This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/pDrr_bf7Ghe4a7lfLdGTUedQJ4s.roa File: pDrr_bf7Ghe4a7lfLdGTUedQJ4s.roa (raw, json) Hash identifier: hckgwXDzkDTS3YgN/PyJxO9PpMuWCR3QafiNrBSQrgA= Subject key identifier: A4:3A:EB:FD:B7:FB:1A:17:B8:6B:B9:5F:2D:D1:93:51:E7:50:27:8B Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449 Certificate serial: 019B7DCB4DE91FE8F87068360A7C329BCAAC Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/pDrr_bf7Ghe4a7lfLdGTUedQJ4s.roa Signing time: Fri 02 Jan 2026 08:20:34 +0000 ROA not before: Fri 02 Jan 2026 08:20:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25465 IP address blocks: 94.207.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.mft rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:4d:e9:1f:e8:f8:70:68:36:0a:7c:32:9b:ca:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449 Validity Not Before: Jan 2 08:20:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a43aebfdb7fb1a17b86bb95f2dd19351e750278b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:30:c8:1c:f8:4b:55:ae:a9:4c:52:5f:04:19: 5b:e1:0e:99:49:5e:4d:00:e9:1c:82:89:5a:14:ab: e9:67:87:7c:9f:1f:ea:71:d9:1c:f6:5b:ef:4e:52: 91:df:46:12:4e:69:bd:12:2c:67:3b:0d:83:5d:83: 08:16:94:ee:88:8f:17:b6:b1:fc:8b:04:fc:3c:4c: 0c:a0:f8:e7:45:cd:59:e9:b3:c5:58:9b:0c:47:66: 2f:c4:dd:50:bd:a9:ec:44:8f:9e:23:eb:ef:e8:61: 49:08:f8:b8:ca:af:d5:4c:16:cc:93:7c:9e:36:3d: c6:6d:ee:ee:d8:0f:5c:b9:5b:72:20:23:0a:07:1e: 19:ca:81:a1:7d:80:a4:91:54:dc:8d:9f:0d:ba:00: 4e:ec:8d:83:52:d7:bc:fb:a8:ef:a1:63:44:7a:4f: 73:11:2f:1f:9a:d5:6f:4b:ba:19:6c:85:e5:03:5d: b8:52:d7:79:3b:ab:8b:ef:25:1f:25:48:31:25:d6: c9:4f:99:cd:62:92:98:38:4c:49:d1:ce:69:da:d4: 5d:04:ee:5d:a8:e0:56:f4:71:4b:98:4b:d5:83:62: 60:b6:9a:32:43:50:42:b2:4f:26:90:31:61:c7:b6: 73:49:12:4a:71:67:8f:7b:b9:97:27:ba:6e:ee:60: 48:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:3A:EB:FD:B7:FB:1A:17:B8:6B:B9:5F:2D:D1:93:51:E7:50:27:8B X509v3 Authority Key Identifier: keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/pDrr_bf7Ghe4a7lfLdGTUedQJ4s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.207.41.0/24 Signature Algorithm: sha256WithRSAEncryption 31:74:06:b9:80:24:11:9f:45:ea:c5:ba:d8:1c:44:5c:63:68: 37:1e:54:5c:d5:82:6c:96:cc:30:32:89:fe:9c:1b:1d:d0:6c: e7:1f:15:5b:8f:29:f7:dc:89:bb:6b:13:c8:50:11:3b:10:9c: 98:aa:c9:45:47:f8:58:15:6e:ea:8a:7f:cc:73:f3:73:8f:1c: 1f:33:a2:47:dc:fe:aa:84:ab:9c:4e:2e:e2:7d:a6:45:eb:e2: 93:1c:a0:5b:31:8e:76:ad:e8:ae:84:a1:2d:0c:59:9e:11:7e: 66:aa:f6:3e:5d:1a:9e:97:49:bb:39:d5:5a:8c:30:81:a8:ac: 42:65:cb:0e:67:39:10:b1:c0:40:24:59:58:ec:95:96:46:d2: 0c:96:d9:e1:e8:90:9b:6f:49:e9:21:8f:77:40:08:cf:8f:cd: 7f:15:e3:6b:d4:e0:db:66:80:ca:40:b7:fa:4a:9d:cb:74:e2: db:72:8d:40:9e:3d:c7:e2:c1:3e:2a:f3:b9:a3:39:2c:43:0d: 3e:1d:5e:17:6e:a0:49:39:06:2a:c8:88:41:15:14:94:54:28: 0e:7b:fe:08:ab:81:67:de:3e:85:11:2c:e0:ab:ba:ee:ea:c5: 41:f6:ce:33:ea:ab:9c:1b:aa:f4:fb:be:f3:48:94:cc:43:e5: bc:56:5f:85 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y03pH+j4cGg2Cnwym8qsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5ZGE2MGYwNDlkZmJhMzRiZTRiNGU4NDE4YjlmZjQ5MjEy NWM0NDkwHhcNMjYwMTAyMDgyMDM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDNhZWJmZGI3ZmIxYTE3Yjg2YmI5NWYyZGQxOTM1MWU3NTAyNzhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvTDIHPhLVa6pTFJfBBlb4Q6ZSV5N AOkcgolaFKvpZ4d8nx/qcdkc9lvvTlKR30YSTmm9EixnOw2DXYMIFpTuiI8XtrH8 iwT8PEwMoPjnRc1Z6bPFWJsMR2YvxN1QvansRI+eI+vv6GFJCPi4yq/VTBbMk3ye Nj3Gbe7u2A9cuVtyICMKBx4ZyoGhfYCkkVTcjZ8NugBO7I2DUte8+6jvoWNEek9z ES8fmtVvS7oZbIXlA124Utd5O6uL7yUfJUgxJdbJT5nNYpKYOExJ0c5p2tRdBO5d qOBW9HFLmEvVg2JgtpoyQ1BCsk8mkDFhx7ZzSRJKcWePe7mXJ7pu7mBICQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKQ66/23+xoXuGu5Xy3Rk1HnUCeLMB8GA1UdIwQY MBaAFInaYPBJ37o0vktOhBi5/0khJcRJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWRwZzhFbmZ1alMtUzA2RUdMbl9TU0VseEVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTQ3N2YtMDc4NS00MDI2LTgzYmUt Njk4OTBjODI5ZTMzLzEvcERycl9iZjdHaGU0YTdsZkxkR1RVZWRRSjRzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMC9kZTQ3N2YtMDc4NS00MDI2LTgzYmUtNjk4OTBjODI5ZTMz LzEvaWRwZzhFbmZ1alMtUzA2RUdMbl9TU0VseEVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXs8pMA0G CSqGSIb3DQEBCwUAA4IBAQAxdAa5gCQRn0XqxbrYHERcY2g3HlRc1YJslswwMon+ nBsd0GznHxVbjyn33Im7axPIUBE7EJyYqslFR/hYFW7qin/Mc/NzjxwfM6JH3P6q hKucTi7ifaZF6+KTHKBbMY52reiuhKEtDFmeEX5mqvY+XRqel0m7OdVajDCBqKxC ZcsOZzkQscBAJFlY7JWWRtIMltnh6JCbb0npIY93QAjPj81/FeNr1ODbZoDKQLf6 Sp3LdOLbco1Anj3H4sE+KvO5ozksQw0+HV4XbqBJOQYqyIhBFRSUVCgOe/4Iq4Fn 3j6FESzgq7ru6sVB9s4z6qucG6r0+77zSJTMQ+W8Vl+F -----END CERTIFICATE-----Generated at Mon Jan 26 17:24:22 2026 by rpki-client