This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dh3eaYOdnalq1Gov7Y_kdZkQVNI.roa File: dh3eaYOdnalq1Gov7Y_kdZkQVNI.roa (raw, json) Hash identifier: SWCTG7i3C9cFiDz/h4XBqtkTdScHKT1nGkWMMAbzE3o= Subject key identifier: 76:1D:DE:69:83:9D:9D:A9:6A:D4:6A:2F:ED:8F:E4:75:99:10:54:D2 Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8 Certificate serial: 019B7F817777B2DFA5CC683D01E2EDCFC732 Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dh3eaYOdnalq1Gov7Y_kdZkQVNI.roa Signing time: Fri 02 Jan 2026 16:19:09 +0000 ROA not before: Fri 02 Jan 2026 16:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199614 IP address blocks: 147.136.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.mft rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 10:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:77:77:b2:df:a5:cc:68:3d:01:e2:ed:cf:c7:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8 Validity Not Before: Jan 2 16:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=761dde69839d9da96ad46a2fed8fe475991054d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2a:a4:f4:f8:c2:f4:bc:30:60:83:81:e1:96: bd:0e:f2:1e:98:80:68:32:44:51:e3:38:21:fb:a9: fc:8d:80:05:2f:74:21:fc:78:d2:f2:9d:f5:b9:ad: 04:a6:3c:a0:b6:37:6a:89:9a:fb:7c:88:7d:5b:c0: 6a:67:09:97:e8:bb:20:b1:8d:bd:33:e0:9d:bb:86: b4:02:7c:6d:cf:51:16:59:92:b7:c2:1a:7e:85:b8: e9:7b:0e:c3:4b:bf:ea:04:4a:70:58:f1:05:e8:2b: d3:cd:d4:82:0b:dd:b6:89:f8:a5:c1:f7:62:e0:a4: e0:60:54:b1:12:84:21:66:07:a7:8b:03:c1:47:75: cb:8c:2a:2d:fe:ab:b7:6c:7b:29:50:bb:2d:85:cd: 87:21:51:a7:6a:c8:4b:34:09:9a:e6:6a:a2:88:bc: 4f:66:da:0f:04:0d:ba:9e:bf:4b:67:6f:8f:b3:73: 01:b2:50:dc:b0:1b:10:63:19:b4:91:d0:11:27:a1: d4:7e:21:6f:3c:71:67:b6:83:1a:e7:85:50:08:f9: d2:ca:28:dd:a7:78:69:40:24:3b:96:0e:5e:93:5a: 49:cc:37:fe:35:37:2b:e3:31:6a:77:94:f8:84:00: df:7b:72:d4:0d:ef:30:6c:e6:c5:66:53:58:9e:30: 32:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:1D:DE:69:83:9D:9D:A9:6A:D4:6A:2F:ED:8F:E4:75:99:10:54:D2 X509v3 Authority Key Identifier: keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/dh3eaYOdnalq1Gov7Y_kdZkQVNI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.136.88.0/22 Signature Algorithm: sha256WithRSAEncryption 82:0d:1e:66:cb:9a:b7:ee:6f:4f:51:15:e4:f2:64:6f:aa:8d: 41:cc:7f:c9:fc:d1:6f:6b:60:22:e3:11:db:e0:a6:49:e9:d1: a5:88:f7:14:b4:f1:2f:57:9c:f2:28:c3:a3:65:69:b5:b1:e0: 3b:22:46:fb:3f:e1:f9:72:19:4e:cd:36:35:b9:2b:cb:31:de: 6c:97:29:00:86:81:c4:cd:0d:3d:11:eb:39:bc:1a:63:5f:9f: cd:b1:92:51:c3:86:64:39:5e:4e:9b:ce:ac:67:1f:8c:08:a4: 97:2a:1b:09:dd:32:6e:cf:f6:43:e5:57:2c:4f:02:c3:8a:84: 28:18:df:37:20:3a:b6:8b:1a:a9:09:9a:be:22:c4:51:84:ac: fd:56:66:7d:c1:06:0a:50:6b:a6:d1:d7:d2:41:e6:5e:05:3d: a0:52:03:a1:92:7b:66:ab:2a:66:2e:dd:61:69:87:6e:b9:33: 2e:20:ff:48:d4:c4:ff:77:c9:1b:d1:36:9b:1c:65:e9:88:7b: 1d:18:ad:cb:c4:31:72:ba:64:96:f8:2d:6e:0d:f0:1f:93:17: 53:d4:77:7d:8a:36:27:81:be:d9:c3:0d:8f:eb:a3:0c:3d:f6: 94:73:a4:6d:a6:4f:0d:f9:ca:d3:f4:5d:77:74:02:55:32:29: eb:32:c4:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gXd3st+lzGg9AeLtz8cyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyNjYwNWI0ZDI3ZjEzOTY4ZTg3OTRlNmVmMDkxMjIzNzQ4 ODE3ZDgwHhcNMjYwMTAyMTYxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjFkZGU2OTgzOWQ5ZGE5NmFkNDZhMmZlZDhmZTQ3NTk5MTA1NGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCqk9PjC9LwwYIOB4Za9DvIemIBo MkRR4zgh+6n8jYAFL3Qh/HjS8p31ua0EpjygtjdqiZr7fIh9W8BqZwmX6LsgsY29 M+Cdu4a0Anxtz1EWWZK3whp+hbjpew7DS7/qBEpwWPEF6CvTzdSCC922ifilwfdi 4KTgYFSxEoQhZgeniwPBR3XLjCot/qu3bHspULsthc2HIVGnashLNAma5mqiiLxP ZtoPBA26nr9LZ2+Ps3MBslDcsBsQYxm0kdARJ6HUfiFvPHFntoMa54VQCPnSyijd p3hpQCQ7lg5ek1pJzDf+NTcr4zFqd5T4hADfe3LUDe8wbObFZlNYnjAy0QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHYd3mmDnZ2patRqL+2P5HWZEFTSMB8GA1UdIwQY MBaAFIJmBbTSfxOWjoeU5u8JEiN0iBfYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ21ZRnROSl9FNWFPaDVUbTd3a1NJM1NJRjlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9mYmNjMzItMzNjOC00MWZmLTg5ZmEt MmQxOTE4YmExYzBlLzEvZGgzZWFZT2RuYWxxMUdvdjdZX2tkWmtRVk5JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny9mYmNjMzItMzNjOC00MWZmLTg5ZmEtMmQxOTE4YmExYzBl LzEvZ21ZRnROSl9FNWFPaDVUbTd3a1NJM1NJRjlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCk4hYMA0G CSqGSIb3DQEBCwUAA4IBAQCCDR5my5q37m9PURXk8mRvqo1BzH/J/NFva2Ai4xHb 4KZJ6dGliPcUtPEvV5zyKMOjZWm1seA7Ikb7P+H5chlOzTY1uSvLMd5slykAhoHE zQ09Ees5vBpjX5/NsZJRw4ZkOV5Om86sZx+MCKSXKhsJ3TJuz/ZD5VcsTwLDioQo GN83IDq2ixqpCZq+IsRRhKz9VmZ9wQYKUGum0dfSQeZeBT2gUgOhkntmqypmLt1h aYduuTMuIP9I1MT/d8kb0TabHGXpiHsdGK3LxDFyumSW+C1uDfAfkxdT1Hd9ijYn gb7Zww2P66MMPfaUc6Rtpk8N+crT9F13dAJVMinrMsTd -----END CERTIFICATE-----Generated at Fri Jan 9 16:51:11 2026 by rpki-client