This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/df4tfV0jAIZZKEaYQCM4AbSPAqg.roa File: df4tfV0jAIZZKEaYQCM4AbSPAqg.roa (raw, json) Hash identifier: dHoNYsRW1eGxyAi3gnD68do0NWTQc/BQpOK0JZnCoh4= Subject key identifier: 75:FE:2D:7D:5D:23:00:86:59:28:46:98:40:23:38:01:B4:8F:02:A8 Certificate issuer: /CN=712f9cb3c298b150beb79080376f74bdeac438ac Certificate serial: 019B77C74F54B21EA81B607FFA9A8B3DAB9E Authority key identifier: 71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/df4tfV0jAIZZKEaYQCM4AbSPAqg.roa Signing time: Thu 01 Jan 2026 04:18:29 +0000 ROA not before: Thu 01 Jan 2026 04:18:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199881 IP address blocks: 185.22.131.0/24 maxlen: 24 2a00:6060:8000::/48 maxlen: 48 2a00:6060:b000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/cS-cs8KYsVC-t5CAN290verEOKw.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/cS-cs8KYsVC-t5CAN290verEOKw.mft rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:4f:54:b2:1e:a8:1b:60:7f:fa:9a:8b:3d:ab:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=712f9cb3c298b150beb79080376f74bdeac438ac Validity Not Before: Jan 1 04:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75fe2d7d5d2300865928469840233801b48f02a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e3:c3:2d:60:36:1c:e0:67:d4:5c:b4:46:46: a9:a1:b0:f1:b5:ca:8e:58:94:2a:3d:be:23:a4:ff: 05:41:fb:49:93:9c:f3:7a:94:68:fd:d2:27:84:06: cf:09:3d:d4:df:2b:ae:06:29:40:8e:74:6a:c2:6d: 3f:46:59:7b:10:25:ef:77:83:32:e7:8c:d7:a4:f8: 75:c0:b9:84:9d:9e:1f:bf:3e:34:36:39:a4:d8:eb: f1:42:74:8e:53:ff:49:1d:6e:ae:d2:09:dd:a9:23: bd:18:47:bb:6a:21:9d:6b:a9:7a:54:1e:e7:5e:d0: 8a:1f:39:d1:71:97:3e:d9:d1:5b:f7:51:2f:a1:36: de:66:b1:90:2e:cd:d3:95:e5:50:7b:54:ab:25:39: 45:63:cf:92:7c:c7:f8:c1:d7:ed:89:1f:2f:15:bd: a4:ac:44:46:6a:b7:68:29:4d:97:a2:bc:9e:b3:ec: c0:c6:ac:a7:d1:53:07:85:54:8e:52:cb:94:3e:58: 35:10:fb:11:d6:d2:b2:bf:3d:99:ce:99:5a:66:b7: a4:51:d0:83:ec:07:d0:7c:bb:e4:fd:2e:77:67:71: bf:23:f3:c3:fc:5a:64:46:51:a4:06:cb:68:f4:19: 66:5c:16:11:b3:e9:4f:f4:62:83:f3:ac:35:3a:b9: 78:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:FE:2D:7D:5D:23:00:86:59:28:46:98:40:23:38:01:B4:8F:02:A8 X509v3 Authority Key Identifier: keyid:71:2F:9C:B3:C2:98:B1:50:BE:B7:90:80:37:6F:74:BD:EA:C4:38:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cS-cs8KYsVC-t5CAN290verEOKw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/df4tfV0jAIZZKEaYQCM4AbSPAqg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/e2e119-fd78-4b1a-b16a-987da4392056/1/cS-cs8KYsVC-t5CAN290verEOKw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.22.131.0/24 