This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/DZomHa7MNWM2aR3KMMyRYlA-WUU.roa File: DZomHa7MNWM2aR3KMMyRYlA-WUU.roa (raw, json) Hash identifier: 2GJc+KyF+az2unS4dK+tq1FNMv4LlONqh2LlVoeRIWk= Subject key identifier: 0D:9A:26:1D:AE:CC:35:63:36:69:1D:CA:30:CC:91:62:50:3E:59:45 Certificate issuer: /CN=47b7054d656153d2d55add8b9dfe3f6d137ad27e Certificate serial: 019B7C1323D1D64B76E4DF489CBA59005CE9 Authority key identifier: 47:B7:05:4D:65:61:53:D2:D5:5A:DD:8B:9D:FE:3F:6D:13:7A:D2:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7cFTWVhU9LVWt2Lnf4_bRN60n4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/DZomHa7MNWM2aR3KMMyRYlA-WUU.roa Signing time: Fri 02 Jan 2026 00:19:47 +0000 ROA not before: Fri 02 Jan 2026 00:19:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208097 IP address blocks: 84.38.245.0/24 maxlen: 24 192.122.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/R7cFTWVhU9LVWt2Lnf4_bRN60n4.crl rsync://rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/R7cFTWVhU9LVWt2Lnf4_bRN60n4.mft rsync://rpki.ripe.net/repository/DEFAULT/R7cFTWVhU9LVWt2Lnf4_bRN60n4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:23:d1:d6:4b:76:e4:df:48:9c:ba:59:00:5c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=47b7054d656153d2d55add8b9dfe3f6d137ad27e Validity Not Before: Jan 2 00:19:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d9a261daecc356336691dca30cc9162503e5945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7f:56:05:60:33:cf:e8:2d:48:50:35:3e:da: f2:e4:8c:c9:27:10:5a:54:25:cd:45:95:da:c6:2b: 32:d4:b9:85:73:df:14:6b:94:e4:dd:ea:2c:cb:49: 5a:d9:11:65:4d:53:09:47:dc:c6:e2:41:e9:af:95: 19:5c:e8:f5:6d:51:d0:3c:85:e4:8c:b0:85:f0:0a: bd:b4:20:2f:f6:f4:e9:02:7b:97:50:72:b7:6e:28: 23:e1:47:1d:62:6d:7c:22:58:ad:ff:f6:a5:3d:60: 5a:0b:e1:6e:c2:67:68:79:90:79:7a:c7:77:c7:f8: 0c:4e:48:9a:5b:4a:2a:7a:38:69:8b:ad:ae:16:54: be:2f:3f:f2:d9:dc:c2:61:0f:f2:5c:bb:f3:b0:09: 72:cc:12:a2:b0:61:19:0f:5a:a9:69:e5:71:f4:11: 59:d9:ae:1b:b6:8e:72:c6:c1:86:bf:74:33:04:f5: 12:5d:f1:ae:b1:0c:36:ea:72:d9:ba:6b:e3:1f:4b: 66:e7:51:4e:fb:23:b5:5d:bd:4b:ec:0f:1d:49:a2: db:b7:a9:09:25:91:7f:10:d7:7d:e2:cd:d5:f7:72: c6:77:2c:2c:74:f2:b4:21:22:52:4a:fe:e0:d2:68: c5:f0:02:3b:b2:05:78:42:37:b6:0f:55:8e:dc:85: 87:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9A:26:1D:AE:CC:35:63:36:69:1D:CA:30:CC:91:62:50:3E:59:45 X509v3 Authority Key Identifier: keyid:47:B7:05:4D:65:61:53:D2:D5:5A:DD:8B:9D:FE:3F:6D:13:7A:D2:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7cFTWVhU9LVWt2Lnf4_bRN60n4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/DZomHa7MNWM2aR3KMMyRYlA-WUU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/9286bb-c5e5-429f-8a76-0fd862da3ae1/1/R7cFTWVhU9LVWt2Lnf4_bRN60n4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 