This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/DdaEF3_ytZFcM8UnbBsWjFOVcuE.roa File: DdaEF3_ytZFcM8UnbBsWjFOVcuE.roa (raw, json) Hash identifier: gBpRKVEaCC/ZxvP23NldW+S+ooot8gRGfnxVpzMdoDo= Subject key identifier: 0D:D6:84:17:7F:F2:B5:91:5C:33:C5:27:6C:1B:16:8C:53:95:72:E1 Certificate issuer: /CN=1d2cdcb9c76f5e0ce0c385d7e0ef15572d15a54c Certificate serial: 019B7CEE5A0A37A621B204CDEF272651FA3B Authority key identifier: 1D:2C:DC:B9:C7:6F:5E:0C:E0:C3:85:D7:E0:EF:15:57:2D:15:A5:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/DdaEF3_ytZFcM8UnbBsWjFOVcuE.roa Signing time: Fri 02 Jan 2026 04:19:13 +0000 ROA not before: Fri 02 Jan 2026 04:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 378 IP address blocks: 132.66.0.0/15 maxlen: 15 132.66.0.0/16 maxlen: 16 132.67.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/HSzcucdvXgzgw4XX4O8VVy0VpUw.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/HSzcucdvXgzgw4XX4O8VVy0VpUw.mft rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:5a:0a:37:a6:21:b2:04:cd:ef:27:26:51:fa:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d2cdcb9c76f5e0ce0c385d7e0ef15572d15a54c Validity Not Before: Jan 2 04:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0dd684177ff2b5915c33c5276c1b168c539572e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8c:87:2b:47:3d:6a:71:3f:46:a3:e9:60:63: b4:48:54:bb:71:84:fe:9d:1c:86:fc:5e:85:10:48: a6:01:53:1f:a7:e3:db:8e:11:24:77:8f:ca:d8:d4: e4:09:f0:d4:ea:42:a7:c1:8f:3d:52:54:2b:b6:e2: b3:7e:12:c5:eb:59:ad:49:31:a7:24:a8:ee:ce:40: 07:bd:bb:48:02:5a:4f:c0:0f:86:78:ff:84:e7:60: c3:f2:3d:75:0b:45:d6:a0:4a:21:e9:a1:9a:b2:4d: ca:0c:df:3b:09:6b:54:41:4f:d2:c5:5d:cd:61:27: e1:6d:9c:d0:ce:f1:d1:5e:2c:f4:8f:c8:81:08:01: 49:85:19:c3:ea:20:c3:d3:ad:21:7b:4f:80:d7:16: 8c:f9:f2:32:94:75:78:04:58:73:c7:e0:a9:d3:e9: 18:c8:97:47:5a:05:b7:02:95:fa:71:12:94:98:ff: e4:a3:de:cb:61:4d:cf:cc:e0:56:05:ef:f1:b6:b6: 8d:89:d5:47:95:89:d7:9f:5f:a5:b6:29:af:b6:3e: e4:d1:7f:da:95:fe:93:65:b3:c6:2f:82:7c:20:35: 03:20:08:01:ee:c7:7b:c3:26:fb:48:c5:1c:f0:db: 5e:16:38:8a:74:2a:ab:df:d9:51:94:e7:81:2b:53: 4b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D6:84:17:7F:F2:B5:91:5C:33:C5:27:6C:1B:16:8C:53:95:72:E1 X509v3 Authority Key Identifier: keyid:1D:2C:DC:B9:C7:6F:5E:0C:E0:C3:85:D7:E0:EF:15:57:2D:15:A5:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSzcucdvXgzgw4XX4O8VVy0VpUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/DdaEF3_ytZFcM8UnbBsWjFOVcuE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b66666-b3b7-4248-ae65-760e4ee4c6b2/1/HSzcucdvXgzgw4XX4O8VVy0VpUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 132.66.