This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5655f5-0141-4f3d-a50c-b5998680d914/1/DIEeHXr-sg72w8tBgzQ5nqnQ7go.roa File: DIEeHXr-sg72w8tBgzQ5nqnQ7go.roa (raw, json) Hash identifier: EtH8YkhhVk7GVyIh/CoOOspQ4bbxWgxf9R15/OkaX/M= Subject key identifier: 0C:81:1E:1D:7A:FE:B2:0E:F6:C3:CB:41:83:34:39:9E:A9:D0:EE:0A Certificate issuer: /CN=fb1fce9aa72c838496f4bdef9c1f0b8e894fc98e Certificate serial: 019B7C11C31408CCA6A40DF02789F9238D85 Authority key identifier: FB:1F:CE:9A:A7:2C:83:84:96:F4:BD:EF:9C:1F:0B:8E:89:4F:C9:8E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-x_Omqcsg4SW9L3vnB8LjolPyY4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5655f5-0141-4f3d-a50c-b5998680d914/1/DIEeHXr-sg72w8tBgzQ5nqnQ7go.roa Signing time: Fri 02 Jan 2026 00:18:17 +0000 ROA not before: Fri 02 Jan 2026 00:18:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9063 IP address blocks: 185.168.141.0/24 maxlen: 24 2a10:65c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5655f5-0141-4f3d-a50c-b5998680d914/1/1-x_Omqcsg4SW9L3vnB8LjolPyY4.crl rsync://rpki.ripe.net/repository/DEFAULT/14/5655f5-0141-4f3d-a50c-b5998680d914/1/1-x_Omqcsg4SW9L3vnB8LjolPyY4.mft rsync://rpki.ripe.net/repository/DEFAULT/1-x_Omqcsg4SW9L3vnB8LjolPyY4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:c3:14:08:cc:a6:a4:0d:f0:27:89:f9:23:8d:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fb1fce9aa72c838496f4bdef9c1f0b8e894fc98e Validity Not Before: Jan 2 00:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c811e1d7afeb20ef6c3cb418334399ea9d0ee0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:21:b7:d4:d1:94:0f:43:1e:72:64:e5:5b:5e: 41:c0:59:39:d6:86:72:c7:6b:39:82:7d:11:84:72: 12:e0:34:98:14:57:33:37:c0:81:69:60:6f:c7:09: 1b:a9:c8:ae:cc:75:79:a0:28:17:5d:06:b5:1e:ba: 6c:7a:e2:7e:7e:1d:70:07:a7:67:11:65:6f:c5:ba: a9:39:97:74:b7:31:c4:07:84:c0:44:48:40:83:d2: 2a:1c:ea:da:d8:9b:6a:29:7a:42:d8:65:a4:ac:f2: 51:be:15:20:4d:06:35:38:b6:fa:63:b0:5e:b8:83: 09:74:47:02:0b:74:f5:1d:e5:13:4f:96:f3:01:7f: 4e:62:e7:2e:a3:3a:37:65:97:c0:74:8d:d9:48:86: 8e:0d:6a:4f:57:a2:06:c7:c7:f8:c2:b9:3b:de:c6: 96:c9:a9:2f:49:11:09:33:72:34:52:cd:88:20:a9: 64:07:87:55:a3:1f:be:00:92:56:db:91:ea:bf:0d: e5:50:43:d2:15:21:bf:7f:94:f3:51:42:58:a5:f6: a0:e2:fe:c9:e0:82:bb:a7:fd:dc:3d:2f:a8:72:80: 7f:b9:ec:70:81:16:3f:9c:f8:89:ed:e4:a8:2b:b7: ca:e7:ee:1d:5b:f2:90:48:10:fd:0a:e8:ad:f9:85: f5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:81:1E:1D:7A:FE:B2:0E:F6:C3:CB:41:83:34:39:9E:A9:D0:EE:0A X509v3 Authority Key Identifier: keyid:FB:1F:CE:9A:A7:2C:83:84:96:F4:BD:EF:9C:1F:0B:8E:89:4F:C9:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-x_Omqcsg4SW9L3vnB8LjolPyY4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5655f5-0141-4f3d-a50c-b5998680d914/1/DIEeHXr-sg72w8tBgzQ5nqnQ7go.