This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/d0gc-bfZVZ_wvr1zHWcpz3THoUw.roa File: d0gc-bfZVZ_wvr1zHWcpz3THoUw.roa (raw, json) Hash identifier: omEL790d2ktapnfeuHtd9b9rxp1D6UXPaEs4yrE6gFk= Subject key identifier: 77:48:1C:F9:B7:D9:55:9F:F0:BE:BD:73:1D:67:29:CF:74:C7:A1:4C Certificate issuer: /CN=4d69fe11ba001b12a6fbd189629a3fb181bd8c9b Certificate serial: 019B7DCA9AF4D0EFEFFC90246A7991398311 Authority key identifier: 4D:69:FE:11:BA:00:1B:12:A6:FB:D1:89:62:9A:3F:B1:81:BD:8C:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TWn-EboAGxKm-9GJYpo_sYG9jJs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/d0gc-bfZVZ_wvr1zHWcpz3THoUw.roa Signing time: Fri 02 Jan 2026 08:19:48 +0000 ROA not before: Fri 02 Jan 2026 08:19:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200539 IP address blocks: 185.103.152.0/22 maxlen: 22 185.239.12.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/TWn-EboAGxKm-9GJYpo_sYG9jJs.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/TWn-EboAGxKm-9GJYpo_sYG9jJs.mft rsync://rpki.ripe.net/repository/DEFAULT/TWn-EboAGxKm-9GJYpo_sYG9jJs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:9a:f4:d0:ef:ef:fc:90:24:6a:79:91:39:83:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d69fe11ba001b12a6fbd189629a3fb181bd8c9b Validity Not Before: Jan 2 08:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=77481cf9b7d9559ff0bebd731d6729cf74c7a14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:1b:0f:51:6e:27:d3:b8:e7:c5:37:2c:5e:d7: 6a:41:0a:50:35:a0:14:e7:f6:a1:ea:ae:5e:bc:9f: 66:15:94:84:28:df:c7:78:73:68:4e:85:66:61:72: 39:c3:be:d6:60:24:69:8c:ac:f5:74:58:b8:ec:64: 84:01:02:b6:9b:2d:72:72:52:50:d5:b6:bc:cf:5e: 1f:0e:fa:08:7a:f2:f6:79:d3:05:fd:92:c1:44:81: 80:2d:69:1a:cc:7c:54:ea:6e:74:c5:ec:1f:3a:27: 0b:c3:30:7a:52:08:04:6e:7e:e7:81:bd:ca:19:32: c7:da:5f:28:60:2d:9c:c7:ea:9c:20:24:f7:97:8f: ad:9c:3d:46:1a:70:30:31:28:fd:39:d8:34:cc:b1: 4c:84:06:06:4b:72:37:df:a9:ad:cd:0f:95:a6:63: f4:43:69:81:6d:ca:d4:46:13:9f:0f:d1:38:cb:20: 5d:1a:bd:58:5d:83:20:b3:4b:6c:2c:b8:6e:19:82: b1:ea:42:34:4a:84:3a:d7:75:c7:bf:f2:93:42:4f: 38:1b:30:a8:19:ec:e1:2c:e6:4d:7e:40:8f:2d:0d: 0d:4c:1c:3c:c4:37:d2:de:53:d3:ab:95:9c:f8:bd: 65:02:72:06:df:14:64:f6:66:5a:af:00:62:7d:8e: ab:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:48:1C:F9:B7:D9:55:9F:F0:BE:BD:73:1D:67:29:CF:74:C7:A1:4C X509v3 Authority Key Identifier: keyid:4D:69:FE:11:BA:00:1B:12:A6:FB:D1:89:62:9A:3F:B1:81:BD:8C:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TWn-EboAGxKm-9GJYpo_sYG9jJs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/d0gc-bfZVZ_wvr1zHWcpz3THoUw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/326ae7-ed9f-4105-8b5d-3b68a84cd2b8/1/TWn-EboAGxKm-9GJYpo_sYG9jJs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.103.152.0/22 