This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/dhvS8jcUEVfvG46-fKLWALCIpVw.roa File: dhvS8jcUEVfvG46-fKLWALCIpVw.roa (raw, json) Hash identifier: L/U3IcHBzPTqJbWLVELvDe1/R6RlRem6lq6GXoNBkWg= Subject key identifier: 76:1B:D2:F2:37:14:11:57:EF:1B:8E:BE:7C:A2:D6:00:B0:88:A5:5C Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4 Certificate serial: 019B79ECC01E8AEBA0893F2E188A1538C2FB Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/dhvS8jcUEVfvG46-fKLWALCIpVw.roa Signing time: Thu 01 Jan 2026 14:18:37 +0000 ROA not before: Thu 01 Jan 2026 14:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198389 IP address blocks: 94.240.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.mft rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:c0:1e:8a:eb:a0:89:3f:2e:18:8a:15:38:c2:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4 Validity Not Before: Jan 1 14:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=761bd2f237141157ef1b8ebe7ca2d600b088a55c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:88:57:44:c8:8d:5a:20:68:87:0a:12:2a:2f: c0:6f:8e:19:f7:ff:15:f3:a4:ab:10:f9:b8:7c:3e: fa:b6:65:31:98:39:eb:4b:8b:d3:60:d6:7f:3a:45: 5a:ac:66:39:6a:8b:40:75:58:41:ed:7b:7d:bd:81: 89:b8:60:52:37:1b:c6:a5:bb:f7:56:d6:51:1b:3a: d3:ca:b1:99:ff:2a:db:21:79:01:d6:de:68:d3:a4: 42:22:24:d6:3b:6f:cc:4b:48:14:03:48:70:77:71: b2:33:57:f6:e3:fa:a2:41:f1:a0:3b:43:e2:6e:36: 71:e8:9c:c0:e1:bd:c6:d8:c1:f9:a6:56:2a:e0:d9: 42:9e:d9:ac:2e:a6:4a:7a:25:1e:eb:a9:7d:5d:7e: 45:22:d6:3f:cb:d8:81:6d:b6:07:91:a2:1c:4a:7b: eb:b9:8f:f2:e7:a3:5b:a7:2d:36:20:d1:58:c5:80: d9:16:27:6f:3d:fc:a5:43:89:48:3a:a8:df:6b:51: 7b:b6:eb:51:39:ba:6c:72:7e:e7:40:f8:48:4f:07: 9a:cd:26:65:63:e4:87:00:56:9c:4e:a1:46:5a:6a: 91:ca:ce:c5:13:cb:28:4d:45:bf:19:01:e5:32:8a: 79:62:ae:18:40:00:32:9c:49:24:83:9e:e5:eb:70: 08:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:1B:D2:F2:37:14:11:57:EF:1B:8E:BE:7C:A2:D6:00:B0:88:A5:5C X509v3 Authority Key Identifier: keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/dhvS8jcUEVfvG46-fKLWALCIpVw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.240.13.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:80:b5:b9:93:4a:93:0e:92:9c:82:44:ef:eb:52:d2:3a:32: f7:15:b3:63:0c:62:54:5c:7b:1e:b3:b9:37:74:2f:45:53:72: a7:dd:82:ea:ce:db:97:61:48:51:d4:11:c6:4e:1c:7d:fb:ba: 76:cb:87:4a:44:7b:b0:38:56:c3:35:cb:63:c6:af:61:b7:a4: 31:cb:bd:ea:dd:59:ea:78:d3:40:d7:6f:8b:a1:a1:4e:84:6f: 39:ed:e4:76:06:84:45:d3:d3:09:ab:9d:0f:82:cb:b5:b1:c8: bc:38:61:3a:c6:fa:9d:fd:ed:13:65:ea:4c:02:be:50:d4:74: 1b:b7:2d:b7:bb:97:93:26:30:9f:b0:c3:bd:1f:a0:2d:07:d3: 27:01:4b:f2:f2:ed:f0:bc:f6:b9:63:63:18:3f:01:2d:d2:fb: 62:6a:fa:bf:6a:98:fb:b2:ec:e6:b3:3d:e6:d6:76:21:a3:33: 87:20:6c:39:b1:aa:ee:81:0f:34:d1:55:7c:ca:63:cb:df:c5: 04:c4:7f:4f:fd:fc:f6:b5:3e:bb:e1:76:3a:10:af:d4:f1:32: 50:ee:97:71:5a:c7:b4:65:29:f9:8f:b9:a4:4a:72:fd:5d:15: 82:4b:40:44:3c:b4:9c:af:57:ca:8e:d8:fa:6f:ff:5c:38:c3: 19:cb:b5:48 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57MAeiuugiT8uGIoVOML7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MWEyZmQ2ZjVlNWFmODdkNWNlYTA5NTA2NmZiY2MzZDNl NTQ2YTQwHhcNMjYwMTAxMTQxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjFiZDJmMjM3MTQxMTU3ZWYxYjhlYmU3Y2EyZDYwMGIwODhhNTVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIhXRMiNWiBohwoSKi/Ab44Z9/8V 86SrEPm4fD76tmUxmDnrS4vTYNZ/OkVarGY5aotAdVhB7Xt9vYGJuGBSNxvGpbv3 VtZRGzrTyrGZ/yrbIXkB1t5o06RCIiTWO2/MS0gUA0hwd3GyM1f24/qiQfGgO0Pi bjZx6JzA4b3G2MH5plYq4NlCntmsLqZKeiUe66l9XX5FItY/y9iBbbYHkaIcSnvr uY/y56Nbpy02INFYxYDZFidvPfylQ4lIOqjfa1F7tutRObpscn7nQPhITweazSZl Y+SHAFacTqFGWmqRys7FE8soTUW/GQHlMop5Yq4YQAAynEkkg57l63AI0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHYb0vI3FBFX7xuOvnyi1gCwiKVcMB8GA1UdIwQY MBaAFDUaL9b15a+H1c6glQZvvMPT5UakMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJvdjF2WGxyNGZWenFDVkJtLTh3OVBsUnFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9jZGRkZDUtODE3YS00MTEzLThiODIt MjMwNDllNGQyZjEyLzEvZGh2UzhqY1VFVmZ2RzQ2LWZLTFdBTENJcFZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMS9jZGRkZDUtODE3YS00MTEzLThiODItMjMwNDllNGQyZjEy LzEvTlJvdjF2WGxyNGZWenFDVkJtLTh3OVBsUnFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXvANMA0G CSqGSIb3DQEBCwUAA4IBAQAbgLW5k0qTDpKcgkTv61LSOjL3FbNjDGJUXHses7k3 dC9FU3Kn3YLqztuXYUhR1BHGThx9+7p2y4dKRHuwOFbDNctjxq9ht6Qxy73q3Vnq eNNA12+LoaFOhG857eR2BoRF09MJq50Pgsu1sci8OGE6xvqd/e0TZepMAr5Q1HQb ty23u5eTJjCfsMO9H6AtB9MnAUvy8u3wvPa5Y2MYPwEt0vtiavq/apj7suzmsz3m 1nYhozOHIGw5sarugQ800VV8ymPL38UExH9P/fz2tT674XY6EK/U8TJQ7pdxWse0 ZSn5j7mkSnL9XRWCS0BEPLScr1fKjtj6b/9cOMMZy7VI -----END CERTIFICATE-----Generated at Mon Jan 26 07:08:33 2026 by rpki-client