This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/dazL3iKbsjKxy4HddRH3nz-7Dnw.roa File: dazL3iKbsjKxy4HddRH3nz-7Dnw.roa (raw, json) Hash identifier: qq3zl4qFIOovDjZr1RPB2doiGCNi2c1snUt8x3cExWg= Subject key identifier: 75:AC:CB:DE:22:9B:B2:32:B1:CB:81:DD:75:11:F7:9F:3F:BB:0E:7C Certificate issuer: /CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c Certificate serial: 019B7D5B1948A61065FA9A11194C492316AA Authority key identifier: 72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/dazL3iKbsjKxy4HddRH3nz-7Dnw.roa Signing time: Fri 02 Jan 2026 06:18:00 +0000 ROA not before: Fri 02 Jan 2026 06:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214499 IP address blocks: 212.232.20.0/23 maxlen: 23 2001:67c:21f4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.mft rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:19:48:a6:10:65:fa:9a:11:19:4c:49:23:16:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c Validity Not Before: Jan 2 06:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75accbde229bb232b1cb81dd7511f79f3fbb0e7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bd:46:ad:93:66:61:e6:50:d2:1a:9c:b8:38: ba:26:80:c4:f2:ce:f5:52:09:e8:2d:84:6d:bc:2a: 07:8e:09:c2:8a:a2:6a:88:9a:7f:15:c5:d2:39:3f: 6e:45:c2:84:38:48:20:c3:16:1d:05:1b:b4:08:46: 47:86:5b:ff:48:98:87:32:a0:28:04:10:ed:c3:6b: 39:ac:33:22:b1:6b:af:89:55:a1:b3:7e:23:6e:7c: f2:42:37:58:1c:fb:cd:17:89:ef:19:4d:97:52:4f: 16:76:42:f8:1f:4a:1f:dd:d8:75:91:dc:35:a2:4a: fd:8f:4e:47:12:3d:10:41:54:68:4e:f0:06:d0:7d: 5d:d8:62:e4:1e:08:81:fe:6a:87:01:04:8e:7a:59: f9:e2:7c:1c:3c:3e:22:39:3b:a6:da:b1:ad:2a:1f: 93:e4:00:3d:c4:2d:22:ab:ba:de:e7:f2:5c:bc:48: 54:7c:f4:6e:d3:08:52:da:2c:e7:e8:fa:bb:d9:67: 3e:06:fc:0b:9d:f3:39:60:b0:fb:cf:81:cd:75:81: 46:3e:f6:1b:31:fe:ff:9c:ea:38:08:e4:87:23:97: 0a:94:03:2f:c5:93:05:3f:75:ca:7b:ff:a6:61:2a: 0a:53:ed:f7:6d:00:e1:ac:09:fd:eb:9d:82:6e:c4: e7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AC:CB:DE:22:9B:B2:32:B1:CB:81:DD:75:11:F7:9F:3F:BB:0E:7C X509v3 Authority Key Identifier: keyid:72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/dazL3iKbsjKxy4HddRH3nz-7Dnw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.232.20.0/23 IPv6: 2001:67c:21f4::/48 Signature Algorithm: sha256WithRSAEncryption 73:20:b8:f9:89:9d:33:b9:96:10:fe:45:7c:ae:b6:bc:d4:45: f2:7d:48:24:60:fb:dc:c0:3a:0e:01:a4:47:a6:7f:24:8a:04: 