This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/03iRDZjfOXUhCXUkBuvmDmaJE8A.roa File: 03iRDZjfOXUhCXUkBuvmDmaJE8A.roa (raw, json) Hash identifier: 9wtkK+sEPPwlFPTu33+qxl2aa8F4vwbYAPo8EYh+r3M= Subject key identifier: D3:78:91:0D:98:DF:39:75:21:09:75:24:06:EB:E6:0E:66:89:13:C0 Certificate issuer: /CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654 Certificate serial: 019B79ED5376AF478B5644F6CFD288355D63 Authority key identifier: 73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/03iRDZjfOXUhCXUkBuvmDmaJE8A.roa Signing time: Thu 01 Jan 2026 14:19:15 +0000 ROA not before: Thu 01 Jan 2026 14:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202991 IP address blocks: 185.148.84.0/22 maxlen: 22 185.178.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.mft rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:53:76:af:47:8b:56:44:f6:cf:d2:88:35:5d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7302cdc29fdca09e9a0f3f7d2113da85a7e1d654 Validity Not Before: Jan 1 14:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d378910d98df39752109752406ebe60e668913c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7d:ee:fb:5b:c6:95:e0:74:83:fb:3e:09:8e: 4e:9f:0e:dc:5e:10:23:50:25:75:8f:2c:21:d4:d8: b9:46:22:ba:3e:37:2f:0c:b4:ab:9f:e2:ba:43:16: 00:2e:98:b1:0a:f7:11:2e:48:5e:4a:13:fb:6d:33: fd:81:a5:cd:9d:73:22:d0:a1:46:65:cd:b9:50:04: 6d:c1:b7:58:88:dc:c0:15:4e:b1:77:d3:ce:e8:80: 7e:1a:e9:6b:ce:26:bb:83:8e:2e:a5:e0:70:5c:dd: 6b:b1:60:58:0d:5c:e9:1a:5c:f7:7a:7c:49:e2:8a: a4:60:7c:89:70:78:84:b1:65:e3:3d:4b:41:de:cf: 54:a0:5a:81:6c:98:fe:c0:2f:f6:fe:bc:88:80:6c: 41:63:b5:6c:d3:fa:bc:d5:e1:d4:62:b0:ca:91:c6: 0c:1b:89:1a:ad:af:e3:35:27:ed:32:65:be:30:31: a5:bc:3d:f9:8c:af:5e:c4:73:be:c0:de:be:1d:fb: 6b:56:5b:19:bf:ce:03:a1:a0:10:d4:af:97:a7:a5: 25:35:fa:65:f2:a1:1a:46:f7:2f:94:dd:2d:99:33: 12:3d:73:73:45:7d:72:d4:7b:84:dc:a1:5f:db:e5: b7:81:f2:bd:2f:f4:fe:db:65:c6:47:bb:6f:7a:6a: a9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:78:91:0D:98:DF:39:75:21:09:75:24:06:EB:E6:0E:66:89:13:C0 X509v3 Authority Key Identifier: keyid:73:02:CD:C2:9F:DC:A0:9E:9A:0F:3F:7D:21:13:DA:85:A7:E1:D6:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cwLNwp_coJ6aDz99IRPahafh1lQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/03iRDZjfOXUhCXUkBuvmDmaJE8A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/77217d-814b-486a-8ef2-fe0333ed005f/1/cwLNwp_coJ6aDz99IRPahafh1lQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.148.84.0/22 185.178.240.