This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/Da5LxG19Yw6xhI6ZJi1ReVDgTQY.roa File: Da5LxG19Yw6xhI6ZJi1ReVDgTQY.roa (raw, json) Hash identifier: eUEOcJxF25gsT7/MsFXHCve7nn05zSmOBLGby7gQmpo= Subject key identifier: 0D:AE:4B:C4:6D:7D:63:0E:B1:84:8E:99:26:2D:51:79:50:E0:4D:06 Certificate issuer: /CN=946733318c62c47920fe375ad99cb729ee90a1ad Certificate serial: 019B7E393A407C10BCC392D8F87EB352D6BD Authority key identifier: 94:67:33:31:8C:62:C4:79:20:FE:37:5A:D9:9C:B7:29:EE:90:A1:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/Da5LxG19Yw6xhI6ZJi1ReVDgTQY.roa Signing time: Fri 02 Jan 2026 10:20:38 +0000 ROA not before: Fri 02 Jan 2026 10:20:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207894 IP address blocks: 185.114.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/lGczMYxixHkg_jda2Zy3Ke6Qoa0.crl rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/lGczMYxixHkg_jda2Zy3Ke6Qoa0.mft rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 00:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:3a:40:7c:10:bc:c3:92:d8:f8:7e:b3:52:d6:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=946733318c62c47920fe375ad99cb729ee90a1ad Validity Not Before: Jan 2 10:20:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0dae4bc46d7d630eb1848e99262d517950e04d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:1a:48:ce:b4:db:19:5f:43:1d:68:09:a7:83: 4d:df:d4:c4:47:f4:d8:f8:41:9f:8f:70:91:f5:ee: ad:ce:da:f0:c1:30:2d:b3:84:e5:76:50:da:7a:49: 5b:f0:1f:e6:6d:fe:72:99:7c:1c:59:8f:94:0a:ee: 3a:76:ad:78:db:f3:54:af:26:93:82:f3:cd:a1:a8: f4:b4:f0:e6:64:3b:9f:7b:29:2f:a9:b1:1e:9b:d1: df:fb:f3:81:28:21:6f:6d:28:3b:b7:c3:38:bb:2f: 33:f2:50:02:ea:0f:dd:33:da:07:d3:d6:65:95:0e: c7:9d:f8:32:fe:51:ef:13:f6:f4:54:32:70:e1:a6: 0a:36:77:5f:5b:ad:96:75:cc:44:46:5f:5a:73:51: 14:73:e7:8c:e6:14:00:ff:48:a7:e9:22:02:64:a7: a5:71:d9:be:12:82:77:54:bc:d9:c5:e5:c4:19:0c: 82:ff:83:90:a4:df:eb:21:8c:6c:5a:14:fd:e7:ea: 81:bd:26:ca:c7:72:ef:b0:67:57:88:ac:a0:d1:34: 98:26:e0:70:27:b3:44:30:89:61:9b:12:26:b5:7b: 1f:93:cd:2e:42:9a:29:9c:23:1e:50:b8:9b:59:89: c3:7c:6f:25:f0:aa:f6:0a:15:98:41:ef:16:67:e9: 10:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:AE:4B:C4:6D:7D:63:0E:B1:84:8E:99:26:2D:51:79:50:E0:4D:06 X509v3 Authority Key Identifier: keyid:94:67:33:31:8C:62:C4:79:20:FE:37:5A:D9:9C:B7:29:EE:90:A1:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lGczMYxixHkg_jda2Zy3Ke6Qoa0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/Da5LxG19Yw6xhI6ZJi1ReVDgTQY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d7609e-6396-4155-ad35-b74089d8e59e/1/lGczMYxixHkg_jda2Zy3Ke6Qoa0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.114.197.0/24 