This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/IDJTjBeFF1LDRx8gc3tSt6fCOVQ.roa File: IDJTjBeFF1LDRx8gc3tSt6fCOVQ.roa (raw, json) Hash identifier: dfSJ9a/11mLVMI7/XHCzsNnkPUfKtZgrRVtgHCRNHkM= Subject key identifier: 20:32:53:8C:17:85:17:52:C3:47:1F:20:73:7B:52:B7:A7:C2:39:54 Certificate issuer: /CN=0eca6e06c6824bd1b811183e0e17fa19496d261c Certificate serial: 019B7EA729EC1EE789ED727280190613350E Authority key identifier: 0E:CA:6E:06:C6:82:4B:D1:B8:11:18:3E:0E:17:FA:19:49:6D:26:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DspuBsaCS9G4ERg-Dhf6GUltJhw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/IDJTjBeFF1LDRx8gc3tSt6fCOVQ.roa Signing time: Fri 02 Jan 2026 12:20:42 +0000 ROA not before: Fri 02 Jan 2026 12:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8352 IP address blocks: 91.213.148.0/24 maxlen: 24 185.65.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/DspuBsaCS9G4ERg-Dhf6GUltJhw.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/DspuBsaCS9G4ERg-Dhf6GUltJhw.mft rsync://rpki.ripe.net/repository/DEFAULT/DspuBsaCS9G4ERg-Dhf6GUltJhw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:29:ec:1e:e7:89:ed:72:72:80:19:06:13:35:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0eca6e06c6824bd1b811183e0e17fa19496d261c Validity Not Before: Jan 2 12:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2032538c17851752c3471f20737b52b7a7c23954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b1:83:2f:bb:d3:d9:65:96:34:5b:3c:db:82: b8:60:3c:27:f0:a3:ff:c3:13:bb:4b:20:71:1d:5a: 51:24:96:6a:67:54:71:cb:e8:32:02:ca:d0:66:f8: 5a:8d:aa:ab:a3:52:6b:49:1e:7e:5e:c5:b9:62:5a: f7:ce:a4:fe:69:57:a8:c0:39:eb:9d:e6:15:17:c6: ff:fb:72:43:65:8a:29:08:8e:c9:bc:f6:ff:82:f9: ea:c8:56:44:b5:6b:5f:00:45:fd:a7:6c:5f:2b:55: 80:86:34:b3:05:7e:c1:0a:2a:d7:1d:ff:67:10:65: 59:9d:92:5c:a0:6f:ac:ea:9f:c6:bf:c7:26:bf:39: 97:65:be:00:4d:0d:4c:70:25:37:87:63:e3:6b:35: f7:1c:ff:42:a3:75:28:20:fc:4a:25:55:5a:34:db: 5f:3e:96:c3:bc:ff:e0:28:3e:d3:35:75:0a:93:75: b7:8c:33:dd:5a:5e:b4:72:24:f8:af:bc:36:fc:d1: 35:a3:f6:aa:9a:0c:98:64:d0:4d:15:ad:21:b2:e6: c5:17:22:cb:d9:98:de:8b:b9:f8:39:f6:7b:a2:c8: 63:16:5b:77:ba:39:20:c5:03:23:73:0d:22:0c:ed: 8e:b0:ba:62:36:d2:3b:14:87:46:85:3e:01:b8:0b: 45:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:32:53:8C:17:85:17:52:C3:47:1F:20:73:7B:52:B7:A7:C2:39:54 X509v3 Authority Key Identifier: keyid:0E:CA:6E:06:C6:82:4B:D1:B8:11:18:3E:0E:17:FA:19:49:6D:26:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DspuBsaCS9G4ERg-Dhf6GUltJhw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/IDJTjBeFF1LDRx8gc3tSt6fCOVQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/9137ff-2063-4675-8de7-cfd3ff9fdf7b/1/DspuBsaCS9G4ERg-Dhf6GUltJhw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.148.0/24 