This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/ddUJNLSqBtnSmNldI4m1ICrrXaA.roa File: ddUJNLSqBtnSmNldI4m1ICrrXaA.roa (raw, json) Hash identifier: 3+OVO0aN+wd5+fw851/RNy2HHQdglPinsg8QGb8dxQo= Subject key identifier: 75:D5:09:34:B4:AA:06:D9:D2:98:D9:5D:23:89:B5:20:2A:EB:5D:A0 Certificate issuer: /CN=01f3ef3e0ea95a975537d5c25d93cb76af687234 Certificate serial: 019B7DC9FDB0FF6462903B0CD41B9A22A806 Authority key identifier: 01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/ddUJNLSqBtnSmNldI4m1ICrrXaA.roa Signing time: Fri 02 Jan 2026 08:19:08 +0000 ROA not before: Fri 02 Jan 2026 08:19:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44218 IP address blocks: 145.14.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:fd:b0:ff:64:62:90:3b:0c:d4:1b:9a:22:a8:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01f3ef3e0ea95a975537d5c25d93cb76af687234 Validity Not Before: Jan 2 08:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75d50934b4aa06d9d298d95d2389b5202aeb5da0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:52:3d:b4:ba:8c:1b:42:ee:a3:ae:07:ec:25: fa:fd:86:a4:7f:0a:c9:0d:8f:03:65:61:72:8d:84: fc:99:49:40:60:ea:09:6d:e9:14:ad:f6:d4:b8:20: 7d:d6:9b:ea:b0:08:37:ca:b0:4a:16:0e:f2:80:dc: 63:11:84:b2:f8:11:55:5d:3c:d5:4e:a1:d4:65:81: d3:92:2f:ba:8f:58:ca:f1:28:0a:99:be:aa:29:57: b0:c9:dd:73:d6:62:aa:4e:b2:40:a8:c2:57:c4:32: 3a:8c:5e:e3:98:17:05:d7:0d:70:58:21:89:47:e7: c5:14:15:9c:dd:91:b1:7a:c2:d1:87:4a:ef:fa:a0: c9:82:c6:f1:70:43:57:ba:ca:43:4c:1a:fc:5c:ff: e4:29:d0:79:47:57:a9:e8:85:0f:d1:19:f9:5c:bb: e7:cb:cc:77:a7:60:7e:f1:cd:10:2c:e2:96:a1:63: 16:a2:3f:2a:4b:f7:05:75:8c:bc:ca:31:9d:c1:ec: 9d:65:1b:8a:61:9d:59:b3:95:60:e1:b0:4f:b6:1d: 46:fd:5d:41:c4:81:34:28:94:ea:60:41:95:97:c0: d8:67:d4:b2:22:05:60:4c:89:1e:07:9a:58:c4:f8: b7:1e:84:27:6a:a4:ba:c8:d9:98:f4:11:c2:93:ca: 1a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D5:09:34:B4:AA:06:D9:D2:98:D9:5D:23:89:B5:20:2A:EB:5D:A0 X509v3 Authority Key Identifier: keyid:01:F3:EF:3E:0E:A9:5A:97:55:37:D5:C2:5D:93:CB:76:AF:68:72:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/ddUJNLSqBtnSmNldI4m1ICrrXaA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8417a0-0777-446e-97e1-353b3a633ada/1/AfPvPg6pWpdVN9XCXZPLdq9ocjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.14.94.0/24 Signature Algorithm: sha256WithRSAEncryption 48:66:03:09:de:a0:0a:59:83:6c:2a:6e:4c:06:d4:4e:5f:be: