This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/d0r-Z1tATflEg34xH8LpeTJxCeg.roa File: d0r-Z1tATflEg34xH8LpeTJxCeg.roa (raw, json) Hash identifier: /VLriREqzzV93h2U9Y2YNTNewlDjbuqqOCTeloMXxjY= Subject key identifier: 77:4A:FE:67:5B:40:4D:F9:44:83:7E:31:1F:C2:E9:79:32:71:09:E8 Certificate issuer: /CN=efa70cb849e3837451bd79af7dc7e035963e6043 Certificate serial: 019B7B35E49DE1885A2512179BD67BF3FE78 Authority key identifier: EF:A7:0C:B8:49:E3:83:74:51:BD:79:AF:7D:C7:E0:35:96:3E:60:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/76cMuEnjg3RRvXmvfcfgNZY-YEM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/d0r-Z1tATflEg34xH8LpeTJxCeg.roa Signing time: Thu 01 Jan 2026 20:18:08 +0000 ROA not before: Thu 01 Jan 2026 20:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34916 IP address blocks: 85.204.193.0/24 maxlen: 24 86.104.231.0/24 maxlen: 24 86.105.204.0/23 maxlen: 23 86.105.226.0/24 maxlen: 24 86.106.27.0/24 maxlen: 24 89.44.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/76cMuEnjg3RRvXmvfcfgNZY-YEM.crl rsync://rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/76cMuEnjg3RRvXmvfcfgNZY-YEM.mft rsync://rpki.ripe.net/repository/DEFAULT/76cMuEnjg3RRvXmvfcfgNZY-YEM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:e4:9d:e1:88:5a:25:12:17:9b:d6:7b:f3:fe:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=efa70cb849e3837451bd79af7dc7e035963e6043 Validity Not Before: Jan 1 20:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=774afe675b404df944837e311fc2e979327109e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ac:a1:df:89:bc:d9:fa:7d:38:b0:1e:dd:0f: 59:77:ab:f3:2d:d8:38:a4:68:02:04:c1:97:6b:6f: c2:57:bc:d8:bb:19:a2:e1:da:21:a7:32:62:65:45: c3:b9:e4:16:4f:cf:6d:01:ea:4c:f1:dd:4d:f8:61: 0f:3c:0b:97:1d:83:c5:29:0e:9f:d8:b7:16:59:94: 8f:07:d9:07:6b:c0:41:df:24:56:37:02:b1:de:f9: b5:a7:1a:96:91:7d:a0:9a:7c:82:02:61:ee:5e:ad: bc:df:ea:1f:09:d5:e0:f1:38:1e:f9:7f:88:70:84: 2c:18:a9:1c:66:84:4d:47:cf:c5:ea:c3:4c:00:47: 65:26:4c:58:06:62:d9:1c:50:4a:e0:27:9e:f0:5a: ca:cf:65:3d:41:45:07:1d:64:8f:b0:44:d8:13:38: a4:4d:0e:d1:b3:e3:0c:05:2e:00:51:8b:fa:3e:9d: dc:95:9e:86:27:f6:99:03:72:e5:25:e1:3e:be:82: ea:45:d2:5a:60:c6:b3:07:bd:bc:1b:4b:8d:1d:8a: 2a:29:ee:ec:6b:2c:aa:5a:cb:57:6a:7c:30:f8:ce: c3:f8:37:9a:c7:c7:72:b7:7f:27:05:55:7f:d2:a5: 94:dc:92:7d:82:6a:1d:9f:c7:dc:6b:aa:d1:58:ad: 89:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:4A:FE:67:5B:40:4D:F9:44:83:7E:31:1F:C2:E9:79:32:71:09:E8 X509v3 Authority Key Identifier: keyid:EF:A7:0C:B8:49:E3:83:74:51:BD:79:AF:7D:C7:E0:35:96:3E:60:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/76cMuEnjg3RRvXmvfcfgNZY-YEM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/d0r-Z1tATflEg34xH8LpeTJxCeg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/692b1e-c9fe-43e0-b722-53a60480761d/1/76cMuEnjg3RRvXmvfcfgNZY-YEM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.204.193.0/24 