This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/724c97-f149-446f-bbf1-2544683aa125/1/D2nJf0N8YrBqWlH7uNCRM6_-uvs.roa File: D2nJf0N8YrBqWlH7uNCRM6_-uvs.roa (raw, json) Hash identifier: XzyVLDvtsFWRF8LIf/NtjL2syR+wFA2cNft4AxoOFPg= Subject key identifier: 0F:69:C9:7F:43:7C:62:B0:6A:5A:51:FB:B8:D0:91:33:AF:FE:BA:FB Certificate issuer: /CN=6c3250a5c1bdab74b1bd23c01c54a8d70b6def20 Certificate serial: 019B0D120697A5E8F9F375EE34D35218E830 Authority key identifier: 6C:32:50:A5:C1:BD:AB:74:B1:BD:23:C0:1C:54:A8:D7:0B:6D:EF:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bDJQpcG9q3SxvSPAHFSo1wtt7yA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/724c97-f149-446f-bbf1-2544683aa125/1/D2nJf0N8YrBqWlH7uNCRM6_-uvs.roa Signing time: Thu 11 Dec 2025 11:00:43 +0000 ROA not before: Thu 11 Dec 2025 11:00:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 26383 IP address blocks: 185.211.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/724c97-f149-446f-bbf1-2544683aa125/1/bDJQpcG9q3SxvSPAHFSo1wtt7yA.crl rsync://rpki.ripe.net/repository/DEFAULT/61/724c97-f149-446f-bbf1-2544683aa125/1/bDJQpcG9q3SxvSPAHFSo1wtt7yA.mft rsync://rpki.ripe.net/repository/DEFAULT/bDJQpcG9q3SxvSPAHFSo1wtt7yA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 22:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0d:12:06:97:a5:e8:f9:f3:75:ee:34:d3:52:18:e8:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c3250a5c1bdab74b1bd23c01c54a8d70b6def20 Validity Not Before: Dec 11 11:00:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=0f69c97f437c62b06a5a51fbb8d09133affebafb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:59:fe:92:f0:8c:58:e5:fb:dd:7f:4a:02:be: a1:54:e3:a2:ae:58:0a:8a:7b:05:6b:5a:cc:08:04: 10:8e:2a:25:54:ce:8e:2d:cc:03:46:fa:83:a8:72: 1d:44:8d:e8:2f:96:88:d5:e3:14:33:f2:ea:cb:38: ba:0d:4c:a6:f5:c9:a7:0f:18:17:9b:37:01:c3:d2: 3a:f1:65:2a:e1:b7:53:2c:1d:ff:eb:2f:58:61:ab: 66:f0:0c:9b:7f:44:c1:b3:ca:1b:29:7d:7d:da:1d: e5:5e:83:f3:ab:b4:9b:1e:8a:d2:e7:45:39:8f:0a: 81:88:69:8e:be:69:c0:eb:99:6c:40:0a:46:8f:80: b0:c3:02:d0:03:26:0c:4e:f7:b8:16:f4:92:b8:ea: 8c:18:2d:ba:b7:41:32:72:a2:26:b0:e0:54:bf:6b: 0b:36:18:08:3b:0d:6e:1d:b8:93:7b:68:c5:cd:aa: 00:c8:2c:e2:81:af:2c:c0:ef:0d:ce:13:53:d9:55: c1:e3:79:14:0f:de:2c:24:ea:b9:e3:d5:38:c7:09: a9:76:0d:f0:f3:53:82:68:4c:bb:3a:df:ef:ec:20: 05:30:53:22:b9:1d:d5:60:ae:a6:6a:d5:ef:29:c1: 5b:5f:6b:8e:b5:30:0a:f5:ba:67:cb:6e:c1:37:8d: c2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:69:C9:7F:43:7C:62:B0:6A:5A:51:FB:B8:D0:91:33:AF:FE:BA:FB X509v3 Authority Key Identifier: keyid:6C:32:50:A5:C1:BD:AB:74:B1:BD:23:C0:1C:54:A8:D7:0B:6D:EF:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bDJQpcG9q3SxvSPAHFSo1wtt7yA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/724c97-f149-446f-bbf1-2544683aa125/1/D2nJf0N8YrBqWlH7uNCRM6_-uvs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/724c97-f149-446f-bbf1-2544683aa125/1/bDJQpcG9q3SxvSPAHFSo1wtt7yA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.211.103.0/24 Signature Algorithm: sha256WithRSAEncryption a3:de:f5:b8:9f:21:73:a0:ed:cf:36:65:a3:32:cb:7c:b6:0e: f4:e7:6d:85:0f:af:4e:72:c8:98:3a:92:87:e1:df:3a:1e:fe: 49:aa:0e:56:13:9f:99:a6:72:98:6e:e8:e0:40:45:5c:ff:11: d9:b7:5c:36:d9:df:55:77:05:25:3b:2b:6e:10:9c:9b:17:48: 51:e3:5d:6d:46:88:14:fe:bd:e9:bb:e2:45:a3:b0:91:ef:ed: 8b:7d:13:07:d2:36:cb:0f:a4:ca:76:1e:c4:ee:5a:f1:cd:94: cd:43:59:86:86:7a:5a:8a:01:36:89:5b:43:21:92:07:fe:f0: 0c:db:87:12:7e:98:60:1b:94:0e:68:a9:2f:03:8f:a4:e3:67: bd:81:99:fd:ed:8e:c2:d2:11:98:de:be:af:8a:99:8f:da:02: 6f:d5:f7:6c:65:10:5f:a9:4e:f7:09:66:43:ab:3b:e4:1a:75: 28:0b:ba:dd:8c:c4:4a:d2:60:24:11:6b:92:2b:6f:3b:9f:63: 92:dd:c8:66:37:e4:3d:47:5a:31:cb:ea:42:82:28:7d:c6:20: 9e:e4:4f:13:f5:a3:68:da:0f:64:71:eb:bc:20:de:d9:61:e8: 14:5a:a9:6f:0e:26:0a:1a:e3:53:35:c1:2b:3e:ee:50:17:92: 18:e1:84:37 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZsNEgaXpej583XuNNNSGOgwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjMzI1MGE1YzFiZGFiNzRiMWJkMjNjMDFjNTRhOGQ3MGI2 ZGVmMjAwHhcNMjUxMjExMTEwMDQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjY5Yzk3ZjQzN2M2MmIwNmE1YTUxZmJiOGQwOTEzM2FmZmViYWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1n+kvCMWOX73X9KAr6hVOOirlgK insFa1rMCAQQjiolVM6OLcwDRvqDqHIdRI3oL5aI1eMUM/Lqyzi6DUym9cmnDxgX mzcBw9I68WUq4bdTLB3/6y9YYatm8Aybf0TBs8obKX192h3lXoPzq7SbHorS50U5 jwqBiGmOvmnA65lsQApGj4CwwwLQAyYMTve4FvSSuOqMGC26t0EycqImsOBUv2sL NhgIOw1uHbiTe2jFzaoAyCziga8swO8NzhNT2VXB43kUD94sJOq549U4xwmpdg3w 81OCaEy7Ot/v7CAFMFMiuR3VYK6matXvKcFbX2uOtTAK9bpny27BN43C6QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA9pyX9DfGKwalpR+7jQkTOv/rr7MB8GA1UdIwQY MBaAFGwyUKXBvat0sb0jwBxUqNcLbe8gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkRKUXBjRzlxM1N4dlNQQUhGU28xd3R0N3lBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS83MjRjOTctZjE0OS00NDZmLWJiZjEt MjU0NDY4M2FhMTI1LzEvRDJuSmYwTjhZckJxV2xIN3VOQ1JNNl8tdXZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS83MjRjOTctZjE0OS00NDZmLWJiZjEtMjU0NDY4M2FhMTI1 LzEvYkRKUXBjRzlxM1N4dlNQQUhGU28xd3R0N3lBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudNnMA0G CSqGSIb3DQEBCwUAA4IBAQCj3vW4nyFzoO3PNmWjMst8tg70522FD69OcsiYOpKH 4d86Hv5Jqg5WE5+ZpnKYbujgQEVc/xHZt1w22d9VdwUlOytuEJybF0hR411tRogU /r3pu+JFo7CR7+2LfRMH0jbLD6TKdh7E7lrxzZTNQ1mGhnpaigE2iVtDIZIH/vAM 24cSfphgG5QOaKkvA4+k42e9gZn97Y7C0hGY3r6vipmP2gJv1fdsZRBfqU73CWZD qzvkGnUoC7rdjMRK0mAkEWuSK287n2OS3chmN+Q9R1oxy+pCgih9xiCe5E8T9aNo 2g9kceu8IN7ZYegUWqlvDiYKGuNTNcErPu5QF5IY4YQ3 -----END CERTIFICATE-----Generated at Tue Dec 16 05:03:53 2025 by rpki-client