This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/dnwGTH0FieAd94oqN2OTApOST_Q.roa File: dnwGTH0FieAd94oqN2OTApOST_Q.roa (raw, json) Hash identifier: aIR54WoUK0WT8TJ7U0JAbOT4DOCp5Eb6XBrXkWKbnto= Subject key identifier: 76:7C:06:4C:7D:05:89:E0:1D:F7:8A:2A:37:63:93:02:93:92:4F:F4 Certificate issuer: /CN=ebfabfa628063f6b8e9888566f5f3fcfa798c621 Certificate serial: 019B7C12A6B563FD193700A0E4956C92F040 Authority key identifier: EB:FA:BF:A6:28:06:3F:6B:8E:98:88:56:6F:5F:3F:CF:A7:98:C6:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/dnwGTH0FieAd94oqN2OTApOST_Q.roa Signing time: Fri 02 Jan 2026 00:19:15 +0000 ROA not before: Fri 02 Jan 2026 00:19:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24634 IP address blocks: 80.79.144.0/20 maxlen: 24 185.125.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/6_q_pigGP2uOmIhWb18_z6eYxiE.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/6_q_pigGP2uOmIhWb18_z6eYxiE.mft rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:a6:b5:63:fd:19:37:00:a0:e4:95:6c:92:f0:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ebfabfa628063f6b8e9888566f5f3fcfa798c621 Validity Not Before: Jan 2 00:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=767c064c7d0589e01df78a2a3763930293924ff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:20:04:89:2a:72:4f:41:43:57:67:04:2a:64: 11:9c:e4:f5:dc:47:57:10:d7:3f:1f:ba:e1:3b:1e: 17:21:14:d5:ec:ce:eb:23:01:12:b7:ff:67:9a:c2: 5d:f0:19:d0:2c:b2:09:79:96:51:5a:83:dc:81:39: de:2c:77:7e:91:49:cb:b1:8b:38:ec:4f:81:f9:28: 38:83:dd:ab:f4:58:e1:d2:2c:5a:a5:4a:e2:44:dd: 09:f1:4a:7e:9d:f1:b7:ed:ba:64:c2:15:67:c0:26: f9:8f:73:ad:4f:3d:0e:e6:4c:c0:63:c5:39:f1:fd: 34:62:da:24:41:74:6e:72:67:6f:f4:e5:36:c2:23: c2:fc:00:98:e9:fa:d6:24:2f:35:e9:25:94:f8:b4: 2b:1d:2f:40:1c:24:91:29:60:4b:e2:b6:ca:89:78: 48:64:b3:37:4b:fd:c8:09:f8:76:85:d8:d5:24:e9: ae:d1:76:b6:a5:5c:9b:8d:3b:b4:e2:7b:3b:9d:73: e9:9e:c7:7d:c2:aa:60:de:bc:dc:54:dd:5f:f1:dc: 98:1b:56:ec:9b:82:56:e8:53:8d:df:0f:5c:6c:5f: f8:34:33:ec:66:8f:7c:e6:51:e3:27:85:d5:12:88: 7c:b0:3f:70:76:fc:b4:23:3e:86:fe:1b:a7:e0:aa: dc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7C:06:4C:7D:05:89:E0:1D:F7:8A:2A:37:63:93:02:93:92:4F:F4 X509v3 Authority Key Identifier: keyid:EB:FA:BF:A6:28:06:3F:6B:8E:98:88:56:6F:5F:3F:CF:A7:98:C6:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_q_pigGP2uOmIhWb18_z6eYxiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/dnwGTH0FieAd94oqN2OTApOST_Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a3a311-3784-4818-abf9-e5fd6e9842ab/1/6_q_pigGP2uOmIhWb18_z6eYxiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.79.144.0/20 185.125.156.