This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/DdN7vkJnOB--YPWssHLoFQourZw.roa File: DdN7vkJnOB--YPWssHLoFQourZw.roa (raw, json) Hash identifier: 4Xwtg1/EpdhFY06tPduHwk9/msCJ+le6Q0TbeFIOaTA= Subject key identifier: 0D:D3:7B:BE:42:67:38:1F:BE:60:F5:AC:B0:72:E8:15:0A:2E:AD:9C Certificate issuer: /CN=d2a4452602c9df977c9d5dd8dc13b6661df40136 Certificate serial: 019BE5E8FE4F2B0D42B64BD99C7F5197CF62 Authority key identifier: D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/DdN7vkJnOB--YPWssHLoFQourZw.roa Signing time: Thu 22 Jan 2026 13:33:30 +0000 ROA not before: Thu 22 Jan 2026 13:33:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200707 IP address blocks: 185.98.176.0/23 maxlen: 24 2a00:8000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.mft rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 19:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e5:e8:fe:4f:2b:0d:42:b6:4b:d9:9c:7f:51:97:cf:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2a4452602c9df977c9d5dd8dc13b6661df40136 Validity Not Before: Jan 22 13:33:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0dd37bbe4267381fbe60f5acb072e8150a2ead9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:eb:ad:7e:b8:84:8f:d0:e7:e6:14:00:cb:18: fb:fd:40:3f:65:bb:d6:a2:1b:56:68:38:49:4c:b6: 91:a2:97:cc:c7:6f:d6:db:c5:59:8a:0e:86:ad:aa: 20:53:36:81:9a:34:4c:e2:2d:0b:63:b5:37:90:07: 00:d8:2b:c8:08:c5:c4:9b:57:7a:9d:b3:cc:15:0f: 1c:29:c6:4a:df:25:1b:7c:e1:27:f1:f2:02:4a:ec: 3b:9c:65:a8:35:e4:ba:9b:6d:65:37:7b:41:ea:e6: d3:58:5b:fc:ad:9c:69:26:e0:38:60:19:e7:74:c8: ff:47:72:62:5d:ba:54:f8:c6:ba:59:05:63:b6:05: 4b:5b:57:d0:72:2a:60:8d:a5:f1:c0:0b:80:be:84: 1a:28:ba:c7:c5:24:9e:35:29:d3:98:03:9f:08:c6: 0f:da:dc:5d:a9:0b:bc:70:e2:28:64:ff:a3:97:ce: 1d:ad:69:25:14:03:ab:2e:9f:93:8d:e0:2d:4f:df: 48:48:57:38:8f:75:85:57:3b:76:29:01:e9:b6:e0: 80:9b:ba:b2:0a:7e:3d:24:cf:67:5f:b7:12:ca:8f: 2f:0c:b6:65:05:4f:47:73:fb:94:7f:fc:21:21:6f: 01:79:4b:42:a1:59:e7:22:d2:45:b4:2d:25:d7:f4: 5f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D3:7B:BE:42:67:38:1F:BE:60:F5:AC:B0:72:E8:15:0A:2E:AD:9C X509v3 Authority Key Identifier: keyid:D2:A4:45:26:02:C9:DF:97:7C:9D:5D:D8:DC:13:B6:66:1D:F4:01:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/DdN7vkJnOB--YPWssHLoFQourZw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d5fd99-8ae0-4ae0-b6b4-fe74ef7aac95/1/0qRFJgLJ35d8nV3Y3BO2Zh30ATY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.98.176.0/23 IPv6: 2a00:8000::/32 Signature Algorithm: sha256WithRSAEncryption 