This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/0d2270-5c6f-42cf-a560-94a6ef01d047/1/56DqMz97HUtongb-LYKLfwuTWh4.roa File: 56DqMz97HUtongb-LYKLfwuTWh4.roa (raw, json) Hash identifier: ogBhrs4GCRrendagpUDedYundQuUrPiR+N6SxNY/RzM= Subject key identifier: E7:A0:EA:33:3F:7B:1D:4B:68:9E:06:FE:2D:82:8B:7F:0B:93:5A:1E Certificate issuer: /CN=fa8cb946fe8601a0fd2a1b3e4382b6b1dc044f57 Certificate serial: 019B76EB9FCEA0E28ED751F8B52B3571B45E Authority key identifier: FA:8C:B9:46:FE:86:01:A0:FD:2A:1B:3E:43:82:B6:B1:DC:04:4F:57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-oy5Rv6GAaD9Khs-Q4K2sdwET1c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/0d2270-5c6f-42cf-a560-94a6ef01d047/1/56DqMz97HUtongb-LYKLfwuTWh4.roa Signing time: Thu 01 Jan 2026 00:18:31 +0000 ROA not before: Thu 01 Jan 2026 00:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207545 IP address blocks: 185.13.164.0/22 maxlen: 22 185.146.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/0d2270-5c6f-42cf-a560-94a6ef01d047/1/1-oy5Rv6GAaD9Khs-Q4K2sdwET1c.crl rsync://rpki.ripe.net/repository/DEFAULT/33/0d2270-5c6f-42cf-a560-94a6ef01d047/1/1-oy5Rv6GAaD9Khs-Q4K2sdwET1c.mft rsync://rpki.ripe.net/repository/DEFAULT/1-oy5Rv6GAaD9Khs-Q4K2sdwET1c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:9f:ce:a0:e2:8e:d7:51:f8:b5:2b:35:71:b4:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fa8cb946fe8601a0fd2a1b3e4382b6b1dc044f57 Validity Not Before: Jan 1 00:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e7a0ea333f7b1d4b689e06fe2d828b7f0b935a1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:46:c7:e0:25:b9:65:29:e0:c1:a9:97:1b:67: 60:90:91:bd:5a:3e:4b:d3:60:ee:24:9b:8c:e8:75: c6:a0:e8:da:5c:75:35:08:de:3c:20:58:93:67:e5: 1e:db:23:1a:7e:5e:47:61:a1:c4:b0:b6:a2:da:9f: 19:ae:fb:4d:93:b7:7a:07:45:02:7b:4f:80:6c:db: 72:d1:54:4e:eb:d5:bb:ba:b4:02:e2:40:e4:70:a6: f5:d5:9d:74:83:fb:3d:5c:f5:b2:5d:e8:02:02:4d: 11:3c:12:34:7e:41:c1:b7:b5:60:95:78:5d:cd:e2: 7e:4e:a1:e9:e5:71:23:57:f5:cc:41:7f:41:49:91: ad:6b:1e:a9:3f:66:2b:58:02:7d:b8:b9:da:8a:0b: 1a:c5:3a:0f:9b:1a:37:15:59:ca:77:fb:d8:e5:eb: 31:3e:63:4d:37:9e:6a:bd:b6:bb:a5:fa:f4:2b:f4: ff:df:0c:d2:e5:dd:83:4b:13:78:3e:46:88:8d:18: 60:88:12:30:76:68:49:e0:81:32:30:d0:0f:59:5f: 6f:d7:1d:ed:29:3b:11:bd:8b:18:26:1f:11:80:02: 80:31:ef:0e:5e:58:61:cc:6f:11:90:df:6a:e3:eb: 10:5e:78:30:de:12:e5:18:1b:8c:c9:ab:8d:90:b4: e4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A0:EA:33:3F:7B:1D:4B:68:9E:06:FE:2D:82:8B:7F:0B:93:5A:1E X509v3 Authority Key Identifier: keyid:FA:8C:B9:46:FE:86:01:A0:FD:2A:1B:3E:43:82:B6:B1:DC:04:4F:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-oy5Rv6GAaD9Khs-Q4K2sdwET1c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d2270-5c6f-42cf-a560-94a6ef01d047/1/56DqMz97HUtongb-LYKLfwuTWh4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/33/0d2270-5c6f-42cf-a560-94a6ef01d047/1/1-oy5Rv6GAaD9Khs-Q4K2sdwET1c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.13.164.0/22 