This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/557962-051a-46c5-8a93-1cc1a538c3ce/1/dOj9E6FS6DEoaUcEFe4gpHgcFuo.roa File: dOj9E6FS6DEoaUcEFe4gpHgcFuo.roa (raw, json) Hash identifier: dnfO9626LH91ChjEi8apYPGETS9gQAIqmrEgki3RmE4= Subject key identifier: 74:E8:FD:13:A1:52:E8:31:28:69:47:04:15:EE:20:A4:78:1C:16:EA Certificate issuer: /CN=b3c935d84316a2cf56a65957b6d79b7af811a707 Certificate serial: 019B7758CB4356AE6F09552EB5E34CBCBC06 Authority key identifier: B3:C9:35:D8:43:16:A2:CF:56:A6:59:57:B6:D7:9B:7A:F8:11:A7:07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s8k12EMWos9WpllXttebevgRpwc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/557962-051a-46c5-8a93-1cc1a538c3ce/1/dOj9E6FS6DEoaUcEFe4gpHgcFuo.roa Signing time: Thu 01 Jan 2026 02:17:46 +0000 ROA not before: Thu 01 Jan 2026 02:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200612 IP address blocks: 185.200.232.0/22 maxlen: 22 185.200.232.0/23 maxlen: 23 185.200.232.0/24 maxlen: 24 185.200.233.0/24 maxlen: 24 185.200.234.0/23 maxlen: 23 185.200.234.0/24 maxlen: 24 185.200.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/557962-051a-46c5-8a93-1cc1a538c3ce/1/s8k12EMWos9WpllXttebevgRpwc.crl rsync://rpki.ripe.net/repository/DEFAULT/3c/557962-051a-46c5-8a93-1cc1a538c3ce/1/s8k12EMWos9WpllXttebevgRpwc.mft rsync://rpki.ripe.net/repository/DEFAULT/s8k12EMWos9WpllXttebevgRpwc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:cb:43:56:ae:6f:09:55:2e:b5:e3:4c:bc:bc:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3c935d84316a2cf56a65957b6d79b7af811a707 Validity Not Before: Jan 1 02:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74e8fd13a152e8312869470415ee20a4781c16ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:68:a6:3d:e3:98:8a:45:df:b5:d8:a7:67:24: 82:b8:3f:71:d8:98:6e:9b:6c:06:6d:92:8f:42:c4: 54:0d:d3:36:d2:de:81:f0:f0:d5:94:2e:12:2f:ed: d5:84:7b:1a:9c:e7:12:54:1f:9b:9b:55:63:0c:af: eb:8c:e6:9f:78:61:3a:02:56:45:6c:87:4f:79:05: c5:b8:67:ca:d2:49:71:9e:30:b6:e3:a2:73:68:91: 8c:b5:8a:c2:a6:3a:9e:04:d3:b8:a2:33:86:6a:73: aa:0b:9c:1c:b7:3f:a8:79:e3:13:f4:ed:8a:55:f5: 2d:f3:c5:db:27:8e:b1:93:61:c0:e7:59:de:b9:79: c5:5f:3e:9d:c0:f2:9b:de:a0:ce:2e:38:0a:51:6c: eb:82:91:b4:33:12:6b:30:7d:13:df:61:3b:1e:db: 73:69:87:c1:c1:b4:5d:1d:8c:c2:29:77:53:5a:79: 8c:c7:b1:5a:5d:6e:ce:1d:fe:b2:3a:17:2b:15:95: c4:31:18:c8:5e:16:0c:12:2b:77:40:03:44:a0:5b: 24:4d:85:4b:03:78:00:db:c4:bf:3b:6d:fb:03:bf: 6c:07:9b:90:63:27:56:b1:ae:cc:21:71:5c:90:71: 38:d2:9b:0b:0c:61:96:2a:dd:5b:65:06:e5:65:e9: fe:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E8:FD:13:A1:52:E8:31:28:69:47:04:15:EE:20:A4:78:1C:16:EA X509v3 Authority Key Identifier: