This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/dzm1IbOHTtA3LQLpIHITZqiyxqQ.roa File: dzm1IbOHTtA3LQLpIHITZqiyxqQ.roa (raw, json) Hash identifier: oVHFyPiVx5TouD9L897NVPsoqhLfukE2LUK9htc3qYY= Subject key identifier: 77:39:B5:21:B3:87:4E:D0:37:2D:02:E9:20:72:13:66:A8:B2:C6:A4 Certificate issuer: /CN=330fe971b3e36b16a92be85f59985be45968b864 Certificate serial: 019B7F15AC1B5B60DC10FC96B0EC3CBB217F Authority key identifier: 33:0F:E9:71:B3:E3:6B:16:A9:2B:E8:5F:59:98:5B:E4:59:68:B8:64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mw_pcbPjaxapK-hfWZhb5FlouGQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/dzm1IbOHTtA3LQLpIHITZqiyxqQ.roa Signing time: Fri 02 Jan 2026 14:21:25 +0000 ROA not before: Fri 02 Jan 2026 14:21:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.1.112.0/24 maxlen: 24 2001:7f8:83::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/Mw_pcbPjaxapK-hfWZhb5FlouGQ.crl rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/Mw_pcbPjaxapK-hfWZhb5FlouGQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Mw_pcbPjaxapK-hfWZhb5FlouGQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 08:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:ac:1b:5b:60:dc:10:fc:96:b0:ec:3c:bb:21:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=330fe971b3e36b16a92be85f59985be45968b864 Validity Not Before: Jan 2 14:21:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7739b521b3874ed0372d02e920721366a8b2c6a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e4:61:94:94:cc:f0:2e:67:11:93:a9:7b:b5: b0:10:6e:ea:fc:34:33:4a:04:95:14:ae:ae:f5:d5: c3:6c:26:ba:3e:99:30:15:d8:34:b8:1f:b8:a9:9e: 97:6c:f5:7e:01:90:c3:d6:21:60:b0:e1:8e:24:de: 9c:88:36:01:93:1d:0e:4d:2b:1e:3c:61:8a:fc:ef: ec:31:a5:03:1f:8a:e7:7b:8d:83:5b:27:16:17:a6: e6:2f:2d:07:ed:1c:9b:13:74:f6:2e:77:f3:7e:e3: bc:3b:83:41:4c:7f:32:45:66:ca:61:c8:c9:39:38: ea:25:69:da:37:2b:39:a8:f1:2a:fa:40:c6:ed:65: 70:a3:b6:3d:cd:ce:26:7b:8d:c6:74:e8:b0:a2:3e: 2c:6a:9b:3a:da:58:e0:fc:f6:f8:03:db:3b:c3:ca: d1:ad:3a:6d:36:38:ba:a8:cb:2f:43:17:e4:3b:01: 17:98:44:bd:d9:9f:19:18:4b:82:c5:80:41:1d:4a: 34:48:b4:a8:86:21:86:e5:b6:9c:e1:ad:6a:da:2d: 47:12:6b:2e:f3:b4:63:71:df:02:c6:b5:70:ce:a8: 5b:65:b4:83:37:a4:02:c0:01:8f:05:d8:ba:f6:31: 76:2a:36:ed:0e:d2:da:a4:3e:8e:96:f9:3f:3b:0c: 34:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:39:B5:21:B3:87:4E:D0:37:2D:02:E9:20:72:13:66:A8:B2:C6:A4 X509v3 Authority Key Identifier: keyid:33:0F:E9:71:B3:E3:6B:16:A9:2B:E8:5F:59:98:5B:E4:59:68:B8:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mw_pcbPjaxapK-hfWZhb5FlouGQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/dzm1IbOHTtA3LQLpIHITZqiyxqQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a38693-cfa0-43e8-a51b-11e9e9f01343/1/Mw_pcbPjaxapK-hfWZhb5FlouGQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.112.0/24 