This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/dh_dM1Q__KObsaKsgasBYaz1gyo.roa File: dh_dM1Q__KObsaKsgasBYaz1gyo.roa (raw, json) Hash identifier: GY7xesyfU+gqGkJYAJ4MHZlVcXESZ6jYpENdGF3wOCI= Subject key identifier: 76:1F:DD:33:54:3F:FC:A3:9B:B1:A2:AC:81:AB:01:61:AC:F5:83:2A Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Certificate serial: 019B797E0759E87F40F610927B14BD20C814 Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/dh_dM1Q__KObsaKsgasBYaz1gyo.roa Signing time: Thu 01 Jan 2026 12:17:41 +0000 ROA not before: Thu 01 Jan 2026 12:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207821 IP address blocks: 46.252.2.0/24 maxlen: 24 46.252.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.mft rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:07:59:e8:7f:40:f6:10:92:7b:14:bd:20:c8:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd Validity Not Before: Jan 1 12:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=761fdd33543ffca39bb1a2ac81ab0161acf5832a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fb:08:35:d8:6e:14:80:c3:1a:fe:78:2e:c4: 8e:d0:3c:4e:32:6c:fd:c6:d5:8b:16:61:4a:e2:8f: 88:34:75:ee:40:2e:b0:71:2f:96:f6:9d:12:32:7c: 0f:f8:05:8e:11:f2:30:01:71:90:67:d7:55:10:62: 47:1c:1a:54:8a:7f:1f:05:96:e1:1a:26:23:6e:b6: 5e:5a:97:de:7a:87:57:26:8a:90:53:76:f2:22:ed: a3:53:ba:ae:96:ae:37:c4:11:28:94:38:14:24:a8: f2:ca:0e:48:40:eb:4c:f0:ce:e5:50:08:47:bf:7f: bf:ec:2d:7e:7e:40:38:03:c3:e2:e8:ec:0f:6a:90: 22:98:55:dd:44:1e:90:57:91:30:78:1d:8a:09:3c: d6:c1:52:6f:13:96:43:e0:8b:83:74:cd:04:14:30: 89:7f:c6:0a:96:59:e9:30:52:30:58:27:1c:e5:10: 2d:bc:22:87:34:39:49:d7:ea:c3:d4:60:be:cd:a6: 99:ae:dd:23:54:cc:19:bc:6e:5f:9d:1b:df:26:a7: d1:87:f5:66:3e:3d:67:92:3c:2b:c0:d5:27:20:83: f3:81:ed:aa:25:ff:11:dc:e1:7d:38:f1:1a:99:da: dc:65:3f:06:b1:84:3b:14:79:52:fb:95:e5:2a:31: 57:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:1F:DD:33:54:3F:FC:A3:9B:B1:A2:AC:81:AB:01:61:AC:F5:83:2A X509v3 Authority Key Identifier: keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/dh_dM1Q__KObsaKsgasBYaz1gyo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.252.2.0/24 46.252.11.0/24 Signature Algorithm: sha256WithRSAEncryption 97:44:1e:e8:2f:44:90:55:8f:03:61:1a:d9:8d:4f:94:8e:62: 84:9a:de:26:ee:94:67:67:74:c6:38:f2:81:e2:f5:cf:b9:47: e0:ff:31:5c:f8:14:1e:24:60:fa:9e:84:57:32:7c:95:b7:2e: a3:2e:8a:e9:4b:c7:aa:5d:18:7d:b2:5b:ce:45:cd:7b:70:60: cd:c2:dc:5b:f1:fe:77:24:aa:33:83:b3:07:ef:bf:db:9d:cc: 5f:d5:ec:a3:37:7b:90:d3:a6:2f:71:99:26:e5:11:c7:96:9c: 32:bc:d6:5d:81:ed:1a:a2:74:d7:29:8d:48:3c:72:fe:82:4d: 0e:15:32:b9:30:e3:66:2f:25:d2:0e:8b:08:f0:71:6c:fd:94: 93:1e:e2:4f:82:93:32:dd:59:19:d2:94:d6:15:00:63:6d:fb: 4c:3c:92:a1:53:5d:08:69:4e:0a:08:b2:83:32:83:9b:2a:d0: c4:1b:27:dc:00:a6:81:9c:4d:1f:fe:d8:e2:a9:9b:51:e5:99: 7d:26:37:74:be:40:0b:03:8b:98:85:69:28:fa:9c:8d:96:dc: b6:46:f7:75:2c:c7:bb:14:e2:37:b4:e1:33:3a:61:f5:5d:f0: 4f:fc:4e:7d:c0:cf:6e:9e:3d:41:74:ea:01:d7:06:4c:a3:2b: 86:8f:e1:0c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5fgdZ6H9A9hCSexS9IMgUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4Mjg0ZjE4Y2Q0NDYwNGJkZDZkMDhmNGQ4NzhkYzYxNDU2 YzQwZmQwHhcNMjYwMTAxMTIxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjFmZGQzMzU0M2ZmY2EzOWJiMWEyYWM4MWFiMDE2MWFjZjU4MzJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1PsINdhuFIDDGv54LsSO0DxOMmz9 xtWLFmFK4o+INHXuQC6wcS+W9p0SMnwP+AWOEfIwAXGQZ9dVEGJHHBpUin8fBZbh GiYjbrZeWpfeeodXJoqQU3byIu2jU7qulq43xBEolDgUJKjyyg5IQOtM8M7lUAhH v3+/7C1+fkA4A8Pi6OwPapAimFXdRB6QV5EweB2KCTzWwVJvE5ZD4IuDdM0EFDCJ f8YKllnpMFIwWCcc5RAtvCKHNDlJ1+rD1GC+zaaZrt0jVMwZvG5fnRvfJqfRh/Vm Pj1nkjwrwNUnIIPzge2qJf8R3OF9OPEamdrcZT8GsYQ7FHlS+5XlKjFXXQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHYf3TNUP/yjm7GirIGrAWGs9YMqMB8GA1UdIwQY MBaAFNgoTxjNRGBL3W0I9Nh43GFFbED9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0Zjgt Yzc4NjkxMjg1ODJjLzEvZGhfZE0xUV9fS09ic2FLc2dhc0JZYXoxZ3lvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0ZjgtYzc4NjkxMjg1ODJj LzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALvwCAwQA LvwLMA0GCSqGSIb3DQEBCwUAA4IBAQCXRB7oL0SQVY8DYRrZjU+UjmKEmt4m7pRn Z3TGOPKB4vXPuUfg/zFc+BQeJGD6noRXMnyVty6jLorpS8eqXRh9slvORc17cGDN wtxb8f53JKozg7MH77/bncxf1eyjN3uQ06YvcZkm5RHHlpwyvNZdge0aonTXKY1I PHL+gk0OFTK5MONmLyXSDosI8HFs/ZSTHuJPgpMy3VkZ0pTWFQBjbftMPJKhU10I aU4KCLKDMoObKtDEGyfcAKaBnE0f/tjiqZtR5Zl9Jjd0vkALA4uYhWko+pyNlty2 Rvd1LMe7FOI3tOEzOmH1XfBP/E59wM9unj1BdOoB1wZMoyuGj+EM -----END CERTIFICATE-----Generated at Sun Jan 25 16:39:47 2026 by rpki-client