This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/DgHkmROyC3MxqqPYkuTyDoxtyqw.roa File: DgHkmROyC3MxqqPYkuTyDoxtyqw.roa (raw, json) Hash identifier: q4huZNQpi2E4AXxex6IplXT0SZt2O1CYv71WiSI/rLI= Subject key identifier: 0E:01:E4:99:13:B2:0B:73:31:AA:A3:D8:92:E4:F2:0E:8C:6D:CA:AC Certificate issuer: /CN=70847f8221897d6e952e86ea2c339abaacc131f5 Certificate serial: 019B77C6E5EF9D438C95D97594E600C8167A Authority key identifier: 70:84:7F:82:21:89:7D:6E:95:2E:86:EA:2C:33:9A:BA:AC:C1:31:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIR_giGJfW6VLobqLDOauqzBMfU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/DgHkmROyC3MxqqPYkuTyDoxtyqw.roa Signing time: Thu 01 Jan 2026 04:18:02 +0000 ROA not before: Thu 01 Jan 2026 04:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43056 IP address blocks: 185.38.28.0/22 maxlen: 24 185.95.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/cIR_giGJfW6VLobqLDOauqzBMfU.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/cIR_giGJfW6VLobqLDOauqzBMfU.mft rsync://rpki.ripe.net/repository/DEFAULT/cIR_giGJfW6VLobqLDOauqzBMfU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:e5:ef:9d:43:8c:95:d9:75:94:e6:00:c8:16:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70847f8221897d6e952e86ea2c339abaacc131f5 Validity Not Before: Jan 1 04:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e01e49913b20b7331aaa3d892e4f20e8c6dcaac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f9:17:57:99:cc:0c:15:c9:d5:08:44:22:2c: 9e:af:a2:a5:bf:99:c2:9d:2d:46:d3:b9:38:d6:74: 03:4b:90:62:fd:b9:b6:7d:96:43:dd:b3:14:61:96: a8:b6:af:b9:8a:e4:15:5b:7b:c6:73:d6:43:e2:64: cb:9d:5f:d5:33:a9:ca:11:66:fa:f5:17:f3:b9:10: 2c:a1:f2:34:dc:76:ac:94:03:59:de:66:b1:30:3c: de:af:e7:5e:91:0a:31:ce:4d:e9:22:5a:5e:d2:78: 80:51:0b:23:b0:2d:fd:b0:1b:67:4e:40:bc:95:f8: ae:c3:e1:f0:85:f9:8d:bb:ca:ec:c1:45:b3:cb:e6: c9:b9:f8:d2:db:72:85:01:90:35:25:36:3a:43:1f: fb:ba:83:76:6f:0d:d8:46:eb:9c:d4:fd:fb:ac:0a: 44:67:9e:5e:f8:86:b1:1a:b6:31:2b:c6:2f:c2:70: 2f:c7:f5:a9:58:1f:ea:ee:79:75:60:12:65:48:51: 6e:83:dd:e9:02:b4:3b:f4:d3:5b:db:25:b7:68:80: 38:b3:f4:4d:00:3d:3a:fa:8c:fa:19:69:63:2b:c6: 4d:fb:7f:d5:1a:5c:73:24:09:48:ff:06:d2:73:37: 7b:7a:1d:3e:7a:ce:f8:f2:b9:87:6a:88:09:fa:f6: b2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:01:E4:99:13:B2:0B:73:31:AA:A3:D8:92:E4:F2:0E:8C:6D:CA:AC X509v3 Authority Key Identifier: keyid:70:84:7F:82:21:89:7D:6E:95:2E:86:EA:2C:33:9A:BA:AC:C1:31:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIR_giGJfW6VLobqLDOauqzBMfU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/DgHkmROyC3MxqqPYkuTyDoxtyqw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/706c03-7d35-4913-8a18-6e8784a7ad09/1/cIR_giGJfW6VLobqLDOauqzBMfU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.38.28.0/22 