This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/djcMZ6pGXyKmA-lIeoWfJvgd_vg.roa File: djcMZ6pGXyKmA-lIeoWfJvgd_vg.roa (raw, json) Hash identifier: 2V8x5uW66gGIUCrfVlUVt3oOyIC3Jcqdd44dr46xxaI= Subject key identifier: 76:37:0C:67:AA:46:5F:22:A6:03:E9:48:7A:85:9F:26:F8:1D:FE:F8 Certificate issuer: /CN=f0ff2c6229af763a99f5349a32510df4a4526143 Certificate serial: 019B7B36725DFDAE2DEEEF6FC22F414DAF0C Authority key identifier: F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/djcMZ6pGXyKmA-lIeoWfJvgd_vg.roa Signing time: Thu 01 Jan 2026 20:18:44 +0000 ROA not before: Thu 01 Jan 2026 20:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15617 IP address blocks: 188.73.192.0/18 maxlen: 24 212.152.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/8P8sYimvdjqZ9TSaMlEN9KRSYUM.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/8P8sYimvdjqZ9TSaMlEN9KRSYUM.mft rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:72:5d:fd:ae:2d:ee:ef:6f:c2:2f:41:4d:af:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f0ff2c6229af763a99f5349a32510df4a4526143 Validity Not Before: Jan 1 20:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=76370c67aa465f22a603e9487a859f26f81dfef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b4:a9:c5:e1:7c:29:07:43:ac:77:d9:a6:74: f3:84:55:0b:08:62:59:a9:48:dc:3b:3f:04:cf:ec: 53:13:c1:e5:fc:85:1b:4e:60:8b:fb:51:ae:c7:fe: 6a:4c:f3:fb:b0:36:8f:ef:ac:51:23:d4:51:cc:37: 25:34:82:d6:96:05:b9:bb:af:8e:34:be:9b:62:d7: d7:2b:bf:ed:5a:7e:b0:30:14:ef:82:36:f9:a8:84: 91:01:21:4e:47:bd:cc:83:ee:23:d8:85:68:b1:30: 27:3e:24:17:63:a4:e1:ce:76:0b:fd:dd:a4:77:c4: c6:75:f0:3f:c8:d7:89:f9:b0:7d:a9:fa:9d:e2:56: e8:33:56:f6:0e:cf:41:04:db:d0:25:6c:18:78:d5: 43:ad:24:e7:7c:9d:16:6c:33:23:92:2d:4a:b6:96: 9a:07:1b:f1:68:6d:30:71:bf:d5:5a:8d:47:4c:85: 07:f1:2b:3b:05:32:67:5c:c2:74:90:5b:dd:2b:db: 27:41:d5:81:86:ba:f9:b2:ff:58:f9:29:89:86:f2: d0:e0:32:4b:ad:13:06:73:fc:89:de:f7:56:51:19: 00:15:eb:9a:50:86:ee:0d:c2:16:a2:f8:65:fa:03: 94:dc:f1:cc:45:eb:a1:a3:f8:3a:0e:97:87:83:7f: aa:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:37:0C:67:AA:46:5F:22:A6:03:E9:48:7A:85:9F:26:F8:1D:FE:F8 X509v3 Authority Key Identifier: keyid:F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/djcMZ6pGXyKmA-lIeoWfJvgd_vg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/8P8sYimvdjqZ9TSaMlEN9KRSYUM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.73.192.0/18 212.152.64.0/18 Signature Algorithm: sha256WithRSAEncryption 