This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/DlfCFhfqG3PINgL1jVCPcztdoAU.roa File: DlfCFhfqG3PINgL1jVCPcztdoAU.roa (raw, json) Hash identifier: Lc7oVL7OUAbKr2SuVV49BF7ImGTSykw2iB7rEU3+4QU= Subject key identifier: 0E:57:C2:16:17:EA:1B:73:C8:36:02:F5:8D:50:8F:73:3B:5D:A0:05 Certificate issuer: /CN=a4767bc5fbcbcefb1c1c747bb0eb5337dab691c0 Certificate serial: 019B7BA432E00827B50611CED6ABFE99291A Authority key identifier: A4:76:7B:C5:FB:CB:CE:FB:1C:1C:74:7B:B0:EB:53:37:DA:B6:91:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHZ7xfvLzvscHHR7sOtTN9q2kcA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/DlfCFhfqG3PINgL1jVCPcztdoAU.roa Signing time: Thu 01 Jan 2026 22:18:37 +0000 ROA not before: Thu 01 Jan 2026 22:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 30880 IP address blocks: 185.98.192.0/22 maxlen: 22 185.98.195.0/24 maxlen: 24 193.27.200.0/23 maxlen: 23 193.27.200.0/24 maxlen: 24 193.27.201.0/24 maxlen: 24 193.42.215.0/24 maxlen: 24 212.63.192.0/19 maxlen: 19 2a01:298::/32 maxlen: 32 2a01:298:fd::/48 maxlen: 48 2a01:299::/32 maxlen: 32 2a01:29f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/pHZ7xfvLzvscHHR7sOtTN9q2kcA.crl rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/pHZ7xfvLzvscHHR7sOtTN9q2kcA.mft rsync://rpki.ripe.net/repository/DEFAULT/pHZ7xfvLzvscHHR7sOtTN9q2kcA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:32:e0:08:27:b5:06:11:ce:d6:ab:fe:99:29:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4767bc5fbcbcefb1c1c747bb0eb5337dab691c0 Validity Not Before: Jan 1 22:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e57c21617ea1b73c83602f58d508f733b5da005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b5:41:f9:01:37:4a:93:7a:51:5f:0c:3b:6d: 51:5f:9d:84:7f:14:49:a1:9b:81:ac:30:8b:be:ce: f1:92:5a:62:2f:9b:3d:6b:4a:de:23:c9:fa:12:ed: 43:12:ed:3a:63:70:28:da:93:08:2d:ec:fb:14:b0: b9:b3:06:2e:fa:2e:78:a6:c1:b8:81:29:5e:8b:bd: 62:c1:ea:a9:8b:34:13:8d:5f:1c:38:e2:8f:03:e0: 6f:80:38:df:2c:f9:a1:0c:e4:1e:bd:b0:0b:f1:29: 43:45:19:c9:b3:ae:2c:ca:d4:7c:a0:91:3b:a5:57: d5:67:cf:aa:21:5f:b8:35:37:8b:f8:84:5d:e2:42: 67:32:57:f4:cc:1e:83:b4:67:6c:51:33:15:c1:07: 58:b5:92:64:a7:78:87:2d:73:67:28:be:57:f9:f2: a7:eb:c0:7e:53:de:5c:84:e9:62:fa:ff:1e:ef:9b: d0:df:08:06:24:b4:7b:fd:17:20:58:50:8a:a8:37: 96:01:4b:b7:b7:e5:73:6e:b7:7e:bb:82:ea:43:7a: 4b:b0:ee:48:2f:b3:15:bd:c2:12:98:a3:08:98:20: 1e:91:b1:3b:6b:e1:3e:6e:ab:f4:4e:fc:8c:d2:ff: c3:3c:7b:a8:6d:22:d7:35:ec:79:15:2a:e9:b7:67: ce:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:57:C2:16:17:EA:1B:73:C8:36:02:F5:8D:50:8F:73:3B:5D:A0:05 X509v3 Authority Key Identifier: keyid:A4:76:7B:C5:FB:CB:CE:FB:1C:1C:74:7B:B0:EB:53:37:DA:B6:91:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHZ7xfvLzvscHHR7sOtTN9q2kcA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/DlfCFhfqG3PINgL1jVCPcztdoAU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/8065d5-04d0-43e5-a2f4-041a48d2123f/1/pHZ7xfvLzvscHHR7sOtTN9q2kcA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.98.192.0/22 