86.104.231.0/24 86.105.204.0/23 86.105.226.0/24 86.106.27.0/24 89.44.238.0/23 Signature Algorithm: sha256WithRSAEncryption 96:71:f7:c6:dd:d9:46:63:1c:8e:32:ef:da:cb:76:82:f1:2c: e5:e4:2a:96:28:1c:9a:fc:9d:eb:48:73:c6:50:27:bf:de:39: 97:0a:9e:dc:cc:9b:11:ea:bc:20:45:8d:63:cb:29:28:8e:8d: ad:9c:05:b6:20:93:6b:68:ce:ec:8f:12:d6:8c:d6:04:e2:96: 1d:ae:40:39:34:fe:f0:6d:63:a4:c5:23:81:c6:65:f1:7f:0c: 09:d4:51:69:5f:cb:75:fa:2d:9f:23:89:93:ee:71:2f:0c:6f: 91:39:a3:94:f2:f6:1e:76:f5:cb:63:e6:50:14:1d:30:43:2e: 01:b2:a2:b6:17:6d:3e:a2:44:fc:15:27:29:ac:a5:0e:28:e4: c8:9d:1f:9d:d7:45:54:0a:79:17:44:27:2f:a5:9b:18:fc:1a: 2e:ad:eb:f5:ec:b5:cd:d6:83:cb:f7:5d:35:80:63:04:bf:9e: 60:4e:8e:fc:5d:08:61:c5:95:14:93:9e:42:bb:9b:a7:04:c4: bc:70:7e:6a:bb:3c:af:23:9d:32:e6:0b:71:2f:48:31:b6:29: 76:b5:c5:ff:4c:36:98:8b:44:4e:83:e0:a3:a8:f5:2f:23:81: 76:35:c7:32:68:95:05:73:2f:db:c3:e7:75:2e:61:5d:07:fd: 0b:13:bc:62 -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt7NeSd4YhaJRIXm9Z78/54MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmYTcwY2I4NDllMzgzNzQ1MWJkNzlhZjdkYzdlMDM1OTYz ZTYwNDMwHhcNMjYwMTAxMjAxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzRhZmU2NzViNDA0ZGY5NDQ4MzdlMzExZmMyZTk3OTMyNzEwOWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKyh34m82fp9OLAe3Q9Zd6vzLdg4 pGgCBMGXa2/CV7zYuxmi4dohpzJiZUXDueQWT89tAepM8d1N+GEPPAuXHYPFKQ6f 2LcWWZSPB9kHa8BB3yRWNwKx3vm1pxqWkX2gmnyCAmHuXq283+ofCdXg8Tge+X+I cIQsGKkcZoRNR8/F6sNMAEdlJkxYBmLZHFBK4Cee8FrKz2U9QUUHHWSPsETYEzik TQ7Rs+MMBS4AUYv6Pp3clZ6GJ/aZA3LlJeE+voLqRdJaYMazB728G0uNHYoqKe7s ayyqWstXanww+M7D+Deax8dyt38nBVV/0qWU3JJ9gmodn8fca6rRWK2JlwIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFHdK/mdbQE35RIN+MR/C6XkycQnoMB8GA1UdIwQY MBaAFO+nDLhJ44N0Ub15r33H4DWWPmBDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzZjTXVFbmpnM1JSdlhtdmZjZmdOWlktWUVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS82OTJiMWUtYzlmZS00M2UwLWI3MjIt NTNhNjA0ODA3NjFkLzEvZDByLVoxdEFUZmxFZzM0eEg4THBlVEp4Q2VnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS82OTJiMWUtYzlmZS00M2UwLWI3MjItNTNhNjA0ODA3NjFk LzEvNzZjTXVFbmpnM1JSdlhtdmZjZmdOWlktWUVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQAVczBAwQA VmjnAwQBVmnMAwQAVmniAwQAVmobAwQBWSzuMA0GCSqGSIb3DQEBCwUAA4IBAQCW cffG3dlGYxyOMu/ay3aC8Szl5CqWKBya/J3rSHPGUCe/3jmXCp7czJsR6rwgRY1j yykojo2tnAW2IJNraM7sjxLWjNYE4pYdrkA5NP7wbWOkxSOBxmXxfwwJ1FFpX8t1 +i2fI4mT7nEvDG+ROaOU8vYedvXLY+ZQFB0wQy4BsqK2F20+okT8FScprKUOKOTI nR+d10VUCnkXRCcvpZsY/Bourev17LXN1oPL9101gGMEv55gTo78XQhhxZUUk55C u5unBMS8cH5quzyvI50y5gtxL0gxtil2tcX/TDaYi0ROg+CjqPUvI4F2NccyaJUF cy/bw+d1LmFdB/0LE7xi -----END CERTIFICATE-----Generated at Sun Jan 25 17:45:50 2026 by rpki-client