This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/545258-f8a9-4ceb-b01b-c8df84e7ae29/1/DcG15XyhdtPXOoAizwXiwS-vgWk.roa File: DcG15XyhdtPXOoAizwXiwS-vgWk.roa (raw, json) Hash identifier: 03f0uMllqGm3yVnRgDCB+1RlKyMTqkNgfPJ+f2YUXH4= Subject key identifier: 0D:C1:B5:E5:7C:A1:76:D3:D7:3A:80:22:CF:05:E2:C1:2F:AF:81:69 Certificate issuer: /CN=2962478549d8cc264c2cc57dce71905d176fb88a Certificate serial: 019B7DCA5833995A1722F25BB392CF3FB1C3 Authority key identifier: 29:62:47:85:49:D8:CC:26:4C:2C:C5:7D:CE:71:90:5D:17:6F:B8:8A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWJHhUnYzCZMLMV9znGQXRdvuIo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/545258-f8a9-4ceb-b01b-c8df84e7ae29/1/DcG15XyhdtPXOoAizwXiwS-vgWk.roa Signing time: Fri 02 Jan 2026 08:19:31 +0000 ROA not before: Fri 02 Jan 2026 08:19:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42909 IP address blocks: 194.0.1.0/24 maxlen: 24 2001:678:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/545258-f8a9-4ceb-b01b-c8df84e7ae29/1/KWJHhUnYzCZMLMV9znGQXRdvuIo.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/545258-f8a9-4ceb-b01b-c8df84e7ae29/1/KWJHhUnYzCZMLMV9znGQXRdvuIo.mft rsync://rpki.ripe.net/repository/DEFAULT/KWJHhUnYzCZMLMV9znGQXRdvuIo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:58:33:99:5a:17:22:f2:5b:b3:92:cf:3f:b1:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2962478549d8cc264c2cc57dce71905d176fb88a Validity Not Before: Jan 2 08:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0dc1b5e57ca176d3d73a8022cf05e2c12faf8169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a0:63:be:46:81:76:89:09:63:5a:18:1c:34: 37:ab:d4:84:7b:4f:38:5c:7b:f6:5f:d2:26:97:34: da:82:ed:7e:3b:c5:df:40:bc:d2:f3:a9:ad:f1:97: 06:d3:00:aa:2f:d1:0b:d2:ff:9d:b3:0b:b0:89:36: 13:22:07:40:88:df:08:d7:85:43:36:09:66:2c:a9: d0:b1:c2:10:45:5e:9f:cc:44:e0:c5:49:ca:e8:73: 9e:97:1d:2d:41:f6:26:7a:f4:ba:e8:9b:61:6c:ed: be:47:5c:9a:c7:e2:ee:fc:77:7d:c8:d9:a7:83:64: 7b:a5:fc:73:b0:a6:d8:8c:0f:00:e2:b3:f0:4a:3f: 64:f9:bf:20:52:60:1d:88:5a:48:f3:05:d0:a1:77: 2a:b6:cc:81:1c:fe:1a:11:27:77:61:38:6a:4a:77: a8:1b:59:20:02:7d:ea:0d:c4:86:bb:2d:c3:bd:aa: 23:4a:e7:61:af:00:39:0f:7a:a3:fc:14:fb:0a:a8: 16:8a:56:45:21:3e:86:68:b9:aa:9e:3a:21:70:47: 94:86:a3:38:c7:83:00:74:31:6a:d4:c3:c2:a6:c0: dd:ff:23:c3:49:ad:e5:8b:cc:80:7e:3d:11:fb:f5: 07:42:24:1c:a7:77:d0:c4:63:99:29:ac:b9:7c:1e: 40:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C1:B5:E5:7C:A1:76:D3:D7:3A:80:22:CF:05:E2:C1:2F:AF:81:69 X509v3 Authority Key Identifier: keyid:29:62:47:85:49:D8:CC:26:4C:2C:C5:7D:CE:71:90:5D:17:6F:B8:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWJHhUnYzCZMLMV9znGQXRdvuIo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/545258-f8a9-4ceb-b01b-c8df84e7ae29/1/DcG15XyhdtPXOoAizwXiwS-vgWk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/545258-f8a9-4ceb-b01b-c8df84e7ae29/1/KWJHhUnYzCZMLMV9znGQXRdvuIo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.0.1.0/24 