193.27.200.0/23 193.42.215.0/24 212.63.192.0/19 IPv6: 2a01:298::/31 2a01:29f::/48 Signature Algorithm: sha256WithRSAEncryption 52:24:1c:29:af:a9:ae:9e:94:dc:0f:65:39:f1:32:48:d8:78: 48:6d:67:5e:84:75:d1:2b:51:96:0a:2c:fe:d1:26:6e:f7:74: 60:df:3d:a3:79:ac:bc:ff:21:8b:dc:bc:37:82:11:f0:4e:b6: 53:68:62:ef:ba:82:2d:0e:68:06:07:4e:d9:a8:e2:6e:b0:82: 6c:da:72:e8:d3:18:79:23:b2:e0:3f:69:c2:66:59:74:f0:35: 94:2b:f9:1b:c8:d3:69:a0:43:07:65:4e:e7:5b:40:ef:2c:fc: 47:f2:2f:f4:66:41:9a:f0:21:cd:5d:b2:5c:15:60:86:f8:7a: e2:a1:1f:d9:93:19:d3:f0:85:75:00:62:22:5e:99:27:0e:c7: db:4b:fa:fb:2c:2e:c3:74:c8:9e:a7:25:93:42:68:22:9f:2a: ef:db:21:4b:9e:75:b6:12:e7:21:61:27:66:72:f9:c6:43:fb: fa:12:94:f6:7d:53:92:ec:7c:6a:70:1a:6c:b3:76:48:53:79: 9e:db:27:83:4a:91:c5:12:dc:d7:7d:7f:f8:8a:8a:43:7f:a2: 13:55:54:f0:db:6c:e0:30:06:2b:38:b0:97:91:b4:35:ab:83: fb:73:92:47:ed:38:7e:56:1a:b6:50:27:0c:c9:d0:b4:a8:ec: 2b:d7:fb:ff -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt7pDLgCCe1BhHO1qv+mSkaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0NzY3YmM1ZmJjYmNlZmIxYzFjNzQ3YmIwZWI1MzM3ZGFi NjkxYzAwHhcNMjYwMTAxMjIxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTU3YzIxNjE3ZWExYjczYzgzNjAyZjU4ZDUwOGY3MzNiNWRhMDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7VB+QE3SpN6UV8MO21RX52EfxRJ oZuBrDCLvs7xklpiL5s9a0reI8n6Eu1DEu06Y3Ao2pMILez7FLC5swYu+i54psG4 gSlei71iweqpizQTjV8cOOKPA+BvgDjfLPmhDOQevbAL8SlDRRnJs64sytR8oJE7 pVfVZ8+qIV+4NTeL+IRd4kJnMlf0zB6DtGdsUTMVwQdYtZJkp3iHLXNnKL5X+fKn 68B+U95chOli+v8e75vQ3wgGJLR7/RcgWFCKqDeWAUu3t+Vzbrd+u4LqQ3pLsO5I L7MVvcISmKMImCAekbE7a+E+bqv0TvyM0v/DPHuobSLXNex5FSrpt2fOkQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFA5XwhYX6htzyDYC9Y1Qj3M7XaAFMB8GA1UdIwQY MBaAFKR2e8X7y877HBx0e7DrUzfatpHAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcEhaN3hmdkx6dnNjSEhSN3NPdFROOXEya2NBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS84MDY1ZDUtMDRkMC00M2U1LWEyZjQt MDQxYTQ4ZDIxMjNmLzEvRGxmQ0ZoZnFHM1BJTmdMMWpWQ1BjenRkb0FVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS84MDY1ZDUtMDRkMC00M2U1LWEyZjQtMDQxYTQ4ZDIxMjNm LzEvcEhaN3hmdkx6dnNjSEhSN3NPdFROOXEya2NBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODAeBAIAATAYAwQCuWLAAwQB wRvIAwQAwSrXAwQF1D/AMBYEAgACMBADBQEqAQKYAwcAKgECnwAAMA0GCSqGSIb3 DQEBCwUAA4IBAQBSJBwpr6munpTcD2U58TJI2HhIbWdehHXRK1GWCiz+0SZu93Rg 3z2jeay8/yGL3Lw3ghHwTrZTaGLvuoItDmgGB07ZqOJusIJs2nLo0xh5I7LgP2nC Zll08DWUK/kbyNNpoEMHZU7nW0DvLPxH8i/0ZkGa8CHNXbJcFWCG+HrioR/ZkxnT 8IV1AGIiXpknDsfbS/r7LC7DdMiepyWTQmginyrv2yFLnnW2EuchYSdmcvnGQ/v6 EpT2fVOS7HxqcBpss3ZIU3me2yeDSpHFEtzXfX/4iopDf6ITVVTw22zgMAYrOLCX kbQ1q4P7c5JH7Th+Vhq2UCcMydC0qOwr1/v/ -----END CERTIFICATE-----Generated at Sun Jan 25 23:31:46 2026 by rpki-client