This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/doXoLHTiktReTfBMpV7aaxzN6w4.roa File: doXoLHTiktReTfBMpV7aaxzN6w4.roa (raw, json) Hash identifier: u65ppJ58k3Ix5VH9in1iUfkowYq8lbUh/JWax+/tYoM= Subject key identifier: 76:85:E8:2C:74:E2:92:D4:5E:4D:F0:4C:A5:5E:DA:6B:1C:CD:EB:0E Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Certificate serial: 019B7F15CFAB2FFB9CA03A59B1AF9329BEDA Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/doXoLHTiktReTfBMpV7aaxzN6w4.roa Signing time: Fri 02 Jan 2026 14:21:34 +0000 ROA not before: Fri 02 Jan 2026 14:21:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215411 IP address blocks: 45.67.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:cf:ab:2f:fb:9c:a0:3a:59:b1:af:93:29:be:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Validity Not Before: Jan 2 14:21:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7685e82c74e292d45e4df04ca55eda6b1ccdeb0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bb:b6:74:49:c7:0e:dd:38:3e:dd:24:fc:40: c2:bc:b6:ba:96:40:94:8a:bb:87:c7:1d:35:53:a2: f1:d4:ee:75:d2:96:4d:1c:6a:2c:8c:46:71:7f:a6: b9:70:84:32:22:16:05:69:f6:51:64:3f:51:8b:3c: 78:cd:af:de:bd:70:3e:ee:da:cc:25:d4:4b:c2:02: bf:44:8d:2a:33:49:a1:60:e9:c6:7f:3a:23:24:55: ad:44:b7:fd:b0:b4:a7:a2:b1:dd:90:81:9d:2d:2c: 63:df:70:cd:54:61:a6:62:96:76:23:9f:eb:23:a8: 5c:2a:29:2d:0f:21:90:1d:1f:4f:be:1b:27:d2:b5: a9:63:d9:83:6f:a1:fc:74:1f:b5:b4:0b:a0:61:50: f7:0d:59:2a:2c:6c:f6:50:58:16:a8:a6:1b:7c:87: 98:15:38:95:03:85:0c:4d:a1:e7:ab:a3:6b:b5:1c: 2e:d3:6e:7c:b8:b5:21:7e:81:87:56:d1:55:fb:6f: 7d:ec:a3:78:8d:61:15:f7:10:40:55:91:30:95:53: 5b:4a:2a:14:44:3a:56:ff:e2:75:e3:e2:45:40:24: 04:10:8a:b0:7f:f9:6e:46:16:74:6c:79:4c:f4:50: 93:21:5e:a1:ce:84:65:ce:30:d8:a6:a0:77:63:cf: 09:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:85:E8:2C:74:E2:92:D4:5E:4D:F0:4C:A5:5E:DA:6B:1C:CD:EB:0E X509v3 Authority Key Identifier: keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/doXoLHTiktReTfBMpV7aaxzN6w4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.67.203.0/24 Signature Algorithm: sha256WithRSAEncryption 76:19:52:69:cc:26:16:5c:29:07:a2:53:a0:16:d1:8d:12:b5: b9:1e:c7:77:09:7b:61:d1:f2:54:9b:76:33:45:4e:b0:b5:c5: cd:eb:5d:30:b1:55:ba:e9:57:15:6f:75:4f:63:9d:df:47:de: 26:da:12:1c:7c:36:16:dc:a7:19:71:a2:80:7b:b8:18:75:70: 15:aa:c2:9e:c5:21:98:ac:87:0b:41:43:70:5d:d6:cb:88:cc: 10:9c:94:a6:1b:fb:3e:2b:0e:3b:b6:cb:bc:9a:b5:27:60:d4: ec:2c:9c:9b:a0:7d:82:24:17:ac:1c:e6:0e:4b:50:8c:51:34: 8c:88:47:33:41:43:52:e1:ae:3a:0c:16:a7:81:a7:a1:b4:8d: 8b:8d:43:e8:f6:dd:c1:61:19:80:ef:1a:9d:a6:e1:f3:c4:90: 94:4b:8f:f7:dd:7b:33:71:e8:59:d2:25:04:08:0d:8f:36:03: 39:10:64:ea:2d:52:e9:42:4a:ee:d2:2c:ee:da:4a:72:9c:d7: 18:7e:4b:7c:d1:f7:f2:53:28:35:14:f5:d5:9b:67:c6:7a:bf: c6:d8:43:41:5f:25:3c:39:97:c3:13:be:dc:ae:d6:95:5e:9e: 1b:26:1e:51:76:c0:bf:fe:5a:ef:9c:8d:d8:c2:f3:19:a9:e1: b7:6e:3b:02 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/Fc+rL/ucoDpZsa+TKb7aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw MjNlYmUwHhcNMjYwMTAyMTQyMTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Njg1ZTgyYzc0ZTI5MmQ0NWU0ZGYwNGNhNTVlZGE2YjFjY2RlYjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqru2dEnHDt04Pt0k/EDCvLa6lkCU iruHxx01U6Lx1O510pZNHGosjEZxf6a5cIQyIhYFafZRZD9Rizx4za/evXA+7trM JdRLwgK/RI0qM0mhYOnGfzojJFWtRLf9sLSnorHdkIGdLSxj33DNVGGmYpZ2I5/r I6hcKiktDyGQHR9Pvhsn0rWpY9mDb6H8dB+1tAugYVD3DVkqLGz2UFgWqKYbfIeY FTiVA4UMTaHnq6NrtRwu0258uLUhfoGHVtFV+2997KN4jWEV9xBAVZEwlVNbSioU RDpW/+J14+JFQCQEEIqwf/luRhZ0bHlM9FCTIV6hzoRlzjDYpqB3Y88JnwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHaF6Cx04pLUXk3wTKVe2msczesOMB8GA1UdIwQY MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt OTlhY2I5OWNlNzU0LzEvZG9Yb0xIVGlrdFJlVGZCTXBWN2FheHpONnc0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0 LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUPLMA0G CSqGSIb3DQEBCwUAA4IBAQB2GVJpzCYWXCkHolOgFtGNErW5Hsd3CXth0fJUm3Yz RU6wtcXN610wsVW66VcVb3VPY53fR94m2hIcfDYW3KcZcaKAe7gYdXAVqsKexSGY rIcLQUNwXdbLiMwQnJSmG/s+Kw47tsu8mrUnYNTsLJyboH2CJBesHOYOS1CMUTSM iEczQUNS4a46DBangaehtI2LjUPo9t3BYRmA7xqdpuHzxJCUS4/33XszcehZ0iUE CA2PNgM5EGTqLVLpQkru0izu2kpynNcYfkt80ffyUyg1FPXVm2fGer/G2ENBXyU8 OZfDE77crtaVXp4bJh5RdsC//lrvnI3YwvMZqeG3bjsC -----END CERTIFICATE-----Generated at Sun Jan 25 17:34:01 2026 by rpki-client