keyid:B3:C9:35:D8:43:16:A2:CF:56:A6:59:57:B6:D7:9B:7A:F8:11:A7:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8k12EMWos9WpllXttebevgRpwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/557962-051a-46c5-8a93-1cc1a538c3ce/1/dOj9E6FS6DEoaUcEFe4gpHgcFuo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/557962-051a-46c5-8a93-1cc1a538c3ce/1/s8k12EMWos9WpllXttebevgRpwc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.200.232.0/22 Signature Algorithm: sha256WithRSAEncryption 08:4c:9c:b8:3b:38:d9:c6:ce:71:c7:e8:8d:fa:88:2b:55:3e: 38:fd:58:1b:98:ba:b9:46:31:b3:73:8d:03:a8:0c:08:79:5a: f9:68:0d:eb:52:9d:29:ae:3e:bb:16:32:3e:02:ba:01:81:e5: 5b:d5:c0:5e:2d:ee:e2:ca:1c:86:e9:8c:4a:69:df:81:aa:b7: bf:ab:84:4c:8b:0d:6d:0f:f8:9d:ad:04:56:e9:fa:21:c1:9d: cb:49:36:0d:0d:c5:04:6a:dc:54:d6:e9:ab:a9:84:92:6c:78: 6a:16:f1:70:e4:82:2d:13:29:f9:14:00:9c:bd:6c:38:1b:a5: 63:79:37:47:ae:1f:1e:ca:6a:73:00:d3:15:ee:74:59:49:17: 4a:7a:f6:9e:59:f2:80:39:88:22:24:fb:b1:ab:be:61:7f:43: ed:3b:ef:7e:ca:3b:ba:95:2b:b2:2c:62:03:68:b7:7d:7c:c5: 9c:0e:da:1e:6b:ac:3c:6e:0c:3b:95:b5:a3:fd:5c:53:bc:1c: 84:ca:5b:35:8f:07:a4:8a:8c:e7:25:4f:3a:72:7b:4d:ca:e6: 65:65:02:62:a1:d6:4e:0c:93:dc:ff:91:a9:1c:f3:f8:ac:77: 21:01:fe:ee:7a:4d:ca:ac:3e:c2:2d:78:52:9f:ee:e1:51:20: 85:40:12:d7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3WMtDVq5vCVUuteNMvLwGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYzkzNWQ4NDMxNmEyY2Y1NmE2NTk1N2I2ZDc5YjdhZjgx MWE3MDcwHhcNMjYwMTAxMDIxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGU4ZmQxM2ExNTJlODMxMjg2OTQ3MDQxNWVlMjBhNDc4MWMxNmVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32imPeOYikXftdinZySCuD9x2Jhu m2wGbZKPQsRUDdM20t6B8PDVlC4SL+3VhHsanOcSVB+bm1VjDK/rjOafeGE6AlZF bIdPeQXFuGfK0klxnjC246JzaJGMtYrCpjqeBNO4ojOGanOqC5wctz+oeeMT9O2K VfUt88XbJ46xk2HA51neuXnFXz6dwPKb3qDOLjgKUWzrgpG0MxJrMH0T32E7Httz aYfBwbRdHYzCKXdTWnmMx7FaXW7OHf6yOhcrFZXEMRjIXhYMEit3QANEoFskTYVL A3gA28S/O237A79sB5uQYydWsa7MIXFckHE40psLDGGWKt1bZQblZen+cQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHTo/ROhUugxKGlHBBXuIKR4HBbqMB8GA1UdIwQY MBaAFLPJNdhDFqLPVqZZV7bXm3r4EacHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczhrMTJFTVdvczlXcGxsWHR0ZWJldmdScHdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy81NTc5NjItMDUxYS00NmM1LThhOTMt MWNjMWE1MzhjM2NlLzEvZE9qOUU2RlM2REVvYVVjRUZlNGdwSGdjRnVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYy81NTc5NjItMDUxYS00NmM1LThhOTMtMWNjMWE1MzhjM2Nl LzEvczhrMTJFTVdvczlXcGxsWHR0ZWJldmdScHdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucjoMA0G CSqGSIb3DQEBCwUAA4IBAQAITJy4OzjZxs5xx+iN+ogrVT44/VgbmLq5RjGzc40D qAwIeVr5aA3rUp0prj67FjI+AroBgeVb1cBeLe7iyhyG6YxKad+Bqre/q4RMiw1t D/idrQRW6fohwZ3LSTYNDcUEatxU1umrqYSSbHhqFvFw5IItEyn5FACcvWw4G6Vj eTdHrh8eympzANMV7nRZSRdKevaeWfKAOYgiJPuxq75hf0PtO+9+yju6lSuyLGID aLd9fMWcDtoea6w8bgw7lbWj/VxTvByEyls1jwekioznJU86cntNyuZlZQJiodZO DJPc/5GpHPP4rHchAf7uek3KrD7CLXhSn+7hUSCFQBLX -----END CERTIFICATE-----Generated at Sun Jan 25 15:13:35 2026 by rpki-client