This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/229e79-9bc4-47ba-b136-33881467ac5e/1/dYKJcrjXuTpS6_7bUiBb2osa674.roa File: dYKJcrjXuTpS6_7bUiBb2osa674.roa (raw, json) Hash identifier: wfR3v7wfu8CdCj0DaXJsMGWbP8IlPqI3MSKZ+73rZNw= Subject key identifier: 75:82:89:72:B8:D7:B9:3A:52:EB:FE:DB:52:20:5B:DA:8B:1A:EB:BE Certificate issuer: /CN=53c9a8fb5599bf93b50ffbbcc877884a6d815157 Certificate serial: 019B76EB23308250F6DF86D8CC6939731ECE Authority key identifier: 53:C9:A8:FB:55:99:BF:93:B5:0F:FB:BC:C8:77:88:4A:6D:81:51:57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8mo-1WZv5O1D_u8yHeISm2BUVc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/229e79-9bc4-47ba-b136-33881467ac5e/1/dYKJcrjXuTpS6_7bUiBb2osa674.roa Signing time: Thu 01 Jan 2026 00:18:00 +0000 ROA not before: Thu 01 Jan 2026 00:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20668 IP address blocks: 188.92.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/229e79-9bc4-47ba-b136-33881467ac5e/1/U8mo-1WZv5O1D_u8yHeISm2BUVc.crl rsync://rpki.ripe.net/repository/DEFAULT/ae/229e79-9bc4-47ba-b136-33881467ac5e/1/U8mo-1WZv5O1D_u8yHeISm2BUVc.mft rsync://rpki.ripe.net/repository/DEFAULT/U8mo-1WZv5O1D_u8yHeISm2BUVc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 18:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:23:30:82:50:f6:df:86:d8:cc:69:39:73:1e:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53c9a8fb5599bf93b50ffbbcc877884a6d815157 Validity Not Before: Jan 1 00:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75828972b8d7b93a52ebfedb52205bda8b1aebbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:72:3b:99:d8:f0:ce:ea:40:a2:6c:ea:27:57: fa:d3:43:04:dd:ac:6a:d7:11:ce:e8:63:8f:f8:2b: 85:eb:f9:6d:9f:28:48:bc:8e:d7:26:90:46:e9:64: 69:39:f1:be:04:3c:97:8e:8d:cd:de:b1:63:3d:ac: bd:3c:a4:0a:00:8f:67:e2:8c:c9:7a:3a:45:59:76: 85:77:bb:40:18:5c:1c:ae:73:5c:72:22:ee:f3:1a: 1d:ab:a9:9e:7e:6c:cf:15:df:e4:a8:45:5c:44:c7: df:6b:a4:c0:53:f3:97:d2:a1:08:7a:e0:48:e8:f2: 16:ce:2e:2a:85:04:47:4e:87:90:aa:e0:81:0b:43: ca:95:63:18:30:dc:f8:10:b7:c9:6c:3e:09:b0:53: b6:08:f2:6c:29:99:fd:6d:38:95:c7:a7:6a:0d:52: 27:4c:33:e8:a0:96:fa:3f:5a:84:1b:ac:10:37:01: 6f:f6:52:21:9c:73:72:ac:5e:d4:b8:29:c4:cf:ea: 8a:e3:98:80:64:94:92:21:db:5e:7b:39:63:85:00: 68:d4:75:ce:67:6d:8f:5b:08:75:dd:a4:b5:b9:8b: e4:7f:44:90:6e:a6:f0:e6:84:cd:c8:d3:47:83:66: e3:3b:a9:74:75:48:50:25:60:b1:7c:1b:da:a0:65: fd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:82:89:72:B8:D7:B9:3A:52:EB:FE:DB:52:20:5B:DA:8B:1A:EB:BE X509v3 Authority Key Identifier: keyid:53:C9:A8:FB:55:99:BF:93:B5:0F:FB:BC:C8:77:88:4A:6D:81:51:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8mo-1WZv5O1D_u8yHeISm2BUVc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/229e79-9bc4-47ba-b136-33881467ac5e/1/dYKJcrjXuTpS6_7bUiBb2osa674.