This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/dNWgNNfC_9Tb3AbDhKIOGZyMQJI.roa File: dNWgNNfC_9Tb3AbDhKIOGZyMQJI.roa (raw, json) Hash identifier: H/aG56vllxYgpt1w/M61EHtJG74GyZ5NJWRtl+F7t/g= Subject key identifier: 74:D5:A0:34:D7:C2:FF:D4:DB:DC:06:C3:84:A2:0E:19:9C:8C:40:92 Certificate issuer: /CN=0759f6ac173f75ed9e585ec7d872a5865cef2835 Certificate serial: 019B7DCA570ADE214D2B9B2C7B38188DC9E0 Authority key identifier: 07:59:F6:AC:17:3F:75:ED:9E:58:5E:C7:D8:72:A5:86:5C:EF:28:35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B1n2rBc_de2eWF7H2HKlhlzvKDU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/dNWgNNfC_9Tb3AbDhKIOGZyMQJI.roa Signing time: Fri 02 Jan 2026 08:19:31 +0000 ROA not before: Fri 02 Jan 2026 08:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205185 IP address blocks: 45.129.172.0/22 maxlen: 24 86.105.160.0/22 maxlen: 24 185.136.236.0/22 maxlen: 24 185.152.84.0/22 maxlen: 24 185.226.108.0/22 maxlen: 24 194.135.48.0/22 maxlen: 24 2a0d:8600::/29 maxlen: 48 2a0f:dc40::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/B1n2rBc_de2eWF7H2HKlhlzvKDU.crl rsync://rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/B1n2rBc_de2eWF7H2HKlhlzvKDU.mft rsync://rpki.ripe.net/repository/DEFAULT/B1n2rBc_de2eWF7H2HKlhlzvKDU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:57:0a:de:21:4d:2b:9b:2c:7b:38:18:8d:c9:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0759f6ac173f75ed9e585ec7d872a5865cef2835 Validity Not Before: Jan 2 08:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74d5a034d7c2ffd4dbdc06c384a20e199c8c4092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:48:b3:42:1d:3a:06:2e:7d:e4:01:79:d9:66: 3d:3a:2f:54:5c:b5:2a:79:a8:56:8e:14:5c:0f:43: 97:45:c6:a1:ea:02:20:f8:a1:f9:e5:f0:7f:6f:20: bc:e5:56:67:86:d7:27:c1:24:c6:33:ca:8a:0d:2d: 7d:29:a6:4a:61:99:eb:0a:d5:9a:90:59:4a:15:6a: 22:14:57:0e:00:aa:c4:58:6a:8e:8a:29:4e:32:13: a1:27:6d:8e:b9:f0:c7:df:71:05:fa:74:20:17:7e: dc:51:0a:71:cd:3f:37:07:71:6c:9c:a6:5c:68:d8: d0:da:e0:fe:3a:39:38:57:32:38:89:10:4b:56:d0: 08:8b:86:32:de:e7:e0:31:ee:e1:ea:9f:91:65:f7: 73:cc:22:f9:9f:fc:bb:2f:30:18:93:00:31:b7:92: db:28:3d:9e:20:45:b4:ae:05:9f:f4:26:57:4f:be: b7:b2:ca:db:67:2f:32:c8:22:7f:08:10:e8:57:09: 38:69:81:b2:88:45:95:bc:1d:fb:b1:0c:4a:9e:98: bb:42:5d:e8:c1:f1:4a:45:09:8d:b5:e4:69:49:fe: 60:0a:70:bb:b2:05:93:49:3b:cb:30:5e:4c:7a:99: bb:f3:6b:6c:d6:39:51:af:98:1b:cc:7e:7a:7f:8c: d7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D5:A0:34:D7:C2:FF:D4:DB:DC:06:C3:84:A2:0E:19:9C:8C:40:92 X509v3 Authority Key Identifier: keyid:07:59:F6:AC:17:3F:75:ED:9E:58:5E:C7:D8:72:A5:86:5C:EF:28:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B1n2rBc_de2eWF7H2HKlhlzvKDU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/dNWgNNfC_9Tb3AbDhKIOGZyMQJI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d2cd1c-04b5-44d0-81d5-7be3bda05927/1/B1n2rBc_de2eWF7H2HKlhlzvKDU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.129.172.0/22 