1c:9f:a8:d9:a3:ea:9d:9c:df:ae:c7:ac:e0:19:e1:8a:e3:be: f2:85:aa:4a:f1:4b:69:09:e3:0d:ce:bb:96:11:71:b0:7e:db: 47:12:c6:a0:f9:f3:be:ee:51:56:1a:45:49:9e:95:4b:db:54: 05:aa:db:e9:1d:54:e5:db:81:39:ae:8e:4d:61:e1:cb:2f:e8: 83:c0:6f:3b:e1:4c:14:80:aa:8c:97:36:38:2e:31:43:5a:ea: ad:ac:8e:1d:62:9e:4f:c3:a3:8d:83:2b:be:09:55:70:99:e5: fe:28:86:74:12:b6:5b:48:fb:ec:a6:94:01:e0:c6:01:9b:73: c8:9c:7c:07:05:9d:0e:05:18:46:c2:07:6e:b1:a4:0e:9f:13: 7a:dd:ea:12:89:4a:b4:c0:14:18:60:e0:f2:81:0f:4c:c9:fb: 8f:e2:a5:47:1c:31:5e:b2:bc:64:2f:e4:4f:77:ec:b3:67:5e: a5:59:09:c0:ee:1a:90:b2:a3:4a:ea:66:08:0d:c8:87:5c:41: 11:5b:c3:e4:ea:d3:ac:9c:8a:5a:a8:62:32:62:c6:ef:d9:ee: 23:b2:a8:73:9f:80:30:65:50:98:5e:e8:fa:3a:77:08:13:03: d1:8e:67:8f:fb:7e:13:42:f7:f0:dd:4f:a4:c8:fe:20:a1:09: 38:25:b7:4d -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZvl6P5PKw1CtkvZnH9Rl89iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyYTQ0NTI2MDJjOWRmOTc3YzlkNWRkOGRjMTNiNjY2MWRm NDAxMzYwHhcNMjYwMTIyMTMzMzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGQzN2JiZTQyNjczODFmYmU2MGY1YWNiMDcyZTgxNTBhMmVhZDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquutfriEj9Dn5hQAyxj7/UA/ZbvW ohtWaDhJTLaRopfMx2/W28VZig6GraogUzaBmjRM4i0LY7U3kAcA2CvICMXEm1d6 nbPMFQ8cKcZK3yUbfOEn8fICSuw7nGWoNeS6m21lN3tB6ubTWFv8rZxpJuA4YBnn dMj/R3JiXbpU+Ma6WQVjtgVLW1fQcipgjaXxwAuAvoQaKLrHxSSeNSnTmAOfCMYP 2txdqQu8cOIoZP+jl84drWklFAOrLp+TjeAtT99ISFc4j3WFVzt2KQHptuCAm7qy Cn49JM9nX7cSyo8vDLZlBU9Hc/uUf/whIW8BeUtCoVnnItJFtC0l1/RfRwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFA3Te75CZzgfvmD1rLBy6BUKLq2cMB8GA1UdIwQY MBaAFNKkRSYCyd+XfJ1d2NwTtmYd9AE2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHFSRkpnTEozNWQ4blYzWTNCTzJaaDMwQVRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9kNWZkOTktOGFlMC00YWUwLWI2YjQt ZmU3NGVmN2FhYzk1LzEvRGRON3ZrSm5PQi0tWVBXc3NITG9GUW91clp3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9kNWZkOTktOGFlMC00YWUwLWI2YjQtZmU3NGVmN2FhYzk1 LzEvMHFSRkpnTEozNWQ4blYzWTNCTzJaaDMwQVRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBuWKwMA0E AgACMAcDBQAqAIAAMA0GCSqGSIb3DQEBCwUAA4IBAQAcn6jZo+qdnN+ux6zgGeGK 477yhapK8UtpCeMNzruWEXGwfttHEsag+fO+7lFWGkVJnpVL21QFqtvpHVTl24E5 ro5NYeHLL+iDwG874UwUgKqMlzY4LjFDWuqtrI4dYp5Pw6ONgyu+CVVwmeX+KIZ0 ErZbSPvsppQB4MYBm3PInHwHBZ0OBRhGwgdusaQOnxN63eoSiUq0wBQYYODygQ9M yfuP4qVHHDFesrxkL+RPd+yzZ16lWQnA7hqQsqNK6mYIDciHXEERW8Pk6tOsnIpa qGIyYsbv2e4jsqhzn4AwZVCYXuj6OncIEwPRjmeP+34TQvfw3U+kyP4goQk4JbdN -----END CERTIFICATE-----Generated at Tue Feb 3 03:43:31 2026 by rpki-client