This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/b53547-d340-4392-af46-615961312b52/1/DU_TVKVtm6bTmyTDO5PD_oikETo.roa File: DU_TVKVtm6bTmyTDO5PD_oikETo.roa (raw, json) Hash identifier: C0IdbVzuo1dJM8VCnuKPp17eM0Ch9xsqhnJeVL29u1A= Subject key identifier: 0D:4F:D3:54:A5:6D:9B:A6:D3:9B:24:C3:3B:93:C3:FE:88:A4:11:3A Certificate issuer: /CN=37431f1be9fdc2419098479cde457bbf79571759 Certificate serial: 019B7A5B0A037E9344816B96447E99CA33E1 Authority key identifier: 37:43:1F:1B:E9:FD:C2:41:90:98:47:9C:DE:45:7B:BF:79:57:17:59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N0MfG-n9wkGQmEec3kV7v3lXF1k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/b53547-d340-4392-af46-615961312b52/1/DU_TVKVtm6bTmyTDO5PD_oikETo.roa Signing time: Thu 01 Jan 2026 16:19:05 +0000 ROA not before: Thu 01 Jan 2026 16:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41717 IP address blocks: 185.211.135.0/24 maxlen: 32 2a0b:65c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/b53547-d340-4392-af46-615961312b52/1/N0MfG-n9wkGQmEec3kV7v3lXF1k.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/b53547-d340-4392-af46-615961312b52/1/N0MfG-n9wkGQmEec3kV7v3lXF1k.mft rsync://rpki.ripe.net/repository/DEFAULT/N0MfG-n9wkGQmEec3kV7v3lXF1k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 07:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:0a:03:7e:93:44:81:6b:96:44:7e:99:ca:33:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37431f1be9fdc2419098479cde457bbf79571759 Validity Not Before: Jan 1 16:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d4fd354a56d9ba6d39b24c33b93c3fe88a4113a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bb:40:08:fe:d0:27:ed:cf:5f:b7:94:70:9b: af:aa:70:d1:9d:eb:b0:7a:70:b0:c5:af:64:cc:f9: 89:1e:de:d4:48:97:91:1a:8f:73:74:cf:ef:f4:c5: 14:ff:44:05:88:80:15:19:91:cc:bb:32:2a:6b:bf: 8d:75:0b:1b:f0:5b:8a:32:45:60:af:09:fc:ff:24: 48:f3:c2:c0:4c:17:17:a8:72:9b:89:b1:70:af:cf: ee:20:16:32:de:2e:96:43:3b:7f:5a:8e:ed:c7:8d: 58:af:97:2e:79:25:bf:09:1b:88:99:52:fe:75:8e: 03:f4:68:df:b3:9b:01:96:e7:27:75:a7:92:53:26: 51:44:4d:09:a2:e9:07:52:db:28:19:a6:56:04:45: 7e:4c:79:63:2b:1d:0c:fc:ee:d4:c9:ac:69:bf:62: e1:49:08:84:67:86:99:6e:c9:b4:cb:21:67:bd:76: b9:bd:fe:d2:90:6f:39:2c:00:11:75:fe:aa:61:44: 22:a8:e0:ba:6d:9d:2a:8e:9a:ab:0a:50:a5:b6:e2: 99:34:84:fb:8b:ee:3b:c0:86:25:8e:66:ff:84:05: bc:82:fb:db:28:e0:6a:72:8d:f6:c1:bf:47:a5:34: e9:a6:bb:02:c9:99:92:22:85:92:b0:dd:bc:84:ba: fe:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:4F:D3:54:A5:6D:9B:A6:D3:9B:24:C3:3B:93:C3:FE:88:A4:11:3A X509v3 Authority Key Identifier: keyid:37:43:1F:1B:E9:FD:C2:41:90:98:47:9C:DE:45:7B:BF:79:57:17:59 