This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/b65e33-f947-4968-a27c-dd99d397e4d6/1/DKnBvGIE9iqjrZPZMqeWH0unajs.roa File: DKnBvGIE9iqjrZPZMqeWH0unajs.roa (raw, json) Hash identifier: TT/s0k//yUcEj92PO7ED9oag8g35ZTDpkDcHBo8y524= Subject key identifier: 0C:A9:C1:BC:62:04:F6:2A:A3:AD:93:D9:32:A7:96:1F:4B:A7:6A:3B Certificate issuer: /CN=acde2358f57439c44f6b1662f55615a0aab6bacb Certificate serial: 019B7A5B593386BBCC7AE619C90516D62353 Authority key identifier: AC:DE:23:58:F5:74:39:C4:4F:6B:16:62:F5:56:15:A0:AA:B6:BA:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rN4jWPV0OcRPaxZi9VYVoKq2uss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/b65e33-f947-4968-a27c-dd99d397e4d6/1/DKnBvGIE9iqjrZPZMqeWH0unajs.roa Signing time: Thu 01 Jan 2026 16:19:25 +0000 ROA not before: Thu 01 Jan 2026 16:19:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203779 IP address blocks: 2.58.24.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/b65e33-f947-4968-a27c-dd99d397e4d6/1/rN4jWPV0OcRPaxZi9VYVoKq2uss.crl rsync://rpki.ripe.net/repository/DEFAULT/76/b65e33-f947-4968-a27c-dd99d397e4d6/1/rN4jWPV0OcRPaxZi9VYVoKq2uss.mft rsync://rpki.ripe.net/repository/DEFAULT/rN4jWPV0OcRPaxZi9VYVoKq2uss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 19:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:59:33:86:bb:cc:7a:e6:19:c9:05:16:d6:23:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=acde2358f57439c44f6b1662f55615a0aab6bacb Validity Not Before: Jan 1 16:19:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0ca9c1bc6204f62aa3ad93d932a7961f4ba76a3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:cf:0d:14:f4:3f:2c:fc:d5:2d:25:16:49:84: 84:15:dc:17:3f:b6:40:8e:8e:4d:35:25:77:12:71: 84:d1:d4:aa:46:46:d6:c5:da:2b:f3:66:54:cd:12: d8:fe:db:7c:3b:e0:a5:dc:5f:6c:26:e7:87:23:9f: be:3e:5f:bf:de:03:5a:48:eb:f8:d2:6a:53:2f:0f: 00:c8:d8:39:b6:45:aa:14:37:c6:72:27:91:82:d5: 8c:cd:43:e7:9b:78:f9:c9:1c:b0:25:a1:c3:d2:cc: 91:73:42:2b:21:c2:07:e5:1a:91:1e:aa:e3:3c:ea: 27:55:21:c3:5d:ba:81:d9:bb:7e:dd:37:aa:b4:18: 06:0d:cc:59:4c:ed:43:d0:23:28:6d:39:9d:8e:cf: 6d:21:04:ba:0a:e9:03:3d:72:8e:dd:f8:ad:71:67: f8:67:ea:bd:36:cb:1e:a7:05:a6:6f:a2:1c:eb:55: 9b:7e:b4:4b:58:e3:62:75:9b:3a:87:40:f2:6c:d0: b9:78:c1:19:6a:97:17:44:6b:97:09:f2:67:cd:3c: 73:c7:bd:b2:10:b7:d0:31:bb:05:63:2e:3b:31:30: 63:ba:f3:a0:70:68:3f:70:07:d7:eb:fc:03:f3:7f: 99:fa:95:a9:e8:a4:84:b3:af:4d:38:e2:32:97:c7: d7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A9:C1:BC:62:04:F6:2A:A3:AD:93:D9:32:A7:96:1F:4B:A7:6A:3B X509v3 Authority Key Identifier: keyid:AC:DE:23:58:F5:74:39:C4:4F:6B:16:62:F5:56:15:A0:AA:B6:BA:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rN4jWPV0OcRPaxZi9VYVoKq2uss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/b65e33-f947-4968-a27c-dd99d397e4d6/1/DKnBvGIE9iqjrZPZMqeWH0unajs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/b65e33-f947-4968-a27c-dd99d397e4d6/1/rN4jWPV0OcRPaxZi9VYVoKq2uss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.24.0/23 Signature Algorithm: sha256WithRSAEncryption 06:07:f7:49:42:ab:c6:53:e2:ba:ee:cb:17:03:13:f8:7c:3d: 88:42:46:ee:33:63:43:01:72:a2:4f:c6:eb:1f:47:0f:ec:26: 71:5a:8e:40:a8:bc:5a:c0:23:7f:63:3b:fa:99:16:db:6a:b6: 79:3a:8d:7b:69:82:ca:e9:dd:47:50:52:77:54:4f:06:80:49: 49:f9:c4:f1:e9:bc:f8:b1:2f:46:bb:33:df:ef:3b:52:ff:6e: ca:90:0f:5f:75:1b:14:c2:0d:78:b8:8a:66:f3:a9:70:ab:cc: 2e:01:6c:30:f4:05:65:ef:0e:48:6b:53:56:17:c2:72:1a:a4: 8c:0e:1f:41:95:fc:13:a8:2c:99:88:5a:49:f4:5e:d1:da:f9: 55:2b:9b:f7:e6:1a:ea:14:8b:b7:ca:b5:2d:90:ac:dd:5a:08: 01:89:b4:e7:51:d4:99:7c:d9:92:a8:47:c9:86:fa:2d:45:28: 71:38:29:82:91:44:7e:01:03:84:7e:7a:99:84:15:90:0d:9f: de:4e:02:f1:7a:0d:2a:9c:3f:d3:67:5d:cd:01:82:5b:8a:f9: b3:80:b1:c4:1f:e4:d3:36:dc:bf:7d:6d:06:ee:52:a9:05:3b: d4:e3:14:07:9b:78:59:12:73:b0:48:bc:9c:22:94:5e:bf:b3: ac:68:36:a0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6W1kzhrvMeuYZyQUW1iNTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjZGUyMzU4ZjU3NDM5YzQ0ZjZiMTY2MmY1NTYxNWEwYWFi NmJhY2IwHhcNMjYwMTAxMTYxOTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwY2E5YzFiYzYyMDRmNjJhYTNhZDkzZDkzMmE3OTYxZjRiYTc2YTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA288NFPQ/LPzVLSUWSYSEFdwXP7ZA jo5NNSV3EnGE0dSqRkbWxdor82ZUzRLY/tt8O+Cl3F9sJueHI5++Pl+/3gNaSOv4 0mpTLw8AyNg5tkWqFDfGcieRgtWMzUPnm3j5yRywJaHD0syRc0IrIcIH5RqRHqrj POonVSHDXbqB2bt+3TeqtBgGDcxZTO1D0CMobTmdjs9tIQS6CukDPXKO3fitcWf4 Z+q9NssepwWmb6Ic61WbfrRLWONidZs6h0DybNC5eMEZapcXRGuXCfJnzTxzx72y ELfQMbsFYy47MTBjuvOgcGg/cAfX6/wD83+Z+pWp6KSEs69NOOIyl8fXuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAypwbxiBPYqo62T2TKnlh9Lp2o7MB8GA1UdIwQY MBaAFKzeI1j1dDnET2sWYvVWFaCqtrrLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvck40aldQVjBPY1JQYXhaaTlWWVZvS3EydXNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni9iNjVlMzMtZjk0Ny00OTY4LWEyN2Mt ZGQ5OWQzOTdlNGQ2LzEvREtuQnZHSUU5aXFqclpQWk1xZVdIMHVuYWpzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni9iNjVlMzMtZjk0Ny00OTY4LWEyN2MtZGQ5OWQzOTdlNGQ2 LzEvck40aldQVjBPY1JQYXhaaTlWWVZvS3EydXNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBAjoYMA0G CSqGSIb3DQEBCwUAA4IBAQAGB/dJQqvGU+K67ssXAxP4fD2IQkbuM2NDAXKiT8br H0cP7CZxWo5AqLxawCN/Yzv6mRbbarZ5Oo17aYLK6d1HUFJ3VE8GgElJ+cTx6bz4 sS9GuzPf7ztS/27KkA9fdRsUwg14uIpm86lwq8wuAWww9AVl7w5Ia1NWF8JyGqSM Dh9BlfwTqCyZiFpJ9F7R2vlVK5v35hrqFIu3yrUtkKzdWggBibTnUdSZfNmSqEfJ hvotRShxOCmCkUR+AQOEfnqZhBWQDZ/eTgLxeg0qnD/TZ13NAYJbivmzgLHEH+TT Nty/fW0G7lKpBTvU4xQHm3hZEnOwSLycIpRev7OsaDag -----END CERTIFICATE-----Generated at Tue Jan 27 05:43:42 2026 by rpki-client