This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/dJzuUQdUvbJK7ApuLpV6Tk_tQMQ.roa File: dJzuUQdUvbJK7ApuLpV6Tk_tQMQ.roa (raw, json) Hash identifier: xDU3oB6soulsXEg0wveHXPe21+ZwGXL0i23r4rN7i40= Subject key identifier: 74:9C:EE:51:07:54:BD:B2:4A:EC:0A:6E:2E:95:7A:4E:4F:ED:40:C4 Certificate issuer: /CN=b576577d20085c4c22fc8011c8d1a93f63211c0f Certificate serial: 019B79EC75E4EEA778DC8C92C381DE2E4595 Authority key identifier: B5:76:57:7D:20:08:5C:4C:22:FC:80:11:C8:D1:A9:3F:63:21:1C:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXZXfSAIXEwi_IARyNGpP2MhHA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/dJzuUQdUvbJK7ApuLpV6Tk_tQMQ.roa Signing time: Thu 01 Jan 2026 14:18:18 +0000 ROA not before: Thu 01 Jan 2026 14:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12897 IP address blocks: 185.101.36.0/24 maxlen: 24 2a0e:96c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/tXZXfSAIXEwi_IARyNGpP2MhHA8.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/tXZXfSAIXEwi_IARyNGpP2MhHA8.mft rsync://rpki.ripe.net/repository/DEFAULT/tXZXfSAIXEwi_IARyNGpP2MhHA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:75:e4:ee:a7:78:dc:8c:92:c3:81:de:2e:45:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b576577d20085c4c22fc8011c8d1a93f63211c0f Validity Not Before: Jan 1 14:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=749cee510754bdb24aec0a6e2e957a4e4fed40c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:09:63:09:01:be:9f:25:62:34:97:19:ef:2c: ca:b0:07:26:39:89:ba:e1:70:20:ce:40:66:a4:02: 26:3b:05:d8:13:b1:1d:b6:9f:aa:a7:21:9b:30:ea: a9:f6:10:b7:3c:ad:31:3d:a5:8c:2f:be:2e:4b:bf: 2b:c8:31:63:5e:e3:55:dd:6f:be:08:86:b3:3c:85: fb:67:99:09:f7:37:78:00:35:2e:2f:e5:dd:f0:97: eb:46:9c:19:71:0d:7a:55:c7:63:9e:14:2a:db:34: eb:f6:fa:99:18:a7:bd:20:d4:ae:2c:c1:db:9b:58: b5:3c:6c:a6:10:e6:7b:90:04:60:13:6f:f1:dd:ba: 00:2c:15:e4:18:07:3f:f1:8b:3d:29:26:0e:c8:e9: ff:72:ce:ad:09:8d:11:68:43:5a:ae:9d:a1:1a:79: c5:49:59:a7:ad:d4:4c:06:8d:f9:ac:48:25:ef:db: 1d:71:66:8a:ed:98:8c:e3:36:80:fc:4c:cb:fb:82: 2f:b3:ff:0f:65:61:dc:f4:3a:97:31:fa:6e:3d:fc: e7:82:07:91:e5:f2:71:35:e6:5a:73:12:4e:20:94: a8:21:b2:9b:10:29:14:f6:30:dd:93:86:c4:81:4a: da:f2:a0:68:64:48:93:d5:61:cf:24:24:3a:22:c7: 80:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:9C:EE:51:07:54:BD:B2:4A:EC:0A:6E:2E:95:7A:4E:4F:ED:40:C4 X509v3 Authority Key Identifier: keyid:B5:76:57:7D:20:08:5C:4C:22:FC:80:11:C8:D1:A9:3F:63:21:1C:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXZXfSAIXEwi_IARyNGpP2MhHA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/dJzuUQdUvbJK7ApuLpV6Tk_tQMQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/151705-0b0c-48bf-a40e-b7ca1fe6c184/1/tXZXfSAIXEwi_IARyNGpP2MhHA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.101.36.0/24 