bd:2c:12:1d:a6:b5:d6:24:d4:ba:b7:eb:8b:34:c4:cd:62:dc: 60:a7:70:7f:9e:50:50:84:65:1f:1c:47:f7:98:11:e1:1b:9c: 76:81:34:f7:c2:df:b8:7f:bf:a2:48:95:b5:27:43:32:f0:f8: 4e:c5:60:1b:b3:8c:16:5c:8c:35:0f:43:c5:18:19:eb:82:71: 33:11:30:d3:f7:02:38:0a:fa:25:61:5c:9d:54:3e:b8:ef:ba: 30:31:c4:1e:55:f0:fc:45:1e:7d:2e:ef:3e:de:38:1e:01:c0: 59:2a:2a:9a:56:ae:c8:ce:f2:9e:01:8d:c4:66:c8:01:7b:4b: 94:dd:c6:91:38:49:09:d6:16:aa:62:a2:2e:b4:5b:9d:03:f7: 20:10:07:0e:e6:46:f3:f9:a2:6e:7f:47:8b:21:3d:b5:0e:60: 5d:3f:01:0f:71:0d:80:fa:91:31:03:8e:bb:ff:86:3f:34:04: b0:f2:33:57:22:d3:63:c0:32:04:bf:8d:6d:5b:8a:ab:38:ea: 26:4c:f3:56:20:c5:9d:f7:70:92:59:67:fa:9b:91:a3:c8:a5: 5c:d6:26:fe:6c:a2:50:31:ba:d9:3c:20:ab:68:1f:1b:2a:c8: 86:a6:db:a3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yf2w/2RikDsM1BuaIqgGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAxZjNlZjNlMGVhOTVhOTc1NTM3ZDVjMjVkOTNjYjc2YWY2 ODcyMzQwHhcNMjYwMTAyMDgxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWQ1MDkzNGI0YWEwNmQ5ZDI5OGQ5NWQyMzg5YjUyMDJhZWI1ZGEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnVI9tLqMG0Luo64H7CX6/YakfwrJ DY8DZWFyjYT8mUlAYOoJbekUrfbUuCB91pvqsAg3yrBKFg7ygNxjEYSy+BFVXTzV TqHUZYHTki+6j1jK8SgKmb6qKVewyd1z1mKqTrJAqMJXxDI6jF7jmBcF1w1wWCGJ R+fFFBWc3ZGxesLRh0rv+qDJgsbxcENXuspDTBr8XP/kKdB5R1ep6IUP0Rn5XLvn y8x3p2B+8c0QLOKWoWMWoj8qS/cFdYy8yjGdweydZRuKYZ1Zs5Vg4bBPth1G/V1B xIE0KJTqYEGVl8DYZ9SyIgVgTIkeB5pYxPi3HoQnaqS6yNmY9BHCk8oaLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHXVCTS0qgbZ0pjZXSOJtSAq612gMB8GA1UdIwQY MBaAFAHz7z4OqVqXVTfVwl2Ty3avaHI0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQWZQdlBnNnBXcGRWTjlYQ1haUExkcTlvY2pRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84NDE3YTAtMDc3Ny00NDZlLTk3ZTEt MzUzYjNhNjMzYWRhLzEvZGRVSk5MU3FCdG5TbU5sZEk0bTFJQ3JyWGFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS84NDE3YTAtMDc3Ny00NDZlLTk3ZTEtMzUzYjNhNjMzYWRh LzEvQWZQdlBnNnBXcGRWTjlYQ1haUExkcTlvY2pRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkQ5eMA0G CSqGSIb3DQEBCwUAA4IBAQBIZgMJ3qAKWYNsKm5MBtROX769LBIdprXWJNS6t+uL NMTNYtxgp3B/nlBQhGUfHEf3mBHhG5x2gTT3wt+4f7+iSJW1J0My8PhOxWAbs4wW XIw1D0PFGBnrgnEzETDT9wI4CvolYVydVD6477owMcQeVfD8RR59Lu8+3jgeAcBZ KiqaVq7IzvKeAY3EZsgBe0uU3caROEkJ1haqYqIutFudA/cgEAcO5kbz+aJuf0eL IT21DmBdPwEPcQ2A+pExA467/4Y/NASw8jNXItNjwDIEv41tW4qrOOomTPNWIMWd 93CSWWf6m5GjyKVc1ib+bKJQMbrZPCCraB8bKsiGptuj -----END CERTIFICATE-----Generated at Mon Jan 26 02:22:57 2026 by rpki-client