This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/dratYjSl9-WvcM2aksz8_oQEXSs.roa File: dratYjSl9-WvcM2aksz8_oQEXSs.roa (raw, json) Hash identifier: ReiiFF2mETCXJQvhGO99zmN6lnkdTbJGPvvJ1N1py3U= Subject key identifier: 76:B6:AD:62:34:A5:F7:E5:AF:70:CD:9A:92:CC:FC:FE:84:04:5D:2B Certificate issuer: /CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b Certificate serial: 019ADF9DBE824230EF485B10FD9283C3352E Authority key identifier: B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/dratYjSl9-WvcM2aksz8_oQEXSs.roa Signing time: Tue 02 Dec 2025 15:10:48 +0000 ROA not before: Tue 02 Dec 2025 15:10:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 202384 IP address blocks: 195.5.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.mft rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 00:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:df:9d:be:82:42:30:ef:48:5b:10:fd:92:83:c3:35:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b914961f67f22c61e84a66c8ad9c1a8ce51d099b Validity Not Before: Dec 2 15:10:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=76b6ad6234a5f7e5af70cd9a92ccfcfe84045d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:19:60:5f:3b:01:eb:e9:df:76:a6:34:6b:42: e7:06:cc:87:bd:ba:64:f3:cd:c9:70:d0:b6:1c:43: 4d:4f:25:bd:1b:b2:33:0c:c4:75:8a:21:8b:86:db: 46:3b:1e:c2:0f:8b:3e:b5:a8:1d:02:f2:b2:2f:df: 29:23:1f:a7:9d:f1:e2:90:64:f3:0e:bf:ae:16:43: 66:db:e0:b4:28:23:ac:8b:10:8b:cc:64:c7:fe:6c: c3:4a:bb:fa:f0:7e:f3:62:87:65:c1:fa:ae:c1:e8: 81:b3:92:ea:6d:d9:af:7a:c2:83:7a:88:37:a2:d0: fe:77:4b:c5:8c:3d:ae:1a:b5:9d:56:9f:db:5b:58: 2f:f5:88:8a:da:f2:6c:80:61:b5:a6:c7:f5:0b:66: c6:b0:49:c8:7f:8a:b3:9e:2c:2d:6a:66:8f:ae:43: bf:ad:a4:4b:25:de:34:d8:1d:0d:74:63:43:64:b6: 75:4b:7e:a0:53:27:03:ba:65:a1:ff:2e:65:6c:ba: 4a:c7:7e:51:8c:ba:80:9b:78:10:a1:8d:75:16:a0: ef:e0:34:d8:04:f0:27:47:5d:78:96:60:17:8a:45: 9c:e8:74:a4:7d:c4:30:5d:f6:df:55:9b:ae:0c:7b: 7f:07:53:8a:a8:6a:48:fb:d8:27:95:75:8f:ec:7a: 67:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B6:AD:62:34:A5:F7:E5:AF:70:CD:9A:92:CC:FC:FE:84:04:5D:2B X509v3 Authority Key Identifier: keyid:B9:14:96:1F:67:F2:2C:61:E8:4A:66:C8:AD:9C:1A:8C:E5:1D:09:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRSWH2fyLGHoSmbIrZwajOUdCZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/dratYjSl9-WvcM2aksz8_oQEXSs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0917a7-9ebd-45b9-9de2-27473ca612de/1/uRSWH2fyLGHoSmbIrZwajOUdCZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.5.84.0/22 Signature