This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/78178f-2199-48e0-901d-bda215b81636/1/DhpDBX_7AhUzL9AP6J2bnK3aQ1o.roa File: DhpDBX_7AhUzL9AP6J2bnK3aQ1o.roa (raw, json) Hash identifier: CBUZxcykEIqcfYCfDpxjg7qtOjik95UqEoINbP51Nd8= Subject key identifier: 0E:1A:43:05:7F:FB:02:15:33:2F:D0:0F:E8:9D:9B:9C:AD:DA:43:5A Certificate issuer: /CN=fb95e6594dc37053ce98bd5889063591b35e2d80 Certificate serial: 019B7A5B94CFA9657664C3A902DF893083D3 Authority key identifier: FB:95:E6:59:4D:C3:70:53:CE:98:BD:58:89:06:35:91:B3:5E:2D:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-5XmWU3DcFPOmL1YiQY1kbNeLYA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/78178f-2199-48e0-901d-bda215b81636/1/DhpDBX_7AhUzL9AP6J2bnK3aQ1o.roa Signing time: Thu 01 Jan 2026 16:19:40 +0000 ROA not before: Thu 01 Jan 2026 16:19:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202421 IP address blocks: 185.204.176.0/22 maxlen: 24 185.204.176.0/23 maxlen: 24 185.204.176.0/24 maxlen: 24 185.204.177.0/24 maxlen: 24 185.204.178.0/23 maxlen: 24 185.204.178.0/24 maxlen: 24 185.204.179.0/24 maxlen: 24 2a0a:fac0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/78178f-2199-48e0-901d-bda215b81636/1/1-5XmWU3DcFPOmL1YiQY1kbNeLYA.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/78178f-2199-48e0-901d-bda215b81636/1/1-5XmWU3DcFPOmL1YiQY1kbNeLYA.mft rsync://rpki.ripe.net/repository/DEFAULT/1-5XmWU3DcFPOmL1YiQY1kbNeLYA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:94:cf:a9:65:76:64:c3:a9:02:df:89:30:83:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fb95e6594dc37053ce98bd5889063591b35e2d80 Validity Not Before: Jan 1 16:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e1a43057ffb0215332fd00fe89d9b9cadda435a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:08:1b:11:3b:5e:62:d3:63:b3:ed:25:fa:3d: 24:1a:a6:ae:3e:c8:1e:9b:2e:20:aa:4f:3e:a8:c6: b0:c8:81:43:f3:f3:4b:59:d3:9d:d4:dd:ce:b7:dd: 42:1c:e9:a9:56:4f:69:b3:37:05:a6:27:40:89:a1: 71:db:f8:6d:25:f2:04:73:e2:7a:c7:26:aa:e6:c8: 8a:55:13:3b:9d:e5:94:23:03:fd:4a:85:c1:77:56: ea:22:bc:ee:e2:3a:0b:1e:9d:06:5a:44:e8:50:8c: b9:12:8e:c2:41:90:2f:f1:95:b4:0e:b0:76:25:54: 5e:f4:98:2e:f8:14:25:7f:bd:cb:56:a3:8b:bb:55: 03:36:96:bc:50:41:d0:db:9c:2c:1d:bc:d5:5b:ee: 04:db:4e:d5:0f:11:ac:3f:0a:80:df:cd:71:ef:ac: 1c:c9:50:7d:8f:eb:79:a1:e5:7e:8b:a5:fa:0e:e3: 08:45:64:24:32:ff:16:9a:f3:31:6a:d6:0c:ec:fd: be:b6:40:b4:c0:33:c0:93:7c:a4:f2:af:34:54:41: ce:60:7a:c9:08:26:96:50:ea:33:22:8f:11:12:46: 17:c9:de:cb:96:74:b2:9a:75:78:28:ca:c1:52:8a: 62:a1:02:4b:a3:94:14:84:4f:f9:bb:70:9e:6a:49: ba:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1A:43:05:7F:FB:02:15:33:2F:D0:0F:E8:9D:9B:9C:AD:DA:43:5A X509v3 Authority Key Identifier: keyid:FB:95:E6:59:4D:C3:70:53:CE:98:BD:58:89:06:35:91:B3:5E:2D:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-5XmWU3DcFPOmL1YiQY1kbNeLYA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/78178f-2199-48e0-901d-bda215b81636/1/DhpDBX_7AhUzL9AP6J2bnK3aQ1o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/78178f-2199-48e0-901d-bda215b81636/1/1-5XmWU3DcFPOmL1YiQY1kbNeLYA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.204.176.0/22 IPv6: 2a0a:fac0::/29 Signature Algorithm: sha256WithRSAEncryption 8e:96:49:e6:d4:79:46:4e:98:91:bd:c0:7e:e0:d5:56:5d:70: 9f:9c:2b:0d:7b:7b:9e:bf:44:01:43:22:0b:f0:35:7c:98:57: f9:18:81:a6:11:0d:78:5c:ce:e6:79:5c:cf:a0:b9:07:5f:b4: 22:e0:51:72:85:5a:f3:ff:16:db:5b:59:13:d7:17:72:d2:d2: ac:48:d9:8d:94:bd:53:94:8c:d5:9d:79:7e:41:d1:41:27:aa: c1:c3:cc:b7:c3:4a:77:2f:03:83:55:d2:f5:47:0e:ca:4e:00: 3e:1f:2a:2e:84:c3:62:bd:b2:c3:72:8e:6c:ba:77:56:2f:c1: 18:be:3f:65:56:b8:2e:9e:e5:64:a3:a1:c9:75:d5:57:f7:91: 5e:6c:b2:6a:6d:f6:7e:60:cf:42:56:76:52:72:15:9a:8c:74: 2b:63:be:9d:cb:b0:d0:50:f4:61:3e:4b:18:cc:fb:fc:7e:28: b0:d0:90:54:f6:de:7d:b4:ce:77:4a:40:4a:84:29:c3:0a:99: 5c:52:68:e9:3c:d3:f4:ec:08:7b:f4:14:0f:76:c5:03:dd:70: d0:1b:f4:f5:c0:26:85:42:20:75:6a:6a:9d:5b:8e:3a:34:ac: bf:7d:d0:9b:c0:2e:c4:2a:72:b0:61:d4:d5:ee:9c:c2:31:aa: 5c:08:dd:1f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt6W5TPqWV2ZMOpAt+JMIPTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiOTVlNjU5NGRjMzcwNTNjZTk4YmQ1ODg5MDYzNTkxYjM1 ZTJkODAwHhcNMjYwMTAxMTYxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTFhNDMwNTdmZmIwMjE1MzMyZmQwMGZlODlkOWI5Y2FkZGE0MzVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQgbETteYtNjs+0l+j0kGqauPsge my4gqk8+qMawyIFD8/NLWdOd1N3Ot91CHOmpVk9pszcFpidAiaFx2/htJfIEc+J6 xyaq5siKVRM7neWUIwP9SoXBd1bqIrzu4joLHp0GWkToUIy5Eo7CQZAv8ZW0DrB2 JVRe9Jgu+BQlf73LVqOLu1UDNpa8UEHQ25wsHbzVW+4E207VDxGsPwqA381x76wc yVB9j+t5oeV+i6X6DuMIRWQkMv8WmvMxatYM7P2+tkC0wDPAk3yk8q80VEHOYHrJ CCaWUOozIo8REkYXyd7LlnSymnV4KMrBUopioQJLo5QUhE/5u3Ceakm6pwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFA4aQwV/+wIVMy/QD+idm5yt2kNaMB8GA1UdIwQY MBaAFPuV5llNw3BTzpi9WIkGNZGzXi2AMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS01WG1XVTNEY0ZQT21MMVlpUVkxa2JOZUxZQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmIvNzgxNzhmLTIxOTktNDhlMC05MDFk LWJkYTIxNWI4MTYzNi8xL0RocERCWF83QWhVekw5QVA2SjJibkszYVExby5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYmIvNzgxNzhmLTIxOTktNDhlMC05MDFkLWJkYTIxNWI4MTYz Ni8xLzEtNVhtV1UzRGNGUE9tTDFZaVFZMWtiTmVMWUEuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAK5zLAw DQQCAAIwBwMFAyoK+sAwDQYJKoZIhvcNAQELBQADggEBAI6WSebUeUZOmJG9wH7g 1VZdcJ+cKw17e56/RAFDIgvwNXyYV/kYgaYRDXhczuZ5XM+guQdftCLgUXKFWvP/ FttbWRPXF3LS0qxI2Y2UvVOUjNWdeX5B0UEnqsHDzLfDSncvA4NV0vVHDspOAD4f Ki6Ew2K9ssNyjmy6d1YvwRi+P2VWuC6e5WSjocl11Vf3kV5ssmpt9n5gz0JWdlJy FZqMdCtjvp3LsNBQ9GE+SxjM+/x+KLDQkFT23n20zndKQEqEKcMKmVxSaOk80/Ts CHv0FA92xQPdcNAb9PXAJoVCIHVqap1bjjo0rL990JvALsQqcrBh1NXunMIxqlwI 3R8= -----END CERTIFICATE-----Generated at Sun Jan 25 23:48:30 2026 by rpki-client