This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/DfeNujcdVW4JptrY33F8vf18Tr4.roa File: DfeNujcdVW4JptrY33F8vf18Tr4.roa (raw, json) Hash identifier: UPzEfNJaqqRum5dfXxi9DQVBD/nNZpbvq75zB/VZdhk= Subject key identifier: 0D:F7:8D:BA:37:1D:55:6E:09:A6:DA:D8:DF:71:7C:BD:FD:7C:4E:BE Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003 Certificate serial: 019BD2D390A73E3E74A66298A3EC7002AC5B Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/DfeNujcdVW4JptrY33F8vf18Tr4.roa Signing time: Sun 18 Jan 2026 20:37:19 +0000 ROA not before: Sun 18 Jan 2026 20:37:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215439 IP address blocks: 64.188.64.0/22 maxlen: 24 77.239.125.0/24 maxlen: 24 144.31.14.0/24 maxlen: 24 144.31.30.0/24 maxlen: 24 144.31.95.0/24 maxlen: 24 144.31.164.0/22 maxlen: 24 144.31.203.0/24 maxlen: 24 144.31.207.0/24 maxlen: 24 144.31.212.0/24 maxlen: 24 144.31.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.mft rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d2:d3:90:a7:3e:3e:74:a6:62:98:a3:ec:70:02:ac:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003 Validity Not Before: Jan 18 20:37:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0df78dba371d556e09a6dad8df717cbdfd7c4ebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ac:7a:e0:9a:23:4f:7b:46:4c:43:8e:85:7f: 30:3c:83:b4:de:c3:89:ed:a4:78:46:00:5f:0f:e7: 1d:a9:f8:de:88:e2:1b:6c:ac:71:e3:17:3c:89:e9: 40:be:ba:1c:d4:3e:52:81:57:3f:6d:78:7b:9c:03: 60:f1:3a:8f:dc:ab:92:72:32:6f:f1:8c:e5:e4:9a: 97:46:65:e0:8f:83:ba:3a:a9:4e:01:56:c4:76:e3: 22:f7:16:a8:7c:10:25:cd:a4:9f:15:04:6b:91:23: 1d:ed:de:df:9b:d0:b3:87:c1:ca:dd:05:53:c6:e1: 93:a7:a3:ca:1d:00:e6:e1:13:ec:91:3f:29:3d:c9: 01:18:c7:ba:2f:a7:02:b6:40:a7:8c:44:ed:cd:46: 60:bf:cd:f5:46:f7:16:0d:d3:e7:d8:66:43:c6:33: ed:cf:56:f6:79:34:1f:00:28:9e:a0:d9:8f:43:72: 7a:4c:ed:7f:32:30:fd:48:51:ea:14:81:b1:4a:07: b5:c1:48:ab:b0:68:5f:d8:11:31:35:ac:6e:9d:72: 8a:58:39:e2:db:53:e5:af:e5:c4:3b:81:15:5e:3e: b0:46:3a:2e:ed:16:a3:a3:9f:00:cf:b5:51:31:05: e1:ba:d7:eb:24:6c:fc:d7:a9:fd:1f:b5:99:a2:80: 87:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F7:8D:BA:37:1D:55:6E:09:A6:DA:D8:DF:71:7C:BD:FD:7C:4E:BE X509v3 Authority Key Identifier: keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/DfeNujcdVW4JptrY33F8vf18Tr4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.188.64.0/22 77.239.125.0/24 144.31.14.0/24 144.31.30.0/24 144.31.95.0/24 