This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DiPUcYeYMMKBJ6pco8Genqou5P4.roa File: DiPUcYeYMMKBJ6pco8Genqou5P4.roa (raw, json) Hash identifier: k19Q1QHBDALtzKkWkQIrCed59UccTXEghHZXW9Dj4JM= Subject key identifier: 0E:23:D4:71:87:98:30:C2:81:27:AA:5C:A3:C1:9E:9E:AA:2E:E4:FE Certificate issuer: /CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e Certificate serial: 019B7FF1CDDA16E2B35F36949790C9C17BC0 Authority key identifier: 0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DiPUcYeYMMKBJ6pco8Genqou5P4.roa Signing time: Fri 02 Jan 2026 18:21:51 +0000 ROA not before: Fri 02 Jan 2026 18:21:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62254 IP address blocks: 91.233.141.0/24 maxlen: 24 2a0e:e180::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.mft rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:cd:da:16:e2:b3:5f:36:94:97:90:c9:c1:7b:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0c2f9b2e8a30508d39192afd5b34ee56f775979e Validity Not Before: Jan 2 18:21:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e23d471879830c28127aa5ca3c19e9eaa2ee4fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:18:95:b9:f0:d3:b4:e9:a0:8e:cf:28:00: 2f:07:e0:07:4d:41:81:a8:04:e6:91:ba:ab:d0:dc: cb:28:ea:d3:b4:c4:bd:b3:56:59:a8:fd:5a:a5:7e: 7b:c8:c4:d2:e8:4a:8a:70:1e:f6:20:db:6e:e3:58: 2b:63:33:16:40:62:89:e5:96:c2:04:f8:0b:c6:4a: 58:3a:0d:7d:22:11:7c:f0:6e:e8:85:fc:6f:04:2a: 6c:10:23:74:12:72:54:8f:9d:a6:35:2c:53:48:5b: 19:b8:01:86:a4:e3:49:ab:ad:07:b1:c6:68:d7:dc: 5c:79:2d:53:f0:a1:11:eb:4b:a9:76:41:d6:27:20: 43:30:1f:0a:ef:fc:f4:a4:70:1c:23:59:8e:ab:df: c9:a0:14:aa:c4:0b:40:93:dc:06:0a:f0:00:59:1a: 66:58:25:83:f8:62:90:2d:87:b7:64:a1:66:85:69: 25:53:7f:d7:a2:eb:1c:32:e8:eb:08:fc:06:b0:e1: ed:ea:86:c9:04:69:95:54:ee:7e:78:0c:ef:d0:6e: 0c:7a:73:b6:e8:25:77:51:58:b9:7d:96:d8:ec:83: f2:c9:ee:47:d5:41:22:ae:67:d3:91:fc:81:81:b3: 6c:3b:45:82:4f:5d:91:42:dd:39:ab:bf:e8:0b:52: 99:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:23:D4:71:87:98:30:C2:81:27:AA:5C:A3:C1:9E:9E:AA:2E:E4:FE X509v3 Authority Key Identifier: keyid:0C:2F:9B:2E:8A:30:50:8D:39:19:2A:FD:5B:34:EE:56:F7:75:97:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DC-bLoowUI05GSr9WzTuVvd1l54.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DiPUcYeYMMKBJ6pco8Genqou5P4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/36cb82-0399-436c-b952-9eda57c23edf/1/DC-bLoowUI05GSr9WzTuVvd1l54.