This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/dBEozjZ87taP7CwFVSXV3w6pkxQ.roa File: dBEozjZ87taP7CwFVSXV3w6pkxQ.roa (raw, json) Hash identifier: Q0IadO2WrRqgDE01zeYb4r27Fa+c+ppGgdLscaUKNKk= Subject key identifier: 74:11:28:CE:36:7C:EE:D6:8F:EC:2C:05:55:25:D5:DF:0E:A9:93:14 Certificate issuer: /CN=d3d56f07be184cba52f6fdc049e8114d2616c32a Certificate serial: 019B7B3696506C900688B7E1794C46946350 Authority key identifier: D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/dBEozjZ87taP7CwFVSXV3w6pkxQ.roa Signing time: Thu 01 Jan 2026 20:18:53 +0000 ROA not before: Thu 01 Jan 2026 20:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 36040 IP address blocks: 176.126.58.0/24 maxlen: 24 185.225.248.0/24 maxlen: 26 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.mft rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 05:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:96:50:6c:90:06:88:b7:e1:79:4c:46:94:63:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d3d56f07be184cba52f6fdc049e8114d2616c32a Validity Not Before: Jan 1 20:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=741128ce367ceed68fec2c055525d5df0ea99314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8b:1a:84:75:af:09:df:55:2f:89:e0:23:e2: 7e:c7:b1:df:57:72:b5:5e:8c:61:5b:44:66:6d:89: 46:ff:6b:7b:5d:05:11:67:86:71:c1:e5:e0:b2:92: c3:da:a4:73:49:a9:27:72:24:cb:f8:54:c2:44:c8: b5:91:5b:7d:27:7a:27:f7:85:fd:2f:46:ba:a3:ca: af:3d:5e:51:f4:e9:80:fd:a4:68:db:57:b5:20:4e: 48:04:47:ed:f9:96:0f:b1:54:8c:6f:bc:b6:63:22: 63:72:b1:b2:5a:bf:9b:a0:f4:87:51:cd:64:99:a7: 7e:b3:0b:33:25:fe:16:7f:27:75:9c:18:d0:2f:ef: 38:71:e7:12:4d:77:19:1c:22:2f:09:6a:f2:1f:63: 52:b8:f4:68:0e:27:68:fe:f5:35:ee:56:96:62:f6: 94:2a:b8:5c:4a:47:fc:c8:21:6d:cd:3b:f6:2a:4e: ff:38:8e:03:53:10:75:aa:60:34:d8:3a:ae:ea:87: 89:03:e3:e2:2b:51:39:2b:16:e1:04:f3:1e:db:a0: c1:3a:4a:7f:7a:5f:33:84:9d:1c:b9:df:2f:56:0b: 3e:3c:c1:6d:09:b0:f8:77:f7:3f:94:e3:3b:b8:ae: 16:03:71:ef:43:79:e2:8b:24:37:54:61:d8:ba:e2: 10:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:11:28:CE:36:7C:EE:D6:8F:EC:2C:05:55:25:D5:DF:0E:A9:93:14 X509v3 Authority Key Identifier: keyid:D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/dBEozjZ87taP7CwFVSXV3w6pkxQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.126.58.0/24 185.225.248.