This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/ddfQyL5mhD7mpFJJqGaZ3w97HDk.roa File: ddfQyL5mhD7mpFJJqGaZ3w97HDk.roa (raw, json) Hash identifier: MOdMZ39n6c+DnqvSWvmRktnMqoezzAOZSZFQGziSyik= Subject key identifier: 75:D7:D0:C8:BE:66:84:3E:E6:A4:52:49:A8:66:99:DF:0F:7B:1C:39 Certificate issuer: /CN=2e43dac8ea55693439dd1b8b4812ba71834f1031 Certificate serial: 019B7DCACF20DCD1AD0791D31F9C0B0A20EB Authority key identifier: 2E:43:DA:C8:EA:55:69:34:39:DD:1B:8B:48:12:BA:71:83:4F:10:31 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LkPayOpVaTQ53RuLSBK6cYNPEDE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/ddfQyL5mhD7mpFJJqGaZ3w97HDk.roa Signing time: Fri 02 Jan 2026 08:20:01 +0000 ROA not before: Fri 02 Jan 2026 08:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51559 IP address blocks: 88.214.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/LkPayOpVaTQ53RuLSBK6cYNPEDE.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/LkPayOpVaTQ53RuLSBK6cYNPEDE.mft rsync://rpki.ripe.net/repository/DEFAULT/LkPayOpVaTQ53RuLSBK6cYNPEDE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:cf:20:dc:d1:ad:07:91:d3:1f:9c:0b:0a:20:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2e43dac8ea55693439dd1b8b4812ba71834f1031 Validity Not Before: Jan 2 08:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75d7d0c8be66843ee6a45249a86699df0f7b1c39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d1:8c:b6:0f:a8:30:57:c3:1a:82:05:0c:95: 4e:7c:ac:fb:d6:46:a2:85:e0:28:04:74:ee:92:72: 21:56:2e:b5:c2:3c:d5:b4:bc:d5:85:d2:8d:6a:6c: 9f:63:3f:a0:5f:d7:af:87:1c:87:9f:10:71:21:56: 9f:8e:67:0a:be:35:16:0c:75:07:72:fb:1a:7d:bc: aa:04:05:64:be:87:02:14:cb:d3:ca:47:4a:1d:da: f8:bd:97:b1:4a:6b:7d:d6:17:d4:2e:ee:ff:cc:2f: 8c:39:95:38:e8:0f:a7:8f:b8:2a:4f:7a:7b:fb:06: f0:31:8a:b5:a6:e6:a3:d7:5e:43:1e:77:7a:4b:d7: 0c:7f:21:61:05:7f:8f:ed:20:77:a0:f1:77:c7:af: ef:31:84:70:13:da:21:c2:ca:bb:b3:ad:46:dc:52: 27:49:25:26:77:bf:5e:cf:4a:bb:81:f4:2d:1d:74: 64:30:b5:95:bd:91:f8:cd:f6:be:66:01:99:1d:69: 75:7d:80:92:ce:8d:2f:38:c8:79:ff:97:7a:96:94: ef:12:19:18:e3:45:45:7d:d6:bd:8f:ac:3d:f1:93: 04:21:62:90:bd:20:8d:21:6b:30:b4:68:1d:5e:d7: 14:d0:59:aa:b3:1a:22:af:00:5d:60:7b:89:9b:e8: 90:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D7:D0:C8:BE:66:84:3E:E6:A4:52:49:A8:66:99:DF:0F:7B:1C:39 X509v3 Authority Key Identifier: keyid:2E:43:DA:C8:EA:55:69:34:39:DD:1B:8B:48:12:BA:71:83:4F:10:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LkPayOpVaTQ53RuLSBK6cYNPEDE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/ddfQyL5mhD7mpFJJqGaZ3w97HDk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/86ba36-78b8-44bb-9fb4-26c7c963a769/1/LkPayOpVaTQ53RuLSBK6cYNPEDE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.214.43.0/24 