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.233.141.0/24 IPv6: 2a0e:e180::/29 Signature Algorithm: sha256WithRSAEncryption 2d:19:19:12:c1:3f:d9:57:3c:7b:0e:00:42:81:60:c3:96:16: 7e:4b:f5:07:8d:b6:81:70:66:4b:16:2d:7c:53:ea:dc:bf:9f: 4c:ff:dc:df:ee:89:42:8a:85:f3:08:34:64:af:b7:d4:64:4c: a4:40:5e:58:d3:60:cd:65:0b:a0:4d:4b:c9:7b:66:d8:21:66: 80:e1:34:e0:06:1d:cd:1e:da:35:0d:59:03:8e:46:b5:ab:c6: 36:06:f7:2a:f5:8b:51:4e:66:9c:76:97:49:63:e9:ef:d5:30: ac:6a:de:5f:1c:2e:2e:c7:07:09:67:5b:de:82:c5:2a:03:ea: 56:fc:59:8a:a0:75:3a:1a:97:45:93:ae:9a:59:e7:f1:23:ac: c7:bf:52:96:f9:f7:d0:c7:e9:18:7d:b6:79:ba:3a:50:51:2f: 23:56:4a:88:1d:26:b4:7a:16:93:67:6a:7e:41:db:4a:94:e4: 03:40:fd:42:c0:65:24:c0:1c:68:8a:a8:97:67:1d:c8:74:04: 42:09:7b:ff:d9:4d:2e:61:4e:d1:cf:e8:ba:ed:a5:bb:0e:84: 5a:d5:5a:13:0d:b0:fd:5c:be:76:87:31:ff:ec:24:5e:2c:64: 32:19:fb:0d:d5:80:2c:33:8e:41:ba:d9:41:a9:ba:5a:07:04: f6:06:ea:32 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8c3aFuKzXzaUl5DJwXvAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBjMmY5YjJlOGEzMDUwOGQzOTE5MmFmZDViMzRlZTU2Zjc3 NTk3OWUwHhcNMjYwMTAyMTgyMTUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTIzZDQ3MTg3OTgzMGMyODEyN2FhNWNhM2MxOWU5ZWFhMmVlNGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AYYlbnw07TpoI7PKAAvB+AHTUGB qATmkbqr0NzLKOrTtMS9s1ZZqP1apX57yMTS6EqKcB72INtu41grYzMWQGKJ5ZbC BPgLxkpYOg19IhF88G7ohfxvBCpsECN0EnJUj52mNSxTSFsZuAGGpONJq60HscZo 19xceS1T8KER60updkHWJyBDMB8K7/z0pHAcI1mOq9/JoBSqxAtAk9wGCvAAWRpm WCWD+GKQLYe3ZKFmhWklU3/XouscMujrCPwGsOHt6obJBGmVVO5+eAzv0G4MenO2 6CV3UVi5fZbY7IPyye5H1UEirmfTkfyBgbNsO0WCT12RQt05q7/oC1KZ3QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFA4j1HGHmDDCgSeqXKPBnp6qLuT+MB8GA1UdIwQY MBaAFAwvmy6KMFCNORkq/Vs07lb3dZeeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvREMtYkxvb3dVSTA1R1NyOVd6VHVWdmQxbDU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zNmNiODItMDM5OS00MzZjLWI5NTIt OWVkYTU3YzIzZWRmLzEvRGlQVWNZZVlNTUtCSjZwY284R2VucW91NVA0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8zNmNiODItMDM5OS00MzZjLWI5NTItOWVkYTU3YzIzZWRm LzEvREMtYkxvb3dVSTA1R1NyOVd6VHVWdmQxbDU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW+mNMA0E AgACMAcDBQMqDuGAMA0GCSqGSIb3DQEBCwUAA4IBAQAtGRkSwT/ZVzx7DgBCgWDD lhZ+S/UHjbaBcGZLFi18U+rcv59M/9zf7olCioXzCDRkr7fUZEykQF5Y02DNZQug TUvJe2bYIWaA4TTgBh3NHto1DVkDjka1q8Y2Bvcq9YtRTmacdpdJY+nv1TCsat5f HC4uxwcJZ1vegsUqA+pW/FmKoHU6GpdFk66aWefxI6zHv1KW+ffQx+kYfbZ5ujpQ US8jVkqIHSa0ehaTZ2p+QdtKlOQDQP1CwGUkwBxoiqiXZx3IdARCCXv/2U0uYU7R z+i67aW7DoRa1VoTDbD9XL52hzH/7CReLGQyGfsN1YAsM45ButlBqbpaBwT2Buoy -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:10 2026 by rpki-client