This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/dWDpJgjgHWUUxlAFcGw9oho9DCA.roa File: dWDpJgjgHWUUxlAFcGw9oho9DCA.roa (raw, json) Hash identifier: EeKrlvmSYyhLjmugOgYr/BAu9l1QdnUK48FOOPpwoHE= Subject key identifier: 75:60:E9:26:08:E0:1D:65:14:C6:50:05:70:6C:3D:A2:1A:3D:0C:20 Certificate issuer: /CN=922208b47b6a864d9d1ff33e06aa81d13819a74e Certificate serial: 019B7C7FC1D61ABDE888DE12791A1C4EF803 Authority key identifier: 92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/dWDpJgjgHWUUxlAFcGw9oho9DCA.roa Signing time: Fri 02 Jan 2026 02:18:26 +0000 ROA not before: Fri 02 Jan 2026 02:18:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 134450 IP address blocks: 77.246.152.0/22 maxlen: 32 185.153.148.0/24 maxlen: 32 185.160.64.0/24 maxlen: 32 185.161.68.0/24 maxlen: 32 185.201.189.0/24 maxlen: 32 185.201.191.0/24 maxlen: 32 194.150.72.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.mft rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:c1:d6:1a:bd:e8:88:de:12:79:1a:1c:4e:f8:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=922208b47b6a864d9d1ff33e06aa81d13819a74e Validity Not Before: Jan 2 02:18:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7560e92608e01d6514c65005706c3da21a3d0c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0d:b6:74:58:5c:2c:29:89:e0:fc:2c:96:04: 86:02:ae:af:3e:9b:4d:57:fc:1e:57:51:77:58:88: f4:08:cc:10:11:f1:f1:1d:35:0c:52:0e:3f:15:d3: c8:aa:b9:e3:65:53:f3:79:9e:60:9e:ed:e6:dd:86: e7:19:86:5a:d0:8b:22:2f:02:72:ca:26:39:41:c4: 4a:66:fa:19:bb:7c:d6:49:ab:a5:48:77:0b:4d:9f: 19:a4:ac:95:8a:06:4d:12:18:52:ee:52:d0:1a:47: 0d:0d:e2:18:84:ec:56:09:95:1d:39:0f:97:a2:0e: 37:ff:20:35:00:c6:28:32:a9:f2:a8:fe:c3:68:36: ba:db:80:f5:0c:82:fa:80:e6:a5:42:6c:1e:cb:dc: 0d:0d:c5:03:d6:b5:5d:b9:30:a8:6c:39:5a:7b:13: 77:c3:c9:0c:d2:b5:44:96:f7:98:c7:7e:a1:17:d2: 92:35:5f:3c:ac:73:75:76:3e:e7:28:f2:d4:43:81: 2b:b5:60:b8:85:da:08:bc:f6:41:54:04:b1:e8:8a: 4e:04:66:98:f3:eb:a1:79:83:98:21:ca:60:5f:44: fc:87:a0:74:ce:e8:34:50:27:a3:72:1e:9e:0f:e3: 81:2c:68:0e:d7:db:a5:36:16:d9:d6:fc:3b:b5:f1: f3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:60:E9:26:08:E0:1D:65:14:C6:50:05:70:6C:3D:A2:1A:3D:0C:20 X509v3 Authority Key Identifier: keyid:92:22:08:B4:7B:6A:86:4D:9D:1F:F3:3E:06:AA:81:D1:38:19:A7:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiIItHtqhk2dH_M-BqqB0TgZp04.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/dWDpJgjgHWUUxlAFcGw9oho9DCA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/6990e9-c3c0-478a-9997-95b08e3660cf/1/kiIItHtqhk2dH_M-BqqB0TgZp04.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.246.152.0/22 185.153.148.0/24 185.160.64.0/24 185.161.68.0/24 185.201.189.0/24 185.201.191.0/24 194.150.72.