This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/DcE-uEXszb5ayDTueYLPblzewrc.roa File: DcE-uEXszb5ayDTueYLPblzewrc.roa (raw, json) Hash identifier: WBQTxgPKlUiSMhQCjL0lfoGz2y68CFK39DGZphxj/FM= Subject key identifier: 0D:C1:3E:B8:45:EC:CD:BE:5A:C8:34:EE:79:82:CF:6E:5C:DE:C2:B7 Certificate issuer: /CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Certificate serial: 019B7758E0091F59A005BEAE59E8F4A868C2 Authority key identifier: F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/DcE-uEXszb5ayDTueYLPblzewrc.roa Signing time: Thu 01 Jan 2026 02:17:51 +0000 ROA not before: Thu 01 Jan 2026 02:17:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35042 IP address blocks: 88.214.25.0/24 maxlen: 24 88.214.26.0/24 maxlen: 24 91.228.101.0/24 maxlen: 24 185.55.240.0/22 maxlen: 22 185.55.241.0/24 maxlen: 24 185.55.243.0/24 maxlen: 24 193.24.208.0/22 maxlen: 22 193.24.208.0/23 maxlen: 23 193.24.208.0/24 maxlen: 24 193.24.209.0/24 maxlen: 24 193.24.210.0/24 maxlen: 24 194.24.160.0/24 maxlen: 24 2a00:1910::/32 maxlen: 32 2a00:1911::/32 maxlen: 32 2a00:1911::/48 maxlen: 48 2a00:1911:1::/48 maxlen: 48 2a00:1911:3::/48 maxlen: 48 2a00:1911:4::/48 maxlen: 48 2a00:1911:5::/48 maxlen: 48 2a00:1911:6::/48 maxlen: 48 2a00:1911:7::/48 maxlen: 48 2a00:1911:8::/48 maxlen: 48 2a00:1911:9::/48 maxlen: 48 2a00:1911:10::/48 maxlen: 48 2a00:1912::/32 maxlen: 32 2a00:1912:1::/48 maxlen: 48 2a00:1913::/32 maxlen: 32 2a09:8700::/32 maxlen: 32 2a09:8700:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.mft rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:e0:09:1f:59:a0:05:be:ae:59:e8:f4:a8:68:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f5d9a9282c9d2547c566634f3bacccbcf2588827 Validity Not Before: Jan 1 02:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0dc13eb845eccdbe5ac834ee7982cf6e5cdec2b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c2:71:cc:90:c9:d6:cf:63:0d:02:17:f8:a5: 3e:77:e3:5a:da:55:e5:03:0d:6e:1a:59:2e:bf:9d: 10:a1:9c:7e:8e:cc:7b:07:e3:78:37:59:c6:cc:1b: 49:20:d5:ae:ca:c5:42:f2:82:76:d0:53:a3:0f:4b: 29:70:fb:c6:86:aa:00:2b:8b:ac:5c:52:71:8d:27: c5:12:aa:33:89:b2:93:8c:6d:39:62:b9:25:9f:c4: d1:e2:f6:a7:3b:42:72:3e:b0:1b:6b:22:80:a1:30: a7:8a:93:92:3a:ba:8d:75:19:ff:c9:b9:e6:29:bf: 78:d3:9a:a9:b1:e7:38:3a:c2:e5:85:a2:32:ab:16: 34:85:6d:fd:d3:bd:5d:26:bd:27:74:c1:10:68:51: c6:30:ff:0b:0c:45:89:4f:f4:34:df:10:95:32:e4: 09:bc:9b:53:6c:49:17:63:64:4e:6f:7a:d2:6b:33: 00:84:6a:37:0a:ed:97:d5:73:6f:34:64:cc:cc:1e: dd:60:14:89:ea:e9:3f:4a:c8:b1:48:9d:6d:d2:19: 60:82:ca:f5:bb:2e:5a:24:11:5c:68:57:f8:6f:e0: 95:78:e3:99:fa:3a:75:77:68:09:16:31:2e:66:cf: c8:51:63:96:2d:e0:c4:e0:c0:24:78:dc:b9:45:f0: 26:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C1:3E:B8:45:EC:CD:BE:5A:C8:34:EE:79:82:CF:6E:5C:DE:C2:B7 X509v3 Authority Key Identifier: keyid:F5:D9:A9:28:2C:9D:25:47:C5:66:63:4F:3B:AC:CC:BC:F2:58:88:27 