Signature Algorithm: sha256WithRSAEncryption 78:97:c5:b0:a1:e7:13:37:8c:00:cb:d1:59:93:46:8a:73:f3: 27:05:c3:8a:d6:e7:c8:b2:4a:04:d4:58:ed:35:99:a0:56:39: 16:15:05:c8:dd:f5:a8:f2:0e:aa:56:b9:f4:e1:04:28:a1:04: c9:4c:c8:0c:b5:9b:9e:be:9e:d5:c7:e7:92:02:29:1b:f9:32: e7:bd:f3:21:e6:36:b2:b6:30:97:f2:53:ca:2e:43:e1:5b:7e: e4:c7:df:98:63:7d:b5:dc:81:2b:ef:c1:6f:c7:4a:d2:eb:1b: 10:ba:f0:4a:a3:50:f4:3d:81:e5:3f:d8:6d:3d:bd:4a:53:77: b8:6b:92:db:0d:b9:56:8d:93:b6:d4:75:01:34:56:92:71:2c: 22:ad:d1:2b:db:d7:1d:c8:14:ee:d3:a2:7e:09:ca:08:99:b7: d1:1c:66:93:59:8d:ff:30:ec:33:30:aa:88:e7:36:f9:4d:22: ad:65:52:81:e7:54:20:3e:4a:6f:8c:69:d8:a2:b7:e4:cf:0b: 54:48:46:c6:76:69:25:82:17:6e:53:7c:ea:5c:2e:04:94:62: cc:ff:41:df:b2:58:56:d8:90:27:41:22:26:84:21:9b:b9:6a: 6f:0e:92:5e:fe:5f:5f:c0:3a:ad:f9:38:f8:b5:e3:dd:20:61: d4:02:71:65 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9ys8g3NGtB5HTH5wLCiDrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJlNDNkYWM4ZWE1NTY5MzQzOWRkMWI4YjQ4MTJiYTcxODM0 ZjEwMzEwHhcNMjYwMTAyMDgyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWQ3ZDBjOGJlNjY4NDNlZTZhNDUyNDlhODY2OTlkZjBmN2IxYzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1tGMtg+oMFfDGoIFDJVOfKz71kai heAoBHTuknIhVi61wjzVtLzVhdKNamyfYz+gX9evhxyHnxBxIVafjmcKvjUWDHUH cvsafbyqBAVkvocCFMvTykdKHdr4vZexSmt91hfULu7/zC+MOZU46A+nj7gqT3p7 +wbwMYq1puaj115DHnd6S9cMfyFhBX+P7SB3oPF3x6/vMYRwE9ohwsq7s61G3FIn SSUmd79ez0q7gfQtHXRkMLWVvZH4zfa+ZgGZHWl1fYCSzo0vOMh5/5d6lpTvEhkY 40VFfda9j6w98ZMEIWKQvSCNIWswtGgdXtcU0FmqsxoirwBdYHuJm+iQqQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHXX0Mi+ZoQ+5qRSSahmmd8Pexw5MB8GA1UdIwQY MBaAFC5D2sjqVWk0Od0bi0gSunGDTxAxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTGtQYXlPcFZhVFE1M1J1TFNCSzZjWU5QRURFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84NmJhMzYtNzhiOC00NGJiLTlmYjQt MjZjN2M5NjNhNzY5LzEvZGRmUXlMNW1oRDdtcEZKSnFHYVozdzk3SERrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy84NmJhMzYtNzhiOC00NGJiLTlmYjQtMjZjN2M5NjNhNzY5 LzEvTGtQYXlPcFZhVFE1M1J1TFNCSzZjWU5QRURFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNYrMA0G CSqGSIb3DQEBCwUAA4IBAQB4l8WwoecTN4wAy9FZk0aKc/MnBcOK1ufIskoE1Fjt NZmgVjkWFQXI3fWo8g6qVrn04QQooQTJTMgMtZuevp7Vx+eSAikb+TLnvfMh5jay tjCX8lPKLkPhW37kx9+YY3213IEr78Fvx0rS6xsQuvBKo1D0PYHlP9htPb1KU3e4 a5LbDblWjZO21HUBNFaScSwirdEr29cdyBTu06J+CcoImbfRHGaTWY3/MOwzMKqI 5zb5TSKtZVKB51QgPkpvjGnYorfkzwtUSEbGdmklghduU3zqXC4ElGLM/0HfslhW 2JAnQSImhCGbuWpvDpJe/l9fwDqt+Tj4tePdIGHUAnFl -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:46 2026 by rpki-client