This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/db2912-89a9-4ee9-8229-a55f77b83e6b/1/RDdfzHQIvdsdqJHF4YV_Xp1DNTA.roa File: RDdfzHQIvdsdqJHF4YV_Xp1DNTA.roa (raw, json) Hash identifier: vd/NjoqieFOKWnlLtrWuKUlxYWTJnOiCm9Hx+hskdwU= Subject key identifier: 44:37:5F:CC:74:08:BD:DB:1D:A8:91:C5:E1:85:7F:5E:9D:43:35:30 Certificate issuer: /CN=00ad6d83c8083729d7a9d8571d65ce97e058b821 Certificate serial: 019B7C12108F36F000BAF22C939DFC22CCAF Authority key identifier: 00:AD:6D:83:C8:08:37:29:D7:A9:D8:57:1D:65:CE:97:E0:58:B8:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK1tg8gINynXqdhXHWXOl-BYuCE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/db2912-89a9-4ee9-8229-a55f77b83e6b/1/RDdfzHQIvdsdqJHF4YV_Xp1DNTA.roa Signing time: Fri 02 Jan 2026 00:18:37 +0000 ROA not before: Fri 02 Jan 2026 00:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15743 IP address blocks: 192.166.167.0/24 maxlen: 24 192.166.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/db2912-89a9-4ee9-8229-a55f77b83e6b/1/AK1tg8gINynXqdhXHWXOl-BYuCE.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/db2912-89a9-4ee9-8229-a55f77b83e6b/1/AK1tg8gINynXqdhXHWXOl-BYuCE.mft rsync://rpki.ripe.net/repository/DEFAULT/AK1tg8gINynXqdhXHWXOl-BYuCE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:10:8f:36:f0:00:ba:f2:2c:93:9d:fc:22:cc:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00ad6d83c8083729d7a9d8571d65ce97e058b821 Validity Not Before: Jan 2 00:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=44375fcc7408bddb1da891c5e1857f5e9d433530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6e:7d:4f:fc:4c:ae:05:be:66:85:ea:8b:27: a0:09:2c:d9:19:f7:ca:e8:4f:67:96:b1:9f:85:2f: cd:13:91:32:a3:76:52:ec:ea:2a:c2:6b:56:04:7b: 6d:b9:89:5a:8c:b3:72:bc:0f:92:78:4a:22:ba:da: 48:94:f9:c3:b5:37:1d:80:27:22:c8:ee:45:a6:3e: 4f:16:57:d1:75:56:79:36:ec:d5:ae:f5:66:e3:82: 70:ba:56:00:83:a7:51:d6:9b:46:50:4f:2e:0c:d4: 17:92:3b:0d:65:c0:b5:b0:aa:f2:32:a6:45:4d:fb: f5:24:ff:b6:9e:34:eb:ac:1b:61:6a:44:52:05:26: c8:c8:75:e1:15:d6:8b:f0:df:12:a0:7e:36:a8:ae: 23:64:b5:d0:c3:4d:db:8f:8b:12:86:49:bf:ad:71: 47:da:5f:52:66:0a:61:6e:10:62:44:7c:4d:dc:16: ed:64:a5:cf:23:f7:d7:fd:28:50:34:07:41:ed:45: 05:0b:c7:72:82:ee:f9:ee:b5:3d:b5:d9:dd:7d:cd: a6:59:d2:cd:bc:5d:04:74:fc:45:bd:ef:ea:f4:42: 5d:40:4a:fd:d2:d1:0e:21:96:92:f6:1c:6e:4c:5b: a7:50:f0:08:19:da:aa:fa:9b:19:72:c9:d7:33:70: 6b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:37:5F:CC:74:08:BD:DB:1D:A8:91:C5:E1:85:7F:5E:9D:43:35:30 X509v3 Authority Key Identifier: keyid:00:AD:6D:83:C8:08:37:29:D7:A9:D8:57:1D:65:CE:97:E0:58:B8:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK1tg8gINynXqdhXHWXOl-BYuCE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/db2912-89a9-4ee9-8229-a55f77b83e6b/1/RDdfzHQIvdsdqJHF4YV_Xp1DNTA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/db2912-89a9-4ee9-8229-a55f77b83e6b/1/AK1tg8gINynXqdhXHWXOl-BYuCE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.166.167.0/24 