This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dtf5kbyFAQaOBNSjd3X-57xnpE0.roa File: dtf5kbyFAQaOBNSjd3X-57xnpE0.roa (raw, json) Hash identifier: b7EoBBbwzr3TyYwXpbGcDBzy+Jfs1+j+bQoFG34eXn0= Subject key identifier: 76:D7:F9:91:BC:85:01:06:8E:04:D4:A3:77:75:FE:E7:BC:67:A4:4D Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84D577B965CF47DA6A37D01CE9F183 Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dtf5kbyFAQaOBNSjd3X-57xnpE0.roa Signing time: Fri 02 Jan 2026 16:22:50 +0000 ROA not before: Fri 02 Jan 2026 16:22:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60165 IP address blocks: 31.148.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:d5:77:b9:65:cf:47:da:6a:37:d0:1c:e9:f1:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=76d7f991bc8501068e04d4a37775fee7bc67a44d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:dd:ae:d3:2a:17:92:7b:4f:87:29:66:5a:a7: 16:6a:19:e2:6e:70:72:b5:d1:fe:66:98:69:ef:58: df:cf:d5:40:41:3e:fc:bc:a1:2c:34:e7:02:a4:91: 55:89:0d:fe:b8:77:dd:2e:15:34:b1:7e:5e:f4:ee: d8:44:9e:af:e7:f7:98:37:46:fb:ba:78:42:e5:9f: 4e:1b:b5:f2:d6:4d:8f:ee:1e:5c:e4:90:76:93:53: a0:36:91:72:f4:25:5d:c6:ee:5d:a8:24:68:e4:f9: 9d:dc:06:24:aa:aa:db:24:a3:ae:70:4d:6b:11:71: c3:28:0a:a8:67:fe:8c:98:63:52:31:97:21:f7:58: 55:72:2f:00:d0:74:99:ff:ce:66:52:24:4d:1a:9f: 49:63:82:77:43:c3:22:55:2b:af:cf:ab:36:ee:e4: 26:ee:ae:cb:50:25:69:40:7b:39:b8:ed:d1:81:df: ff:7a:77:65:64:ec:05:b4:4a:38:af:7f:0e:a5:16: f4:c1:2b:69:19:86:37:b8:df:9c:54:13:47:f9:68: 14:40:b5:f3:bd:d3:6f:89:f6:c1:85:bb:ab:c3:95: 5c:4b:ca:7c:c3:7a:a5:71:83:8e:71:99:60:f8:c1: 91:5d:ac:c6:7e:34:3e:6e:7f:37:29:a2:1d:15:3e: 1b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D7:F9:91:BC:85:01:06:8E:04:D4:A3:77:75:FE:E7:BC:67:A4:4D X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dtf5kbyFAQaOBNSjd3X-57xnpE0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.148.120.0/21 Signature Algorithm: sha256WithRSAEncryption 78:c0:05:d7:95:6d:37:74:17:f3:a9:65:5e:39:bc:14:79:a6: c9:21:1d:e4:ca:18:62:16:42:61:9e:55:fa:9c:a9:be:4e:89: ac:31:41:e8:11:92:0c:7d:8e:08:45:b5:98:26:97:46:e4:99: 07:45:b3:6c:ad:f7:a4:be:40:87:93:42:a0:59:27:f1:28:92: 06:1d:d6:c5:73:bb:43:1e:62:f9:14:c4:b4:16:78:ab:b5:f8: 53:c5:a7:f3:67:06:e7:16:94:ce:25:08:5f:b6:6c:fc:bd:a7: 97:27:42:97:18:f5:13:23:15:1b:a3:0c:c8:ce:74:8e:48:2f: 65:3c:a2:08:a2:2e:b5:25:70:de:13:21:9f:9b:d4:4e:24:2b: 07:ba:d8:d7:5a:ad:0e:21:f8:1b:28:ec:60:c7:4d:28:01:08: 57:dd:19:f6:e8:99:0b:77:54:15:80:09:c7:54:0f:ff:64:d0: 30:7d:73:6c:dd:1e:a4:f4:6d:83:f3:2e:87:b7:91:e9:b5:6c: a1:0c:0d:38:a3:da:1a:e0:a9:71:e8:dd:f1:93:26:63:08:a9: 35:91:a0:db:d9:31:ce:93:34:10:9c:c7:22:57:f0:2f:26:fd: af:5c:7a:70:a6:56:b4:04:de:db:10:5d:62:bd:0f:8d:95:62: 2a:82:5b:af -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hNV3uWXPR9pqN9Ac6fGDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NmQ3Zjk5MWJjODUwMTA2OGUwNGQ0YTM3Nzc1ZmVlN2JjNjdhNDRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA692u0yoXkntPhylmWqcWahnibnBy tdH+Zphp71jfz9VAQT78vKEsNOcCpJFViQ3+uHfdLhU0sX5e9O7YRJ6v5/eYN0b7 unhC5Z9OG7Xy1k2P7h5c5JB2k1OgNpFy9CVdxu5dqCRo5Pmd3AYkqqrbJKOucE1r EXHDKAqoZ/6MmGNSMZch91hVci8A0HSZ/85mUiRNGp9JY4J3Q8MiVSuvz6s27uQm 7q7LUCVpQHs5uO3Rgd//endlZOwFtEo4r38OpRb0wStpGYY3uN+cVBNH+WgUQLXz vdNvifbBhburw5VcS8p8w3qlcYOOcZlg+MGRXazGfjQ+bn83KaIdFT4bzQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHbX+ZG8hQEGjgTUo3d1/ue8Z6RNMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvZHRmNWtieUZBUWFPQk5TamQzWC01N3hucEUwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDH5R4MA0G CSqGSIb3DQEBCwUAA4IBAQB4wAXXlW03dBfzqWVeObwUeabJIR3kyhhiFkJhnlX6 nKm+TomsMUHoEZIMfY4IRbWYJpdG5JkHRbNsrfekvkCHk0KgWSfxKJIGHdbFc7tD HmL5FMS0FnirtfhTxafzZwbnFpTOJQhftmz8vaeXJ0KXGPUTIxUbowzIznSOSC9l PKIIoi61JXDeEyGfm9ROJCsHutjXWq0OIfgbKOxgx00oAQhX3Rn26JkLd1QVgAnH VA//ZNAwfXNs3R6k9G2D8y6Ht5HptWyhDA04o9oa4Klx6N3xkyZjCKk1kaDb2THO kzQQnMciV/AvJv2vXHpwpla0BN7bEF1ivQ+NlWIqgluv -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:06 2026 by rpki-client