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5655f5-0141-4f3d-a50c-b5998680d914/1/1-x_Omqcsg4SW9L3vnB8LjolPyY4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.168.141.0/24 IPv6: 2a10:65c0::/29 Signature Algorithm: sha256WithRSAEncryption 3a:3f:ae:b2:e1:f4:ce:02:16:a7:e7:03:98:6e:b6:c5:be:e2: d8:c0:b2:55:40:1d:c5:d0:98:f6:aa:c9:68:60:bb:29:d5:57: 13:03:ab:4c:c1:af:ac:97:c7:06:03:e4:4b:af:3d:d1:f3:02: cf:2e:a5:b3:56:09:3b:7b:a2:49:da:63:ca:21:4f:eb:63:da: 5e:6b:c1:1a:e7:e7:b3:b3:6c:09:5a:79:b0:c4:9b:9f:71:2f: 4d:de:52:fa:6c:94:31:dd:b6:9f:10:e3:4d:3c:0a:e7:43:b2: 49:b5:ad:55:98:64:22:72:90:59:f4:41:53:67:f5:0d:d6:30: e5:87:2f:54:14:70:c0:ad:9b:a0:9f:38:64:d3:8f:26:cf:6a: 96:5f:ca:a4:69:27:cd:f9:ba:27:4e:da:9f:d2:92:bf:c1:b5: 83:79:12:2d:51:db:00:92:f1:a1:a5:34:47:b9:14:7a:75:f7: de:2a:23:72:14:18:4c:db:79:c7:f2:ac:cf:f1:72:09:d8:50: d0:06:ff:8f:f2:54:6e:05:eb:3f:a7:6a:f6:a1:95:a4:6a:66: 67:fd:bc:1a:d4:df:2b:3a:fe:7d:c7:3a:52:10:9b:b2:8c:69: ec:01:11:5d:e2:00:4e:22:8b:6c:b2:26:15:8d:bd:ec:bd:86: 76:b7:ef:48 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8EcMUCMympA3wJ4n5I42FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiMWZjZTlhYTcyYzgzODQ5NmY0YmRlZjljMWYwYjhlODk0 ZmM5OGUwHhcNMjYwMTAyMDAxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzgxMWUxZDdhZmViMjBlZjZjM2NiNDE4MzM0Mzk5ZWE5ZDBlZTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3iG31NGUD0MecmTlW15BwFk51oZy x2s5gn0RhHIS4DSYFFczN8CBaWBvxwkbqciuzHV5oCgXXQa1HrpseuJ+fh1wB6dn EWVvxbqpOZd0tzHEB4TAREhAg9IqHOra2JtqKXpC2GWkrPJRvhUgTQY1OLb6Y7Be uIMJdEcCC3T1HeUTT5bzAX9OYucuozo3ZZfAdI3ZSIaODWpPV6IGx8f4wrk73saW yakvSREJM3I0Us2IIKlkB4dVox++AJJW25Hqvw3lUEPSFSG/f5TzUUJYpfag4v7J 4IK7p/3cPS+ocoB/uexwgRY/nPiJ7eSoK7fK5+4dW/KQSBD9Cuit+YX1TQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFAyBHh16/rIO9sPLQYM0OZ6p0O4KMB8GA1UdIwQY MBaAFPsfzpqnLIOElvS975wfC46JT8mOMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS14X09tcWNzZzRTVzlMM3ZuQjhMam9sUHlZNC5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQvNTY1NWY1LTAxNDEtNGYzZC1hNTBj LWI1OTk4NjgwZDkxNC8xL0RJRWVIWHItc2c3Mnc4dEJnelE1bnFuUTdnby5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMTQvNTY1NWY1LTAxNDEtNGYzZC1hNTBjLWI1OTk4NjgwZDkx NC8xLzEteF9PbXFjc2c0U1c5TDN2bkI4TGpvbFB5WTQuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAC5qI0w DQQCAAIwBwMFAyoQZcAwDQYJKoZIhvcNAQELBQADggEBADo/rrLh9M4CFqfnA5hu tsW+4tjAslVAHcXQmPaqyWhguynVVxMDq0zBr6yXxwYD5EuvPdHzAs8upbNWCTt7 oknaY8ohT+tj2l5rwRrn57OzbAlaebDEm59xL03eUvpslDHdtp8Q4008CudDskm1 rVWYZCJykFn0QVNn9Q3WMOWHL1QUcMCtm6CfOGTTjybPapZfyqRpJ835uidO2p/S kr/BtYN5Ei1R2wCS8aGlNEe5FHp1994qI3IUGEzbecfyrM/xcgnYUNAG/4/yVG4F 6z+navahlaRqZmf9vBrU3ys6/n3HOlIQm7KMaewBEV3iAE4ii2yyJhWNvey9hna3 70g= -----END CERTIFICATE-----Generated at Sun Jan 25 21:27:53 2026 by rpki-client