This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/DP7T_q2dH40UAoEeaOyilRTarIc.roa File: DP7T_q2dH40UAoEeaOyilRTarIc.roa (raw, json) Hash identifier: eI6A0wd8tTUmEmNVJN3J+AgyOo9pOZ6DcargfGd5ggE= Subject key identifier: 0C:FE:D3:FE:AD:9D:1F:8D:14:02:81:1E:68:EC:A2:95:14:DA:AC:87 Certificate issuer: /CN=dbc144ce154eee9dbb3562ce4cd3228338641333 Certificate serial: 019B7EA63CFEF57BD8FD3060EB38BF78EED8 Authority key identifier: DB:C1:44:CE:15:4E:EE:9D:BB:35:62:CE:4C:D3:22:83:38:64:13:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/DP7T_q2dH40UAoEeaOyilRTarIc.roa Signing time: Fri 02 Jan 2026 12:19:42 +0000 ROA not before: Fri 02 Jan 2026 12:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9304 IP address blocks: 185.25.244.0/22 maxlen: 22 2a00:8420::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.mft rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:3c:fe:f5:7b:d8:fd:30:60:eb:38:bf:78:ee:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbc144ce154eee9dbb3562ce4cd3228338641333 Validity Not Before: Jan 2 12:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0cfed3fead9d1f8d1402811e68eca29514daac87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:db:11:5a:d6:39:97:8a:1c:38:41:e5:84:87: 0d:77:4b:5a:9c:20:98:b2:f1:c1:ab:79:49:b1:ee: 4e:82:dc:b3:59:84:c5:bf:d4:2e:08:c5:ab:44:f7: 66:71:d0:ea:79:48:52:78:e4:b7:96:74:7a:8f:d5: 8d:75:3c:00:85:d0:81:1e:5a:c5:fe:4c:df:f2:e4: 91:c0:f2:d6:68:0d:9c:ec:02:2e:bc:14:8c:ef:39: 61:9c:29:5e:5c:a9:8d:20:68:71:7a:8b:6f:27:e1: 07:70:0e:83:e3:a9:06:07:66:e3:20:9a:67:e8:a0: a6:cd:44:ca:ed:01:89:f1:88:c1:6c:0a:68:54:c8: c4:24:79:3a:ef:ad:48:0d:1f:c7:15:d4:df:3b:cc: b3:d0:49:5c:b1:be:36:63:df:35:19:96:b6:7b:9b: 39:76:1e:4e:3b:47:ee:75:3f:57:93:81:ad:c6:2d: 7c:33:e0:e0:88:e2:48:c7:73:2e:50:74:f8:37:fb: b3:cf:93:a6:f2:74:84:7c:f5:6e:70:75:c0:31:82: c4:e3:b2:12:40:c3:ef:46:35:ec:77:10:65:89:5d: fd:8a:1a:42:c5:9f:8e:82:f7:94:89:13:38:6b:5b: ef:28:d4:3b:6b:32:ff:35:de:64:d1:ad:ac:b9:e4: 94:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:FE:D3:FE:AD:9D:1F:8D:14:02:81:1E:68:EC:A2:95:14:DA:AC:87 X509v3 Authority Key Identifier: keyid:DB:C1:44:CE:15:4E:EE:9D:BB:35:62:CE:4C:D3:22:83:38:64:13:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28FEzhVO7p27NWLOTNMigzhkEzM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/DP7T_q2dH40UAoEeaOyilRTarIc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/a22cfa-01f3-4f12-b6fd-4894f88beddc/1/28FEzhVO7p27NWLOTNMigzhkEzM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.25.244.0/22 IPv6: 2a00:8420::/32 