This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/dCqQVizHmCbsgLcX6csX7Rciuic.roa File: dCqQVizHmCbsgLcX6csX7Rciuic.roa (raw, json) Hash identifier: sDGzeBpaeg3YAhNrnUWPuM/ODk832tRUJ5O2TTkUfds= Subject key identifier: 74:2A:90:56:2C:C7:98:26:EC:80:B7:17:E9:CB:17:ED:17:22:BA:27 Certificate issuer: /CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9 Certificate serial: 019B79ED54AFFB9E837A9F95E7F135351939 Authority key identifier: BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/dCqQVizHmCbsgLcX6csX7Rciuic.roa Signing time: Thu 01 Jan 2026 14:19:15 +0000 ROA not before: Thu 01 Jan 2026 14:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215590 IP address blocks: 213.21.236.0/24 maxlen: 24 213.21.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.mft rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:54:af:fb:9e:83:7a:9f:95:e7:f1:35:35:19:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bcfdfe6dca8ac7bfa1a9450ef99fd315ed02acd9 Validity Not Before: Jan 1 14:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=742a90562cc79826ec80b717e9cb17ed1722ba27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:15:9a:cd:89:06:f8:e1:e1:af:30:ab:37:a3: c1:b5:ca:27:95:ba:ac:60:43:8d:53:f7:05:fc:a6: 2b:ef:99:fd:85:be:cf:74:89:f6:50:9d:10:ef:dc: 4d:8b:ca:73:b1:53:fa:ef:80:2a:a5:fc:78:a0:69: 40:f3:12:6b:17:01:12:8c:a9:33:a6:18:ee:66:d9: dc:ce:55:7f:e6:08:33:b9:d0:13:23:60:b1:dd:8e: ff:05:9a:73:e4:ce:8c:6a:02:86:c3:43:d5:eb:6c: 44:47:29:62:dc:ae:c5:a1:3f:8f:a9:7e:41:d9:39: cf:ae:ff:28:5e:2b:bf:61:28:15:8b:dd:b2:74:fc: ce:6f:31:de:f9:10:c1:01:9b:75:9d:76:a5:04:45: 53:f3:83:a0:c5:41:e0:a0:80:85:ff:ce:3f:b5:d6: 2d:d8:e1:0f:7f:b3:72:ee:cd:8d:32:b9:43:4a:08: b6:09:fb:a0:69:f1:cb:23:a2:b3:57:99:c4:f8:be: 89:07:8b:c3:0a:64:39:74:63:01:7d:12:e8:08:d9: f6:d3:44:27:81:f3:ea:24:f1:00:63:25:a1:d9:99: d9:04:8d:88:21:d7:23:33:fe:b8:9b:8f:ab:90:1a: a0:3b:d6:b7:51:5b:c1:2f:df:48:c2:9a:d1:03:8e: 38:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:2A:90:56:2C:C7:98:26:EC:80:B7:17:E9:CB:17:ED:17:22:BA:27 X509v3 Authority Key Identifier: keyid:BC:FD:FE:6D:CA:8A:C7:BF:A1:A9:45:0E:F9:9F:D3:15:ED:02:AC:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/dCqQVizHmCbsgLcX6csX7Rciuic.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c9de13-5b74-413d-b2fb-1af2465a8eec/1/vP3-bcqKx7-hqUUO-Z_TFe0CrNk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.21.236.0/24 213.21.253.