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:ca:44:6b:57:1b:bc:f5:df:a0:e7:0e:86:74:b6:49:cc:b8: b5:2b:54:d5:44:5f:f0:40:2b:62:e8:11:b5:39:f9:44:f1:3d: 25:10:a0:88:25:50:24:1f:75:c8:96:33:b4:c9:61:59:53:cf: 34:07:ab:dd:25:d7:83:fc:1e:36:1e:7f:99:71:20:3d:de:a5: 87:f2:3d:79:72:82:d5:53:4f:00:5a:fb:51:1a:41:11:58:93: 4e:a1:60:96:e3:a7:66:50:41:58:39:f6:f6:2d:5b:35:21:da: 4b:2a:03:dd:a0:05:d6:b5:cb:36:90:6a:f8:45:ab:a3:4f:dc: b6:99:fd:57:dd:8c:b9:d7:00:21:c2:fc:e2:c4:0e:03:d3:f9: 06:3a:7f:c8:44:65:5f:2d:01:b0:d1:56:a9:0a:bd:40:9b:1b: e1:21:ce:70:da:de:84:bf:6a:e6:6e:a1:dd:87:7e:18:56:c7: c3:43:d6:8b:83:cc:c5:dc:a0:7f:90:ae:ca:a8:3d:d4:f2:38: 31:ba:70:b9:1f:31:3a:5c:67:b6:68:70:15:d8:51:e5:ae:cc: 07:ef:86:d5:37:f2:4f:52:14:18:5e:e1:15:e4:c4:e7:5b:b2: 63:54:0b:0d:71:59:f8:1c:f7:17:bf:f9:b3:25:3e:ba:6d:55: 77:38:54:c4 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57VN2r0eLVkT2z9KINV1jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczMDJjZGMyOWZkY2EwOWU5YTBmM2Y3ZDIxMTNkYTg1YTdl MWQ2NTQwHhcNMjYwMTAxMTQxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzc4OTEwZDk4ZGYzOTc1MjEwOTc1MjQwNmViZTYwZTY2ODkxM2MwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvn3u+1vGleB0g/s+CY5Onw7cXhAj UCV1jywh1Ni5RiK6PjcvDLSrn+K6QxYALpixCvcRLkheShP7bTP9gaXNnXMi0KFG Zc25UARtwbdYiNzAFU6xd9PO6IB+Gulrzia7g44upeBwXN1rsWBYDVzpGlz3enxJ 4oqkYHyJcHiEsWXjPUtB3s9UoFqBbJj+wC/2/ryIgGxBY7Vs0/q81eHUYrDKkcYM G4kara/jNSftMmW+MDGlvD35jK9exHO+wN6+HftrVlsZv84DoaAQ1K+Xp6UlNfpl 8qEaRvcvlN0tmTMSPXNzRX1y1HuE3KFf2+W3gfK9L/T+22XGR7tvemqpJwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNN4kQ2Y3zl1IQl1JAbr5g5miRPAMB8GA1UdIwQY MBaAFHMCzcKf3KCemg8/fSET2oWn4dZUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3dMTndwX2NvSjZhRHo5OUlSUGFoYWZoMWxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC83NzIxN2QtODE0Yi00ODZhLThlZjIt ZmUwMzMzZWQwMDVmLzEvMDNpUkRaamZPWFVoQ1hVa0J1dm1EbWFKRThBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC83NzIxN2QtODE0Yi00ODZhLThlZjItZmUwMzMzZWQwMDVm LzEvY3dMTndwX2NvSjZhRHo5OUlSUGFoYWZoMWxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuZRUAwQC ubLwMA0GCSqGSIb3DQEBCwUAA4IBAQAqykRrVxu89d+g5w6GdLZJzLi1K1TVRF/w QCti6BG1OflE8T0lEKCIJVAkH3XIljO0yWFZU880B6vdJdeD/B42Hn+ZcSA93qWH 8j15coLVU08AWvtRGkERWJNOoWCW46dmUEFYOfb2LVs1IdpLKgPdoAXWtcs2kGr4 RaujT9y2mf1X3Yy51wAhwvzixA4D0/kGOn/IRGVfLQGw0VapCr1AmxvhIc5w2t6E v2rmbqHdh34YVsfDQ9aLg8zF3KB/kK7KqD3U8jgxunC5HzE6XGe2aHAV2FHlrswH 74bVN/JPUhQYXuEV5MTnW7JjVAsNcVn4HPcXv/mzJT66bVV3OFTE -----END CERTIFICATE-----Generated at Mon Jan 26 20:25:55 2026 by rpki-client