86.105.160.0/22 185.136.236.0/22 185.152.84.0/22 185.226.108.0/22 194.135.48.0/22 IPv6: 2a0d:8600::/29 2a0f:dc40::/29 Signature Algorithm: sha256WithRSAEncryption 75:4d:dc:35:c5:ba:81:19:2a:43:23:d6:3a:50:7a:88:d4:33: a5:34:58:4e:6f:f3:c1:ff:79:7b:0f:e5:10:87:8e:e7:18:46: 8b:88:46:b3:e1:99:e2:b7:9b:0c:d9:42:5b:1c:a5:3a:00:1d: aa:ee:0e:27:cd:9f:b6:6a:c0:d7:c0:ae:e6:db:a0:16:99:1f: 71:a7:4a:f4:f4:e6:68:37:57:55:7d:ea:3e:7e:d6:45:79:4c: 75:6a:4c:2f:bb:04:66:ee:3d:01:1f:0f:88:3f:99:b9:6f:0b: c4:73:b8:2a:a7:81:b3:e0:a2:5d:e1:a3:f0:f9:47:49:eb:55: 92:0d:11:77:d5:85:9a:28:c7:44:7c:b4:12:47:24:4f:29:14: 12:9e:06:ca:9b:f5:1f:3b:e5:b6:3e:dc:6a:7a:9f:d2:f5:a2: 66:f9:53:7a:a0:e1:79:aa:2c:39:cd:35:59:e1:38:91:50:ef: 9d:6f:93:da:8a:9f:e9:ca:8d:82:87:5b:1a:0d:1d:38:d3:a4: 29:36:62:9c:83:d0:79:ea:8b:c8:47:22:68:6e:80:97:11:f8: 3c:7c:c9:03:75:25:db:44:ad:bb:12:07:96:ad:83:70:29:94: 75:5a:e6:f5:9c:7f:9c:5d:2e:16:2e:cf:39:40:46:a1:32:c8: 69:71:0b:01 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt9ylcK3iFNK5ssezgYjcngMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3NTlmNmFjMTczZjc1ZWQ5ZTU4NWVjN2Q4NzJhNTg2NWNl ZjI4MzUwHhcNMjYwMTAyMDgxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGQ1YTAzNGQ3YzJmZmQ0ZGJkYzA2YzM4NGEyMGUxOTljOGM0MDkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnkizQh06Bi595AF52WY9Oi9UXLUq eahWjhRcD0OXRcah6gIg+KH55fB/byC85VZnhtcnwSTGM8qKDS19KaZKYZnrCtWa kFlKFWoiFFcOAKrEWGqOiilOMhOhJ22OufDH33EF+nQgF37cUQpxzT83B3FsnKZc aNjQ2uD+Ojk4VzI4iRBLVtAIi4Yy3ufgMe7h6p+RZfdzzCL5n/y7LzAYkwAxt5Lb KD2eIEW0rgWf9CZXT763ssrbZy8yyCJ/CBDoVwk4aYGyiEWVvB37sQxKnpi7Ql3o wfFKRQmNteRpSf5gCnC7sgWTSTvLMF5Mepm782ts1jlRr5gbzH56f4zXuwIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFHTVoDTXwv/U29wGw4SiDhmcjECSMB8GA1UdIwQY MBaAFAdZ9qwXP3Xtnlhex9hypYZc7yg1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjFuMnJCY19kZTJlV0Y3SDJIS2xobHp2S0RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9kMmNkMWMtMDRiNS00NGQwLTgxZDUt N2JlM2JkYTA1OTI3LzEvZE5XZ05OZkNfOVRiM0FiRGhLSU9HWnlNUUpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZS9kMmNkMWMtMDRiNS00NGQwLTgxZDUtN2JlM2JkYTA1OTI3 LzEvQjFuMnJCY19kZTJlV0Y3SDJIS2xobHp2S0RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAqBAIAATAkAwQCLYGsAwQC VmmgAwQCuYjsAwQCuZhUAwQCueJsAwQCwocwMBQEAgACMA4DBQMqDYYAAwUDKg/c QDANBgkqhkiG9w0BAQsFAAOCAQEAdU3cNcW6gRkqQyPWOlB6iNQzpTRYTm/zwf95 ew/lEIeO5xhGi4hGs+GZ4rebDNlCWxylOgAdqu4OJ82ftmrA18Cu5tugFpkfcadK 9PTmaDdXVX3qPn7WRXlMdWpML7sEZu49AR8PiD+ZuW8LxHO4KqeBs+CiXeGj8PlH SetVkg0Rd9WFmijHRHy0EkckTykUEp4Gypv1Hzvltj7canqf0vWiZvlTeqDheaos Oc01WeE4kVDvnW+T2oqf6cqNgodbGg0dONOkKTZinIPQeeqLyEciaG6AlxH4PHzJ A3Ul20StuxIHlq2DcCmUdVrm9Zx/nF0uFi7POUBGoTLIaXELAQ== -----END CERTIFICATE-----Generated at Mon Jan 26 23:22:39 2026 by rpki-client