This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/DDNpOrAqAOY0hs2uDPL3iCWLdnM.roa File: DDNpOrAqAOY0hs2uDPL3iCWLdnM.roa (raw, json) Hash identifier: 8faJdkXXJZqTecw2oUQhwrCEcBbQjYDmWPFG/2WQ35U= Subject key identifier: 0C:33:69:3A:B0:2A:00:E6:34:86:CD:AE:0C:F2:F7:88:25:8B:76:73 Certificate issuer: /CN=8f2824c61357dc344bbdf35b83577459b9d3fc44 Certificate serial: 019B7FF181066691F8FB5BE0C4A1CB1C5226 Authority key identifier: 8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/DDNpOrAqAOY0hs2uDPL3iCWLdnM.roa Signing time: Fri 02 Jan 2026 18:21:32 +0000 ROA not before: Fri 02 Jan 2026 18:21:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 93.157.38.0/23 maxlen: 24 2a00:4bc0:2000::/44 maxlen: 56 2a00:4bc0:2100::/40 maxlen: 48 2a00:4bc0:2300::/40 maxlen: 48 2a00:4bc0:2400::/40 maxlen: 48 2a00:4bc0:2500::/40 maxlen: 48 2a00:4bc0:2600::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.crl rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.mft rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:81:06:66:91:f8:fb:5b:e0:c4:a1:cb:1c:52:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8f2824c61357dc344bbdf35b83577459b9d3fc44 Validity Not Before: Jan 2 18:21:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c33693ab02a00e63486cdae0cf2f788258b7673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dc:58:64:44:29:c3:d1:d7:a0:17:de:75:09: 5c:c4:a0:10:e8:2b:64:78:b4:e5:97:ce:aa:21:4d: 84:5d:eb:41:55:66:4b:6c:ab:23:d9:47:81:40:bd: ee:ea:8d:89:85:68:7f:87:94:60:f4:fa:ac:66:ac: 1f:81:ec:c5:bf:6f:0a:ee:21:2e:84:93:bc:09:74: b6:12:bd:94:29:ad:57:c8:b0:85:1d:9b:e9:81:06: a0:f5:ea:62:6c:43:59:f8:a8:15:b7:c4:61:c1:1c: 70:95:dc:ac:11:2f:f4:83:93:e3:b4:3c:e5:d1:24: 4d:96:f0:3d:42:1a:03:59:98:bb:bc:3a:30:30:1e: 59:47:d9:50:50:9d:fb:32:2e:ee:65:cd:83:c1:23: 29:58:96:02:7f:ba:5f:58:9f:ee:87:c7:60:a5:ea: 5b:f4:2c:d8:7b:65:2a:84:56:4a:44:79:a7:14:83: 8b:b3:d9:e2:a5:e3:2f:ed:90:c4:72:d9:aa:44:0c: 90:3a:61:44:06:12:6a:38:0c:6a:65:b8:57:fe:79: 5e:fc:0f:15:80:35:09:b4:3a:8c:d6:0f:8d:1c:b4: 9b:16:72:95:8c:4f:4d:cc:93:a0:50:a4:db:6e:26: 98:8a:08:50:13:d7:6a:b4:6c:11:66:22:54:5d:4d: 26:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:33:69:3A:B0:2A:00:E6:34:86:CD:AE:0C:F2:F7:88:25:8B:76:73 X509v3 Authority Key Identifier: keyid:8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/DDNpOrAqAOY0hs2uDPL3iCWLdnM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.157.38.0/23 IPv6: 2a00:4bc0:2000::/44 2a00:4bc0:2100::/40 2a00:4bc0:2300::-2a00:4bc0:26ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1a:8f:ef:10:f1:aa:56:fe:45:16:36:b4:0a:10:ff:3a:e1:6c: c1:51:99:77:5d:ec:50:a8:10:f9:bc:c0:b0:2d:02:70:e5:a2: 0e:87:bf:ae:6b:a3:fa:24:17:2f:56:ff:6d:82:44:47:c6:8c: a9:a1:bd:1b:17:f6:3d:9f:50:c3:86:5e:62:7a:53:47:16:19: 6a:e0:f1:6c:9b:ba:27:43:0e:2d:c5:4b:ad:d2:df:28:00:51: 51:00:98:9e:70:73:d7:ec:74:f6:6a:9f:c5:39:60:c1:93:49: 7d:54:6f:61:45:04:78:e2:dd:8a:a1:bf:6a:67:96:5d:23:90: bc:29:00:c0:0e:4d:9b:b8:51:a6:d5:1e:1b:f1:2c:ff:d0:9f: b2:dc:67:1c:4e:53:0c:c4:0d:1f:02:c0:3c:54:07:56:db:fa: d5:58:26:66:45:06:73:80:dd:fb:82:03:a9:c4:1f:21:8e:24: 45:73:14:1e:00:e1:47:07:4a:27:4b:fe:ab:9b:8d:b9:9c:a2: 05:3d:98:c2:09:4b:83:20:8b:f3:5f:b3:27:e2:13:37:fb:80: 28:2f:a9:a9:ed:51:1c:2e:3f:d5:21:ac:91:1d:1f:ae:19:69: 5c:f9:06:88:c1:e6:0d:9e:5b:bf:72:6e:94:72:ef:01:68:e7: cb:b1:43:5b -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgISAZt/8YEGZpH4+1vgxKHLHFImMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhmMjgyNGM2MTM1N2RjMzQ0YmJkZjM1YjgzNTc3NDU5Yjlk M2ZjNDQwHhcNMjYwMTAyMTgyMTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzMzNjkzYWIwMmEwMGU2MzQ4NmNkYWUwY2YyZjc4ODI1OGI3NjczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtxYZEQpw9HXoBfedQlcxKAQ6Ctk eLTll86qIU2EXetBVWZLbKsj2UeBQL3u6o2JhWh/h5Rg9PqsZqwfgezFv28K7iEu hJO8CXS2Er2UKa1XyLCFHZvpgQag9epibENZ+KgVt8RhwRxwldysES/0g5PjtDzl 0SRNlvA9QhoDWZi7vDowMB5ZR9lQUJ37Mi7uZc2DwSMpWJYCf7pfWJ/uh8dgpepb 9CzYe2UqhFZKRHmnFIOLs9nipeMv7ZDEctmqRAyQOmFEBhJqOAxqZbhX/nle/A8V gDUJtDqM1g+NHLSbFnKVjE9NzJOgUKTbbiaYighQE9dqtGwRZiJUXU0mrQIDAQAB o4ICNDCCAjAwHQYDVR0OBBYEFAwzaTqwKgDmNIbNrgzy94gli3ZzMB8GA1UdIwQY MBaAFI8oJMYTV9w0S73zW4NXdFm50/xEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanlna3hoTlgzRFJMdmZOYmcxZDBXYm5UX0VRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS82NTJlYjQtMzIxYy00OGMwLTkyNzIt M2FlNzExYWYwMzRiLzEvREROcE9yQXFBT1kwaHMydURQTDNpQ1dMZG5NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS82NTJlYjQtMzIxYy00OGMwLTkyNzItM2FlNzExYWYwMzRi LzEvanlna3hoTlgzRFJMdmZOYmcxZDBXYm5UX0VRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAMBAIAATAGAwQBXZ0mMCkE AgACMCMDBwQqAEvAIAADBgAqAEvAITAQAwYAKgBLwCMDBgAqAEvAJjANBgkqhkiG 9w0BAQsFAAOCAQEAGo/vEPGqVv5FFja0ChD/OuFswVGZd13sUKgQ+bzAsC0CcOWi Doe/rmuj+iQXL1b/bYJER8aMqaG9Gxf2PZ9Qw4ZeYnpTRxYZauDxbJu6J0MOLcVL rdLfKABRUQCYnnBz1+x09mqfxTlgwZNJfVRvYUUEeOLdiqG/ameWXSOQvCkAwA5N m7hRptUeG/Es/9CfstxnHE5TDMQNHwLAPFQHVtv61VgmZkUGc4Dd+4IDqcQfIY4k RXMUHgDhRwdKJ0v+q5uNuZyiBT2YwglLgyCL81+zJ+ITN/uAKC+pqe1RHC4/1SGs kR0frhlpXPkGiMHmDZ5bv3JulHLvAWjny7FDWw== -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:43 2026 by rpki-client