This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/dvjppw9s6JficbBL1JualOvAVhI.roa File: dvjppw9s6JficbBL1JualOvAVhI.roa (raw, json) Hash identifier: cPS5/nVNCYfyW3AOLG3yzdZLV0ipLTe96hQ2jMLs1Gw= Subject key identifier: 76:F8:E9:A7:0F:6C:E8:97:E2:71:B0:4B:D4:9B:9A:94:EB:C0:56:12 Certificate issuer: /CN=5094a26aba71007621fd599d537bb7aeaade8b33 Certificate serial: 019B77C767130ABBF7D7E23C637769150FC0 Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/dvjppw9s6JficbBL1JualOvAVhI.roa Signing time: Thu 01 Jan 2026 04:18:35 +0000 ROA not before: Thu 01 Jan 2026 04:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 32590 IP address blocks: 146.66.152.0/23 maxlen: 24 146.66.154.0/24 maxlen: 24 146.66.155.0/24 maxlen: 24 146.66.156.0/23 maxlen: 24 146.66.158.0/23 maxlen: 24 155.133.224.0/23 maxlen: 24 155.133.226.0/24 maxlen: 24 155.133.227.0/24 maxlen: 24 155.133.228.0/23 maxlen: 24 155.133.230.0/23 maxlen: 24 155.133.232.0/24 maxlen: 24 155.133.233.0/24 maxlen: 24 155.133.234.0/24 maxlen: 24 155.133.235.0/24 maxlen: 24 155.133.236.0/23 maxlen: 24 155.133.238.0/24 maxlen: 24 155.133.239.0/24 maxlen: 24 155.133.240.0/23 maxlen: 24 155.133.242.0/23 maxlen: 24 155.133.244.0/24 maxlen: 24 155.133.245.0/24 maxlen: 24 155.133.246.0/23 maxlen: 24 155.133.248.0/24 maxlen: 24 155.133.249.0/24 maxlen: 24 155.133.250.0/24 maxlen: 24 155.133.251.0/24 maxlen: 24 155.133.252.0/24 maxlen: 24 155.133.253.0/24 maxlen: 24 155.133.254.0/24 maxlen: 24 155.133.255.0/24 maxlen: 24 185.25.180.0/23 maxlen: 24 185.25.182.0/24 maxlen: 24 185.25.183.0/24 maxlen: 24 2a01:bc80::/48 maxlen: 48 2a01:bc80:1::/48 maxlen: 48 2a01:bc80:2::/48 maxlen: 48 2a01:bc80:3::/48 maxlen: 48 2a01:bc80:4::/48 maxlen: 48 2a01:bc80:5::/48 maxlen: 48 2a01:bc80:6::/48 maxlen: 48 2a01:bc80:7::/48 maxlen: 48 2a01:bc80:8::/48 maxlen: 48 2a01:bc80:9::/48 maxlen: 48 2a01:bc80:a::/48 maxlen: 48 2a01:bc80:b::/48 maxlen: 48 2a01:bc80:c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:67:13:0a:bb:f7:d7:e2:3c:63:77:69:15:0f:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33 Validity Not Before: Jan 1 04:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=76f8e9a70f6ce897e271b04bd49b9a94ebc05612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6a:a1:c0:de:21:9d:4a:8a:5d:d4:2b:41:89: 41:e9:51:a0:5f:03:b5:4a:cf:db:c9:0e:50:fa:c6: c6:b7:26:b8:b4:6f:02:e6:7f:16:7a:80:6d:be:db: be:53:7d:de:91:6e:a2:15:6a:9d:1c:93:dd:34:9a: 63:a1:80:26:5b:11:de:ad:a0:3e:f2:d2:a3:f2:4e: c8:d8:00:3c:99:13:8c:f3:ad:ab:a1:d6:07:e1:34: 9e:cd:ea:f1:36:a0:5e:b1:13:01:21:11:65:1e:d2: 03:13:c4:d2:3a:7e:64:ca:4a:56:e0:44:78:8e:7a: c4:2d:14:ac:52:4d:f7:87:c9:ea:81:34:28:e5:34: 64:c9:ff:f7:40:24:f1:f5:3f:c7:e3:61:e6:16:d2: 04:00:d3:4a:ea:b1:4c:6f:df:e7:7f:81:60:a0:e7: e0:6d:85:a1:eb:27:07:76:68:04:b2:f2:12:4d:59: 87:af:d2:f9:e1:13:bc:1a:c8:c1:da:b1:e0:9c:bd: be:87:9d:79:44:6e:97:28:15:ef:98:bd:51:ca:10: fc:36:b7:21:79:2d:d1:b8:0b:74:aa:ff:f5:30:45: 