This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/Da4zofv_3zQcJHV3L83VNbH7UEY.roa File: Da4zofv_3zQcJHV3L83VNbH7UEY.roa (raw, json) Hash identifier: p+hoOJTvA0x6ON4Ggw3OE0Gfu4aJUBLpv1YI+CkSFhc= Subject key identifier: 0D:AE:33:A1:FB:FF:DF:34:1C:24:75:77:2F:CD:D5:35:B1:FB:50:46 Certificate issuer: /CN=ae52db82090b343f89f7c637cf41a94bcfd4346a Certificate serial: 019B7D5C02480A8FDFA42346E8AF0667819A Authority key identifier: AE:52:DB:82:09:0B:34:3F:89:F7:C6:37:CF:41:A9:4B:CF:D4:34:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rlLbggkLND-J98Y3z0GpS8_UNGo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/Da4zofv_3zQcJHV3L83VNbH7UEY.roa Signing time: Fri 02 Jan 2026 06:19:00 +0000 ROA not before: Fri 02 Jan 2026 06:19:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20956 IP address blocks: 128.140.186.0/23 maxlen: 23 128.140.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/rlLbggkLND-J98Y3z0GpS8_UNGo.crl rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/rlLbggkLND-J98Y3z0GpS8_UNGo.mft rsync://rpki.ripe.net/repository/DEFAULT/rlLbggkLND-J98Y3z0GpS8_UNGo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:02:48:0a:8f:df:a4:23:46:e8:af:06:67:81:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae52db82090b343f89f7c637cf41a94bcfd4346a Validity Not Before: Jan 2 06:19:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0dae33a1fbffdf341c2475772fcdd535b1fb5046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:34:02:76:ad:98:fd:91:45:48:70:eb:df:95: 93:d2:99:9f:14:0d:f0:70:f8:bf:7a:f3:4f:04:65: 7a:45:9b:b3:0d:a7:b3:4a:c3:26:88:90:cb:21:5c: 41:85:cf:83:d8:93:8d:64:fa:1f:64:87:23:9a:78: 26:13:c5:62:79:84:c9:e4:28:ce:9c:5a:d3:6b:ca: a0:5d:37:44:e1:8f:73:13:06:bd:36:c6:ae:62:da: 62:2c:da:95:71:7c:c4:7d:21:57:99:4f:ee:5c:b2: ae:d3:98:08:3b:4d:a2:20:1a:b4:4b:10:38:64:fa: 9b:c3:b4:55:bc:a1:80:91:62:31:6d:10:d5:a2:14: 79:7f:dc:19:51:2f:ae:5e:3c:84:bf:e7:fa:e4:c0: 85:96:35:7d:1d:4a:40:33:b9:35:be:15:5c:89:8e: a7:a1:76:4d:45:e4:f1:31:59:63:3a:2e:cc:91:cb: 58:c4:4d:16:ef:7b:f4:cf:cd:66:97:d0:c8:e4:d3: 83:8f:19:61:31:e2:02:b3:54:0a:c0:48:30:19:fa: d8:e2:63:1b:39:85:00:36:7e:0e:e6:9b:39:33:bc: 5b:d6:cb:0b:b1:2e:12:be:6c:f8:88:98:0d:7d:31: 49:10:07:1f:1f:e5:66:66:10:3a:8a:8d:e0:97:60: ac:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:AE:33:A1:FB:FF:DF:34:1C:24:75:77:2F:CD:D5:35:B1:FB:50:46 X509v3 Authority Key Identifier: keyid:AE:52:DB:82:09:0B:34:3F:89:F7:C6:37:CF:41:A9:4B:CF:D4:34:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rlLbggkLND-J98Y3z0GpS8_UNGo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/Da4zofv_3zQcJHV3L83VNbH7UEY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bcf167-b618-48d3-9a4e-d7b6063dca37/1/rlLbggkLND-J98Y3z0GpS8_UNGo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.140.186.0/23 