This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/DdWY2FB-Dk69fNol-4eYBe-DCK4.roa File: DdWY2FB-Dk69fNol-4eYBe-DCK4.roa (raw, json) Hash identifier: GsXI8hKrSWyG6b3agSzUUfjy30UrGZi/9F9DfHDLOzg= Subject key identifier: 0D:D5:98:D8:50:7E:0E:4E:BD:7C:DA:25:FB:87:98:05:EF:83:08:AE Certificate issuer: /CN=5dd7336fa915721ce3bfee217f4e99164db9532b Certificate serial: 019B79EC1DC4936E6D2A0D58E9FE2DD8A6B5 Authority key identifier: 5D:D7:33:6F:A9:15:72:1C:E3:BF:EE:21:7F:4E:99:16:4D:B9:53:2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/DdWY2FB-Dk69fNol-4eYBe-DCK4.roa Signing time: Thu 01 Jan 2026 14:17:55 +0000 ROA not before: Thu 01 Jan 2026 14:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133480 IP address blocks: 5.62.22.0/24 maxlen: 24 5.62.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.mft rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:1d:c4:93:6e:6d:2a:0d:58:e9:fe:2d:d8:a6:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dd7336fa915721ce3bfee217f4e99164db9532b Validity Not Before: Jan 1 14:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0dd598d8507e0e4ebd7cda25fb879805ef8308ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a3:67:f0:7f:fb:73:0f:ed:cc:fb:e2:f3:21: a8:ba:8e:72:11:c2:78:57:73:63:c0:b3:fa:77:45: 7b:7a:88:7a:b0:98:09:16:35:45:51:53:3d:48:46: b1:b6:4f:a2:82:56:27:d9:09:8b:f5:03:05:01:0f: 60:d4:7a:f7:dd:ea:24:9b:b2:6d:77:2f:cf:c0:68: 3a:4a:2d:5e:43:a3:64:61:64:1b:ef:6d:a0:46:de: 1c:19:8a:69:8d:45:8a:18:9c:fc:eb:06:4c:a5:40: fa:60:40:b4:8a:61:8c:48:c3:e2:4b:42:66:93:53: c7:fc:b1:2d:9a:ba:12:ec:b7:e5:6f:d0:f8:0c:12: 0d:37:8d:09:ab:74:5b:2f:0d:cc:ed:dd:b9:05:97: 8a:c8:ca:54:91:79:ba:05:37:4e:c4:65:15:3e:59: 1f:8f:2d:98:dc:1e:44:f1:96:56:7d:64:34:3f:9e: 0d:b5:2b:ec:18:27:bf:68:05:9e:b6:93:04:b1:b5: 3d:2c:05:b5:cf:d2:8e:73:2d:14:2e:50:33:e0:d0: 88:b0:c2:de:9c:f6:01:06:8d:66:1f:90:71:02:30: f1:eb:a5:80:39:16:46:96:9f:8f:d7:b4:0d:6e:8b: be:ee:05:a9:74:b5:4d:39:d0:6d:c5:de:4e:f3:ce: 35:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D5:98:D8:50:7E:0E:4E:BD:7C:DA:25:FB:87:98:05:EF:83:08:AE X509v3 Authority Key Identifier: keyid:5D:D7:33:6F:A9:15:72:1C:E3:BF:EE:21:7F:4E:99:16:4D:B9:53:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdczb6kVchzjv-4hf06ZFk25Uys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/DdWY2FB-Dk69fNol-4eYBe-DCK4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e744bd-f6d9-4f74-8c01-8c4bc45927a3/1/Xdczb6kVchzjv-4hf06ZFk25Uys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.62.22.0/23 Signature