This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/DKBfBL9XpscAyTb6lcg_xLvLalk.roa File: DKBfBL9XpscAyTb6lcg_xLvLalk.roa (raw, json) Hash identifier: 5NSHLTPIALI5PbSBvcpHj5DJzxIv6VgrTSWBYbfeE9M= Subject key identifier: 0C:A0:5F:04:BF:57:A6:C7:00:C9:36:FA:95:C8:3F:C4:BB:CB:6A:59 Certificate issuer: /CN=b209721f4548c26cf362e944a81b1acee7b24b53 Certificate serial: 019B7B3641423448FECE4456D4B3AD121F36 Authority key identifier: B2:09:72:1F:45:48:C2:6C:F3:62:E9:44:A8:1B:1A:CE:E7:B2:4B:53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sglyH0VIwmzzYulEqBsazueyS1M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/DKBfBL9XpscAyTb6lcg_xLvLalk.roa Signing time: Thu 01 Jan 2026 20:18:31 +0000 ROA not before: Thu 01 Jan 2026 20:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5585 IP address blocks: 192.114.62.0/23 maxlen: 24 2001:7f8:3b::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/sglyH0VIwmzzYulEqBsazueyS1M.crl rsync://rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/sglyH0VIwmzzYulEqBsazueyS1M.mft rsync://rpki.ripe.net/repository/DEFAULT/sglyH0VIwmzzYulEqBsazueyS1M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:41:42:34:48:fe:ce:44:56:d4:b3:ad:12:1f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b209721f4548c26cf362e944a81b1acee7b24b53 Validity Not Before: Jan 1 20:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0ca05f04bf57a6c700c936fa95c83fc4bbcb6a59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e7:74:69:7b:3f:2f:11:c5:33:3c:21:1a:20: 7a:ef:e0:03:15:a3:4f:cf:6d:00:33:e2:fc:c1:16: 98:69:01:7c:11:82:14:c5:45:2b:70:99:44:2f:2e: 27:c3:f2:44:ef:08:a5:cc:2f:9f:fe:f2:65:bd:65: b0:b2:0a:9e:82:f9:ea:b5:91:26:a3:72:c7:2a:0f: b7:66:2a:17:5b:6a:8f:2c:e4:97:94:89:0c:48:11: 5d:e9:22:c4:5b:4e:dd:56:91:b1:68:e1:0f:a2:27: 6e:e6:d7:89:0f:ef:3c:fe:58:10:cb:3a:4e:73:79: 17:82:9c:c3:31:6f:44:77:f9:fb:02:67:91:10:58: 82:1d:77:f1:f2:9a:62:86:0b:2a:55:ce:ed:6f:8b: ca:36:a3:be:d5:1f:1d:00:a3:c4:75:e5:bd:d5:66: 25:d5:36:58:1e:64:2c:bb:68:14:c5:a1:0a:95:37: 3d:df:67:8a:01:8b:d9:7d:ec:0c:f2:14:a0:79:35: b7:df:13:ef:1c:8e:c9:3c:a9:17:66:5e:2c:af:c1: 7d:44:ed:ed:a7:f0:2f:c5:fe:bc:34:e9:74:ab:c0: cd:65:a3:1a:99:04:d5:66:bc:c3:e7:32:61:ae:c5: fc:f4:93:1a:5e:45:97:58:9c:f7:af:56:0c:fd:bf: 19:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A0:5F:04:BF:57:A6:C7:00:C9:36:FA:95:C8:3F:C4:BB:CB:6A:59 X509v3 Authority Key Identifier: keyid:B2:09:72:1F:45:48:C2:6C:F3:62:E9:44:A8:1B:1A:CE:E7:B2:4B:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sglyH0VIwmzzYulEqBsazueyS1M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/DKBfBL9XpscAyTb6lcg_xLvLalk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/a67432-c067-4cdb-b5ad-dba5c1834601/1/sglyH0VIwmzzYulEqBsazueyS1M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.114.62.0/23 