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:6a:50:84:92:1d:a7:db:44:0b:5a:dc:4a:95:5a:a8:5c:52: 70:e6:98:eb:38:d4:20:5f:53:28:a4:2b:8e:03:d7:c1:55:27: 41:53:b0:ee:92:01:b3:db:dd:7b:21:c9:c5:51:dd:8a:65:19: 03:2c:45:5e:fd:bb:d0:9a:0b:e7:a6:d0:9a:cc:a3:05:1b:1b: fd:ba:36:2d:b5:6a:09:a5:74:7a:57:a7:bf:d5:d5:17:fe:4e: 68:19:b5:75:7b:1f:d9:25:f7:ec:29:1e:05:fe:e2:4f:21:90: cf:79:a1:18:c6:71:bb:44:3e:97:95:79:f0:45:59:b1:57:85: a0:a5:fd:41:70:d6:66:b8:67:df:a3:3d:ff:09:3a:a1:ee:fd: ad:a0:a4:90:fb:77:ed:cc:45:ee:e5:85:44:8f:10:e3:d1:2c: 28:fb:ab:3d:91:65:01:13:6c:02:af:5f:09:4f:29:ed:fc:15: 65:6c:fc:bb:c6:fd:52:cc:24:16:72:fb:41:df:d8:f3:c7:f1: 29:f3:ce:12:74:3e:86:7c:82:45:5a:ba:c9:b8:99:c0:12:a5: 07:43:5d:57:1a:9a:e6:0b:b2:ef:c4:40:ec:04:32:38:28:fd: 68:55:2c:51:ba:20:8e:b1:45:e4:ad:ab:a7:a1:99:58:97:10: b6:1a:01:39 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57VSv+56Dep+V5/E1NRk5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjZmRmZTZkY2E4YWM3YmZhMWE5NDUwZWY5OWZkMzE1ZWQw MmFjZDkwHhcNMjYwMTAxMTQxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDJhOTA1NjJjYzc5ODI2ZWM4MGI3MTdlOWNiMTdlZDE3MjJiYTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBWazYkG+OHhrzCrN6PBtconlbqs YEONU/cF/KYr75n9hb7PdIn2UJ0Q79xNi8pzsVP674Aqpfx4oGlA8xJrFwESjKkz phjuZtnczlV/5ggzudATI2Cx3Y7/BZpz5M6MagKGw0PV62xERyli3K7FoT+PqX5B 2TnPrv8oXiu/YSgVi92ydPzObzHe+RDBAZt1nXalBEVT84OgxUHgoICF/84/tdYt 2OEPf7Ny7s2NMrlDSgi2CfugafHLI6KzV5nE+L6JB4vDCmQ5dGMBfRLoCNn200Qn gfPqJPEAYyWh2ZnZBI2IIdcjM/64m4+rkBqgO9a3UVvBL99IwprRA444cwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHQqkFYsx5gm7IC3F+nLF+0XIronMB8GA1UdIwQY MBaAFLz9/m3Kise/oalFDvmf0xXtAqzZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlAzLWJjcUt4Ny1ocVVVTy1aX1RGZTBDck5rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9jOWRlMTMtNWI3NC00MTNkLWIyZmIt MWFmMjQ2NWE4ZWVjLzEvZENxUVZpekhtQ2JzZ0xjWDZjc1g3UmNpdWljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9jOWRlMTMtNWI3NC00MTNkLWIyZmItMWFmMjQ2NWE4ZWVj LzEvdlAzLWJjcUt4Ny1ocVVVTy1aX1RGZTBDck5rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA1RXsAwQA 1RX9MA0GCSqGSIb3DQEBCwUAA4IBAQBralCEkh2n20QLWtxKlVqoXFJw5pjrONQg X1MopCuOA9fBVSdBU7DukgGz2917IcnFUd2KZRkDLEVe/bvQmgvnptCazKMFGxv9 ujYttWoJpXR6V6e/1dUX/k5oGbV1ex/ZJffsKR4F/uJPIZDPeaEYxnG7RD6XlXnw RVmxV4Wgpf1BcNZmuGffoz3/CTqh7v2toKSQ+3ftzEXu5YVEjxDj0Swo+6s9kWUB E2wCr18JTynt/BVlbPy7xv1SzCQWcvtB39jzx/Ep884SdD6GfIJFWrrJuJnAEqUH Q11XGprmC7LvxEDsBDI4KP1oVSxRuiCOsUXkraunoZlYlxC2GgE5 -----END CERTIFICATE-----Generated at Tue Jan 20 11:09:46 2026 by rpki-client