61:e5:b5:21:88:8d:98:1f:35:02:f2:9c:76:c7:e6: 10:1d:7d:d3:d1:16:3b:4d:c0:97:78:87:f8:6f:90: c5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F8:E9:A7:0F:6C:E8:97:E2:71:B0:4B:D4:9B:9A:94:EB:C0:56:12 X509v3 Authority Key Identifier: keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/dvjppw9s6JficbBL1JualOvAVhI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.66.152.0/21 155.133.224.0/19 185.25.180.0/22 IPv6: 2a01:bc80::-2a01:bc80:c:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7d:ee:ac:5e:31:9a:c4:2d:ef:37:04:6e:9f:2a:dd:cf:54:9e: 19:72:7c:0b:2a:b0:84:6a:5d:94:3a:8f:6d:cf:3e:46:bf:84: 1c:d1:ce:04:c9:df:78:4a:53:9b:a5:aa:b3:bf:19:c7:28:09: cf:1e:f7:97:68:70:bb:5b:31:26:df:06:dc:b2:cc:f1:1e:2a: 77:f4:33:a8:01:b8:d2:f5:f5:8a:41:0e:e6:43:2e:ce:b7:fe: 08:0a:46:b9:45:d7:3e:6e:20:c2:cd:51:68:1d:d3:b5:ca:05: 4f:89:24:56:e8:1e:e9:ff:b2:69:67:81:70:6a:38:ee:27:f5: 8b:03:b5:ee:5f:32:c3:65:32:c7:21:4d:40:4e:9b:89:76:b7: 36:d9:16:2d:59:a8:61:ea:69:06:96:18:f8:1f:45:a1:72:50: 9f:f3:93:58:a4:70:ae:bc:27:82:81:08:50:46:71:06:f6:ec: 41:09:1e:c7:aa:56:70:06:60:52:65:3e:f2:49:8b:c9:43:9d: 4c:54:86:e1:2a:ea:7a:0d:f3:df:3f:b6:36:92:b4:23:17:76: d3:0a:23:6e:46:41:fe:d9:e3:1d:19:28:0a:12:c5:1c:58:ad: 9a:8e:87:de:7b:27:1f:1e:be:e5:97:a3:11:5c:06:87:f3:4d: 79:b0:6b:a9 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt3x2cTCrv31+I8Y3dpFQ/AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwOTRhMjZhYmE3MTAwNzYyMWZkNTk5ZDUzN2JiN2FlYWFk ZThiMzMwHhcNMjYwMTAxMDQxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NmY4ZTlhNzBmNmNlODk3ZTI3MWIwNGJkNDliOWE5NGViYzA1NjEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGqhwN4hnUqKXdQrQYlB6VGgXwO1 Ss/byQ5Q+sbGtya4tG8C5n8WeoBtvtu+U33ekW6iFWqdHJPdNJpjoYAmWxHeraA+ 8tKj8k7I2AA8mROM862rodYH4TSezerxNqBesRMBIRFlHtIDE8TSOn5kykpW4ER4 jnrELRSsUk33h8nqgTQo5TRkyf/3QCTx9T/H42HmFtIEANNK6rFMb9/nf4FgoOfg bYWh6ycHdmgEsvISTVmHr9L54RO8GsjB2rHgnL2+h515RG6XKBXvmL1RyhD8Nrch eS3RuAt0qv/1MEVh5bUhiI2YHzUC8px2x+YQHX3T0RY7TcCXeIf4b5DF/wIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFHb46acPbOiX4nGwS9SbmpTrwFYSMB8GA1UdIwQY MBaAFFCUomq6cQB2If1ZnVN7t66q3oszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS85ZmNlNzgtNGY5ZC00ODQ3LWI3NTkt YjQ1MWU0NzdiOWMyLzEvZHZqcHB3OXM2SmZpY2JCTDFKdWFsT3ZBVmhJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS85ZmNlNzgtNGY5ZC00ODQ3LWI3NTktYjQ1MWU0NzdiOWMy LzEvVUpTaWFycHhBSFloX1ZtZFUzdTNycXJlaXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAYBAIAATASAwQDkkKYAwQF m4XgAwQCuRm0MBgEAgACMBIwEAMFByoBvIADBwAqAbyAAAwwDQYJKoZIhvcNAQEL BQADggEBAH3urF4xmsQt7zcEbp8q3c9UnhlyfAsqsIRqXZQ6j23PPka/hBzRzgTJ 33hKU5ulqrO/GccoCc8e95docLtbMSbfBtyyzPEeKnf0M6gBuNL19YpBDuZDLs63 /ggKRrlF1z5uIMLNUWgd07XKBU+JJFboHun/smlngXBqOO4n9YsDte5fMsNlMsch TUBOm4l2tzbZFi1ZqGHqaQaWGPgfRaFyUJ/zk1ikcK68J4KBCFBGcQb27EEJHseq VnAGYFJlPvJJi8lDnUxUhuEq6noN898/tjaStCMXdtMKI25GQf7Z4x0ZKAoSxRxY rZqOh957Jx8evuWXoxFcBofzTXmwa6k= -----END CERTIFICATE-----Generated at Wed Jan 21 08:59:53 2026 by rpki-client