IPv6: 2a0e:96c0::/32 Signature Algorithm: sha256WithRSAEncryption 97:cf:4a:e7:3d:c6:11:5a:20:fc:00:c2:2a:c9:60:c6:14:61: 39:b9:17:b4:80:40:b1:f8:56:d2:c1:db:7a:e9:02:37:64:24: 58:69:36:47:8d:18:1b:c7:f6:5a:78:6a:92:da:de:a9:3c:9c: 63:28:f6:5a:d4:00:45:38:d8:84:bc:f2:d9:3c:b2:b8:1d:a0: 97:33:73:1c:9a:c2:17:d8:64:a5:f1:47:e6:b6:b4:92:8d:ac: 22:81:1c:3b:d1:0a:f2:fa:a4:44:d5:93:4d:8f:dc:96:00:f6: a1:b5:96:2f:08:72:c1:05:b3:4a:f5:b2:65:1e:66:41:01:db: d2:00:aa:0e:c0:0e:d5:db:50:9b:84:c7:59:5f:6d:53:0f:b7: 28:37:95:51:be:37:f6:cd:df:5c:39:e2:4f:86:cf:2c:a3:84: 7e:f1:86:83:13:61:f8:c9:5f:63:fd:94:fd:a5:a7:df:fc:8b: 4e:b9:95:f6:9d:51:fb:b9:a8:69:dc:4a:6f:e5:5d:9b:84:b6: aa:8b:95:db:06:c2:c8:28:87:93:5b:1b:f6:75:98:99:d6:79: 05:f7:69:0a:2c:66:28:5e:67:35:65:e9:68:6a:2a:66:d4:18: 8f:6e:52:4c:d3:54:18:00:d3:75:1f:f7:67:67:15:10:56:37: be:49:24:25 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57HXk7qd43IySw4HeLkWVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NzY1NzdkMjAwODVjNGMyMmZjODAxMWM4ZDFhOTNmNjMy MTFjMGYwHhcNMjYwMTAxMTQxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDljZWU1MTA3NTRiZGIyNGFlYzBhNmUyZTk1N2E0ZTRmZWQ0MGM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngljCQG+nyViNJcZ7yzKsAcmOYm6 4XAgzkBmpAImOwXYE7Edtp+qpyGbMOqp9hC3PK0xPaWML74uS78ryDFjXuNV3W++ CIazPIX7Z5kJ9zd4ADUuL+Xd8JfrRpwZcQ16VcdjnhQq2zTr9vqZGKe9INSuLMHb m1i1PGymEOZ7kARgE2/x3boALBXkGAc/8Ys9KSYOyOn/cs6tCY0RaENarp2hGnnF SVmnrdRMBo35rEgl79sdcWaK7ZiM4zaA/EzL+4Ivs/8PZWHc9DqXMfpuPfznggeR 5fJxNeZacxJOIJSoIbKbECkU9jDdk4bEgUra8qBoZEiT1WHPJCQ6IseAcQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHSc7lEHVL2ySuwKbi6Vek5P7UDEMB8GA1UdIwQY MBaAFLV2V30gCFxMIvyAEcjRqT9jIRwPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFhaWGZTQUlYRXdpX0lBUnlOR3BQMk1oSEE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8xNTE3MDUtMGIwYy00OGJmLWE0MGUt YjdjYTFmZTZjMTg0LzEvZEp6dVVRZFV2YkpLN0FwdUxwVjZUa190UU1RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy8xNTE3MDUtMGIwYy00OGJmLWE0MGUtYjdjYTFmZTZjMTg0 LzEvdFhaWGZTQUlYRXdpX0lBUnlOR3BQMk1oSEE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuWUkMA0E AgACMAcDBQAqDpbAMA0GCSqGSIb3DQEBCwUAA4IBAQCXz0rnPcYRWiD8AMIqyWDG FGE5uRe0gECx+FbSwdt66QI3ZCRYaTZHjRgbx/ZaeGqS2t6pPJxjKPZa1ABFONiE vPLZPLK4HaCXM3McmsIX2GSl8UfmtrSSjawigRw70Qry+qRE1ZNNj9yWAPahtZYv CHLBBbNK9bJlHmZBAdvSAKoOwA7V21CbhMdZX21TD7coN5VRvjf2zd9cOeJPhs8s o4R+8YaDE2H4yV9j/ZT9paff/ItOuZX2nVH7uahp3Epv5V2bhLaqi5XbBsLIKIeT Wxv2dZiZ1nkF92kKLGYoXmc1Zeloaipm1BiPblJM01QYANN1H/dnZxUQVje+SSQl -----END CERTIFICATE-----Generated at Sun Jan 25 20:01:16 2026 by rpki-client