This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/sD5kxV29ZIdYXQmiLOJFhNVICqQ.roa File: sD5kxV29ZIdYXQmiLOJFhNVICqQ.roa (raw, json) Hash identifier: 3i447xlrJ0RgO78Xb9XmhG3Cgti81NrynZIy8LAOEMY= Subject key identifier: B0:3E:64:C5:5D:BD:64:87:58:5D:09:A2:2C:E2:45:84:D5:48:0A:A4 Certificate issuer: /CN=e37e5ff123ea7d2e83ce27520c987d037e649d03 Certificate serial: 019B7A59935A764221AAC294DE3BF41EF1DE Authority key identifier: E3:7E:5F:F1:23:EA:7D:2E:83:CE:27:52:0C:98:7D:03:7E:64:9D:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/sD5kxV29ZIdYXQmiLOJFhNVICqQ.roa Signing time: Thu 01 Jan 2026 16:17:29 +0000 ROA not before: Thu 01 Jan 2026 16:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48927 IP address blocks: 178.215.228.0/22 maxlen: 24 2a0d:5440::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/435f8SPqfS6DzidSDJh9A35knQM.crl rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/435f8SPqfS6DzidSDJh9A35knQM.mft rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:93:5a:76:42:21:aa:c2:94:de:3b:f4:1e:f1:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e37e5ff123ea7d2e83ce27520c987d037e649d03 Validity Not Before: Jan 1 16:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b03e64c55dbd6487585d09a22ce24584d5480aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:12:42:e7:83:44:57:45:a3:06:fd:d4:87:6d: 26:67:6e:d9:57:35:54:61:d2:1a:14:ac:83:2b:72: e4:b7:2e:77:67:1a:93:f1:72:90:6e:d8:3f:9f:54: de:1a:88:f0:8a:6c:4c:e3:0d:9d:6f:0f:ad:94:c3: 8d:02:87:20:63:f3:4a:f6:21:5c:4a:a0:a9:80:8c: 12:f8:d2:ec:93:6a:4f:24:dc:aa:e6:75:34:c7:d5: c2:d8:22:ed:ba:ee:94:ef:d4:d9:a4:fa:69:f6:54: be:a2:4a:4a:8c:1f:eb:29:91:59:c9:ab:7b:e4:fe: b1:a0:c9:aa:c7:83:6c:07:be:47:2a:2a:25:ab:19: eb:cc:72:df:e1:fd:53:98:50:f1:6f:44:d7:57:1a: 36:c4:70:d6:93:cd:38:40:b7:e8:b4:58:ab:51:be: b9:36:c1:32:00:c9:b4:3e:38:bb:4f:93:42:10:87: 74:f0:24:33:2d:a3:96:ad:49:f4:fb:8d:35:d6:e3: b0:5f:8d:e3:1e:f1:bb:85:b2:6b:57:fa:04:a4:b6: bf:74:8c:57:7b:8c:9c:8b:a7:37:ea:f7:39:a3:95: cb:1d:c3:23:c3:04:84:31:cc:47:d7:15:ce:a2:76: c0:f6:ba:17:40:f7:53:a7:b8:ad:61:67:1b:ee:03: 2c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:3E:64:C5:5D:BD:64:87:58:5D:09:A2:2C:E2:45:84:D5:48:0A:A4 X509v3 Authority Key Identifier: keyid:E3:7E:5F:F1:23:EA:7D:2E:83:CE:27:52:0C:98:7D:03:7E:64:9D:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/435f8SPqfS6DzidSDJh9A35knQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/sD5kxV29ZIdYXQmiLOJFhNVICqQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/dfc10c-f889-455a-82a0-b30408948cce/1/435f8SPqfS6DzidSDJh9A35knQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.215.228.0/22 