Signature Algorithm: sha256WithRSAEncryption 03:12:28:5a:72:04:f7:b8:01:3e:42:b0:2a:93:b0:f9:bf:4a: 78:4a:84:65:3a:30:c7:31:89:0c:98:a5:90:26:8e:ef:aa:aa: b0:f1:6b:d7:4a:5e:aa:75:67:14:cb:71:09:df:91:61:0d:ff: 7b:b6:ff:31:ea:cf:68:b7:c8:79:51:61:d5:90:cb:81:b4:16: 99:30:80:85:d4:4f:23:40:8b:b7:ff:e0:e6:63:1c:6d:4a:03: ef:d2:f1:7f:1a:04:4d:0b:ad:39:4d:1b:7c:a8:31:8f:52:11: b1:80:0c:68:39:f9:2e:63:24:6e:45:95:7b:52:2c:2e:66:c1: 09:b6:32:8b:dd:cf:8f:5a:d2:31:2c:7a:60:40:b8:d2:ca:ac: a2:b8:51:9f:06:fe:78:9b:be:2e:c4:9c:96:41:1c:ef:ea:ed: 35:89:de:36:e3:0f:ce:93:bd:dc:4b:72:71:66:89:94:10:a5: 43:a6:47:0b:28:39:5d:7f:e5:62:3a:33:61:d5:22:8a:85:34: 43:25:32:14:f5:eb:fa:d0:ec:bc:a9:dd:08:77:34:8a:d3:ef: 70:52:c8:30:3f:71:63:02:94:9c:e9:36:5e:ec:91:42:e6:24: 1a:8e:46:5c:b2:6c:ba:67:f3:ee:1e:c7:24:33:41:52:89:02: 39:b9:58:6d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OTpAfBC8w5LY+H6zUta9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0NjczMzMxOGM2MmM0NzkyMGZlMzc1YWQ5OWNiNzI5ZWU5 MGExYWQwHhcNMjYwMTAyMTAyMDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGFlNGJjNDZkN2Q2MzBlYjE4NDhlOTkyNjJkNTE3OTUwZTA0ZDA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9BpIzrTbGV9DHWgJp4NN39TER/TY +EGfj3CR9e6tztrwwTAts4TldlDaeklb8B/mbf5ymXwcWY+UCu46dq142/NUryaT gvPNoaj0tPDmZDufeykvqbEem9Hf+/OBKCFvbSg7t8M4uy8z8lAC6g/dM9oH09Zl lQ7Hnfgy/lHvE/b0VDJw4aYKNndfW62WdcxERl9ac1EUc+eM5hQA/0in6SICZKel cdm+EoJ3VLzZxeXEGQyC/4OQpN/rIYxsWhT95+qBvSbKx3LvsGdXiKyg0TSYJuBw J7NEMIlhmxImtXsfk80uQpopnCMeULibWYnDfG8l8Kr2ChWYQe8WZ+kQXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA2uS8RtfWMOsYSOmSYtUXlQ4E0GMB8GA1UdIwQY MBaAFJRnMzGMYsR5IP43WtmctynukKGtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEdjek1ZeGl4SGtnX2pkYTJaeTNLZTZRb2EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC9kNzYwOWUtNjM5Ni00MTU1LWFkMzUt Yjc0MDg5ZDhlNTllLzEvRGE1THhHMTlZdzZ4aEk2WkppMVJlVkRnVFFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC9kNzYwOWUtNjM5Ni00MTU1LWFkMzUtYjc0MDg5ZDhlNTll LzEvbEdjek1ZeGl4SGtnX2pkYTJaeTNLZTZRb2EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXLFMA0G CSqGSIb3DQEBCwUAA4IBAQADEihacgT3uAE+QrAqk7D5v0p4SoRlOjDHMYkMmKWQ Jo7vqqqw8WvXSl6qdWcUy3EJ35FhDf97tv8x6s9ot8h5UWHVkMuBtBaZMICF1E8j QIu3/+DmYxxtSgPv0vF/GgRNC605TRt8qDGPUhGxgAxoOfkuYyRuRZV7UiwuZsEJ tjKL3c+PWtIxLHpgQLjSyqyiuFGfBv54m74uxJyWQRzv6u01id424w/Ok73cS3Jx ZomUEKVDpkcLKDldf+ViOjNh1SKKhTRDJTIU9ev60Oy8qd0IdzSK0+9wUsgwP3Fj ApSc6TZe7JFC5iQajkZcsmy6Z/PuHsckM0FSiQI5uVht -----END CERTIFICATE-----Generated at Tue Jan 20 07:47:12 2026 by rpki-client