Algorithm: sha256WithRSAEncryption 57:93:bd:a7:a5:e9:b6:70:20:66:16:c2:55:ac:78:0a:65:3b: a0:3f:69:26:d3:cd:b3:7e:ab:bc:c9:be:7f:fe:8d:b2:f0:4a: 84:77:6c:e5:56:d2:62:02:5e:08:8e:89:49:05:ec:d6:0d:63: 4e:55:72:4f:b4:55:97:e6:dc:e3:2f:85:88:92:14:1c:b4:c8: ea:18:b5:47:7b:c1:d5:b6:8b:13:54:6c:2b:d1:97:ea:9f:e7: 33:01:6e:60:75:8f:8d:43:b8:19:8f:61:31:8d:3d:b6:c9:af: 47:ed:55:20:ad:10:6a:7e:38:c9:d0:81:e0:15:dc:b7:e1:ae: e9:1b:4c:c3:8a:67:4b:05:5b:96:2a:af:94:a6:92:7e:a8:99: 54:28:53:71:10:95:17:fe:85:68:ef:35:a0:05:45:4d:44:ee: 49:38:9c:bb:68:5a:26:42:4b:e6:fa:35:8e:c6:30:54:43:12: be:8f:93:96:63:b8:79:49:b4:7d:31:50:ac:4e:74:30:bb:32: a0:b1:ed:ec:9f:3d:3f:64:27:17:7e:25:42:5e:7c:88:ff:dd: dd:2a:73:b5:10:7a:58:a7:e8:75:ce:07:51:25:8b:a9:4b:ca: 8c:2d:de:7b:30:95:3c:3f:95:aa:85:0b:4c:04:73:08:bf:6e: fa:89:82:69 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57B3Ek25tKg1Y6f4t2Ka1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVkZDczMzZmYTkxNTcyMWNlM2JmZWUyMTdmNGU5OTE2NGRi OTUzMmIwHhcNMjYwMTAxMTQxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGQ1OThkODUwN2UwZTRlYmQ3Y2RhMjVmYjg3OTgwNWVmODMwOGFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKNn8H/7cw/tzPvi8yGouo5yEcJ4 V3NjwLP6d0V7eoh6sJgJFjVFUVM9SEaxtk+iglYn2QmL9QMFAQ9g1Hr33eokm7Jt dy/PwGg6Si1eQ6NkYWQb722gRt4cGYppjUWKGJz86wZMpUD6YEC0imGMSMPiS0Jm k1PH/LEtmroS7Lflb9D4DBINN40Jq3RbLw3M7d25BZeKyMpUkXm6BTdOxGUVPlkf jy2Y3B5E8ZZWfWQ0P54NtSvsGCe/aAWetpMEsbU9LAW1z9KOcy0ULlAz4NCIsMLe nPYBBo1mH5BxAjDx66WAORZGlp+P17QNbou+7gWpdLVNOdBtxd5O88413wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA3VmNhQfg5OvXzaJfuHmAXvgwiuMB8GA1UdIwQY MBaAFF3XM2+pFXIc47/uIX9OmRZNuVMrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGRjemI2a1ZjaHpqdi00aGYwNlpGazI1VXlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9lNzQ0YmQtZjZkOS00Zjc0LThjMDEt OGM0YmM0NTkyN2EzLzEvRGRXWTJGQi1EazY5Zk5vbC00ZVlCZS1EQ0s0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9lNzQ0YmQtZjZkOS00Zjc0LThjMDEtOGM0YmM0NTkyN2Ez LzEvWGRjemI2a1ZjaHpqdi00aGYwNlpGazI1VXlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBT4WMA0G CSqGSIb3DQEBCwUAA4IBAQBXk72npem2cCBmFsJVrHgKZTugP2km082zfqu8yb5/ /o2y8EqEd2zlVtJiAl4IjolJBezWDWNOVXJPtFWX5tzjL4WIkhQctMjqGLVHe8HV tosTVGwr0Zfqn+czAW5gdY+NQ7gZj2ExjT22ya9H7VUgrRBqfjjJ0IHgFdy34a7p G0zDimdLBVuWKq+UppJ+qJlUKFNxEJUX/oVo7zWgBUVNRO5JOJy7aFomQkvm+jWO xjBUQxK+j5OWY7h5SbR9MVCsTnQwuzKgse3snz0/ZCcXfiVCXnyI/93dKnO1EHpY p+h1zgdRJYupS8qMLd57MJU8P5WqhQtMBHMIv276iYJp -----END CERTIFICATE-----Generated at Fri Jan 9 06:21:11 2026 by rpki-client