This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/dnBR3jW0Kh4UVx_oWTNX9npKj2M.roa File: dnBR3jW0Kh4UVx_oWTNX9npKj2M.roa (raw, json) Hash identifier: ogXmRAS68aAykUp/xTYTY3s+V2LuvqBkBMoKuQRwEjk= Subject key identifier: 76:70:51:DE:35:B4:2A:1E:14:57:1F:E8:59:33:57:F6:7A:4A:8F:63 Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Certificate serial: 019B7F841F7EA8689D5CBD7C0AAC97478C01 Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/dnBR3jW0Kh4UVx_oWTNX9npKj2M.roa Signing time: Fri 02 Jan 2026 16:22:03 +0000 ROA not before: Fri 02 Jan 2026 16:22:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 398108 IP address blocks: 92.204.128.0/20 maxlen: 20 92.204.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.mft rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:1f:7e:a8:68:9d:5c:bd:7c:0a:ac:97:47:8c:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b Validity Not Before: Jan 2 16:22:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=767051de35b42a1e14571fe8593357f67a4a8f63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:f6:7e:59:63:c8:5a:23:1f:35:b7:83:55:64: 6e:da:eb:01:0d:3c:85:22:dd:ef:70:a3:9f:89:12: 1c:90:24:6b:11:12:f6:d9:5e:bb:d2:2b:a6:28:ab: 79:71:1b:40:c4:42:5e:5f:16:7a:01:d6:f7:eb:14: 03:9a:1d:c7:e9:74:49:6b:14:56:95:2a:64:44:09: 39:65:59:8a:07:e9:97:1b:37:6b:2b:b8:2f:34:12: 2a:58:16:7e:f3:08:de:28:57:f8:6b:3b:b9:f6:f9: b2:16:1c:b9:31:21:8c:3e:61:c0:0a:e4:ed:78:68: c7:fe:27:7e:ed:aa:07:4a:0f:73:0f:8d:ca:85:1f: ef:f4:6d:60:39:cc:4d:2d:b4:5e:cd:81:65:19:92: cd:e9:fc:d3:ca:50:71:b1:c3:68:cd:89:ab:b5:82: 64:2c:7e:7c:1e:63:8b:a2:ce:b3:af:f7:e9:93:b1: 2a:8d:94:5c:7c:a4:d2:26:d1:2e:de:5d:29:04:3c: ef:81:5f:7e:c7:fd:b6:5c:4e:16:1b:25:eb:6a:70: 99:03:97:37:a5:12:cb:a2:0d:6c:91:45:6d:fd:cc: 67:4a:c7:e9:18:91:37:50:1f:ac:c0:4d:a9:5f:27: 86:00:30:40:e7:2c:fd:58:30:c4:7a:51:ca:88:df: d0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:70:51:DE:35:B4:2A:1E:14:57:1F:E8:59:33:57:F6:7A:4A:8F:63 X509v3 Authority Key Identifier: keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/dnBR3jW0Kh4UVx_oWTNX9npKj2M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.204.128.0-92.204.151.255 Signature Algorithm: sha256WithRSAEncryption b7:71:73:34:5e:25:51:a1:0e:83:b9:97:17:fa:ef:16:c6:c3: e7:1a:ae:b3:4a:bf:4f:ba:27:57:63:00:95:4f:c3:49:e6:d9: da:1d:a9:98:89:e9:86:35:c5:81:8e:26:e6:26:b7:83:12:8a: f7:19:32:a7:a9:cf:e8:bb:a5:ba:9c:1d:5f:f9:21:a2:79:ca: 28:1f:5a:55:81:96:e1:71:5a:a7:0b:8f:cc:24:06:84:d1:5f: 3e:79:d2:b0:3a:22:e7:9c:e6:ca:1f:0c:fa:2e:51:2f:d8:83: ad:2e:ea:d4:2f:54:71:50:29:d1:34:f4:aa:2e:9e:6b:df:82: 2c:e0:9e:8e:97:d9:e3:7c:5b:5c:a1:4a:a0:40:63:40:8d:5b: 3f:c9:a4:7b:51:84:cf:4d:01:db:9e:8b:5e:6b:f8:cd:37:21: be:68:96:e9:e7:0b:55:1b:05:b7:33:2e:2b:2d:06:21:c8:76: 65:5b:be:a0:d9:ef:30:95:14:95:38:b5:90:30:fe:fd:a1:77: 45:9b:55:87:83:35:dd:56:39:fc:43:ea:70:ad:7c:a2:6b:32: 8f:6f:05:b5:3c:64:b5:5a:f4:fe:b1:90:98:ec:92:20:c9:cf: b5:8b:4b:e4:3d:c1:99:1e:ce:36:97:fd:30:c4:7f:27:ba:78: 47:4e:e1:df -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt/hB9+qGidXL18CqyXR4wBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0 ZTk4MWIwHhcNMjYwMTAyMTYyMjAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjcwNTFkZTM1YjQyYTFlMTQ1NzFmZTg1OTMzNTdmNjdhNGE4ZjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjvZ+WWPIWiMfNbeDVWRu2usBDTyF It3vcKOfiRIckCRrERL22V670iumKKt5cRtAxEJeXxZ6Adb36xQDmh3H6XRJaxRW lSpkRAk5ZVmKB+mXGzdrK7gvNBIqWBZ+8wjeKFf4azu59vmyFhy5MSGMPmHACuTt eGjH/id+7aoHSg9zD43KhR/v9G1gOcxNLbRezYFlGZLN6fzTylBxscNozYmrtYJk LH58HmOLos6zr/fpk7EqjZRcfKTSJtEu3l0pBDzvgV9+x/22XE4WGyXranCZA5c3 pRLLog1skUVt/cxnSsfpGJE3UB+swE2pXyeGADBA5yz9WDDEelHKiN/QDwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFHZwUd41tCoeFFcf6FkzV/Z6So9jMB8GA1UdIwQY MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt MTYxZjM0MjM4N2QxLzEvZG5CUjNqVzBLaDRVVnhfb1dUTlg5bnBLajJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAdczIAD BANczJAwDQYJKoZIhvcNAQELBQADggEBALdxczReJVGhDoO5lxf67xbGw+carrNK v0+6J1djAJVPw0nm2dodqZiJ6YY1xYGOJuYmt4MSivcZMqepz+i7pbqcHV/5IaJ5 yigfWlWBluFxWqcLj8wkBoTRXz550rA6Iuec5sofDPouUS/Yg60u6tQvVHFQKdE0 9Kounmvfgizgno6X2eN8W1yhSqBAY0CNWz/JpHtRhM9NAduei15r+M03Ib5olunn C1UbBbczListBiHIdmVbvqDZ7zCVFJU4tZAw/v2hd0WbVYeDNd1WOfxD6nCtfKJr Mo9vBbU8ZLVa9P6xkJjskiDJz7WLS+Q9wZkezjaX/TDEfye6eEdO4d8= -----END CERTIFICATE-----Generated at Sun Jan 25 14:20:47 2026 by rpki-client