23:1d:3a:8e:04:1b:aa:a9:be:1e:b3:ec:9c:dd:2b:65:d6:eb: 22:5c:26:19:b8:ea:c5:9f:0e:33:ff:3f:06:78:11:a4:b8:56: 04:42:02:8c:32:3d:a1:3f:cf:54:47:82:57:91:cf:20:dd:ae: 18:09:d4:ac:4f:d0:5b:7b:7c:94:e4:02:46:14:36:39:47:05: 74:54:e3:0d:0e:01:cc:c5:74:4b:05:56:dd:34:ae:4e:2a:0b: f6:9e:f0:d5:76:46:1f:d4:e1:70:48:97:13:b3:56:70:d2:14: ef:75:7a:a7:c1:2a:ae:44:77:87:91:34:98:53:54:08:03:23: 61:ca:43:aa:e2:95:e2:7e:43:9e:4d:0d:cb:46:5c:df:48:04: 96:c6:d7:3d:4e:ff:90:7b:f1:cf:93:46:b4:c2:c5:f9:64:6c: a5:df:80:ed:b3:4c:4c:95:2a:17:c4:d9:f5:bb:e6:44:fe:9c: 3a:34:df:fd:5f:06:c1:50:eb:ba:63:19:fc:38:96:d9:53:9d: c1:0a:90:ef:20:60:8b:e6:3b:55:7c:d8:cc:d9:e7:55:6b:43: f5:15:01:a3 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9WxlIphBl+poRGUxJIxaqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyOTljZTY0YTBmMTYyNGQ3YmIyZDI5NjllNWMxMWFkYmFh NTQ4NWMwHhcNMjYwMTAyMDYxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWFjY2JkZTIyOWJiMjMyYjFjYjgxZGQ3NTExZjc5ZjNmYmIwZTdjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyb1GrZNmYeZQ0hqcuDi6JoDE8s71 UgnoLYRtvCoHjgnCiqJqiJp/FcXSOT9uRcKEOEggwxYdBRu0CEZHhlv/SJiHMqAo BBDtw2s5rDMisWuviVWhs34jbnzyQjdYHPvNF4nvGU2XUk8WdkL4H0of3dh1kdw1 okr9j05HEj0QQVRoTvAG0H1d2GLkHgiB/mqHAQSOeln54nwcPD4iOTum2rGtKh+T 5AA9xC0iq7re5/JcvEhUfPRu0whS2izn6Pq72Wc+BvwLnfM5YLD7z4HNdYFGPvYb Mf7/nOo4COSHI5cKlAMvxZMFP3XKe/+mYSoKU+33bQDhrAn9652CbsTnQwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFHWsy94im7IyscuB3XUR958/uw58MB8GA1UdIwQY MBaAFHKZzmSg8WJNe7LSlp5cEa26pUhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3BuT1pLRHhZazE3c3RLV25sd1JyYnFsU0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9jMjBmYmEtNWI2Ny00MzhjLWFiMDAt YzdlYjM0ZTJkY2E2LzEvZGF6TDNpS2Jzakt4eTRIZGRSSDNuei03RG53LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9jMjBmYmEtNWI2Ny00MzhjLWFiMDAtYzdlYjM0ZTJkY2E2 LzEvY3BuT1pLRHhZazE3c3RLV25sd1JyYnFsU0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQB1OgUMA8E AgACMAkDBwAgAQZ8IfQwDQYJKoZIhvcNAQELBQADggEBAHMguPmJnTO5lhD+RXyu trzURfJ9SCRg+9zAOg4BpEemfySKBCMdOo4EG6qpvh6z7JzdK2XW6yJcJhm46sWf DjP/PwZ4EaS4VgRCAowyPaE/z1RHgleRzyDdrhgJ1KxP0Ft7fJTkAkYUNjlHBXRU 4w0OAczFdEsFVt00rk4qC/ae8NV2Rh/U4XBIlxOzVnDSFO91eqfBKq5Ed4eRNJhT VAgDI2HKQ6rileJ+Q55NDctGXN9IBJbG1z1O/5B78c+TRrTCxflkbKXfgO2zTEyV KhfE2fW75kT+nDo03/1fBsFQ67pjGfw4ltlTncEKkO8gYIvmO1V82MzZ51VrQ/UV AaM= -----END CERTIFICATE-----Generated at Tue Feb 10 04:30:57 2026 by rpki-client