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:2a:fc:e4:7a:4d:35:d1:e2:b2:db:0f:74:60:d3:ba:25:58: cc:c7:99:3b:da:4b:cc:13:7b:f3:aa:cf:c1:cb:d1:ee:84:3b: 94:28:ff:2a:ce:af:33:c1:63:a6:87:fa:7f:6c:88:6a:d1:2f: ba:6c:ab:81:e9:99:11:0f:b0:d3:c5:42:38:8a:ea:e7:39:e9: 22:40:f8:14:2c:f8:20:a9:44:c2:ae:1e:41:cc:d3:48:15:d8: 58:ac:6a:ee:74:8b:9b:8b:e8:4d:66:46:7d:7a:8e:6f:3a:40: 17:51:15:83:d0:01:09:31:6c:3e:85:47:ac:6d:8f:dc:f7:2a: 2f:49:e9:24:25:f0:31:b4:22:30:93:37:32:ab:25:6c:95:f5: 3d:3a:56:33:12:6b:2e:a2:b3:90:62:da:f5:a8:bd:f2:d8:99: d7:07:f6:09:b3:54:76:cd:93:78:5a:f4:d2:93:ab:5c:29:fd: a6:64:63:93:6c:ff:5f:8b:63:01:75:85:aa:02:bb:02:5b:63: e0:af:69:d6:ab:bd:91:d9:23:d5:70:09:02:73:0a:28:b1:22: 50:08:bf:1c:8c:3f:9c:97:44:ed:6a:d1:49:0e:2d:14:b3:84: 66:33:65:2c:3d:68:f1:05:3c:7b:35:41:41:a1:cd:e5:a4:e9: 29:f0:4f:c1 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NpZQbJAGiLfheUxGlGNQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzZDU2ZjA3YmUxODRjYmE1MmY2ZmRjMDQ5ZTgxMTRkMjYx NmMzMmEwHhcNMjYwMTAxMjAxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDExMjhjZTM2N2NlZWQ2OGZlYzJjMDU1NTI1ZDVkZjBlYTk5MzE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1IsahHWvCd9VL4ngI+J+x7HfV3K1 XoxhW0RmbYlG/2t7XQURZ4ZxweXgspLD2qRzSaknciTL+FTCRMi1kVt9J3on94X9 L0a6o8qvPV5R9OmA/aRo21e1IE5IBEft+ZYPsVSMb7y2YyJjcrGyWr+boPSHUc1k mad+swszJf4Wfyd1nBjQL+84cecSTXcZHCIvCWryH2NSuPRoDido/vU17laWYvaU KrhcSkf8yCFtzTv2Kk7/OI4DUxB1qmA02Dqu6oeJA+PiK1E5KxbhBPMe26DBOkp/ el8zhJ0cud8vVgs+PMFtCbD4d/c/lOM7uK4WA3HvQ3niiyQ3VGHYuuIQ6wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHQRKM42fO7Wj+wsBVUl1d8OqZMUMB8GA1UdIwQY MBaAFNPVbwe+GEy6Uvb9wEnoEU0mFsMqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMDlWdkI3NFlUTHBTOXYzQVNlZ1JUU1lXd3lvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC81Nzg2YWItMDY3ZS00NDBjLWIyNzYt MWIwNmQxYzcwNGMxLzEvZEJFb3pqWjg3dGFQN0N3RlZTWFYzdzZwa3hRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC81Nzg2YWItMDY3ZS00NDBjLWIyNzYtMWIwNmQxYzcwNGMx LzEvMDlWdkI3NFlUTHBTOXYzQVNlZ1JUU1lXd3lvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsH46AwQA ueH4MA0GCSqGSIb3DQEBCwUAA4IBAQBeKvzkek010eKy2w90YNO6JVjMx5k72kvM E3vzqs/By9HuhDuUKP8qzq8zwWOmh/p/bIhq0S+6bKuB6ZkRD7DTxUI4iurnOeki QPgULPggqUTCrh5BzNNIFdhYrGrudIubi+hNZkZ9eo5vOkAXURWD0AEJMWw+hUes bY/c9yovSekkJfAxtCIwkzcyqyVslfU9OlYzEmsuorOQYtr1qL3y2JnXB/YJs1R2 zZN4WvTSk6tcKf2mZGOTbP9fi2MBdYWqArsCW2Pgr2nWq72R2SPVcAkCcwoosSJQ CL8cjD+cl0TtatFJDi0Us4RmM2UsPWjxBTx7NUFBoc3lpOkp8E/B -----END CERTIFICATE-----Generated at Tue Jan 20 14:14:17 2026 by rpki-client