This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/dLnEEciYoxf4zHYKdVd3Cs6UXwE.roa File: dLnEEciYoxf4zHYKdVd3Cs6UXwE.roa (raw, json) Hash identifier: fuSsuZb+gCHUO48DwmuXqWY4VCL5Q795gkNmczjB/Fk= Subject key identifier: 74:B9:C4:11:C8:98:A3:17:F8:CC:76:0A:75:57:77:0A:CE:94:5F:01 Certificate issuer: /CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c Certificate serial: 019B77C670EE484C70C6CC0F886135DB8267 Authority key identifier: 0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/dLnEEciYoxf4zHYKdVd3Cs6UXwE.roa Signing time: Thu 01 Jan 2026 04:17:32 +0000 ROA not before: Thu 01 Jan 2026 04:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25540 IP address blocks: 185.247.32.0/24 maxlen: 24 185.247.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.mft rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:70:ee:48:4c:70:c6:cc:0f:88:61:35:db:82:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0f3f1332cff05b22a3a66a6d4c348fbc01de115c Validity Not Before: Jan 1 04:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74b9c411c898a317f8cc760a7557770ace945f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:49:61:1c:59:5c:88:fe:52:61:31:cf:1a:a1: 54:f7:c8:e1:c3:4d:e8:89:40:b7:44:eb:16:f5:c4: cb:59:70:a3:5b:d4:76:23:2a:33:95:9f:c6:b6:06: db:5b:99:73:de:5d:e7:6e:7f:b3:bf:67:2f:c6:85: 8b:5b:46:7e:38:4b:bf:e3:be:27:14:b7:26:5b:9a: 7b:eb:89:bc:98:df:9b:53:92:d3:6f:96:46:11:bb: 37:d0:fd:8f:5c:75:da:ba:c6:5c:97:09:c1:0a:f9: 54:b1:76:55:e4:67:fc:1c:1d:47:a7:35:81:36:ab: 7b:56:08:a4:55:16:ff:71:e6:56:ba:55:d3:7e:2f: ec:a6:fd:15:c6:41:8a:49:3d:6d:5b:cc:a7:56:a1: f7:90:7d:5a:b7:3b:ea:74:06:09:97:08:a3:a4:41: dc:95:23:15:3f:84:4b:0b:bc:30:9e:7d:3a:18:e1: 79:60:df:3a:b8:6c:d2:e2:dc:bc:b0:e0:65:19:f0: 8c:42:3b:42:6f:bd:bc:a3:31:32:0c:56:8e:68:77: d9:9c:04:2a:c2:f4:08:d3:19:76:f8:8b:51:bc:e5: 86:fa:5c:71:4e:94:47:a4:75:6b:1f:b4:e9:f0:ae: 4b:8e:f3:4d:24:82:ac:d1:3f:f3:16:45:3c:f2:5e: aa:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:B9:C4:11:C8:98:A3:17:F8:CC:76:0A:75:57:77:0A:CE:94:5F:01 X509v3 Authority Key Identifier: keyid:0F:3F:13:32:CF:F0:5B:22:A3:A6:6A:6D:4C:34:8F:BC:01:DE:11:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dz8TMs_wWyKjpmptTDSPvAHeEVw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/dLnEEciYoxf4zHYKdVd3Cs6UXwE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/523b95-3ddc-4818-9265-daaf29211949/1/Dz8TMs_wWyKjpmptTDSPvAHeEVw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.247.32.0/23 Signature Algorithm: sha256WithRSAEncryption b0:94:98:10:25:c4:60:0f:71:7e:be:a4:f3:10:df:98:2b:15: ea:7c:0a:0a:7e:35:15:08:ee:e2:5b:a5:45:2e:9d:a2:7f:45: 17:67:01:ee:49:87:08:39:b0:09:23:7e:4a:d6:16:19:85:40: e2:03:81:ea:00:ed:f4:e0:ff:7f:df:5e:39:7a:42:1e:76:48: c5:ec:16:3d:0a:80:9b:be:63:8b:e4:4f:7d:04:29:b1:6f:35: 17:62:f2:3b:63:0c:13:cb:50:9a:5c:d3:16:1a:96:57:6d:b1: 0a:66:4d:91:c4:b3:7d:ed:0f:1d:f6:8e:05:46:46:b1:c8:fa: 70:65:97:af:3e:09:15:5a:c3:a7:05:32:55:ec:41:cf:ce:5a: d4:d9:75:3c:4f:1c:73:90:cf:28:60:01:41:d5:88:4e:32:b6: 68:99:2e:53:aa:8d:a7:58:44:81:fc:4e:d1:59:7b:9a:25:e3: 41:87:b3:4d:09:df:e7:25:76:66:53:c3:33:ef:e5:d3:b5:05: ab:86:e1:18:92:df:92:59:4f:ed:42:ca:d0:d7:a9:2c:03:77: 67:7b:54:5b:c5:72:95:61:f0:3f:d5:da:46:26:70:dc:b9:5a: 50:db:41:8f:a7:92:9e:4a:b4:3c:4d:e2:92:0f:cf:07:a9:71: 19:e4:de:1d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3xnDuSExwxswPiGE124JnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBmM2YxMzMyY2ZmMDViMjJhM2E2NmE2ZDRjMzQ4ZmJjMDFk ZTExNWMwHhcNMjYwMTAxMDQxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGI5YzQxMWM4OThhMzE3ZjhjYzc2MGE3NTU3NzcwYWNlOTQ1ZjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0lhHFlciP5SYTHPGqFU98jhw03o iUC3ROsW9cTLWXCjW9R2IyozlZ/GtgbbW5lz3l3nbn+zv2cvxoWLW0Z+OEu/474n FLcmW5p764m8mN+bU5LTb5ZGEbs30P2PXHXausZclwnBCvlUsXZV5Gf8HB1HpzWB Nqt7VgikVRb/ceZWulXTfi/spv0VxkGKST1tW8ynVqH3kH1atzvqdAYJlwijpEHc lSMVP4RLC7wwnn06GOF5YN86uGzS4ty8sOBlGfCMQjtCb728ozEyDFaOaHfZnAQq wvQI0xl2+ItRvOWG+lxxTpRHpHVrH7Tp8K5LjvNNJIKs0T/zFkU88l6qQQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHS5xBHImKMX+Mx2CnVXdwrOlF8BMB8GA1UdIwQY MBaAFA8/EzLP8Fsio6ZqbUw0j7wB3hFcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHo4VE1zX3dXeUtqcG1wdFREU1B2QUhlRVZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81MjNiOTUtM2RkYy00ODE4LTkyNjUt ZGFhZjI5MjExOTQ5LzEvZExuRUVjaVlveGY0ekhZS2RWZDNDczZVWHdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi81MjNiOTUtM2RkYy00ODE4LTkyNjUtZGFhZjI5MjExOTQ5 LzEvRHo4VE1zX3dXeUtqcG1wdFREU1B2QUhlRVZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBufcgMA0G CSqGSIb3DQEBCwUAA4IBAQCwlJgQJcRgD3F+vqTzEN+YKxXqfAoKfjUVCO7iW6VF Lp2if0UXZwHuSYcIObAJI35K1hYZhUDiA4HqAO304P9/3145ekIedkjF7BY9CoCb vmOL5E99BCmxbzUXYvI7YwwTy1CaXNMWGpZXbbEKZk2RxLN97Q8d9o4FRkaxyPpw ZZevPgkVWsOnBTJV7EHPzlrU2XU8TxxzkM8oYAFB1YhOMrZomS5Tqo2nWESB/E7R WXuaJeNBh7NNCd/nJXZmU8Mz7+XTtQWrhuEYkt+SWU/tQsrQ16ksA3dne1RbxXKV YfA/1dpGJnDcuVpQ20GPp5KeSrQ8TeKSD88HqXEZ5N4d -----END CERTIFICATE-----Generated at Mon Jan 26 04:50:34 2026 by rpki-client