185.239.12.0/22 Signature Algorithm: sha256WithRSAEncryption bf:64:39:86:27:db:83:7f:64:02:b5:d6:4d:88:5e:d0:1b:e4: 36:5a:e6:2e:60:8f:9d:78:53:2c:63:0d:39:0a:33:d2:46:2c: 3a:73:48:1c:2b:21:c8:eb:32:72:d3:89:9f:4d:6f:2d:71:1b: 71:7f:3c:92:a0:51:35:6d:55:0a:5b:18:81:4a:6a:f9:a8:bd: 00:6e:90:46:8c:08:96:54:4a:66:b0:7a:bc:5a:f5:2a:cd:c4: df:d6:d5:6f:03:37:6e:64:72:27:99:b8:0a:ef:20:0f:ab:25: 6f:3a:47:a1:20:15:c7:99:19:a7:3d:1b:0c:7a:81:62:3a:72: 67:8b:21:3a:4b:3a:cb:43:15:4c:04:95:11:35:ad:82:15:ce: 73:16:62:d0:f1:bf:80:a5:c8:93:2f:00:0c:b3:df:d5:60:ff: c9:1d:82:ca:16:73:3a:9e:7b:d6:a7:44:c5:f0:0c:b8:54:49: 50:6e:9d:43:29:c6:1d:b9:6d:49:3c:ca:03:78:73:aa:1b:8f: 6c:83:8b:cd:ee:66:b2:07:d7:c1:b9:fd:b3:cf:5e:05:64:37: 72:83:80:3a:5f:fd:2e:eb:56:14:7f:e9:77:5e:76:77:a6:22: 89:ac:44:fa:cc:92:8a:f0:8d:7e:e3:b1:81:0f:60:17:ed:f1: 05:50:04:98 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9ypr00O/v/JAkanmROYMRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkNjlmZTExYmEwMDFiMTJhNmZiZDE4OTYyOWEzZmIxODFi ZDhjOWIwHhcNMjYwMTAyMDgxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzQ4MWNmOWI3ZDk1NTlmZjBiZWJkNzMxZDY3MjljZjc0YzdhMTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiBsPUW4n07jnxTcsXtdqQQpQNaAU 5/ah6q5evJ9mFZSEKN/HeHNoToVmYXI5w77WYCRpjKz1dFi47GSEAQK2my1yclJQ 1ba8z14fDvoIevL2edMF/ZLBRIGALWkazHxU6m50xewfOicLwzB6UggEbn7ngb3K GTLH2l8oYC2cx+qcICT3l4+tnD1GGnAwMSj9Odg0zLFMhAYGS3I336mtzQ+VpmP0 Q2mBbcrURhOfD9E4yyBdGr1YXYMgs0tsLLhuGYKx6kI0SoQ613XHv/KTQk84GzCo GezhLOZNfkCPLQ0NTBw8xDfS3lPTq5Wc+L1lAnIG3xRk9mZarwBifY6rzwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHdIHPm32VWf8L69cx1nKc90x6FMMB8GA1UdIwQY MBaAFE1p/hG6ABsSpvvRiWKaP7GBvYybMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFduLUVib0FHeEttLTlHSllwb19zWUc5akpzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8zMjZhZTctZWQ5Zi00MTA1LThiNWQt M2I2OGE4NGNkMmI4LzEvZDBnYy1iZlpWWl93dnIxekhXY3B6M1RIb1V3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi8zMjZhZTctZWQ5Zi00MTA1LThiNWQtM2I2OGE4NGNkMmI4 LzEvVFduLUVib0FHeEttLTlHSllwb19zWUc5akpzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuWeYAwQC ue8MMA0GCSqGSIb3DQEBCwUAA4IBAQC/ZDmGJ9uDf2QCtdZNiF7QG+Q2WuYuYI+d eFMsYw05CjPSRiw6c0gcKyHI6zJy04mfTW8tcRtxfzySoFE1bVUKWxiBSmr5qL0A bpBGjAiWVEpmsHq8WvUqzcTf1tVvAzduZHInmbgK7yAPqyVvOkehIBXHmRmnPRsM eoFiOnJniyE6SzrLQxVMBJURNa2CFc5zFmLQ8b+ApciTLwAMs9/VYP/JHYLKFnM6 nnvWp0TF8Ay4VElQbp1DKcYduW1JPMoDeHOqG49sg4vN7mayB9fBuf2zz14FZDdy g4A6X/0u61YUf+l3XnZ3piKJrET6zJKK8I1+47GBD2AX7fEFUASY -----END CERTIFICATE-----Generated at Sun Jan 25 23:49:56 2026 by rpki-client