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9dmpKCydJUfFZmNPO6zMvPJYiCc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/DcE-uEXszb5ayDTueYLPblzewrc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d0755-1897-47ef-8df7-8cf41cafdce2/1/9dmpKCydJUfFZmNPO6zMvPJYiCc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.214.25.0-88.214.26.255 91.228.101.0/24 185.55.240.0/22 193.24.208.0/22 194.24.160.0/24 IPv6: 2a00:1910::/30 2a09:8700::/32 Signature Algorithm: sha256WithRSAEncryption af:da:e1:86:14:2e:2b:d6:12:79:e3:34:3c:87:53:7f:21:5d: b5:b8:f3:6d:1b:de:6d:c7:6f:07:a5:22:41:3a:c5:ef:02:22: f8:99:b2:50:7e:b3:3e:e1:13:a2:2e:c5:ce:44:cb:09:59:70: db:5b:d2:f6:37:1d:ff:46:cd:6c:7f:24:bb:3b:a0:37:5b:63: 6f:d7:e3:09:41:b4:6c:0c:ad:d3:ae:bb:ea:7f:59:b0:79:ba: cf:a7:30:39:c8:2a:e8:f9:55:a0:9a:a6:b5:9f:3c:21:71:60: d3:28:71:3e:f8:ee:d0:b7:34:3b:68:ff:d6:4f:83:34:12:93: a9:21:25:96:86:8f:5e:5b:45:65:c9:70:18:69:21:20:56:9a: bb:11:8a:57:e3:90:50:c7:78:ba:87:41:27:d8:e6:c8:81:9e: ae:29:d8:49:30:82:bc:0e:aa:3e:d8:6e:29:f0:77:08:d8:8d: 3d:c2:b1:95:8b:11:8d:f7:c4:18:1d:84:45:ed:d8:2b:3d:8c: 08:62:db:41:8b:8b:21:7a:a0:8d:c7:17:61:50:1d:cc:8a:f6: 97:69:3b:17:c5:de:22:b6:40:06:aa:52:61:89:f6:89:3b:5d: c4:dc:0e:f6:90:4e:9e:36:1e:d3:e4:5d:b2:60:3a:5d:dc:6b: 81:b6:90:4c -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgISAZt3WOAJH1mgBb6uWej0qGjCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY1ZDlhOTI4MmM5ZDI1NDdjNTY2NjM0ZjNiYWNjY2JjZjI1 ODg4MjcwHhcNMjYwMTAxMDIxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGMxM2ViODQ1ZWNjZGJlNWFjODM0ZWU3OTgyY2Y2ZTVjZGVjMmI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0sJxzJDJ1s9jDQIX+KU+d+Na2lXl Aw1uGlkuv50QoZx+jsx7B+N4N1nGzBtJINWuysVC8oJ20FOjD0spcPvGhqoAK4us XFJxjSfFEqozibKTjG05Yrkln8TR4vanO0JyPrAbayKAoTCnipOSOrqNdRn/ybnm Kb9405qpsec4OsLlhaIyqxY0hW39071dJr0ndMEQaFHGMP8LDEWJT/Q03xCVMuQJ vJtTbEkXY2ROb3rSazMAhGo3Cu2X1XNvNGTMzB7dYBSJ6uk/SsixSJ1t0hlggsr1 uy5aJBFcaFf4b+CVeOOZ+jp1d2gJFjEuZs/IUWOWLeDE4MAkeNy5RfAmgQIDAQAB o4ICPzCCAjswHQYDVR0OBBYEFA3BPrhF7M2+Wsg07nmCz25c3sK3MB8GA1UdIwQY MBaAFPXZqSgsnSVHxWZjTzuszLzyWIgnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjct OGNmNDFjYWZkY2UyLzEvRGNFLXVFWHN6YjVheURUdWVZTFBibHpld3JjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMy8wZDA3NTUtMTg5Ny00N2VmLThkZjctOGNmNDFjYWZkY2Uy LzEvOWRtcEtDeWRKVWZGWm1OUE82ek12UEpZaUNjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDAsBAIAATAmMAwDBABY1hkD BABY1hoDBABb5GUDBAK5N/ADBALBGNADBADCGKAwFAQCAAIwDgMFAioAGRADBQAq CYcAMA0GCSqGSIb3DQEBCwUAA4IBAQCv2uGGFC4r1hJ54zQ8h1N/IV21uPNtG95t x28HpSJBOsXvAiL4mbJQfrM+4ROiLsXORMsJWXDbW9L2Nx3/Rs1sfyS7O6A3W2Nv 1+MJQbRsDK3Trrvqf1mwebrPpzA5yCro+VWgmqa1nzwhcWDTKHE++O7QtzQ7aP/W T4M0EpOpISWWho9eW0VlyXAYaSEgVpq7EYpX45BQx3i6h0En2ObIgZ6uKdhJMIK8 Dqo+2G4p8HcI2I09wrGVixGN98QYHYRF7dgrPYwIYttBi4sheqCNxxdhUB3MivaX aTsXxd4itkAGqlJhifaJO13E3A72kE6eNh7T5F2yYDpd3GuBtpBM -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:08 2026 by rpki-client