Signature Algorithm: sha256WithRSAEncryption a3:b8:17:c5:62:05:45:8b:09:84:bd:41:33:1e:45:57:e4:2c: 53:0f:85:8a:4d:9f:3f:ea:25:cf:29:14:49:ce:f0:44:af:30: a1:d4:3a:f5:d3:9c:b1:1a:68:bd:48:09:86:5d:8a:69:6b:be: e2:ef:f0:80:7a:de:48:cb:99:86:6a:4a:d9:87:ca:f3:7c:a0: 7c:ee:94:77:bf:1e:5e:4e:4f:8a:a5:53:10:b4:6d:c5:cb:5b: 35:c0:fd:9d:25:ab:ea:14:d8:c9:f2:a7:27:bc:66:85:9d:e2: 07:2a:30:b8:50:61:52:25:e6:30:39:7b:8e:26:1b:68:0f:85: 63:fe:68:01:01:8a:f9:3b:09:c2:af:ca:1a:47:52:a0:08:f4: 9d:06:ab:cb:21:ce:b3:e9:6d:45:3c:79:ea:0b:6f:f4:ae:e7: 88:72:ef:78:2c:94:0f:43:cf:a3:81:e8:c9:94:e7:4b:ae:25: b1:8e:30:f3:6f:1f:4f:62:ef:cc:15:e6:78:2c:92:9b:1c:2e: ee:0c:a3:a1:23:00:f3:f2:69:9f:e8:08:7f:5f:fe:da:db:b5: ca:2d:fe:cc:6e:12:46:c4:61:9a:dc:da:41:14:dc:39:4f:fb: 6e:b9:1f:f1:59:0e:85:7b:11:d6:a7:83:79:c1:cc:88:60:d4: 0e:61:48:da -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pjz+9XvY/TBg6zi/eO7YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiYzE0NGNlMTU0ZWVlOWRiYjM1NjJjZTRjZDMyMjgzMzg2 NDEzMzMwHhcNMjYwMTAyMTIxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwY2ZlZDNmZWFkOWQxZjhkMTQwMjgxMWU2OGVjYTI5NTE0ZGFhYzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy9sRWtY5l4ocOEHlhIcNd0tanCCY svHBq3lJse5OgtyzWYTFv9QuCMWrRPdmcdDqeUhSeOS3lnR6j9WNdTwAhdCBHlrF /kzf8uSRwPLWaA2c7AIuvBSM7zlhnCleXKmNIGhxeotvJ+EHcA6D46kGB2bjIJpn 6KCmzUTK7QGJ8YjBbApoVMjEJHk6761IDR/HFdTfO8yz0Elcsb42Y981GZa2e5s5 dh5OO0fudT9Xk4Gtxi18M+DgiOJIx3MuUHT4N/uzz5Om8nSEfPVucHXAMYLE47IS QMPvRjXsdxBliV39ihpCxZ+OgveUiRM4a1vvKNQ7azL/Nd5k0a2sueSUaQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAz+0/6tnR+NFAKBHmjsopUU2qyHMB8GA1UdIwQY MBaAFNvBRM4VTu6duzVizkzTIoM4ZBMzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjhGRXpoVk83cDI3TldMT1ROTWlnemhrRXpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi9hMjJjZmEtMDFmMy00ZjEyLWI2ZmQt NDg5NGY4OGJlZGRjLzEvRFA3VF9xMmRINDBVQW9FZWFPeWlsUlRhckljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi9hMjJjZmEtMDFmMy00ZjEyLWI2ZmQtNDg5NGY4OGJlZGRj LzEvMjhGRXpoVk83cDI3TldMT1ROTWlnemhrRXpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuRn0MA0E AgACMAcDBQAqAIQgMA0GCSqGSIb3DQEBCwUAA4IBAQCjuBfFYgVFiwmEvUEzHkVX 5CxTD4WKTZ8/6iXPKRRJzvBErzCh1Dr105yxGmi9SAmGXYppa77i7/CAet5Iy5mG akrZh8rzfKB87pR3vx5eTk+KpVMQtG3Fy1s1wP2dJavqFNjJ8qcnvGaFneIHKjC4 UGFSJeYwOXuOJhtoD4Vj/mgBAYr5OwnCr8oaR1KgCPSdBqvLIc6z6W1FPHnqC2/0 rueIcu94LJQPQ8+jgejJlOdLriWxjjDzbx9PYu/MFeZ4LJKbHC7uDKOhIwDz8mmf 6Ah/X/7a27XKLf7MbhJGxGGa3NpBFNw5T/tuuR/xWQ6FexHWp4N5wcyIYNQOYUja -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:35 2026 by rpki-client