This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/dojtDE2lkw-HFaW5ALmVY1sMitM.roa File: dojtDE2lkw-HFaW5ALmVY1sMitM.roa (raw, json) Hash identifier: fgQoK9hiiVc+++lICO064wj1zswckXhPkUGH4lw+7x0= Subject key identifier: 76:88:ED:0C:4D:A5:93:0F:87:15:A5:B9:00:B9:95:63:5B:0C:8A:D3 Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91 Certificate serial: 019BA72452FE56512B1EB84581A2C4141C6A Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/dojtDE2lkw-HFaW5ALmVY1sMitM.roa Signing time: Sat 10 Jan 2026 09:02:14 +0000 ROA not before: Sat 10 Jan 2026 09:02:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9304 IP address blocks: 193.31.15.0/24 maxlen: 24 193.31.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.mft rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a7:24:52:fe:56:51:2b:1e:b8:45:81:a2:c4:14:1c:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91 Validity Not Before: Jan 10 09:02:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7688ed0c4da5930f8715a5b900b995635b0c8ad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:de:b1:ec:3f:96:d7:6f:83:f8:56:4f:3c:43: ce:f8:ce:d9:4d:8d:c5:f6:67:34:5c:49:06:86:10: 57:c3:5b:52:4c:7f:7c:6b:0d:f9:3f:7d:ce:bb:00: 42:7f:73:36:39:37:b0:ac:ec:a9:01:2d:19:40:fd: 46:f3:e4:22:f9:65:b1:90:a3:69:a1:8a:2d:24:cb: bf:d5:18:ae:5c:33:55:12:17:7a:c7:5f:5e:0a:9c: 27:65:58:e8:be:88:89:c4:3b:cc:ee:dc:33:90:30: 20:5e:01:e5:47:09:3e:67:0f:52:f9:66:99:0a:d8: 74:97:5e:29:c8:4e:d7:61:84:03:57:00:6d:e8:d3: a9:f8:44:41:f6:07:3b:6c:20:28:bb:c4:7a:a6:76: b8:32:f6:d8:f9:f9:ba:16:70:d4:a9:fa:65:1c:5d: 53:40:bd:c7:6b:05:2e:02:86:74:62:1c:24:c7:46: cd:52:83:6d:de:c6:e0:1f:08:4a:3b:db:6e:76:44: b6:01:8a:39:00:53:4a:a9:3e:c2:77:5a:66:ad:ed: 2d:fa:34:f5:42:3b:ac:81:a8:a5:c5:7f:b8:4b:cc: 21:a0:7c:bb:a0:73:d4:8d:75:b9:74:7f:7c:47:61: 57:05:3e:39:37:99:42:e1:30:ec:91:50:d1:81:38: f3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:88:ED:0C:4D:A5:93:0F:87:15:A5:B9:00:B9:95:63:5B:0C:8A:D3 X509v3 Authority Key Identifier: keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/dojtDE2lkw-HFaW5ALmVY1sMitM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.31.15.0/24 193.31.60.0/24 Signature Algorithm: sha256WithRSAEncryption 39:53:9c:c4:1a:07:b9:d5:a6:74:f6:a4:7e:bd:c5:f3:46:34: 4d:9d:a4:62:51:a5:88:96:0a:21:fc:e3:d6:c5:a3:60:f7:60: b3:d7:7a:59:5f:c5:cc:56:90:04:89:f6:cf:b5:00:c7:e4:32: 97:a7:95:4a:b3:10:83:ff:4b:6a:14:14:12:2f:85:e6:32:3d: 50:16:77:25:c9:c8:b5:87:ac:0d:11:b4:c0:e2:10:b4:db:86: c8:4a:62:24:db:c1:e2:43:d2:a4:00:28:a3:b5:4c:94:f7:91: 6e:a4:cc:9b:ec:94:5d:42:1d:c2:a5:d3:a9:3c:c5:75:2d:e7: d3:86:5a:dc:87:6b:57:2d:67:47:62:6c:fa:43:17:cc:df:f4: 2f:5c:33:41:96:f9:3e:ad:54:03:f1:b0:13:08:93:7c:65:f3: ca:0a:a3:ce:50:29:5f:b8:69:65:77:32:fd:33:bc:89:e5:e1: 5e:4a:cd:f6:b3:1b:bb:42:06:99:d7:f2:4d:aa:d8:da:8f:49: 18:6d:43:20:13:97:4f:dc:0b:77:4a:15:38:94:b6:b2:e7:63: c5:dc:19:a3:28:9c:3c:5c:43:94:03:96:af:a7:1c:c3:0e:e5: a6:f3:31:3e:88:86:a7:97:40:d8:a0:16:3d:fc:23:8c:f9:41: a8:53:d0:a7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZunJFL+VlErHrhFgaLEFBxqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmMWQ1ZmVhZmQzOTE3NDcyNWJmZTRiZWY5MWJkMjdjN2Iy ZjZmOTEwHhcNMjYwMTEwMDkwMjE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Njg4ZWQwYzRkYTU5MzBmODcxNWE1YjkwMGI5OTU2MzViMGM4YWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAod6x7D+W12+D+FZPPEPO+M7ZTY3F 9mc0XEkGhhBXw1tSTH98aw35P33OuwBCf3M2OTewrOypAS0ZQP1G8+Qi+WWxkKNp oYotJMu/1RiuXDNVEhd6x19eCpwnZVjovoiJxDvM7twzkDAgXgHlRwk+Zw9S+WaZ Cth0l14pyE7XYYQDVwBt6NOp+ERB9gc7bCAou8R6pna4MvbY+fm6FnDUqfplHF1T QL3HawUuAoZ0Yhwkx0bNUoNt3sbgHwhKO9tudkS2AYo5AFNKqT7Cd1pmre0t+jT1 QjusgailxX+4S8whoHy7oHPUjXW5dH98R2FXBT45N5lC4TDskVDRgTjz4wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHaI7QxNpZMPhxWluQC5lWNbDIrTMB8GA1UdIwQY MBaAFL8dX+r9ORdHJb/kvvkb0nx7L2+RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdngxZjZ2MDVGMGNsdi1TLS1SdlNmSHN2YjVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy82MDY1ZDItMTAzZS00YWI3LWJmYjMt MWE4Yzg0MmFmZTJhLzEvZG9qdERFMmxrdy1IRmFXNUFMbVZZMXNNaXRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy82MDY1ZDItMTAzZS00YWI3LWJmYjMtMWE4Yzg0MmFmZTJh LzEvdngxZjZ2MDVGMGNsdi1TLS1SdlNmSHN2YjVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwR8PAwQA wR88MA0GCSqGSIb3DQEBCwUAA4IBAQA5U5zEGge51aZ09qR+vcXzRjRNnaRiUaWI lgoh/OPWxaNg92Cz13pZX8XMVpAEifbPtQDH5DKXp5VKsxCD/0tqFBQSL4XmMj1Q Fnclyci1h6wNEbTA4hC024bISmIk28HiQ9KkACijtUyU95FupMyb7JRdQh3CpdOp PMV1LefThlrch2tXLWdHYmz6QxfM3/QvXDNBlvk+rVQD8bATCJN8ZfPKCqPOUClf uGlldzL9M7yJ5eFeSs32sxu7QgaZ1/JNqtjaj0kYbUMgE5dP3At3ShU4lLay52PF 3BmjKJw8XEOUA5avpxzDDuWm8zE+iIanl0DYoBY9/COM+UGoU9Cn -----END CERTIFICATE-----Generated at Sun Jan 18 08:53:31 2026 by rpki-client