Algorithm: sha256WithRSAEncryption 40:33:34:e1:42:21:ed:f7:ac:28:5c:19:cc:e3:a6:69:47:87: e7:b1:52:5d:cf:d6:1c:12:88:7b:b9:cc:47:25:16:bb:fa:93: 27:9d:0f:8e:f4:de:83:65:47:fa:b2:b9:0e:fd:0d:d5:a3:07: dc:37:84:78:61:af:b5:38:36:66:46:36:9c:1b:0c:00:0b:9a: 39:c9:8e:84:75:59:ee:23:97:00:f9:33:b6:5d:39:23:4f:56: 50:ae:45:44:cf:f6:8b:a3:28:35:56:16:fc:5f:48:4d:b3:d8: ca:2c:82:6a:d1:14:55:56:fb:f0:65:9b:33:bf:5d:7b:a4:67: 28:85:fa:90:32:c9:26:cf:5e:9a:f7:68:5c:3a:d7:80:8e:35: 37:b1:bf:bd:71:fc:c3:93:b1:67:5b:e4:db:dc:9d:3f:18:3f: 34:03:ed:53:31:11:06:3d:8b:8e:82:4f:7c:2a:71:c0:41:12: e5:bb:49:a8:63:4e:ed:2c:ac:d1:7e:b4:ed:48:fd:74:d2:a2: 9d:1b:9c:9b:4f:c7:96:0c:41:1e:30:02:f1:a3:de:eb:50:81: ed:8a:09:72:4b:21:06:45:21:c1:33:f6:bd:70:af:ab:93:5c: 45:26:c3:c6:75:22:b4:69:6d:59:b4:a8:e5:18:2f:39:78:40: 12:46:aa:ca -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZrfnb6CQjDvSFsQ/ZKDwzUuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5MTQ5NjFmNjdmMjJjNjFlODRhNjZjOGFkOWMxYThjZTUx ZDA5OWIwHhcNMjUxMjAyMTUxMDQ4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NmI2YWQ2MjM0YTVmN2U1YWY3MGNkOWE5MmNjZmNmZTg0MDQ1ZDJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRlgXzsB6+nfdqY0a0LnBsyHvbpk 883JcNC2HENNTyW9G7IzDMR1iiGLhttGOx7CD4s+tagdAvKyL98pIx+nnfHikGTz Dr+uFkNm2+C0KCOsixCLzGTH/mzDSrv68H7zYodlwfquweiBs5LqbdmvesKDeog3 otD+d0vFjD2uGrWdVp/bW1gv9YiK2vJsgGG1psf1C2bGsEnIf4qzniwtamaPrkO/ raRLJd402B0NdGNDZLZ1S36gUycDumWh/y5lbLpKx35RjLqAm3gQoY11FqDv4DTY BPAnR114lmAXikWc6HSkfcQwXfbfVZuuDHt/B1OKqGpI+9gnlXWP7HpnZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHa2rWI0pfflr3DNmpLM/P6EBF0rMB8GA1UdIwQY MBaAFLkUlh9n8ixh6EpmyK2cGozlHQmbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdVJTV0gyZnlMR0hvU21iSXJad2FqT1VkQ1pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wOTE3YTctOWViZC00NWI5LTlkZTIt Mjc0NzNjYTYxMmRlLzEvZHJhdFlqU2w5LVd2Y00yYWtzejhfb1FFWFNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8wOTE3YTctOWViZC00NWI5LTlkZTItMjc0NzNjYTYxMmRl LzEvdVJTV0gyZnlMR0hvU21iSXJad2FqT1VkQ1pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwwVUMA0G CSqGSIb3DQEBCwUAA4IBAQBAMzThQiHt96woXBnM46ZpR4fnsVJdz9YcEoh7ucxH JRa7+pMnnQ+O9N6DZUf6srkO/Q3VowfcN4R4Ya+1ODZmRjacGwwAC5o5yY6EdVnu I5cA+TO2XTkjT1ZQrkVEz/aLoyg1Vhb8X0hNs9jKLIJq0RRVVvvwZZszv117pGco hfqQMskmz16a92hcOteAjjU3sb+9cfzDk7FnW+Tb3J0/GD80A+1TMREGPYuOgk98 KnHAQRLlu0moY07tLKzRfrTtSP100qKdG5ybT8eWDEEeMALxo97rUIHtiglySyEG RSHBM/a9cK+rk1xFJsPGdSK0aW1ZtKjlGC85eEASRqrK -----END CERTIFICATE-----Generated at Sat Dec 6 09:41:55 2025 by rpki-client