Signature Algorithm: sha256WithRSAEncryption 96:ab:fa:a0:c1:53:ec:4f:f4:61:a9:a3:fc:a8:8e:44:88:b1: 71:48:f6:32:ce:e6:bb:15:56:bc:03:3a:cc:7f:72:63:73:73: dd:a1:47:ca:ad:09:54:33:d1:d2:78:ca:54:59:d2:76:0e:4f: 51:9f:f2:8f:4b:bc:a0:78:e9:3b:46:9e:ec:d7:97:75:d7:0e: c4:43:fa:31:a2:38:1c:c8:f0:97:db:b0:b2:60:19:af:06:b0: 33:90:3b:15:17:e2:45:cc:76:1a:8b:21:c1:51:d4:18:b7:48: 80:7e:f7:90:7c:26:5f:43:a2:92:dc:24:9d:dd:30:84:bd:ad: f4:83:70:95:2e:4c:e0:6c:9a:3d:c3:c4:02:50:1a:98:4b:7a: 79:0c:d6:ce:34:97:01:7b:6e:2e:e4:49:66:55:3a:4d:e8:6d: 58:a1:bb:89:b7:2f:11:39:53:79:61:6a:4f:9c:33:71:41:81: d7:c3:57:7f:c8:dd:03:b2:f8:21:63:ce:9d:ed:5f:8f:b7:d0: 06:5f:9c:77:f0:07:2c:46:06:c7:f9:66:b9:5c:84:73:d6:45: f3:b2:28:4c:9d:e5:f0:7d:c9:6a:49:ef:88:a4:46:07:2f:6e: 4f:16:16:98:fa:da:20:2a:e2:58:73:7d:eb:63:9d:ad:e6:14: 56:60:60:1e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XAJICo/fpCNG6K8GZ4GaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlNTJkYjgyMDkwYjM0M2Y4OWY3YzYzN2NmNDFhOTRiY2Zk NDM0NmEwHhcNMjYwMTAyMDYxOTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGFlMzNhMWZiZmZkZjM0MWMyNDc1NzcyZmNkZDUzNWIxZmI1MDQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTQCdq2Y/ZFFSHDr35WT0pmfFA3w cPi/evNPBGV6RZuzDaezSsMmiJDLIVxBhc+D2JONZPofZIcjmngmE8VieYTJ5CjO nFrTa8qgXTdE4Y9zEwa9NsauYtpiLNqVcXzEfSFXmU/uXLKu05gIO02iIBq0SxA4 ZPqbw7RVvKGAkWIxbRDVohR5f9wZUS+uXjyEv+f65MCFljV9HUpAM7k1vhVciY6n oXZNReTxMVljOi7MkctYxE0W73v0z81ml9DI5NODjxlhMeICs1QKwEgwGfrY4mMb OYUANn4O5ps5M7xb1ssLsS4Svmz4iJgNfTFJEAcfH+VmZhA6io3gl2CsAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA2uM6H7/980HCR1dy/N1TWx+1BGMB8GA1UdIwQY MBaAFK5S24IJCzQ/iffGN89BqUvP1DRqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmxMYmdna0xORC1KOThZM3owR3BTOF9VTkdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iY2YxNjctYjYxOC00OGQzLTlhNGUt ZDdiNjA2M2RjYTM3LzEvRGE0em9mdl8zelFjSkhWM0w4M1ZOYkg3VUVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iY2YxNjctYjYxOC00OGQzLTlhNGUtZDdiNjA2M2RjYTM3 LzEvcmxMYmdna0xORC1KOThZM3owR3BTOF9VTkdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBgIy6MA0G CSqGSIb3DQEBCwUAA4IBAQCWq/qgwVPsT/RhqaP8qI5EiLFxSPYyzua7FVa8AzrM f3Jjc3PdoUfKrQlUM9HSeMpUWdJ2Dk9Rn/KPS7ygeOk7Rp7s15d11w7EQ/oxojgc yPCX27CyYBmvBrAzkDsVF+JFzHYaiyHBUdQYt0iAfveQfCZfQ6KS3CSd3TCEva30 g3CVLkzgbJo9w8QCUBqYS3p5DNbONJcBe24u5ElmVTpN6G1YobuJty8ROVN5YWpP nDNxQYHXw1d/yN0DsvghY86d7V+Pt9AGX5x38AcsRgbH+Wa5XIRz1kXzsihMneXw fclqSe+IpEYHL25PFhaY+togKuJYc33rY52t5hRWYGAe -----END CERTIFICATE-----Generated at Tue Feb 10 08:36:58 2026 by rpki-client