This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/da64birjCL1XOPzp_ziknWIOF3Y.roa File: da64birjCL1XOPzp_ziknWIOF3Y.roa (raw, json) Hash identifier: QMnviuNiCANn1NxPMK2JmFlgecXmL0gQbTXvBPWsqD4= Subject key identifier: 75:AE:B8:6E:2A:E3:08:BD:57:38:FC:E9:FF:38:A4:9D:62:0E:17:76 Certificate issuer: /CN=97c4bcdd5312f8a7c33de4b7d75c15b4cbbc1dda Certificate serial: 019B7BA3CD61C480725B0D9B96D8355CCE47 Authority key identifier: 97:C4:BC:DD:53:12:F8:A7:C3:3D:E4:B7:D7:5C:15:B4:CB:BC:1D:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8S83VMS-KfDPeS311wVtMu8Hdo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/da64birjCL1XOPzp_ziknWIOF3Y.roa Signing time: Thu 01 Jan 2026 22:18:11 +0000 ROA not before: Thu 01 Jan 2026 22:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 185.161.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/l8S83VMS-KfDPeS311wVtMu8Hdo.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/l8S83VMS-KfDPeS311wVtMu8Hdo.mft rsync://rpki.ripe.net/repository/DEFAULT/l8S83VMS-KfDPeS311wVtMu8Hdo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:cd:61:c4:80:72:5b:0d:9b:96:d8:35:5c:ce:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97c4bcdd5312f8a7c33de4b7d75c15b4cbbc1dda Validity Not Before: Jan 1 22:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75aeb86e2ae308bd5738fce9ff38a49d620e1776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:64:60:b5:c6:62:ce:57:38:fc:7f:df:8c: 53:b0:57:d9:7e:62:d8:bf:e2:9c:1f:dd:1a:5a:f6: 97:5a:99:b3:d9:99:eb:a8:34:db:de:0a:a6:ae:e3: 11:72:82:44:87:8c:24:bf:d9:50:4f:d5:e2:73:54: 71:6b:58:63:54:7e:fd:7a:cd:96:c2:61:cb:e0:e7: 5a:65:03:d6:a6:cc:ac:6d:c9:87:6d:0f:be:8d:2a: 92:f4:c1:be:9b:21:84:c1:13:e1:3e:15:92:b1:e1: 6f:df:6a:06:c4:70:6c:1b:5e:24:1e:43:97:71:7f: c1:65:c2:3f:76:fa:dd:b3:84:11:a1:bf:79:7c:e2: d2:5e:08:f4:b5:8a:b7:59:d1:01:2d:86:35:20:da: bc:b7:d2:c9:bd:95:83:14:37:5e:3a:5e:47:85:1e: 86:ef:67:90:a3:81:22:e3:5e:50:2f:2b:7e:76:8f: 79:5f:8f:a6:f9:a3:96:ec:63:fe:5f:99:c9:d5:b6: de:7c:c2:f4:13:5e:40:d7:64:57:38:9d:48:35:cc: 91:10:b3:2f:13:84:d9:e5:14:18:97:25:16:2f:1b: c4:81:a4:47:d0:30:bb:c7:49:68:00:eb:59:d3:07: c8:aa:d6:be:d7:77:bb:2d:74:ab:11:e5:3b:bf:5f: 1a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AE:B8:6E:2A:E3:08:BD:57:38:FC:E9:FF:38:A4:9D:62:0E:17:76 X509v3 Authority Key Identifier: keyid:97:C4:BC:DD:53:12:F8:A7:C3:3D:E4:B7:D7:5C:15:B4:CB:BC:1D:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8S83VMS-KfDPeS311wVtMu8Hdo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/da64birjCL1XOPzp_ziknWIOF3Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/44775f-37a6-4a86-9fe5-e93bdb8d9c85/1/l8S83VMS-KfDPeS311wVtMu8Hdo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.161.204.0/22 