IPv6: 2a0d:5440::/29 Signature Algorithm: sha256WithRSAEncryption 3b:c2:7d:df:06:cf:0c:a3:2a:d6:3a:1a:7d:8b:a7:bf:8c:8b: f5:91:55:c8:85:90:75:ab:ba:92:57:8e:16:1a:d9:e3:8b:53: 5f:78:35:ff:6b:d5:8c:d1:37:5c:ed:55:81:e3:06:6d:d4:5d: f1:c9:79:b5:fb:59:b7:56:b7:bc:38:c0:f8:dd:07:ac:5b:e2: 3e:d0:2f:5d:52:d1:2f:4b:d6:55:0a:13:62:5a:11:e3:39:9c: 38:06:6f:bc:9b:68:e9:ec:dc:36:9a:7e:32:77:fe:a8:b9:df: 0c:7b:7f:0d:91:ad:f8:84:23:a2:d4:9f:c2:69:ba:fe:7f:27: 99:79:10:55:db:2c:5f:11:67:f6:4f:54:eb:82:00:41:94:c3: f8:c8:3b:9e:23:08:1b:b2:c8:08:f5:6d:84:e9:18:65:af:5d: 82:2b:4e:e9:52:50:cc:48:33:88:bd:89:06:e9:a2:2b:ae:92: 6e:a0:46:4b:89:01:93:5b:a3:93:c0:89:76:dd:74:68:8a:3a: 46:9c:b7:59:5d:e7:f0:33:67:a6:f5:03:ca:74:fa:b4:03:0d: 32:7e:59:c3:50:bf:4e:69:da:43:33:ad:bb:7f:90:ef:c7:1a: 5c:6b:08:65:c4:f1:f0:a2:34:d2:e1:41:6b:f1:fd:7a:cd:d6: 1d:9c:73:2c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6WZNadkIhqsKU3jv0HvHeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzN2U1ZmYxMjNlYTdkMmU4M2NlMjc1MjBjOTg3ZDAzN2U2 NDlkMDMwHhcNMjYwMTAxMTYxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDNlNjRjNTVkYmQ2NDg3NTg1ZDA5YTIyY2UyNDU4NGQ1NDgwYWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBJC54NEV0WjBv3Uh20mZ27ZVzVU YdIaFKyDK3Lkty53ZxqT8XKQbtg/n1TeGojwimxM4w2dbw+tlMONAocgY/NK9iFc SqCpgIwS+NLsk2pPJNyq5nU0x9XC2CLtuu6U79TZpPpp9lS+okpKjB/rKZFZyat7 5P6xoMmqx4NsB75HKiolqxnrzHLf4f1TmFDxb0TXVxo2xHDWk804QLfotFirUb65 NsEyAMm0Pji7T5NCEId08CQzLaOWrUn0+4011uOwX43jHvG7hbJrV/oEpLa/dIxX e4yci6c36vc5o5XLHcMjwwSEMcxH1xXOonbA9roXQPdTp7itYWcb7gMsJwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLA+ZMVdvWSHWF0JoiziRYTVSAqkMB8GA1UdIwQY MBaAFON+X/Ej6n0ug84nUgyYfQN+ZJ0DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDM1ZjhTUHFmUzZEemlkU0RKaDlBMzVrblFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9kZmMxMGMtZjg4OS00NTVhLTgyYTAt YjMwNDA4OTQ4Y2NlLzEvc0Q1a3hWMjlaSWRZWFFtaUxPSkZoTlZJQ3FRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS9kZmMxMGMtZjg4OS00NTVhLTgyYTAtYjMwNDA4OTQ4Y2Nl LzEvNDM1ZjhTUHFmUzZEemlkU0RKaDlBMzVrblFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCstfkMA0E AgACMAcDBQMqDVRAMA0GCSqGSIb3DQEBCwUAA4IBAQA7wn3fBs8MoyrWOhp9i6e/ jIv1kVXIhZB1q7qSV44WGtnji1NfeDX/a9WM0Tdc7VWB4wZt1F3xyXm1+1m3Vre8 OMD43QesW+I+0C9dUtEvS9ZVChNiWhHjOZw4Bm+8m2jp7Nw2mn4yd/6oud8Me38N ka34hCOi1J/Cabr+fyeZeRBV2yxfEWf2T1TrggBBlMP4yDueIwgbssgI9W2E6Rhl r12CK07pUlDMSDOIvYkG6aIrrpJuoEZLiQGTW6OTwIl23XRoijpGnLdZXefwM2em 9QPKdPq0Aw0yflnDUL9OadpDM627f5DvxxpcawhlxPHwojTS4UFr8f16zdYdnHMs -----END CERTIFICATE-----Generated at Mon Jan 26 09:25:44 2026 by rpki-client