This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Dhk104pVcoWBg_wOymIuM8dsCDI.roa File: Dhk104pVcoWBg_wOymIuM8dsCDI.roa (raw, json) Hash identifier: 4T7cY+jyQfPeYLa8Lk3YPaZ+tT8R8/Qe2iEZJINjudA= Subject key identifier: 0E:19:35:D3:8A:55:72:85:81:83:FC:0E:CA:62:2E:33:C7:6C:08:32 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B783496AAB2FAA64EC0990BAD7C9E5414 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Dhk104pVcoWBg_wOymIuM8dsCDI.roa Signing time: Thu 01 Jan 2026 06:17:50 +0000 ROA not before: Thu 01 Jan 2026 06:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212220 IP address blocks: 192.176.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:96:aa:b2:fa:a6:4e:c0:99:0b:ad:7c:9e:54:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e1935d38a5572858183fc0eca622e33c76c0832 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:27:a7:d4:1a:58:11:c3:d7:85:ea:1d:1d:f3: a0:26:ee:ee:3e:69:4f:39:bf:88:d4:9c:76:7e:5c: d4:5b:d3:a1:cc:53:2b:dd:33:cc:5a:33:c5:5d:5f: 06:d7:d4:5e:b0:c8:78:f4:34:52:46:2c:50:c3:3d: af:f9:70:f6:4f:9f:ad:df:d4:d1:a4:3c:e0:22:f7: 38:bf:c6:6f:ab:c1:34:13:38:96:1b:e8:40:0b:fd: 53:71:fa:86:4e:62:ff:66:1c:74:2d:36:b6:a4:2c: ac:ad:a5:40:80:3a:f3:64:93:a7:b1:31:53:8f:73: 79:ba:c4:f0:5e:63:7b:87:b7:f1:e7:cd:eb:84:ab: e8:e7:ea:a7:f1:89:2b:61:96:d3:1c:24:1b:21:4d: 83:d4:f0:81:86:e2:00:1f:3c:a3:c5:4a:61:fd:3e: c0:c3:06:ed:c0:99:12:21:99:59:ec:b2:55:35:b6: 7b:be:a2:68:bd:bf:39:f1:ed:9c:ab:22:7a:b9:20: 25:4a:ca:3c:b4:e1:a4:9e:db:a8:ea:5e:6a:e1:91: c3:56:e9:93:95:f3:eb:84:05:9d:18:53:22:46:6d: 96:8d:c9:5e:a7:28:47:53:c3:f6:29:e0:46:1f:0d: 6d:41:cd:99:a0:dc:d0:30:f7:14:d0:a2:a4:9d:c3: 47:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:19:35:D3:8A:55:72:85:81:83:FC:0E:CA:62:2E:33:C7:6C:08:32 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Dhk104pVcoWBg_wOymIuM8dsCDI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.176.172.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:4c:36:7e:94:c8:ee:59:85:b7:d9:0d:b4:99:18:ad:70:31: e0:da:b1:87:80:5a:3c:d0:1c:04:50:f1:a6:54:76:8c:a0:97: 9a:57:23:38:75:d6:e0:6d:db:49:6f:22:95:0a:7a:96:60:87: 80:35:ba:d8:fe:fa:46:90:fb:2f:8f:09:ac:e2:05:4a:d3:95: c5:3c:72:bd:76:87:44:9f:c8:fc:cd:d9:01:a0:8a:f0:a4:05: 3e:79:db:a5:5b:07:12:53:ec:68:8b:7a:af:5f:71:40:7c:5d: c4:2d:61:30:83:38:45:07:c5:61:30:c9:75:3f:b6:a3:73:1b: d3:83:1c:14:58:06:62:4b:f6:3c:20:0c:76:6e:c4:80:57:7e: b0:ac:ce:fa:37:66:d9:db:9c:84:d1:5a:f0:98:af:7a:81:8d: a5:66:0a:2e:6d:ba:44:9d:f0:b0:f0:3a:cd:15:10:14:2c:e4: 30:02:8e:4e:85:45:57:cb:e7:c4:15:40:c0:a9:4a:ef:b6:5b: af:9d:e2:1d:ee:6f:f4:4f:d0:86:f9:26:03:e2:a0:3d:8b:56: 91:49:f2:8b:eb:f7:44:8f:33:93:b4:47:18:47:e9:82:6f:13: 9d:53:d1:75:a7:a0:a5:ef:6a:ff:0b:32:5b:fe:bb:9f:2d:00: 03:00:21:5b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NJaqsvqmTsCZC618nlQUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTE5MzVkMzhhNTU3Mjg1ODE4M2ZjMGVjYTYyMmUzM2M3NmMwODMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwyen1BpYEcPXheodHfOgJu7uPmlP Ob+I1Jx2flzUW9OhzFMr3TPMWjPFXV8G19ResMh49DRSRixQwz2v+XD2T5+t39TR pDzgIvc4v8Zvq8E0EziWG+hAC/1TcfqGTmL/Zhx0LTa2pCysraVAgDrzZJOnsTFT j3N5usTwXmN7h7fx583rhKvo5+qn8YkrYZbTHCQbIU2D1PCBhuIAHzyjxUph/T7A wwbtwJkSIZlZ7LJVNbZ7vqJovb858e2cqyJ6uSAlSso8tOGkntuo6l5q4ZHDVumT lfPrhAWdGFMiRm2WjclepyhHU8P2KeBGHw1tQc2ZoNzQMPcU0KKkncNHFQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA4ZNdOKVXKFgYP8DspiLjPHbAgyMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvRGhrMTA0cFZjb1dCZ193T3ltSXVNOGRzQ0RJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwLCsMA0G CSqGSIb3DQEBCwUAA4IBAQA+TDZ+lMjuWYW32Q20mRitcDHg2rGHgFo80BwEUPGm VHaMoJeaVyM4ddbgbdtJbyKVCnqWYIeANbrY/vpGkPsvjwms4gVK05XFPHK9dodE n8j8zdkBoIrwpAU+edulWwcSU+xoi3qvX3FAfF3ELWEwgzhFB8VhMMl1P7ajcxvT gxwUWAZiS/Y8IAx2bsSAV36wrM76N2bZ25yE0VrwmK96gY2lZgoubbpEnfCw8DrN FRAULOQwAo5OhUVXy+fEFUDAqUrvtluvneId7m/0T9CG+SYD4qA9i1aRSfKL6/dE jzOTtEcYR+mCbxOdU9F1p6Cl72r/CzJb/rufLQADACFb -----END CERTIFICATE-----Generated at Sun Jan 25 10:31:21 2026 by rpki-client