71:9c:80:26:90:93:c9:b9:f0:11:c4:09:da:89:a2:58:c6:5a: 6a:a2:79:9b:d0:7f:d1:62:25:7a:95:e5:c0:83:13:ed:19:0d: ed:68:57:44:e0:4c:cd:09:5b:b6:de:da:be:d6:08:e6:42:3f: 28:3d:8d:8b:4a:49:1d:f6:cc:a7:c4:41:f6:b1:60:38:d6:37: fb:9a:70:f8:2d:a5:62:6b:e0:bf:78:5e:01:15:a9:53:07:fd: 78:e4:ed:c8:0c:11:6a:6f:52:89:5c:e2:3c:14:6d:72:5f:65: 8b:24:77:eb:bd:e1:2c:73:da:4c:86:c5:44:0e:7b:ce:22:2c: 6d:be:4b:34:15:1e:71:40:a0:96:e0:6b:fb:c2:6a:00:a4:8f: dc:40:51:cc:0e:41:9b:5e:af:fa:11:ad:db:1a:6a:5d:4e:d0: a7:51:cf:6b:b5:00:c8:0a:b3:2b:fe:e9:b3:3e:32:bb:af:f5: e9:cc:1e:57:90:ef:e1:0c:4d:f3:8a:69:09:85:c0:2c:6c:8a: 64:c3:b3:3b:7b:1f:48:91:69:1a:62:58:bb:0e:3f:c1:6d:a8: 6f:ee:4c:50:fa:18:aa:1a:b6:8e:d4:e7:b1:27:97:82:79:f5: 61:c0:a7:57:a2:ca:1c:43:b4:06:ec:7c:d4:bd:91:be:f6:3f: ba:02:65:70 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NnJd/a4t7u9vwi9BTa8MMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwZmYyYzYyMjlhZjc2M2E5OWY1MzQ5YTMyNTEwZGY0YTQ1 MjYxNDMwHhcNMjYwMTAxMjAxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NjM3MGM2N2FhNDY1ZjIyYTYwM2U5NDg3YTg1OWYyNmY4MWRmZWY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7SpxeF8KQdDrHfZpnTzhFULCGJZ qUjcOz8Ez+xTE8Hl/IUbTmCL+1Gux/5qTPP7sDaP76xRI9RRzDclNILWlgW5u6+O NL6bYtfXK7/tWn6wMBTvgjb5qISRASFOR73Mg+4j2IVosTAnPiQXY6ThznYL/d2k d8TGdfA/yNeJ+bB9qfqd4lboM1b2Ds9BBNvQJWwYeNVDrSTnfJ0WbDMjki1Ktpaa BxvxaG0wcb/VWo1HTIUH8Ss7BTJnXMJ0kFvdK9snQdWBhrr5sv9Y+SmJhvLQ4DJL rRMGc/yJ3vdWURkAFeuaUIbuDcIWovhl+gOU3PHMReuho/g6DpeHg3+qIQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHY3DGeqRl8ipgPpSHqFnyb4Hf74MB8GA1UdIwQY MBaAFPD/LGIpr3Y6mfU0mjJRDfSkUmFDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFA4c1lpbXZkanFaOVRTYU1sRU45S1JTWVVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8wNTFmYTItYzU4MC00YTAyLWExODYt ZTY5ZjdhNWQyZDkwLzEvZGpjTVo2cEdYeUttQS1sSWVvV2ZKdmdkX3ZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy8wNTFmYTItYzU4MC00YTAyLWExODYtZTY5ZjdhNWQyZDkw LzEvOFA4c1lpbXZkanFaOVRTYU1sRU45S1JTWVVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQGvEnAAwQG 1JhAMA0GCSqGSIb3DQEBCwUAA4IBAQBxnIAmkJPJufARxAnaiaJYxlpqonmb0H/R YiV6leXAgxPtGQ3taFdE4EzNCVu23tq+1gjmQj8oPY2LSkkd9synxEH2sWA41jf7 mnD4LaVia+C/eF4BFalTB/145O3IDBFqb1KJXOI8FG1yX2WLJHfrveEsc9pMhsVE DnvOIixtvks0FR5xQKCW4Gv7wmoApI/cQFHMDkGbXq/6Ea3bGmpdTtCnUc9rtQDI CrMr/umzPjK7r/XpzB5XkO/hDE3zimkJhcAsbIpkw7M7ex9IkWkaYli7Dj/Bbahv 7kxQ+hiqGraO1OexJ5eCefVhwKdXosocQ7QG7HzUvZG+9j+6AmVw -----END CERTIFICATE-----Generated at Mon Jan 26 07:07:17 2026 by rpki-client