This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/02d3f6-4301-4be5-8c37-0375a9c32b00/1/doyYOGkkycNxN7CI_sa7Q6rCkOM.roa File: doyYOGkkycNxN7CI_sa7Q6rCkOM.roa (raw, json) Hash identifier: woc85YZFaTyz+Qogag/CUtpAQY4A09lS0R0JgcvwyKk= Subject key identifier: 76:8C:98:38:69:24:C9:C3:71:37:B0:88:FE:C6:BB:43:AA:C2:90:E3 Certificate issuer: /CN=67e24c7284ef4887e45d4ccd9bde679cd9ab4f00 Certificate serial: 019B7EA6C30A797A3BE649B521AAE52C8979 Authority key identifier: 67:E2:4C:72:84:EF:48:87:E4:5D:4C:CD:9B:DE:67:9C:D9:AB:4F:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z-JMcoTvSIfkXUzNm95nnNmrTwA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/02d3f6-4301-4be5-8c37-0375a9c32b00/1/doyYOGkkycNxN7CI_sa7Q6rCkOM.roa Signing time: Fri 02 Jan 2026 12:20:16 +0000 ROA not before: Fri 02 Jan 2026 12:20:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214122 IP address blocks: 45.157.3.0/24 maxlen: 24 212.2.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/02d3f6-4301-4be5-8c37-0375a9c32b00/1/Z-JMcoTvSIfkXUzNm95nnNmrTwA.crl rsync://rpki.ripe.net/repository/DEFAULT/c0/02d3f6-4301-4be5-8c37-0375a9c32b00/1/Z-JMcoTvSIfkXUzNm95nnNmrTwA.mft rsync://rpki.ripe.net/repository/DEFAULT/Z-JMcoTvSIfkXUzNm95nnNmrTwA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:c3:0a:79:7a:3b:e6:49:b5:21:aa:e5:2c:89:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67e24c7284ef4887e45d4ccd9bde679cd9ab4f00 Validity Not Before: Jan 2 12:20:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=768c98386924c9c37137b088fec6bb43aac290e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:98:bc:12:8a:05:47:48:e8:10:02:3a:57:4c: 3b:d9:ac:5e:9e:29:ba:1d:d2:45:bd:0b:60:40:b4: fc:9b:f8:af:45:0c:47:1d:60:fb:a7:b2:38:09:87: 41:f3:00:18:23:86:f0:e4:a0:a9:b8:9f:5c:3a:f6: 07:fb:b6:61:2d:53:c0:31:3e:7b:27:13:09:f4:06: 81:b0:23:a8:18:93:f5:67:9f:7d:09:4a:8b:b8:ba: 6a:73:a0:81:bc:79:c4:c5:38:af:0a:5c:5c:60:e5: a2:06:da:57:64:00:fa:9e:dc:8b:6e:e0:59:c2:d9: d5:c9:2b:26:3b:25:23:ee:3e:e9:6c:0d:8d:bf:4c: a2:0d:c1:dc:93:2e:29:db:1f:ef:17:5f:8a:dc:fb: bb:1c:94:2f:9a:1b:87:b5:c0:57:61:8c:54:44:c9: 01:00:b1:80:c9:87:14:0f:cb:41:e5:7a:9b:cd:47: 8e:ec:90:3d:16:31:4d:5a:33:4e:f4:93:5b:f9:ab: e1:4b:cb:ed:c5:a8:2b:21:5c:6f:97:19:a7:bb:3c: f1:88:23:09:95:1d:48:e9:df:16:9d:c4:40:c7:6b: 92:6f:83:80:34:ff:aa:f7:fe:a3:ff:ef:a9:0c:89: 17:8c:df:75:75:3b:47:bc:47:0a:5f:1c:1d:c6:d6: 34:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:8C:98:38:69:24:C9:C3:71:37:B0:88:FE:C6:BB:43:AA:C2:90:E3 X509v3 Authority Key Identifier: keyid:67:E2:4C:72:84:EF:48:87:E4:5D:4C:CD:9B:DE:67:9C:D9:AB:4F:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z-JMcoTvSIfkXUzNm95nnNmrTwA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/02d3f6-4301-4be5-8c37-0375a9c32b00/1/doyYOGkkycNxN7CI_sa7Q6rCkOM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/02d3f6-4301-4be5-8c37-0375a9c32b00/1/Z-JMcoTvSIfkXUzNm95nnNmrTwA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.157.3.0/24 212.2.248.