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N0MfG-n9wkGQmEec3kV7v3lXF1k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b53547-d340-4392-af46-615961312b52/1/DU_TVKVtm6bTmyTDO5PD_oikETo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/b53547-d340-4392-af46-615961312b52/1/N0MfG-n9wkGQmEec3kV7v3lXF1k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.211.135.0/24 IPv6: 2a0b:65c0:4::/48 Signature Algorithm: sha256WithRSAEncryption 03:ae:6e:ce:a9:1c:dc:05:89:db:9e:df:00:f4:de:d0:f4:56: 63:fa:1f:bd:f2:a0:c6:ce:fa:01:2b:c4:52:68:8a:4f:f6:9c: ad:be:cd:98:15:b6:af:0e:f9:24:ac:cf:ce:83:b3:f4:24:21: dc:f1:fd:4f:05:0e:a1:dc:a2:31:89:71:2f:69:80:2b:c9:73: 85:24:db:d3:4c:a9:14:e1:02:5e:f2:ec:95:f1:33:1c:2c:29: 3f:04:d8:79:00:c5:04:7f:05:38:5e:6b:f0:aa:cb:11:f5:d8: a7:00:c6:ed:55:6b:a0:97:62:8d:38:82:1c:dd:e3:e3:d0:88: ef:60:a6:02:2e:3a:21:d8:15:37:0f:dc:ca:d2:02:39:d9:a8: b8:c2:9f:fe:db:b0:21:12:58:97:d3:d8:b4:a8:d9:2f:5b:87: df:73:56:7a:63:4d:8b:4c:ec:e7:2d:ac:9b:d6:18:61:be:a3: a7:b3:c1:41:ef:10:9f:65:69:ad:c7:ba:c7:1b:7e:df:7b:cb: 1f:e6:25:e1:c5:69:72:9b:68:bf:ef:08:40:d2:10:52:36:92: 7e:bf:fe:4c:a6:59:3d:61:24:19:4a:30:f9:d0:c2:a0:8c:28: 36:49:18:62:3e:b8:4f:45:b0:d9:a0:38:cb:8b:e8:c4:67:74: 15:43:4d:2a -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6WwoDfpNEgWuWRH6ZyjPhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3NDMxZjFiZTlmZGMyNDE5MDk4NDc5Y2RlNDU3YmJmNzk1 NzE3NTkwHhcNMjYwMTAxMTYxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDRmZDM1NGE1NmQ5YmE2ZDM5YjI0YzMzYjkzYzNmZTg4YTQxMTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rtACP7QJ+3PX7eUcJuvqnDRneuw enCwxa9kzPmJHt7USJeRGo9zdM/v9MUU/0QFiIAVGZHMuzIqa7+NdQsb8FuKMkVg rwn8/yRI88LATBcXqHKbibFwr8/uIBYy3i6WQzt/Wo7tx41Yr5cueSW/CRuImVL+ dY4D9Gjfs5sBlucndaeSUyZRRE0JoukHUtsoGaZWBEV+THljKx0M/O7Uyaxpv2Lh SQiEZ4aZbsm0yyFnvXa5vf7SkG85LAARdf6qYUQiqOC6bZ0qjpqrClCltuKZNIT7 i+47wIYljmb/hAW8gvvbKOBqco32wb9HpTTpprsCyZmSIoWSsN28hLr+sQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFA1P01SlbZum05skwzuTw/6IpBE6MB8GA1UdIwQY MBaAFDdDHxvp/cJBkJhHnN5Fe795VxdZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjBNZkctbjl3a0dRbUVlYzNrVjd2M2xYRjFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9iNTM1NDctZDM0MC00MzkyLWFmNDYt NjE1OTYxMzEyYjUyLzEvRFVfVFZLVnRtNmJUbXlURE81UERfb2lrRVRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9iNTM1NDctZDM0MC00MzkyLWFmNDYtNjE1OTYxMzEyYjUy LzEvTjBNZkctbjl3a0dRbUVlYzNrVjd2M2xYRjFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAudOHMA8E AgACMAkDBwAqC2XAAAQwDQYJKoZIhvcNAQELBQADggEBAAOubs6pHNwFidue3wD0 3tD0VmP6H73yoMbO+gErxFJoik/2nK2+zZgVtq8O+SSsz86Ds/QkIdzx/U8FDqHc ojGJcS9pgCvJc4Uk29NMqRThAl7y7JXxMxwsKT8E2HkAxQR/BThea/CqyxH12KcA xu1Va6CXYo04ghzd4+PQiO9gpgIuOiHYFTcP3MrSAjnZqLjCn/7bsCESWJfT2LSo 2S9bh99zVnpjTYtM7OctrJvWGGG+o6ezwUHvEJ9laa3Huscbft97yx/mJeHFaXKb aL/vCEDSEFI2kn6//kymWT1hJBlKMPnQwqCMKDZJGGI+uE9FsNmgOMuL6MRndBVD TSo= -----END CERTIFICATE-----Generated at Mon Jan 19 14:41:00 2026 by rpki-client