IPv6: 2001:7f8:3b::/48 Signature Algorithm: sha256WithRSAEncryption a1:36:11:22:b5:f3:95:73:8d:77:8d:9c:a8:33:c2:ae:c6:a0: d3:2f:ba:2c:e2:8d:23:9c:63:54:ed:fa:4a:ad:dd:dd:28:ff: af:8e:bc:b0:75:7f:cc:e6:c2:bd:31:32:af:a0:21:7d:10:8d: 4f:f6:49:fd:f9:d7:28:de:74:e3:e6:d5:72:7e:1f:09:99:c4: 13:8b:6a:0b:e6:bc:eb:92:46:33:5f:c1:87:bd:e8:8f:47:86: 28:a1:cd:f4:dc:59:3a:6d:18:f5:0b:27:65:bf:b0:60:55:2f: 36:48:62:cd:87:6b:36:56:81:37:77:c6:5d:d1:b4:07:98:44: e3:63:f7:e9:fd:55:36:9a:a1:c1:a7:0f:ce:ff:33:57:c2:65: 4d:e5:b6:3d:9a:bb:74:28:a2:ed:ae:9c:e8:52:9f:a5:67:e1: 7b:9c:37:3a:d5:2c:24:97:0a:b8:3a:9e:dd:07:ff:ae:55:48: 18:e3:ac:21:13:7b:06:e4:96:aa:77:d7:af:48:c0:e8:26:a3: a0:83:ee:04:64:62:fa:9f:76:28:e8:57:bc:31:1e:c8:73:a9: 50:fd:44:36:56:5b:b5:47:b1:d3:9c:e5:2a:29:ac:d8:41:64: c1:b8:87:28:da:94:8b:1f:6e:a8:26:c3:00:2c:38:9d:81:ce: dd:65:51:e8 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt7NkFCNEj+zkRW1LOtEh82MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMDk3MjFmNDU0OGMyNmNmMzYyZTk0NGE4MWIxYWNlZTdi MjRiNTMwHhcNMjYwMTAxMjAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwY2EwNWYwNGJmNTdhNmM3MDBjOTM2ZmE5NWM4M2ZjNGJiY2I2YTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOd0aXs/LxHFMzwhGiB67+ADFaNP z20AM+L8wRaYaQF8EYIUxUUrcJlELy4nw/JE7wilzC+f/vJlvWWwsgqegvnqtZEm o3LHKg+3ZioXW2qPLOSXlIkMSBFd6SLEW07dVpGxaOEPoidu5teJD+88/lgQyzpO c3kXgpzDMW9Ed/n7AmeREFiCHXfx8ppihgsqVc7tb4vKNqO+1R8dAKPEdeW91WYl 1TZYHmQsu2gUxaEKlTc932eKAYvZfewM8hSgeTW33xPvHI7JPKkXZl4sr8F9RO3t p/Avxf68NOl0q8DNZaMamQTVZrzD5zJhrsX89JMaXkWXWJz3r1YM/b8Z8QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFAygXwS/V6bHAMk2+pXIP8S7y2pZMB8GA1UdIwQY MBaAFLIJch9FSMJs82LpRKgbGs7nsktTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2dseUgwVkl3bXp6WXVsRXFCc2F6dWV5UzFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9hNjc0MzItYzA2Ny00Y2RiLWI1YWQt ZGJhNWMxODM0NjAxLzEvREtCZkJMOVhwc2NBeVRiNmxjZ194THZMYWxrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9hNjc0MzItYzA2Ny00Y2RiLWI1YWQtZGJhNWMxODM0NjAx LzEvc2dseUgwVkl3bXp6WXVsRXFCc2F6dWV5UzFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBwHI+MA8E AgACMAkDBwAgAQf4ADswDQYJKoZIhvcNAQELBQADggEBAKE2ESK185VzjXeNnKgz wq7GoNMvuizijSOcY1Tt+kqt3d0o/6+OvLB1f8zmwr0xMq+gIX0QjU/2Sf351yje dOPm1XJ+HwmZxBOLagvmvOuSRjNfwYe96I9HhiihzfTcWTptGPULJ2W/sGBVLzZI Ys2HazZWgTd3xl3RtAeYRONj9+n9VTaaocGnD87/M1fCZU3ltj2au3Qoou2unOhS n6Vn4XucNzrVLCSXCrg6nt0H/65VSBjjrCETewbklqp3169IwOgmo6CD7gRkYvqf dijoV7wxHshzqVD9RDZWW7VHsdOc5SoprNhBZMG4hyjalIsfbqgmwwAsOJ2Bzt1l Ueg= -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:58 2026 by rpki-client