkzqlf80dnLws5ffX2aiEV28CG/yaQZOUQKmp/WQX2u725oE/EdrFMVm5wCeTK+ LA/bvTuA6/rFEDwOilrLN54DnwzE21casFYvkLBoTpTJt6j6du1TEBLtJwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFA6FobTIYiXetruu8k8qV5DcinOeMB8GA1UdIwQY MBaAFPnfgPfGkuhtPNa3VdBs986cE3/yMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1kLUE5OGFTNkcwODFyZFYwR3ozenB3VGZfSS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTcvNjcxZWU0LWFkODEtNDU0Zi05NjVm LTYyYTRlNjc1ZWFlYi8xL0RvV2h0TWhpSmQ2MnU2N3lUeXBYa055S2M1NC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNTcvNjcxZWU0LWFkODEtNDU0Zi05NjVmLTYyYTRlNjc1ZWFl Yi8xLzEtZC1BOThhUzZHMDgxcmRWMEd6M3pwd1RmX0kuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAK5e8wD BAG50uIwDQQCAAIwBwMFACoDkyAwDQYJKoZIhvcNAQELBQADggEBADcxcEw8Jr6y ZhH0dxgIYEVHabq/1tbuSndp+dHRfo8o72p5hZlW+BBNrC8HzcHSaTE+wsGYsmEi bGjhutvXn4ENbjTYv518CMdkA4Zxv4Wog+EUPjh/L9cGA3n4ICHiRnUSjJxiMsSG gv6k8jbyZv5ZeJ2ZGduICWSt1RGoH9qvnzQYBf02+RNSjQ9FCLRy07aujoz6vKms OZdovcMO9jClkgKWlBUPK8+tZ+hmQDwAjxBlGMkA5l37gffakjL3PIT4joj3wSkx IF0uXiXV4YH1yoScCvHCHHHzQLJO+zCxTivxC8s345gsrJFAm9RQuOTrako7vtH5 pSu2Sq7Yb+c= -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:20 2026 by rpki-client