IPv6: 2a00:6060:8000::/48 2a00:6060:b000::/48 Signature Algorithm: sha256WithRSAEncryption b1:cf:35:53:e7:8a:1d:ed:29:2b:34:06:2e:3e:e3:cb:cc:73: 99:e4:88:0f:42:15:4c:89:4b:97:62:30:55:24:80:6e:ac:da: c4:d4:f1:af:98:ae:05:f6:d9:06:c7:83:d3:de:54:8c:80:68: fa:6f:c2:5d:89:d8:8a:eb:97:74:fc:a2:b6:9d:0b:05:bf:69: ae:a0:2e:66:36:07:ed:37:07:68:bf:73:01:d3:80:10:f3:9b: 33:c3:d0:42:73:7d:ab:60:7d:88:fb:b4:41:9f:e5:a2:37:80: 3b:70:61:93:4a:86:40:31:7e:5d:f0:67:75:bd:8e:42:44:be: 52:95:f6:1e:3f:79:b1:aa:ed:4b:fa:55:bc:4b:56:d2:c0:d3: 19:29:2b:c0:b0:3d:18:54:c1:f5:32:84:09:29:2c:12:e7:b6: 63:1b:de:d1:d1:30:a6:24:d8:a2:fa:2f:7f:f3:aa:23:37:40: 1f:17:5a:f2:e0:3c:54:a5:5b:01:11:44:4d:8a:b1:9f:33:80: 34:6a:2b:8d:69:f6:94:32:67:7a:00:95:88:fd:9d:3c:6c:e8: 17:7c:9b:4c:8b:4f:bd:50:26:03:16:3f:4d:9f:02:83:b4:a0: d9:d8:7b:c6:c5:7e:f2:d6:de:cf:19:04:e9:2e:e1:1a:32:55: 64:7d:60:2b -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt3x09Ush6oG2B/+pqLPaueMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxMmY5Y2IzYzI5OGIxNTBiZWI3OTA4MDM3NmY3NGJkZWFj NDM4YWMwHhcNMjYwMTAxMDQxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWZlMmQ3ZDVkMjMwMDg2NTkyODQ2OTg0MDIzMzgwMWI0OGYwMmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuPDLWA2HOBn1Fy0RkapobDxtcqO WJQqPb4jpP8FQftJk5zzepRo/dInhAbPCT3U3yuuBilAjnRqwm0/Rll7ECXvd4My 54zXpPh1wLmEnZ4fvz40Njmk2OvxQnSOU/9JHW6u0gndqSO9GEe7aiGda6l6VB7n XtCKHznRcZc+2dFb91EvoTbeZrGQLs3TleVQe1SrJTlFY8+SfMf4wdftiR8vFb2k rERGardoKU2Xoryes+zAxqyn0VMHhVSOUsuUPlg1EPsR1tKyvz2ZzplaZrekUdCD 7AfQfLvk/S53Z3G/I/PD/FpkRlGkBsto9BlmXBYRs+lP9GKD86w1Orl45QIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFHX+LX1dIwCGWShGmEAjOAG0jwKoMB8GA1UdIwQY MBaAFHEvnLPCmLFQvreQgDdvdL3qxDisMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1MtY3M4S1lzVkMtdDVDQU4yOTB2ZXJFT0t3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9lMmUxMTktZmQ3OC00YjFhLWIxNmEt OTg3ZGE0MzkyMDU2LzEvZGY0dGZWMGpBSVpaS0VhWVFDTTRBYlNQQXFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS9lMmUxMTktZmQ3OC00YjFhLWIxNmEtOTg3ZGE0MzkyMDU2 LzEvY1MtY3M4S1lzVkMtdDVDQU4yOTB2ZXJFT0t3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAuRaDMBgE AgACMBIDBwAqAGBggAADBwAqAGBgsAAwDQYJKoZIhvcNAQELBQADggEBALHPNVPn ih3tKSs0Bi4+48vMc5nkiA9CFUyJS5diMFUkgG6s2sTU8a+YrgX22QbHg9PeVIyA aPpvwl2J2Irrl3T8oradCwW/aa6gLmY2B+03B2i/cwHTgBDzmzPD0EJzfatgfYj7 tEGf5aI3gDtwYZNKhkAxfl3wZ3W9jkJEvlKV9h4/ebGq7Uv6VbxLVtLA0xkpK8Cw PRhUwfUyhAkpLBLntmMb3tHRMKYk2KL6L3/zqiM3QB8XWvLgPFSlWwERRE2KsZ8z gDRqK41p9pQyZ3oAlYj9nTxs6Bd8m0yLT71QJgMWP02fAoO0oNnYe8bFfvLW3s8Z BOku4RoyVWR9YCs= -----END CERTIFICATE-----Generated at Mon Jan 26 07:40:34 2026 by rpki-client