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:de:ff:75:c1:ed:e8:98:f9:fb:2b:d3:89:33:6b:8f:b7:03: 2c:d9:c0:a2:e2:aa:cc:25:03:9f:9d:40:15:d7:81:b7:43:8c: 53:cf:42:64:d2:a6:c5:0b:d6:ca:7b:33:a5:44:65:b4:1f:67: 27:4f:37:46:ef:ac:03:42:55:ea:c4:18:6e:da:55:79:ef:4c: be:32:c2:d8:96:c7:fb:eb:31:9e:be:d7:8b:03:c1:b7:9b:aa: 6a:94:9c:59:a0:e9:67:9e:67:30:3a:db:d5:9b:46:9a:d2:57: 29:05:f2:73:de:91:b1:97:16:ca:4e:a2:79:b0:25:79:ae:b1: 26:82:41:08:00:7b:2c:9f:1d:86:d8:94:b0:da:b6:59:5a:61: f0:e0:a4:d7:8c:54:5a:ec:e1:5b:91:1c:81:9b:32:f1:c9:d1: ad:25:c5:3d:18:01:1f:cb:db:cb:5f:6c:9e:66:fe:52:3c:11: e2:53:7a:3f:ce:48:c7:97:ea:5f:a0:23:e3:62:8d:e7:65:a0: 4e:60:d3:44:ce:15:ca:3e:00:7b:b3:08:70:05:e3:42:62:7e: cb:ea:b8:25:bd:97:6c:eb:b8:e7:df:1a:5b:cb:95:59:ad:05: df:38:8f:f1:fd:68:b8:3c:1b:a6:1e:ee:33:f4:cc:57:b5:58: dd:4b:d8:68 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8Eqa1Y/0ZNwCg5JVskvBAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGViZmFiZmE2MjgwNjNmNmI4ZTk4ODg1NjZmNWYzZmNmYTc5 OGM2MjEwHhcNMjYwMTAyMDAxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjdjMDY0YzdkMDU4OWUwMWRmNzhhMmEzNzYzOTMwMjkzOTI0ZmY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SAEiSpyT0FDV2cEKmQRnOT13EdX ENc/H7rhOx4XIRTV7M7rIwESt/9nmsJd8BnQLLIJeZZRWoPcgTneLHd+kUnLsYs4 7E+B+Sg4g92r9Fjh0ixapUriRN0J8Up+nfG37bpkwhVnwCb5j3OtTz0O5kzAY8U5 8f00YtokQXRucmdv9OU2wiPC/ACY6frWJC816SWU+LQrHS9AHCSRKWBL4rbKiXhI ZLM3S/3ICfh2hdjVJOmu0Xa2pVybjTu04ns7nXPpnsd9wqpg3rzcVN1f8dyYG1bs m4JW6FON3w9cbF/4NDPsZo985lHjJ4XVEoh8sD9wdvy0Iz6G/hun4KrcRwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHZ8Bkx9BYngHfeKKjdjkwKTkk/0MB8GA1UdIwQY MBaAFOv6v6YoBj9rjpiIVm9fP8+nmMYhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNl9xX3BpZ0dQMnVPbUloV2IxOF96NmVZeGlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9hM2EzMTEtMzc4NC00ODE4LWFiZjkt ZTVmZDZlOTg0MmFiLzEvZG53R1RIMEZpZUFkOTRvcU4yT1RBcE9TVF9RLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9hM2EzMTEtMzc4NC00ODE4LWFiZjktZTVmZDZlOTg0MmFi LzEvNl9xX3BpZ0dQMnVPbUloV2IxOF96NmVZeGlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQEUE+QAwQC uX2cMA0GCSqGSIb3DQEBCwUAA4IBAQAO3v91we3omPn7K9OJM2uPtwMs2cCi4qrM JQOfnUAV14G3Q4xTz0Jk0qbFC9bKezOlRGW0H2cnTzdG76wDQlXqxBhu2lV570y+ MsLYlsf76zGevteLA8G3m6pqlJxZoOlnnmcwOtvVm0aa0lcpBfJz3pGxlxbKTqJ5 sCV5rrEmgkEIAHssnx2G2JSw2rZZWmHw4KTXjFRa7OFbkRyBmzLxydGtJcU9GAEf y9vLX2yeZv5SPBHiU3o/zkjHl+pfoCPjYo3nZaBOYNNEzhXKPgB7swhwBeNCYn7L 6rglvZds67jn3xpby5VZrQXfOI/x/Wi4PBumHu4z9MxXtVjdS9ho -----END CERTIFICATE-----Generated at Mon Jan 26 04:38:57 2026 by rpki-client