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:49:90:84:65:d5:5e:7e:fc:13:3e:08:c4:e4:54:9e:5f:f2: fb:f8:ca:8a:29:99:cb:90:cd:e7:73:1c:79:b0:8c:e2:2f:cc: 70:b2:80:00:b5:cd:41:71:d9:00:ec:5c:30:6b:52:8b:3b:8a: 86:26:7a:59:01:b0:51:22:ae:ad:3b:07:2d:3a:61:e2:c7:6a: b8:d6:75:1a:81:35:ca:25:43:4a:54:cc:54:b2:0c:8b:8a:bc: 19:12:2a:98:64:b2:f0:1a:a8:3d:d8:fa:ed:b9:48:a7:1a:ce: e0:61:83:dd:e1:1d:c7:02:eb:18:ab:75:23:2f:07:cf:46:c6: bb:0c:4c:c0:05:c8:81:70:9a:0c:77:20:99:ab:a9:95:19:2d: 76:60:e0:d3:fd:96:b3:08:fa:57:05:a2:ef:66:da:78:62:06: 67:5b:0f:60:e9:9b:cd:7f:bc:20:32:5d:0a:f3:e0:cb:5b:fa: 21:11:a0:89:36:6f:61:1d:72:75:38:87:24:0d:5f:b6:1a:84: 24:ed:47:81:c2:bd:3f:72:61:59:2f:22:1e:10:18:d5:b8:ce: 6b:69:bd:d6:2b:4e:12:fb:b9:4f:7f:27:7f:28:d7:e3:ac:68: 36:ff:36:94:51:73:10:48:b4:28:3d:1d:25:e9:54:bb:5f:3c: 52:90:59:4a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+psMKeXo75km1IarlLIl5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZTI0YzcyODRlZjQ4ODdlNDVkNGNjZDliZGU2NzljZDlh YjRmMDAwHhcNMjYwMTAyMTIyMDE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjhjOTgzODY5MjRjOWMzNzEzN2IwODhmZWM2YmI0M2FhYzI5MGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5i8EooFR0joEAI6V0w72axenim6 HdJFvQtgQLT8m/ivRQxHHWD7p7I4CYdB8wAYI4bw5KCpuJ9cOvYH+7ZhLVPAMT57 JxMJ9AaBsCOoGJP1Z599CUqLuLpqc6CBvHnExTivClxcYOWiBtpXZAD6ntyLbuBZ wtnVySsmOyUj7j7pbA2Nv0yiDcHcky4p2x/vF1+K3Pu7HJQvmhuHtcBXYYxURMkB ALGAyYcUD8tB5XqbzUeO7JA9FjFNWjNO9JNb+avhS8vtxagrIVxvlxmnuzzxiCMJ lR1I6d8WncRAx2uSb4OANP+q9/6j/++pDIkXjN91dTtHvEcKXxwdxtY0NwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHaMmDhpJMnDcTewiP7Gu0OqwpDjMB8GA1UdIwQY MBaAFGfiTHKE70iH5F1MzZveZ5zZq08AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWi1KTWNvVHZTSWZrWFV6Tm05NW5uTm1yVHdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8wMmQzZjYtNDMwMS00YmU1LThjMzct MDM3NWE5YzMyYjAwLzEvZG95WU9Ha2t5Y054TjdDSV9zYTdRNnJDa09NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMC8wMmQzZjYtNDMwMS00YmU1LThjMzctMDM3NWE5YzMyYjAw LzEvWi1KTWNvVHZTSWZrWFV6Tm05NW5uTm1yVHdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZ0DAwQD 1AL4MA0GCSqGSIb3DQEBCwUAA4IBAQAPSZCEZdVefvwTPgjE5FSeX/L7+MqKKZnL kM3ncxx5sIziL8xwsoAAtc1BcdkA7Fwwa1KLO4qGJnpZAbBRIq6tOwctOmHix2q4 1nUagTXKJUNKVMxUsgyLirwZEiqYZLLwGqg92PrtuUinGs7gYYPd4R3HAusYq3Uj LwfPRsa7DEzABciBcJoMdyCZq6mVGS12YODT/ZazCPpXBaLvZtp4YgZnWw9g6ZvN f7wgMl0K8+DLW/ohEaCJNm9hHXJ1OIckDV+2GoQk7UeBwr0/cmFZLyIeEBjVuM5r ab3WK04S+7lPfyd/KNfjrGg2/zaUUXMQSLQoPR0l6VS7XzxSkFlK -----END CERTIFICATE-----Generated at Sun Jan 25 21:28:52 2026 by rpki-client