144.31.164.0/22 144.31.203.0/24 144.31.207.0/24 144.31.212.0/24 144.31.224.0/24 Signature Algorithm: sha256WithRSAEncryption 89:0d:18:a8:76:3d:63:90:a7:3d:e8:cb:ad:a7:35:a1:63:eb: 81:ef:90:8d:49:c4:47:22:4c:a4:20:81:a9:55:60:48:bc:70: e6:82:04:05:d6:88:9f:62:f3:32:26:14:1f:1f:74:6f:32:b1: 75:1a:9b:52:70:16:03:7b:2a:61:97:19:3b:c6:46:90:e1:60: 1e:3f:70:ab:d1:6e:fe:cb:67:83:64:9e:68:2d:0e:63:66:15: 36:3f:ad:95:d3:8e:e9:ff:6c:d6:98:5c:21:a3:6e:ee:68:00: 2e:79:b3:00:09:00:b0:c7:18:e0:59:60:db:39:10:cb:9e:dc: e4:eb:0a:cd:fe:31:b6:24:bc:79:df:3d:1c:3d:10:e7:77:81: bf:57:ea:11:73:c2:4c:ae:39:c2:1e:7a:44:6f:3a:0e:04:b5: 19:01:d2:da:f9:0c:c7:02:3b:31:c6:8f:84:29:65:e5:f0:94: bb:a7:9c:fd:bc:bf:d8:19:44:04:2d:82:bf:dc:72:46:ac:a8: 4a:ed:d1:6b:49:8a:34:79:08:33:d2:0c:c9:2c:8b:0f:fb:02: e0:0a:34:d5:3b:a4:1d:e2:6a:f5:90:54:97:95:cd:c8:ae:2b: 23:bf:94:d6:95:ac:58:73:44:5a:a1:9c:a8:d0:fb:e0:33:58: bb:a4:6a:96 -----BEGIN CERTIFICATE----- MIIFMzCCBBugAwIBAgISAZvS05CnPj50pmKYo+xwAqxbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4 NDAwMDMwHhcNMjYwMTE4MjAzNzE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGY3OGRiYTM3MWQ1NTZlMDlhNmRhZDhkZjcxN2NiZGZkN2M0ZWJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoax64JojT3tGTEOOhX8wPIO03sOJ 7aR4RgBfD+cdqfjeiOIbbKxx4xc8ielAvroc1D5SgVc/bXh7nANg8TqP3KuScjJv 8Yzl5JqXRmXgj4O6OqlOAVbEduMi9xaofBAlzaSfFQRrkSMd7d7fm9Czh8HK3QVT xuGTp6PKHQDm4RPskT8pPckBGMe6L6cCtkCnjETtzUZgv831RvcWDdPn2GZDxjPt z1b2eTQfACieoNmPQ3J6TO1/MjD9SFHqFIGxSge1wUirsGhf2BExNaxunXKKWDni 21Plr+XEO4EVXj6wRjou7Rajo58Az7VRMQXhutfrJGz816n9H7WZooCHfQIDAQAB o4ICPzCCAjswHQYDVR0OBBYEFA33jbo3HVVuCaba2N9xfL39fE6+MB8GA1UdIwQY MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt MTQzOTY3YThmZTA4LzEvRGZlTnVqY2RWVzRKcHRyWTMzRjh2ZjE4VHI0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4 LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFUGCCsGAQUFBwEHAQH/BEYwRDBCBAIAATA8AwQCQLxAAwQA Te99AwQAkB8OAwQAkB8eAwQAkB9fAwQCkB+kAwQAkB/LAwQAkB/PAwQAkB/UAwQA kB/gMA0GCSqGSIb3DQEBCwUAA4IBAQCJDRiodj1jkKc96MutpzWhY+uB75CNScRH IkykIIGpVWBIvHDmggQF1oifYvMyJhQfH3RvMrF1GptScBYDeyphlxk7xkaQ4WAe P3Cr0W7+y2eDZJ5oLQ5jZhU2P62V047p/2zWmFwho27uaAAuebMACQCwxxjgWWDb ORDLntzk6wrN/jG2JLx53z0cPRDnd4G/V+oRc8JMrjnCHnpEbzoOBLUZAdLa+QzH Ajsxxo+EKWXl8JS7p5z9vL/YGUQELYK/3HJGrKhK7dFrSYo0eQgz0gzJLIsP+wLg CjTVO6Qd4mr1kFSXlc3Irisjv5TWlaxYc0RaoZyo0PvgM1i7pGqW -----END CERTIFICATE-----Generated at Sun Jan 25 08:49:00 2026 by rpki-client