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/229e79-9bc4-47ba-b136-33881467ac5e/1/U8mo-1WZv5O1D_u8yHeISm2BUVc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.92.27.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:38:20:71:3e:b8:83:51:a8:10:ee:ef:bf:24:7e:4a:d2:51: e7:be:91:48:09:da:d8:d5:9b:90:d1:7b:30:28:ec:09:a8:a6: 8f:1e:9e:3d:fa:3e:fb:99:fa:cc:f9:23:b6:81:2f:6d:1a:8b: 85:02:8b:c2:12:40:36:53:0e:68:f7:6c:18:6f:c7:23:de:b7: 6f:a0:1d:04:98:e4:a6:71:25:c5:11:f2:e7:39:64:34:ed:fc: 60:69:f8:8e:cd:e5:2e:9c:ba:d1:77:8c:25:bc:79:4a:2f:e8: 1e:b8:07:5d:df:90:9b:5d:34:5e:e8:5c:63:08:54:3c:12:0b: b4:68:07:42:15:f6:a2:b0:62:64:19:7f:26:6e:d5:30:85:d0: 08:67:22:41:73:81:f9:44:e8:68:85:0d:e9:2e:2d:d6:83:14: 34:df:22:b6:8a:0e:5d:f9:83:2b:fb:4f:61:24:be:a4:4f:97: fd:bf:0b:83:04:a8:35:16:fa:24:17:06:af:6c:d4:1f:4f:8f: 88:8c:88:b6:6d:9d:ed:28:1f:9a:b7:5d:f7:77:9d:86:f0:d3: 0a:0e:cb:b6:ed:01:68:ae:c5:45:bb:19:9a:17:e9:5a:17:07: 46:8d:a9:23:bd:41:50:63:c1:17:a1:9c:1d:26:dc:02:b1:0c: d0:3f:f9:45 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26yMwglD234bYzGk5cx7OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYzlhOGZiNTU5OWJmOTNiNTBmZmJiY2M4Nzc4ODRhNmQ4 MTUxNTcwHhcNMjYwMTAxMDAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NTgyODk3MmI4ZDdiOTNhNTJlYmZlZGI1MjIwNWJkYThiMWFlYmJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HI7mdjwzupAomzqJ1f600ME3axq 1xHO6GOP+CuF6/ltnyhIvI7XJpBG6WRpOfG+BDyXjo3N3rFjPay9PKQKAI9n4ozJ ejpFWXaFd7tAGFwcrnNcciLu8xodq6mefmzPFd/kqEVcRMffa6TAU/OX0qEIeuBI 6PIWzi4qhQRHToeQquCBC0PKlWMYMNz4ELfJbD4JsFO2CPJsKZn9bTiVx6dqDVIn TDPooJb6P1qEG6wQNwFv9lIhnHNyrF7UuCnEz+qK45iAZJSSIdteezljhQBo1HXO Z22PWwh13aS1uYvkf0SQbqbw5oTNyNNHg2bjO6l0dUhQJWCxfBvaoGX9GQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHWCiXK417k6Uuv+21IgW9qLGuu+MB8GA1UdIwQY MBaAFFPJqPtVmb+TtQ/7vMh3iEptgVFXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVThtby0xV1p2NU8xRF91OHlIZUlTbTJCVVZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8yMjllNzktOWJjNC00N2JhLWIxMzYt MzM4ODE0NjdhYzVlLzEvZFlLSmNyalh1VHBTNl83YlVpQmIyb3NhNjc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZS8yMjllNzktOWJjNC00N2JhLWIxMzYtMzM4ODE0NjdhYzVl LzEvVThtby0xV1p2NU8xRF91OHlIZUlTbTJCVVZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvFwbMA0G CSqGSIb3DQEBCwUAA4IBAQAqOCBxPriDUagQ7u+/JH5K0lHnvpFICdrY1ZuQ0Xsw KOwJqKaPHp49+j77mfrM+SO2gS9tGouFAovCEkA2Uw5o92wYb8cj3rdvoB0EmOSm cSXFEfLnOWQ07fxgafiOzeUunLrRd4wlvHlKL+geuAdd35CbXTRe6FxjCFQ8Egu0 aAdCFfaisGJkGX8mbtUwhdAIZyJBc4H5ROhohQ3pLi3WgxQ03yK2ig5d+YMr+09h JL6kT5f9vwuDBKg1FvokFwavbNQfT4+IjIi2bZ3tKB+at133d52G8NMKDsu27QFo rsVFuxmaF+laFwdGjakjvUFQY8EXoZwdJtwCsQzQP/lF -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:45 2026 by rpki-client