This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/dhTd6pQkdcZtziuGC_DE5cb_F00.roa File: dhTd6pQkdcZtziuGC_DE5cb_F00.roa (raw, json) Hash identifier: LQtyf9un2S8HccFPJLYelD7n40x7iaFSSl5U5VCqaVc= Subject key identifier: 76:14:DD:EA:94:24:75:C6:6D:CE:2B:86:0B:F0:C4:E5:C6:FF:17:4D Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Certificate serial: 019B7F13E4ADCB26999E0A489DBA425777AF Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/dhTd6pQkdcZtziuGC_DE5cb_F00.roa Signing time: Fri 02 Jan 2026 14:19:28 +0000 ROA not before: Fri 02 Jan 2026 14:19:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25446 IP address blocks: 77.106.68.0/22 maxlen: 22 2001:67c:1584::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.mft rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:e4:ad:cb:26:99:9e:0a:48:9d:ba:42:57:77:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f Validity Not Before: Jan 2 14:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7614ddea942475c66dce2b860bf0c4e5c6ff174d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:87:40:5a:bd:33:d9:95:b3:33:82:c8:da:4d: f9:9d:65:da:b7:40:65:39:b8:61:77:0d:7f:13:51: 0a:56:94:22:56:7b:b2:64:c2:dd:ec:90:c5:48:93: 13:e4:fb:ca:cf:b0:12:8e:0d:8f:4d:36:1f:9f:26: a2:14:5f:28:6f:47:3e:68:0c:4c:d0:79:a3:7b:d8: 89:b8:8a:48:04:13:f7:b5:4b:8c:2c:94:94:6a:eb: fe:b0:5c:d9:58:68:1b:b7:97:25:0f:ed:02:13:61: a8:9e:c8:6b:bf:61:a5:df:fe:43:76:93:94:26:0d: f8:d5:42:dd:3d:d1:17:81:8b:63:2f:98:2a:62:f2: c4:38:74:3e:6a:a8:20:3b:fa:85:88:5f:b9:97:63: 7c:c0:1c:2d:2c:d6:3e:d0:4d:2c:95:f4:64:58:1b: 0c:30:53:c4:4e:da:ab:90:dc:44:a3:19:da:9e:cb: 80:8f:6f:70:76:05:47:7a:02:8e:75:b6:9e:c2:9e: ae:62:16:11:f8:55:ef:56:1b:e7:22:76:ba:53:f0: 84:09:fc:91:f6:4c:7f:73:d3:13:c7:57:c4:d3:a4: be:d2:53:53:64:c8:da:7f:9d:7a:33:35:2a:46:a5: 43:ce:c2:58:e3:6e:98:8a:2f:df:0f:e6:29:ba:a9: 10:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:14:DD:EA:94:24:75:C6:6D:CE:2B:86:0B:F0:C4:E5:C6:FF:17:4D X509v3 Authority Key Identifier: keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/dhTd6pQkdcZtziuGC_DE5cb_F00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.106.68.0/22 IPv6: 2001:67c:1584::/48 Signature Algorithm: sha256WithRSAEncryption 3f:a8:25:d3:aa:b9:d7:cb:22:d8:e1:d3:04:40:a5:e2:ef:af: 2d:15:8f:b3:12:29:1c:ca:70:52:f5:b3:12:3a:8a:37:04:02: 5e:fc:49:ae:12:41:19:78:96:22:7c:b5:19:2c:81:03:20:6f: 1b:9e:83:a2:01:6c:3e:38:0a:e0:f1:8c:10:2f:c3:0d:94:46: 91:ca:f0:36:0f:cb:71:18:3e:fc:aa:93:9e:2a:ae:15:24:94: 3f:71:88:eb:fe:ec:01:86:e7:eb:e9:95:d6:b1:38:7d:d8:4a: 4b:c8:20:fe:df:fd:b0:93:bc:5b:4f:4d:11:bc:a7:f5:95:65: 39:24:7d:7d:23:64:ff:38:f0:a3:3b:f1:8a:2f:d1:91:9d:74: aa:62:f1:99:07:25:d0:95:33:ec:22:e7:eb:4c:eb:72:46:6b: e1:7a:6a:39:9c:54:f0:50:8b:ae:10:c2:c5:62:63:ec:12:14: 0d:ec:30:02:54:a3:c1:46:f4:bd:d6:0f:8a:cb:47:ff:e2:00: 34:63:46:e1:34:3a:b4:74:8a:a1:c1:7f:10:6c:e5:6b:d8:5f: 17:df:ac:88:02:e8:36:7c:82:12:7a:a3:af:37:a8:d9:c7:60: cc:1d:1d:22:72:95:e6:e5:c3:35:25:ad:72:51:33:b6:71:83: 97:40:9b:7e -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/E+StyyaZngpInbpCV3evMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4MDJiOTVjZTYyMzlkNTI2YzM1YWU3YThlMmNlYjQ4YWVi ODJiNWYwHhcNMjYwMTAyMTQxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjE0ZGRlYTk0MjQ3NWM2NmRjZTJiODYwYmYwYzRlNWM2ZmYxNzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwodAWr0z2ZWzM4LI2k35nWXat0Bl Obhhdw1/E1EKVpQiVnuyZMLd7JDFSJMT5PvKz7ASjg2PTTYfnyaiFF8ob0c+aAxM 0Hmje9iJuIpIBBP3tUuMLJSUauv+sFzZWGgbt5clD+0CE2Gonshrv2Gl3/5DdpOU Jg341ULdPdEXgYtjL5gqYvLEOHQ+aqggO/qFiF+5l2N8wBwtLNY+0E0slfRkWBsM MFPETtqrkNxEoxnansuAj29wdgVHegKOdbaewp6uYhYR+FXvVhvnIna6U/CECfyR 9kx/c9MTx1fE06S+0lNTZMjaf516MzUqRqVDzsJY426Yii/fD+YpuqkQzQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFHYU3eqUJHXGbc4rhgvwxOXG/xdNMB8GA1UdIwQY MBaAFAgCuVzmI51SbDWueo4s60iuuCtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDIt Y2YwYWEzZWNhZDI4LzEvZGhUZDZwUWtkY1p0eml1R0NfREU1Y2JfRjAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8xMGU5NjUtNzQwOS00NGQ4LTk1MDItY2YwYWEzZWNhZDI4 LzEvQ0FLNVhPWWpuVkpzTmE1NmppenJTSzY0SzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCTWpEMA8E AgACMAkDBwAgAQZ8FYQwDQYJKoZIhvcNAQELBQADggEBAD+oJdOqudfLItjh0wRA peLvry0Vj7MSKRzKcFL1sxI6ijcEAl78Sa4SQRl4liJ8tRksgQMgbxueg6IBbD44 CuDxjBAvww2URpHK8DYPy3EYPvyqk54qrhUklD9xiOv+7AGG5+vpldaxOH3YSkvI IP7f/bCTvFtPTRG8p/WVZTkkfX0jZP848KM78Yov0ZGddKpi8ZkHJdCVM+wi5+tM 63JGa+F6ajmcVPBQi64QwsViY+wSFA3sMAJUo8FG9L3WD4rLR//iADRjRuE0OrR0 iqHBfxBs5WvYXxffrIgC6DZ8ghJ6o683qNnHYMwdHSJyleblwzUlrXJRM7Zxg5dA m34= -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:28 2026 by rpki-client