185.146.132.0/22 Signature Algorithm: sha256WithRSAEncryption 76:80:ca:06:a1:fd:3d:26:ef:69:24:be:b2:ce:a6:ad:d0:c8: a2:f5:7a:b2:90:c2:c6:6d:bc:fe:48:d9:7d:50:26:2a:c9:c0: 57:ba:8b:e2:f1:e3:cd:af:92:bc:8c:3a:41:13:db:11:d2:4a: f0:81:d1:d1:3c:69:7d:b9:b0:60:f4:e2:96:98:70:87:ff:24: b8:55:19:3c:40:94:24:90:8a:e0:51:b3:55:5f:12:af:0b:ee: 01:e7:e9:02:dc:00:14:23:0d:3a:77:f5:35:88:d5:77:56:81: c4:92:60:bc:07:35:d6:7c:74:bc:b4:e0:07:8f:56:56:07:49: 61:ec:21:21:87:59:ed:55:b6:37:13:0d:49:3b:bb:54:8f:17: c2:c5:8b:80:60:d3:10:12:45:48:e2:d5:40:09:3c:e4:5f:6d: 44:d4:88:97:9b:ee:89:7e:f8:5a:be:bc:dd:6c:47:df:b3:e2: 57:f0:e3:ce:c6:aa:d3:e3:eb:da:6a:ce:34:08:f2:a7:43:71: 7a:a1:96:05:ca:fb:f9:50:2e:39:3a:7b:73:e3:92:33:43:64: 51:40:61:00:68:26:fe:65:3b:25:e7:53:9b:5d:73:89:bc:57: 22:1f:e3:12:bd:24:90:cf:b1:75:c0:61:fc:6d:6a:38:61:98: 38:e4:f2:89 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt265/OoOKO11H4tSs1cbReMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhOGNiOTQ2ZmU4NjAxYTBmZDJhMWIzZTQzODJiNmIxZGMw NDRmNTcwHhcNMjYwMTAxMDAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlN2EwZWEzMzNmN2IxZDRiNjg5ZTA2ZmUyZDgyOGI3ZjBiOTM1YTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUbH4CW5ZSngwamXG2dgkJG9Wj5L 02DuJJuM6HXGoOjaXHU1CN48IFiTZ+Ue2yMafl5HYaHEsLai2p8ZrvtNk7d6B0UC e0+AbNty0VRO69W7urQC4kDkcKb11Z10g/s9XPWyXegCAk0RPBI0fkHBt7VglXhd zeJ+TqHp5XEjV/XMQX9BSZGtax6pP2YrWAJ9uLnaigsaxToPmxo3FVnKd/vY5esx PmNNN55qvba7pfr0K/T/3wzS5d2DSxN4PkaIjRhgiBIwdmhJ4IEyMNAPWV9v1x3t KTsRvYsYJh8RgAKAMe8OXlhhzG8RkN9q4+sQXngw3hLlGBuMyauNkLTkCQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFOeg6jM/ex1LaJ4G/i2Ci38Lk1oeMB8GA1UdIwQY MBaAFPqMuUb+hgGg/SobPkOCtrHcBE9XMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1veTVSdjZHQWFEOUtocy1RNEsyc2R3RVQxYy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzMvMGQyMjcwLTVjNmYtNDJjZi1hNTYw LTk0YTZlZjAxZDA0Ny8xLzU2RHFNejk3SFV0b25nYi1MWUtMZnd1VFdoNC5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMzMvMGQyMjcwLTVjNmYtNDJjZi1hNTYwLTk0YTZlZjAxZDA0 Ny8xLzEtb3k1UnY2R0FhRDlLaHMtUTRLMnNkd0VUMWMuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwDBAK5DaQD BAK5koQwDQYJKoZIhvcNAQELBQADggEBAHaAygah/T0m72kkvrLOpq3QyKL1erKQ wsZtvP5I2X1QJirJwFe6i+Lx482vkryMOkET2xHSSvCB0dE8aX25sGD04paYcIf/ JLhVGTxAlCSQiuBRs1VfEq8L7gHn6QLcABQjDTp39TWI1XdWgcSSYLwHNdZ8dLy0 4AePVlYHSWHsISGHWe1VtjcTDUk7u1SPF8LFi4Bg0xASRUji1UAJPORfbUTUiJeb 7ol++Fq+vN1sR9+z4lfw487GqtPj69pqzjQI8qdDcXqhlgXK+/lQLjk6e3PjkjND ZFFAYQBoJv5lOyXnU5tdc4m8VyIf4xK9JJDPsXXAYfxtajhhmDjk8ok= -----END CERTIFICATE-----Generated at Mon Jan 26 07:23:41 2026 by rpki-client