This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/dMjfzFC0ocbR33hNbb8ILmzlXZw.roa File: dMjfzFC0ocbR33hNbb8ILmzlXZw.roa (raw, json) Hash identifier: w5l2xr3HNRYRnI9nVxU8DTQn1fpIrZz5C5GrB57oRtM= Subject key identifier: 74:C8:DF:CC:50:B4:A1:C6:D1:DF:78:4D:6D:BF:08:2E:6C:E5:5D:9C Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019AD18FB97C535031CAE24F5454B39FD6F3 Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/dMjfzFC0ocbR33hNbb8ILmzlXZw.roa Signing time: Sat 29 Nov 2025 21:40:48 +0000 ROA not before: Sat 29 Nov 2025 21:40:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 51559 IP address blocks: 144.31.10.0/24 maxlen: 24 193.23.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d1:8f:b9:7c:53:50:31:ca:e2:4f:54:54:b3:9f:d6:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Nov 29 21:40:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=74c8dfcc50b4a1c6d1df784d6dbf082e6ce55d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:96:fa:02:e3:2f:60:cd:11:6d:b3:7e:6b:a4: 0e:4d:d2:be:87:d4:b1:3f:1a:17:f0:5b:6f:27:bc: 3a:cf:24:f4:4b:c0:a3:68:53:7d:31:77:dd:46:ea: 6b:41:5a:38:ed:0c:95:72:99:01:46:87:17:7e:c8: 3c:a7:3d:e7:3f:08:ad:8c:e2:02:38:c3:6e:2b:60: 42:26:16:59:a5:07:df:ed:05:6e:16:8f:72:36:3a: a1:ef:b6:f3:37:7e:da:ae:09:7f:d4:5e:da:a4:34: 83:71:04:77:a3:39:94:60:82:bf:90:7a:81:4d:15: d0:a4:51:c6:ca:da:52:e0:1c:bb:05:30:97:7f:dc: 03:8a:14:07:c1:15:32:e4:ac:00:2f:3d:4e:c9:dc: 9b:2c:1f:61:be:b3:cc:d4:12:29:73:86:13:b5:f0: 81:63:5e:be:a1:0e:0a:92:fc:6f:b0:31:07:49:9b: 2e:e4:27:20:3b:6d:8c:3f:b2:aa:26:8f:a0:6c:c7: 92:c3:e9:55:62:c0:19:38:b9:d4:ef:15:95:1a:b2: dd:25:89:ce:22:ea:09:b8:76:13:c6:2e:b6:ef:a7: 89:1b:07:bd:92:81:ae:55:71:39:21:fe:0b:76:34: 0f:73:c3:34:59:35:bd:07:7a:76:bc:d4:95:3b:62: c9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C8:DF:CC:50:B4:A1:C6:D1:DF:78:4D:6D:BF:08:2E:6C:E5:5D:9C X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/dMjfzFC0ocbR33hNbb8ILmzlXZw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.31.10.0/24 193.23.196.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:d7:59:5c:08:1f:3a:f1:6b:df:10:79:3f:3a:0f:40:64:e9: 23:f2:93:59:05:3b:3f:ce:cd:e8:45:bf:51:66:1b:94:b4:a4: d3:a2:b0:f5:c4:0b:45:01:a7:8e:7d:14:38:d4:3d:d5:a5:da: 3c:b4:b1:87:f1:79:19:8e:95:99:4b:0e:7d:5f:e4:69:e1:3f: f7:ea:f4:2c:37:63:dc:bc:99:c3:86:08:4d:c3:5c:23:15:de: 29:37:e8:93:83:6e:2e:18:ff:ca:2a:29:0f:94:1a:ea:24:d7: 4b:44:0e:fa:da:17:0d:7b:aa:02:63:fe:7d:91:23:0d:d9:55: 8f:be:9f:71:d4:b0:28:b8:f0:15:09:35:ad:95:86:9b:55:b5: 42:d4:20:74:a3:5e:d4:d2:c2:21:9b:7e:48:22:12:c0:e3:28: 3f:be:89:9a:84:45:f7:15:60:ad:69:7d:32:b7:8c:64:1d:83: da:1e:99:54:4e:28:44:f6:b3:e8:99:42:fc:e3:84:18:ce:a4: e8:e2:05:bf:60:64:a6:4c:59:80:05:d7:0c:26:1b:66:08:65: ec:6a:0f:ab:f6:db:cb:cf:08:16:e3:fa:a9:30:a7:1a:8f:08: 2e:89:9f:90:da:13:cf:0e:81:23:2a:70:31:7d:ca:c8:d8:8d: c2:35:58:1c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZrRj7l8U1AxyuJPVFSzn9bzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjUxMTI5MjE0MDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGM4ZGZjYzUwYjRhMWM2ZDFkZjc4NGQ2ZGJmMDgyZTZjZTU1ZDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Jb6AuMvYM0RbbN+a6QOTdK+h9Sx PxoX8FtvJ7w6zyT0S8CjaFN9MXfdRuprQVo47QyVcpkBRocXfsg8pz3nPwitjOIC OMNuK2BCJhZZpQff7QVuFo9yNjqh77bzN37argl/1F7apDSDcQR3ozmUYIK/kHqB TRXQpFHGytpS4By7BTCXf9wDihQHwRUy5KwALz1OydybLB9hvrPM1BIpc4YTtfCB Y16+oQ4KkvxvsDEHSZsu5CcgO22MP7KqJo+gbMeSw+lVYsAZOLnU7xWVGrLdJYnO IuoJuHYTxi6276eJGwe9koGuVXE5If4LdjQPc8M0WTW9B3p2vNSVO2LJIwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHTI38xQtKHG0d94TW2/CC5s5V2cMB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvZE1qZnpGQzBvY2JSMzNoTmJiOElMbXpsWFp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAkB8KAwQA wRfEMA0GCSqGSIb3DQEBCwUAA4IBAQB/11lcCB868WvfEHk/Og9AZOkj8pNZBTs/ zs3oRb9RZhuUtKTTorD1xAtFAaeOfRQ41D3Vpdo8tLGH8XkZjpWZSw59X+Rp4T/3 6vQsN2PcvJnDhghNw1wjFd4pN+iTg24uGP/KKikPlBrqJNdLRA762hcNe6oCY/59 kSMN2VWPvp9x1LAouPAVCTWtlYabVbVC1CB0o17U0sIhm35IIhLA4yg/vomahEX3 FWCtaX0yt4xkHYPaHplUTihE9rPomUL844QYzqTo4gW/YGSmTFmABdcMJhtmCGXs ag+r9tvLzwgW4/qpMKcajwguiZ+Q2hPPDoEjKnAxfcrI2I3CNVgc -----END CERTIFICATE-----Generated at Fri Dec 5 17:52:16 2025 by rpki-client