IPv6: 2001:7f8:83::/48 Signature Algorithm: sha256WithRSAEncryption 89:06:0e:85:8e:15:13:5f:f2:e1:31:c3:ce:11:f2:fd:94:3e: be:a5:51:b1:6f:d0:f2:f3:8c:bf:ec:6a:0c:8f:ec:70:d1:2f: 39:11:50:39:61:d8:56:6e:a5:33:98:fe:63:04:e4:8d:44:eb: e3:38:b9:05:95:d7:e5:55:ab:2d:67:2a:5e:9b:fe:fb:23:da: 40:1f:bc:ee:de:67:aa:e8:81:cb:8e:37:56:db:d2:4d:9a:1f: 50:09:f3:30:71:f0:d0:bb:1f:6a:67:b9:23:9a:81:f7:be:9f: 03:c9:c0:59:a3:5b:ea:37:77:df:18:8f:98:b1:16:84:d3:a8: 52:ac:ce:f3:d2:c0:82:85:75:be:21:18:ca:aa:05:36:e8:26: fe:02:e7:24:b8:aa:3d:e6:29:bf:67:11:c1:90:28:30:e9:aa: 2d:c3:65:a5:cd:89:65:d8:3e:8f:10:69:1b:23:cc:81:c0:75: 3c:3d:06:1f:d9:5e:b7:41:67:e6:8b:ef:16:e1:87:8d:db:d4: 6f:39:f3:b7:ec:76:9b:d9:55:7a:ad:93:91:9f:b6:25:fe:a1: 16:c6:d7:82:06:87:9d:3e:9e:da:9a:a6:94:71:38:a5:2c:5c: f4:19:3c:f9:5c:25:0b:68:f8:90:b7:20:82:61:94:62:fb:c6: 48:3d:2d:80 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/FawbW2DcEPyWsOw8uyF/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzMGZlOTcxYjNlMzZiMTZhOTJiZTg1ZjU5OTg1YmU0NTk2 OGI4NjQwHhcNMjYwMTAyMTQyMTI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzM5YjUyMWIzODc0ZWQwMzcyZDAyZTkyMDcyMTM2NmE4YjJjNmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4uRhlJTM8C5nEZOpe7WwEG7q/DQz SgSVFK6u9dXDbCa6PpkwFdg0uB+4qZ6XbPV+AZDD1iFgsOGOJN6ciDYBkx0OTSse PGGK/O/sMaUDH4rne42DWycWF6bmLy0H7RybE3T2LnfzfuO8O4NBTH8yRWbKYcjJ OTjqJWnaNys5qPEq+kDG7WVwo7Y9zc4me43GdOiwoj4saps62ljg/Pb4A9s7w8rR rTptNji6qMsvQxfkOwEXmES92Z8ZGEuCxYBBHUo0SLSohiGG5bac4a1q2i1HEmsu 87Rjcd8CxrVwzqhbZbSDN6QCwAGPBdi69jF2KjbtDtLapD6Olvk/Oww0dwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFHc5tSGzh07QNy0C6SByE2aossakMB8GA1UdIwQY MBaAFDMP6XGz42sWqSvoX1mYW+RZaLhkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXdfcGNiUGpheGFwSy1oZldaaGI1RmxvdUdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9hMzg2OTMtY2ZhMC00M2U4LWE1MWIt MTFlOWU5ZjAxMzQzLzEvZHptMUliT0hUdEEzTFFMcElISVRacWl5eHFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ny9hMzg2OTMtY2ZhMC00M2U4LWE1MWItMTFlOWU5ZjAxMzQz LzEvTXdfcGNiUGpheGFwSy1oZldaaGI1RmxvdUdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuQFwMA8E AgACMAkDBwAgAQf4AIMwDQYJKoZIhvcNAQELBQADggEBAIkGDoWOFRNf8uExw84R 8v2UPr6lUbFv0PLzjL/sagyP7HDRLzkRUDlh2FZupTOY/mME5I1E6+M4uQWV1+VV qy1nKl6b/vsj2kAfvO7eZ6rogcuON1bb0k2aH1AJ8zBx8NC7H2pnuSOagfe+nwPJ wFmjW+o3d98Yj5ixFoTTqFKszvPSwIKFdb4hGMqqBTboJv4C5yS4qj3mKb9nEcGQ KDDpqi3DZaXNiWXYPo8QaRsjzIHAdTw9Bh/ZXrdBZ+aL7xbhh43b1G8587fsdpvZ VXqtk5GftiX+oRbG14IGh50+ntqappRxOKUsXPQZPPlcJQto+JC3IIJhlGL7xkg9 LYA= -----END CERTIFICATE-----Generated at Fri Jan 9 17:06:33 2026 by rpki-client