Signature Algorithm: sha256WithRSAEncryption 58:7a:81:c9:e7:1c:ae:90:d1:71:21:bc:bf:1a:d4:25:8e:12: 71:1d:3c:27:9b:cd:30:66:b4:58:d9:ef:4e:c2:43:31:0f:35: 1b:6a:ef:a6:99:32:05:ed:1a:29:d1:0f:28:c3:68:9c:86:33: 3d:54:23:c7:5a:36:64:c3:fa:f9:a7:19:dd:ee:58:ad:ab:fa: ba:b7:e5:7a:27:a8:f6:2d:7a:39:b7:e6:77:08:3c:69:67:6c: 23:36:15:f1:85:e6:db:95:d2:9d:fe:94:46:a4:5b:f7:34:fc: 45:ef:a7:38:25:e4:a8:60:a8:6e:c7:11:36:18:c5:34:cd:2e: 34:4e:33:e7:f3:85:9b:e0:c0:b0:1e:b3:17:37:01:2d:29:99: 6f:75:ed:01:f5:0a:64:83:27:a6:29:ce:51:96:80:8e:8e:d4: 2c:bf:23:79:7e:4f:07:4a:52:0d:40:cb:9b:f4:43:aa:20:49: ec:0c:71:a7:3b:41:0a:fd:8c:c8:f7:7a:5b:47:24:9a:3f:ed: 97:c7:aa:47:69:df:2f:d8:7f:14:2b:ff:5c:70:33:69:3d:93: 5e:4d:aa:fb:09:50:a8:0d:01:99:e0:4a:29:4c:36:c9:c2:db: a7:eb:bf:f1:9f:bb:e2:5d:ad:30:14:35:63:5c:5d:ed:55:3a: 41:fc:a5:b3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7o81hxIByWw2bltg1XM5HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3YzRiY2RkNTMxMmY4YTdjMzNkZTRiN2Q3NWMxNWI0Y2Ji YzFkZGEwHhcNMjYwMTAxMjIxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWFlYjg2ZTJhZTMwOGJkNTczOGZjZTlmZjM4YTQ5ZDYyMGUxNzc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+RkYLXGYs5XOPx/34xTsFfZfmLY v+KcH90aWvaXWpmz2ZnrqDTb3gqmruMRcoJEh4wkv9lQT9Xic1Rxa1hjVH79es2W wmHL4OdaZQPWpsysbcmHbQ++jSqS9MG+myGEwRPhPhWSseFv32oGxHBsG14kHkOX cX/BZcI/dvrds4QRob95fOLSXgj0tYq3WdEBLYY1INq8t9LJvZWDFDdeOl5HhR6G 72eQo4Ei415QLyt+do95X4+m+aOW7GP+X5nJ1bbefML0E15A12RXOJ1INcyRELMv E4TZ5RQYlyUWLxvEgaRH0DC7x0loAOtZ0wfIqta+13e7LXSrEeU7v18awwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHWuuG4q4wi9Vzj86f84pJ1iDhd2MB8GA1UdIwQY MBaAFJfEvN1TEvinwz3kt9dcFbTLvB3aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDhTODNWTVMtS2ZEUGVTMzExd1Z0TXU4SGRvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC80NDc3NWYtMzdhNi00YTg2LTlmZTUt ZTkzYmRiOGQ5Yzg1LzEvZGE2NGJpcmpDTDFYT1B6cF96aWtuV0lPRjNZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC80NDc3NWYtMzdhNi00YTg2LTlmZTUtZTkzYmRiOGQ5Yzg1 LzEvbDhTODNWTVMtS2ZEUGVTMzExd1Z0TXU4SGRvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaHMMA0G CSqGSIb3DQEBCwUAA4IBAQBYeoHJ5xyukNFxIby/GtQljhJxHTwnm80wZrRY2e9O wkMxDzUbau+mmTIF7Rop0Q8ow2ichjM9VCPHWjZkw/r5pxnd7litq/q6t+V6J6j2 LXo5t+Z3CDxpZ2wjNhXxhebbldKd/pRGpFv3NPxF76c4JeSoYKhuxxE2GMU0zS40 TjPn84Wb4MCwHrMXNwEtKZlvde0B9QpkgyemKc5RloCOjtQsvyN5fk8HSlINQMub 9EOqIEnsDHGnO0EK/YzI93pbRySaP+2Xx6pHad8v2H8UK/9ccDNpPZNeTar7CVCo DQGZ4EopTDbJwtun67/xn7viXa0wFDVjXF3tVTpB/KWz -----END CERTIFICATE-----Generated at Tue Jan 20 01:19:53 2026 by rpki-client