84.38.245.0/24 192.122.253.0/24 Signature Algorithm: sha256WithRSAEncryption 62:fd:3d:3c:a9:33:dd:cb:a9:be:b3:4c:39:2b:20:d4:ed:d0: 86:fe:82:6e:53:7f:fa:85:45:ec:b4:e1:76:e0:0b:46:ad:ac: 03:91:de:35:2b:86:91:25:fa:8a:37:21:bc:25:52:7d:db:a9: 61:1f:70:cf:9a:d8:64:de:30:ca:bb:a2:45:11:82:c1:a5:15: d1:2b:8f:bb:73:2b:74:26:41:2e:6e:03:a1:6a:b2:97:0b:f6: e4:80:1d:b8:26:68:b3:20:a1:f1:8c:53:87:9c:60:62:8b:00: f3:ff:34:ed:4f:09:17:6a:a0:de:3a:45:09:ce:38:e2:94:bb: a1:12:1a:61:2e:a9:55:f3:d2:cb:94:71:03:e2:2d:6d:54:d8: ed:ff:64:67:4b:be:cc:e0:ad:e1:45:e1:2e:75:14:0a:0e:b2: 78:89:f9:12:f2:11:dd:d3:7d:ee:16:40:ea:e0:87:80:bd:d6: 0c:ab:01:6d:3f:b5:d5:cc:ff:86:23:ff:21:67:44:ea:bc:ea: d3:9a:fe:b3:13:cc:6d:b3:3a:47:95:6a:e8:3d:66:20:80:e4: d2:5d:53:c1:8b:e4:ad:b3:15:a1:fa:c4:ee:e1:91:d1:4d:d9: 4a:2f:42:e7:e5:6e:3c:70:e3:90:a7:51:98:67:9a:fc:82:d4: 7b:c0:2e:fc -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EyPR1kt25N9InLpZAFzpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3YjcwNTRkNjU2MTUzZDJkNTVhZGQ4YjlkZmUzZjZkMTM3 YWQyN2UwHhcNMjYwMTAyMDAxOTQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDlhMjYxZGFlY2MzNTYzMzY2OTFkY2EzMGNjOTE2MjUwM2U1OTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyH9WBWAzz+gtSFA1Ptry5IzJJxBa VCXNRZXaxisy1LmFc98Ua5Tk3eosy0la2RFlTVMJR9zG4kHpr5UZXOj1bVHQPIXk jLCF8Aq9tCAv9vTpAnuXUHK3bigj4UcdYm18Ilit//alPWBaC+FuwmdoeZB5esd3 x/gMTkiaW0oqejhpi62uFlS+Lz/y2dzCYQ/yXLvzsAlyzBKisGEZD1qpaeVx9BFZ 2a4bto5yxsGGv3QzBPUSXfGusQw26nLZumvjH0tm51FO+yO1Xb1L7A8dSaLbt6kJ JZF/ENd94s3V93LGdywsdPK0ISJSSv7g0mjF8AI7sgV4Qje2D1WO3IWHXQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFA2aJh2uzDVjNmkdyjDMkWJQPllFMB8GA1UdIwQY MBaAFEe3BU1lYVPS1Vrdi53+P20TetJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUjdjRlRXVmhVOUxWV3QyTG5mNF9iUk42MG40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi85Mjg2YmItYzVlNS00MjlmLThhNzYt MGZkODYyZGEzYWUxLzEvRFpvbUhhN01OV00yYVIzS01NeVJZbEEtV1VVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi85Mjg2YmItYzVlNS00MjlmLThhNzYtMGZkODYyZGEzYWUx LzEvUjdjRlRXVmhVOUxWV3QyTG5mNF9iUk42MG40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVCb1AwQA wHr9MA0GCSqGSIb3DQEBCwUAA4IBAQBi/T08qTPdy6m+s0w5KyDU7dCG/oJuU3/6 hUXstOF24AtGrawDkd41K4aRJfqKNyG8JVJ926lhH3DPmthk3jDKu6JFEYLBpRXR K4+7cyt0JkEubgOharKXC/bkgB24JmizIKHxjFOHnGBiiwDz/zTtTwkXaqDeOkUJ zjjilLuhEhphLqlV89LLlHED4i1tVNjt/2RnS77M4K3hReEudRQKDrJ4ifkS8hHd 033uFkDq4IeAvdYMqwFtP7XVzP+GI/8hZ0TqvOrTmv6zE8xtszpHlWroPWYggOTS XVPBi+StsxWh+sTu4ZHRTdlKL0Ln5W48cOOQp1GYZ5r8gtR7wC78 -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:12 2026 by rpki-client