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2c:44:e2:8d:44:7a:04:a2:cf:7f:25:70:ed:cd:14:8e:26:ad: a2:5e:c3:ff:44:84:b6:79:14:02:a4:7a:92:db:5b:c6:61:87: 37:b3:c5:8c:ba:9d:00:32:e0:2e:ec:c5:ee:1e:ba:2c:d5:d6: 18:6d:ab:17:b3:ae:38:96:17:5e:a5:88:4f:f9:74:ef:82:50: e2:d8:67:2a:b2:0b:42:d4:3f:0c:8a:3d:c8:a1:ed:54:39:47: b8:13:68:f6:f8:50:eb:81:f1:49:2e:ad:30:86:e4:ee:af:3b: 51:2d:81:f3:c3:d4:9a:a9:df:ee:5e:82:4e:61:c9:e8:57:eb: af:d5:27:b6:e1:3e:59:5e:07:d0:ed:d9:05:8d:d9:2c:87:44: e2:f6:72:1e:3b:27:07:7c:18:1f:00:69:de:40:f1:e7:2a:6a: f4:82:fa:a1:19:a1:e7:20:bc:66:6b:59:1a:97:6f:11:cc:fd: 37:fe:f7:9d:a9:05:e7:b2:14:fb:48:bb:d1:c6:39:de:5d:9d: be:3d:07:72:18:28:35:63:3f:f7:26:93:e7:e2:b4:b0:1d:b4: 8a:eb:af:52:f8:1e:67:2f:32:f1:ae:4c:a0:f7:20:55:89:68: 9e:53:0f:4d:a8:06:66:bd:7f:2a:55:f4:5e:ba:88:71:c1:20: a2:45:de:70 -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt87loKN6YhsgTN7ycmUfo7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkMmNkY2I5Yzc2ZjVlMGNlMGMzODVkN2UwZWYxNTU3MmQx NWE1NGMwHhcNMjYwMTAyMDQxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGQ2ODQxNzdmZjJiNTkxNWMzM2M1Mjc2YzFiMTY4YzUzOTU3MmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYyHK0c9anE/RqPpYGO0SFS7cYT+ nRyG/F6FEEimAVMfp+PbjhEkd4/K2NTkCfDU6kKnwY89UlQrtuKzfhLF61mtSTGn JKjuzkAHvbtIAlpPwA+GeP+E52DD8j11C0XWoEoh6aGask3KDN87CWtUQU/SxV3N YSfhbZzQzvHRXiz0j8iBCAFJhRnD6iDD060he0+A1xaM+fIylHV4BFhzx+Cp0+kY yJdHWgW3ApX6cRKUmP/ko97LYU3PzOBWBe/xtraNidVHlYnXn1+ltimvtj7k0X/a lf6TZbPGL4J8IDUDIAgB7sd7wyb7SMUc8NteFjiKdCqr39lRlOeBK1NLFQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFA3WhBd/8rWRXDPFJ2wbFoxTlXLhMB8GA1UdIwQY MBaAFB0s3LnHb14M4MOF1+DvFVctFaVMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFN6Y3VjZHZYZ3pndzRYWDRPOFZWeTBWcFV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS9iNjY2NjYtYjNiNy00MjQ4LWFlNjUt NzYwZTRlZTRjNmIyLzEvRGRhRUYzX3l0WkZjTThVbmJCc1dqRk9WY3VFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS9iNjY2NjYtYjNiNy00MjQ4LWFlNjUtNzYwZTRlZTRjNmIy LzEvSFN6Y3VjZHZYZ3pndzRYWDRPOFZWeTBWcFV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBhEIwDQYJ KoZIhvcNAQELBQADggEBACxE4o1EegSiz38lcO3NFI4mraJew/9EhLZ5FAKkepLb W8ZhhzezxYy6nQAy4C7sxe4euizV1hhtqxezrjiWF16liE/5dO+CUOLYZyqyC0LU PwyKPcih7VQ5R7gTaPb4UOuB8UkurTCG5O6vO1EtgfPD1Jqp3+5egk5hyehX66/V J7bhPlleB9Dt2QWN2SyHROL2ch47Jwd8GB8Aad5A8ecqavSC+qEZoecgvGZrWRqX bxHM/Tf+952pBeeyFPtIu9HGOd5dnb49B3IYKDVjP/cmk+fitLAdtIrrr1L4Hmcv MvGuTKD3IFWJaJ5TD02oBma9fypV9F66iHHBIKJF3nA= -----END CERTIFICATE-----Generated at Sun Jan 25 21:19:43 2026 by rpki-client