IPv6: 2001:678:4::/48 Signature Algorithm: sha256WithRSAEncryption 3a:ee:a5:5d:d1:93:76:58:48:f7:4c:5d:10:b3:32:27:a3:9c: 31:b4:c8:df:d3:2f:cc:b1:68:a4:0a:4c:95:41:20:a2:8e:6e: 9c:0b:25:0e:18:ce:da:ee:5e:8c:34:cd:dc:e8:b9:5e:1e:25: 44:21:83:cb:1a:2d:c4:8e:78:b1:47:fe:f3:e7:6a:3c:40:2c: 85:53:67:63:4a:a6:74:65:30:ee:43:32:b1:f9:23:2f:32:c9: 55:fb:47:c1:c6:76:af:57:b3:f0:94:ab:e7:a2:d3:1a:d1:40: 2b:d9:12:b5:c4:49:05:3e:a9:dc:0e:60:f4:25:33:9b:87:a8: 6d:40:3a:d9:c5:2a:5b:cf:25:ca:a5:d9:1b:41:54:cb:3f:d3: fa:b4:a3:9a:5f:bc:27:9c:4f:9f:34:0d:37:7a:31:2b:d5:18: eb:67:5b:1e:53:12:69:12:7a:5d:25:08:48:7d:19:83:e3:cd: 9b:6f:b5:35:c0:c3:8d:0e:b0:e4:c6:c5:0b:90:96:65:23:0a: 6d:23:aa:e9:b9:e4:6a:52:6e:20:75:12:eb:77:97:0e:fc:3f: a7:31:5f:60:13:df:2b:02:a0:f3:d1:80:1a:6a:25:b0:8c:71: 0a:83:c7:c5:3c:00:b5:2a:bf:c5:61:12:9e:83:82:92:74:5d: fa:2b:02:61 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt9ylgzmVoXIvJbs5LPP7HDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NjI0Nzg1NDlkOGNjMjY0YzJjYzU3ZGNlNzE5MDVkMTc2 ZmI4OGEwHhcNMjYwMTAyMDgxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZGMxYjVlNTdjYTE3NmQzZDczYTgwMjJjZjA1ZTJjMTJmYWY4MTY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0KBjvkaBdokJY1oYHDQ3q9SEe084 XHv2X9ImlzTagu1+O8XfQLzS86mt8ZcG0wCqL9EL0v+dswuwiTYTIgdAiN8I14VD NglmLKnQscIQRV6fzETgxUnK6HOelx0tQfYmevS66JthbO2+R1yax+Lu/Hd9yNmn g2R7pfxzsKbYjA8A4rPwSj9k+b8gUmAdiFpI8wXQoXcqtsyBHP4aESd3YThqSneo G1kgAn3qDcSGuy3DvaojSudhrwA5D3qj/BT7CqgWilZFIT6GaLmqnjohcEeUhqM4 x4MAdDFq1MPCpsDd/yPDSa3li8yAfj0R+/UHQiQcp3fQxGOZKay5fB5ALwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFA3BteV8oXbT1zqAIs8F4sEvr4FpMB8GA1UdIwQY MBaAFCliR4VJ2MwmTCzFfc5xkF0Xb7iKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1dKSGhVbll6Q1pNTE1WOXpuR1FYUmR2dUlvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC81NDUyNTgtZjhhOS00Y2ViLWIwMWIt YzhkZjg0ZTdhZTI5LzEvRGNHMTVYeWhkdFBYT29BaXp3WGl3Uy12Z1drLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC81NDUyNTgtZjhhOS00Y2ViLWIwMWItYzhkZjg0ZTdhZTI5 LzEvS1dKSGhVbll6Q1pNTE1WOXpuR1FYUmR2dUlvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwgABMA8E AgACMAkDBwAgAQZ4AAQwDQYJKoZIhvcNAQELBQADggEBADrupV3Rk3ZYSPdMXRCz MiejnDG0yN/TL8yxaKQKTJVBIKKObpwLJQ4YztruXow0zdzouV4eJUQhg8saLcSO eLFH/vPnajxALIVTZ2NKpnRlMO5DMrH5Iy8yyVX7R8HGdq9Xs/CUq+ei0xrRQCvZ ErXESQU+qdwOYPQlM5uHqG1AOtnFKlvPJcql2RtBVMs/0/q0o5pfvCecT580DTd6 MSvVGOtnWx5TEmkSel0lCEh9GYPjzZtvtTXAw40OsOTGxQuQlmUjCm0jqum55GpS biB1Eut3lw78P6cxX2AT3ysCoPPRgBpqJbCMcQqDx8U8ALUqv8VhEp6DgpJ0Xfor AmE= -----END CERTIFICATE-----Generated at Mon Jan 26 11:43:11 2026 by rpki-client