185.65.141.0/24 Signature Algorithm: sha256WithRSAEncryption 11:9a:dd:99:3d:52:c7:bc:cf:ae:75:c4:85:a2:c6:46:15:eb: 9c:62:93:91:51:9e:0f:09:48:4c:3e:e4:0e:60:9c:d4:57:f1: 57:79:e2:de:78:7d:c5:09:6c:20:58:31:3d:c4:f5:d4:5b:46: 00:80:00:b3:66:e7:bc:f1:0d:05:85:44:5d:5c:6b:e8:4b:bf: d4:ce:39:e7:fe:99:e4:3a:73:f0:5c:9c:6c:28:cf:10:a5:f6: ab:60:ea:80:6a:c5:e9:12:a8:92:e5:9b:5b:19:87:e2:c1:89: 59:7b:9c:dc:ca:02:92:0c:a4:a7:72:fb:05:86:e4:6d:16:4b: 3b:bd:75:ee:c9:06:01:ce:84:3c:1d:a5:e4:e4:d7:5a:25:14: da:94:2e:8c:f9:37:60:e8:06:c1:31:18:4e:2b:87:f7:9c:d1: 9a:10:94:73:12:43:13:d8:5e:a0:de:65:5a:fc:2e:70:c5:42: 0e:b1:16:20:df:23:a8:06:ed:84:93:8f:87:f7:62:9f:1a:6c: 0e:41:58:55:0d:e6:40:58:71:13:28:eb:f9:8e:ed:f5:1a:6e: 5d:0d:06:bb:ac:05:c0:0b:1b:65:f6:8b:7a:f0:b8:0c:29:84: a7:f4:60:78:23:8e:3f:c1:53:5e:cf:b4:9e:f8:93:dc:3e:8c: c6:99:d0:10 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pynsHueJ7XJygBkGEzUOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlY2E2ZTA2YzY4MjRiZDFiODExMTgzZTBlMTdmYTE5NDk2 ZDI2MWMwHhcNMjYwMTAyMTIyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDMyNTM4YzE3ODUxNzUyYzM0NzFmMjA3MzdiNTJiN2E3YzIzOTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LGDL7vT2WWWNFs824K4YDwn8KP/ wxO7SyBxHVpRJJZqZ1Rxy+gyAsrQZvhajaqro1JrSR5+XsW5Ylr3zqT+aVeowDnr neYVF8b/+3JDZYopCI7JvPb/gvnqyFZEtWtfAEX9p2xfK1WAhjSzBX7BCirXHf9n EGVZnZJcoG+s6p/Gv8cmvzmXZb4ATQ1McCU3h2PjazX3HP9Co3UoIPxKJVVaNNtf PpbDvP/gKD7TNXUKk3W3jDPdWl60ciT4r7w2/NE1o/aqmgyYZNBNFa0hsubFFyLL 2Zjei7n4OfZ7oshjFlt3ujkgxQMjcw0iDO2OsLpiNtI7FIdGhT4BuAtF0wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCAyU4wXhRdSw0cfIHN7UrenwjlUMB8GA1UdIwQY MBaAFA7KbgbGgkvRuBEYPg4X+hlJbSYcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRHNwdUJzYUNTOUc0RVJnLURoZjZHVWx0Smh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy85MTM3ZmYtMjA2My00Njc1LThkZTct Y2ZkM2ZmOWZkZjdiLzEvSURKVGpCZUZGMUxEUng4Z2MzdFN0NmZDT1ZRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy85MTM3ZmYtMjA2My00Njc1LThkZTctY2ZkM2ZmOWZkZjdi LzEvRHNwdUJzYUNTOUc0RVJnLURoZjZHVWx0Smh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW9WUAwQA uUGNMA0GCSqGSIb3DQEBCwUAA4IBAQARmt2ZPVLHvM+udcSFosZGFeucYpORUZ4P CUhMPuQOYJzUV/FXeeLeeH3FCWwgWDE9xPXUW0YAgACzZue88Q0FhURdXGvoS7/U zjnn/pnkOnPwXJxsKM8QpfarYOqAasXpEqiS5ZtbGYfiwYlZe5zcygKSDKSncvsF huRtFks7vXXuyQYBzoQ8HaXk5NdaJRTalC6M+Tdg6AbBMRhOK4f3nNGaEJRzEkMT 2F6g3mVa/C5wxUIOsRYg3yOoBu2Ek4+H92KfGmwOQVhVDeZAWHETKOv5ju31Gm5d DQa7rAXACxtl9ot68LgMKYSn9GB4I44/wVNez7Se+JPcPozGmdAQ -----END CERTIFICATE-----Generated at Mon Jan 26 07:40:38 2026 by rpki-client