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:e1:9a:8e:59:9b:01:81:45:74:79:81:b6:80:7c:82:dd:bd: 25:1a:79:97:f5:52:f8:43:52:fe:86:d5:a4:5f:87:66:00:cf: 6e:52:33:0b:13:20:7b:f2:50:cc:69:81:09:9e:9a:da:8a:0d: 82:14:3e:d6:b2:d4:4a:05:ff:10:96:fb:7f:88:55:60:c3:9e: fa:8a:f7:96:c5:23:8e:ef:bc:96:97:1c:5d:73:ec:a7:3b:75: ea:ca:40:61:91:d1:c1:ae:26:d6:0d:f5:b8:c2:37:d9:ed:06: 60:eb:24:13:f1:e6:83:7e:e6:47:74:73:48:67:7b:0a:a1:73: 62:24:fe:f5:3a:f1:17:87:2c:00:ce:c5:22:ac:a2:b6:43:14: 2b:a0:a0:7c:04:77:12:71:7b:9e:21:61:cc:36:45:73:ed:99: f1:ab:cf:47:f6:ba:4e:88:f3:29:ed:72:cc:43:a4:3a:10:88: 61:90:6f:5b:f9:ec:c3:08:a2:00:cf:21:03:6f:d5:1f:bb:d2: 52:f3:dc:5b:70:39:3d:91:f7:72:ef:cd:22:ab:5d:13:c2:3c: c7:5d:7d:cb:f1:83:d5:00:42:73:24:98:b5:a9:fe:97:04:f2: 18:6d:84:d2:aa:8b:0c:95:75:b6:c3:9a:9f:19:aa:20:e6:fe: db:d8:87:0a -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt8f8HWGr3oiN4SeRocTvgDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMjIwOGI0N2I2YTg2NGQ5ZDFmZjMzZTA2YWE4MWQxMzgx OWE3NGUwHhcNMjYwMTAyMDIxODI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NTYwZTkyNjA4ZTAxZDY1MTRjNjUwMDU3MDZjM2RhMjFhM2QwYzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAog22dFhcLCmJ4PwslgSGAq6vPptN V/weV1F3WIj0CMwQEfHxHTUMUg4/FdPIqrnjZVPzeZ5gnu3m3YbnGYZa0IsiLwJy yiY5QcRKZvoZu3zWSaulSHcLTZ8ZpKyVigZNEhhS7lLQGkcNDeIYhOxWCZUdOQ+X og43/yA1AMYoMqnyqP7DaDa624D1DIL6gOalQmwey9wNDcUD1rVduTCobDlaexN3 w8kM0rVElveYx36hF9KSNV88rHN1dj7nKPLUQ4ErtWC4hdoIvPZBVASx6IpOBGaY 8+uheYOYIcpgX0T8h6B0zug0UCejch6eD+OBLGgO19ulNhbZ1vw7tfHzowIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFHVg6SYI4B1lFMZQBXBsPaIaPQwgMB8GA1UdIwQY MBaAFJIiCLR7aoZNnR/zPgaqgdE4GadOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2lJSXRIdHFoazJkSF9NLUJxcUIwVGdacDA0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS82OTkwZTktYzNjMC00NzhhLTk5OTct OTViMDhlMzY2MGNmLzEvZFdEcEpnamdIV1VVeGxBRmNHdzlvaG85RENBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS82OTkwZTktYzNjMC00NzhhLTk5OTctOTViMDhlMzY2MGNm LzEva2lJSXRIdHFoazJkSF9NLUJxcUIwVGdacDA0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQCTfaYAwQA uZmUAwQAuaBAAwQAuaFEAwQAucm9AwQAucm/AwQAwpZIMA0GCSqGSIb3DQEBCwUA A4IBAQBq4ZqOWZsBgUV0eYG2gHyC3b0lGnmX9VL4Q1L+htWkX4dmAM9uUjMLEyB7 8lDMaYEJnpraig2CFD7WstRKBf8Qlvt/iFVgw576iveWxSOO77yWlxxdc+ynO3Xq ykBhkdHBribWDfW4wjfZ7QZg6yQT8eaDfuZHdHNIZ3sKoXNiJP71OvEXhywAzsUi rKK2QxQroKB8BHcScXueIWHMNkVz7Znxq89H9rpOiPMp7XLMQ6Q6EIhhkG9b+ezD CKIAzyEDb9Ufu9JS89xbcDk9kfdy780iq10TwjzHXX3L8YPVAEJzJJi1qf6XBPIY bYTSqosMlXW2w5qfGaog5v7b2IcK -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:50 2026 by rpki-client