192.166.176.0/21 Signature Algorithm: sha256WithRSAEncryption 56:73:07:2c:ac:4b:cc:97:5e:2a:5d:89:59:20:ec:cb:19:af: 57:08:f0:2e:60:99:6d:85:da:c7:47:84:8f:9f:25:f2:3a:fe: 3b:f8:5f:5e:5c:d5:e9:6d:d2:bb:c5:f4:a1:83:37:91:68:12: f8:c0:ff:07:79:0d:08:2c:6c:eb:95:c0:1d:71:bb:b0:03:46: e8:29:bf:d5:48:dc:38:ef:06:26:fe:fd:94:42:04:b2:4c:74: 7b:68:67:a6:f8:3d:ad:21:b4:b8:be:db:71:9f:55:e1:7b:24: 97:4f:0c:c6:52:30:f2:02:56:32:db:78:bc:9d:44:8b:e8:16: 13:a1:ea:e3:dc:1d:34:e4:99:bb:b5:d4:2b:a1:5c:61:08:e6: a6:b7:a7:de:5d:e9:fc:c1:f7:1e:00:19:0d:45:a1:ef:68:5d: 93:f8:65:62:06:47:3f:e3:26:68:1f:f0:e3:a8:1d:3c:21:07: 65:8b:aa:8e:64:c4:ea:fd:23:88:7c:13:9c:32:b7:8d:5a:ae: 61:3a:c1:02:bb:58:f6:d6:45:e4:73:cd:d0:a4:44:52:32:20: 99:20:83:eb:33:20:8f:d9:c4:01:e9:b7:a0:9b:6e:75:e5:c2: 7d:5a:bd:61:15:03:49:cd:a8:0b:bd:88:9b:d0:70:5e:a4:7f: 4a:6f:02:0e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8EhCPNvAAuvIsk538IsyvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYWQ2ZDgzYzgwODM3MjlkN2E5ZDg1NzFkNjVjZTk3ZTA1 OGI4MjEwHhcNMjYwMTAyMDAxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDM3NWZjYzc0MDhiZGRiMWRhODkxYzVlMTg1N2Y1ZTlkNDMzNTMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvW59T/xMrgW+ZoXqiyegCSzZGffK 6E9nlrGfhS/NE5Eyo3ZS7OoqwmtWBHttuYlajLNyvA+SeEoiutpIlPnDtTcdgCci yO5Fpj5PFlfRdVZ5NuzVrvVm44JwulYAg6dR1ptGUE8uDNQXkjsNZcC1sKryMqZF Tfv1JP+2njTrrBthakRSBSbIyHXhFdaL8N8SoH42qK4jZLXQw03bj4sShkm/rXFH 2l9SZgphbhBiRHxN3BbtZKXPI/fX/ShQNAdB7UUFC8dygu757rU9tdndfc2mWdLN vF0EdPxFve/q9EJdQEr90tEOIZaS9hxuTFunUPAIGdqq+psZcsnXM3BrJwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEQ3X8x0CL3bHaiRxeGFf16dQzUwMB8GA1UdIwQY MBaAFACtbYPICDcp16nYVx1lzpfgWLghMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUsxdGc4Z0lOeW5YcWRoWEhXWE9sLUJZdUNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9kYjI5MTItODlhOS00ZWU5LTgyMjkt YTU1Zjc3YjgzZTZiLzEvUkRkZnpIUUl2ZHNkcUpIRjRZVl9YcDFETlRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS9kYjI5MTItODlhOS00ZWU5LTgyMjktYTU1Zjc3YjgzZTZi LzEvQUsxdGc4Z0lOeW5YcWRoWEhXWE9sLUJZdUNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwKanAwQD wKawMA0GCSqGSIb3DQEBCwUAA4IBAQBWcwcsrEvMl14qXYlZIOzLGa9XCPAuYJlt hdrHR4SPnyXyOv47+F9eXNXpbdK7xfShgzeRaBL4wP8HeQ0ILGzrlcAdcbuwA0bo Kb/VSNw47wYm/v2UQgSyTHR7aGem+D2tIbS4vttxn1XheySXTwzGUjDyAlYy23i8 nUSL6BYToerj3B005Jm7tdQroVxhCOamt6feXen8wfceABkNRaHvaF2T+GViBkc/ 4yZoH/DjqB08IQdli6qOZMTq/SOIfBOcMreNWq5hOsECu1j21kXkc83QpERSMiCZ IIPrMyCP2cQB6begm2515cJ9Wr1hFQNJzagLvYib0HBepH9KbwIO -----END CERTIFICATE-----Generated at Tue Jan 27 08:34:21 2026 by rpki-client