185.95.252.0/22 Signature Algorithm: sha256WithRSAEncryption b1:e7:74:b7:9d:ad:ba:a3:f9:3f:0a:13:0d:0b:09:cf:35:20: fa:7c:ae:e2:56:68:41:dd:15:82:39:3c:b8:c7:92:c1:b1:c9: 2e:ab:25:3d:46:6c:89:be:39:a4:4b:97:74:0b:1c:8d:57:f9: 83:ac:9a:e9:46:01:97:ec:4b:ab:51:df:c6:5d:62:94:9c:24: ae:a1:b7:db:5f:39:51:aa:bc:76:32:30:59:54:8a:66:3e:6d: 7a:a0:a6:70:47:11:d8:e5:63:31:2d:94:5a:91:02:81:0a:03: cf:97:7b:38:0e:ff:37:41:6d:df:cc:99:c4:ac:42:af:e8:11: f0:4b:87:76:76:31:ca:0e:bf:56:d1:58:b2:96:d2:d1:2a:40: 26:a7:7b:ac:5c:12:eb:7b:85:23:98:a4:17:c2:66:84:ca:25: 0a:a5:7c:17:8a:2d:af:c9:d2:55:bc:f1:fe:97:74:d0:a5:7a: 1c:bf:26:6b:d6:49:0d:8b:b9:82:83:bf:39:05:53:d7:7b:b8: c8:3d:20:ac:34:8f:b4:06:a6:91:fc:de:e0:5b:49:94:c5:20: f8:36:6a:be:02:8d:ce:a4:c2:44:1e:21:06:1e:9c:2f:03:c3: 5f:7e:db:af:dc:d8:4b:9e:61:50:34:4f:c1:81:6e:67:dc:b0: 6b:40:af:f7 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xuXvnUOMldl1lOYAyBZ6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwODQ3ZjgyMjE4OTdkNmU5NTJlODZlYTJjMzM5YWJhYWNj MTMxZjUwHhcNMjYwMTAxMDQxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTAxZTQ5OTEzYjIwYjczMzFhYWEzZDg5MmU0ZjIwZThjNmRjYWFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/kXV5nMDBXJ1QhEIiyer6Klv5nC nS1G07k41nQDS5Bi/bm2fZZD3bMUYZaotq+5iuQVW3vGc9ZD4mTLnV/VM6nKEWb6 9RfzuRAsofI03HaslANZ3maxMDzer+dekQoxzk3pIlpe0niAUQsjsC39sBtnTkC8 lfiuw+HwhfmNu8rswUWzy+bJufjS23KFAZA1JTY6Qx/7uoN2bw3YRuuc1P37rApE Z55e+IaxGrYxK8YvwnAvx/WpWB/q7nl1YBJlSFFug93pArQ79NNb2yW3aIA4s/RN AD06+oz6GWljK8ZN+3/VGlxzJAlI/wbSczd7eh0+es748rmHaogJ+vayQQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFA4B5JkTsgtzMaqj2JLk8g6MbcqsMB8GA1UdIwQY MBaAFHCEf4IhiX1ulS6G6iwzmrqswTH1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0lSX2dpR0pmVzZWTG9icUxET2F1cXpCTWZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy83MDZjMDMtN2QzNS00OTEzLThhMTgt NmU4Nzg0YTdhZDA5LzEvRGdIa21ST3lDM014cXFQWWt1VHlEb3h0eXF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy83MDZjMDMtN2QzNS00OTEzLThhMTgtNmU4Nzg0YTdhZDA5 LzEvY0lSX2dpR0pmVzZWTG9icUxET2F1cXpCTWZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuSYcAwQC uV/8MA0GCSqGSIb3DQEBCwUAA4IBAQCx53S3na26o/k/ChMNCwnPNSD6fK7iVmhB 3RWCOTy4x5LBsckuqyU9RmyJvjmkS5d0CxyNV/mDrJrpRgGX7EurUd/GXWKUnCSu obfbXzlRqrx2MjBZVIpmPm16oKZwRxHY5WMxLZRakQKBCgPPl3s4Dv83QW3fzJnE rEKv6BHwS4d2djHKDr9W0ViyltLRKkAmp3usXBLre4UjmKQXwmaEyiUKpXwXii2v ydJVvPH+l3TQpXocvyZr1kkNi7mCg785BVPXe7jIPSCsNI+0BqaR/N7gW0mUxSD4 Nmq+Ao3OpMJEHiEGHpwvA8Nfftuv3NhLnmFQNE/BgW5n3LBrQK/3 -----END CERTIFICATE-----Generated at Mon Jan 26 04:42:34 2026 by rpki-client