This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/D6KL573TDJMJh9lsKrVkPQBdwVc.roa File: D6KL573TDJMJh9lsKrVkPQBdwVc.roa (raw, json) Hash identifier: kA7IyWrLOspGUwpEl0WLtMe0K/dEBlb7Yf2aAlUGlrI= Subject key identifier: 0F:A2:8B:E7:BD:D3:0C:93:09:87:D9:6C:2A:B5:64:3D:00:5D:C1:57 Certificate issuer: /CN=b4380b9b8c070457ed54bc45d12dddd244e06d52 Certificate serial: 019B77C69836115059FADCAF03D2F093FED8 Authority key identifier: B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/D6KL573TDJMJh9lsKrVkPQBdwVc.roa Signing time: Thu 01 Jan 2026 04:17:42 +0000 ROA not before: Thu 01 Jan 2026 04:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396580 IP address blocks: 81.19.195.30/32 maxlen: 32 81.19.195.31/32 maxlen: 32 185.100.0.53/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.mft rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:98:36:11:50:59:fa:dc:af:03:d2:f0:93:fe:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b4380b9b8c070457ed54bc45d12dddd244e06d52 Validity Not Before: Jan 1 04:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0fa28be7bdd30c930987d96c2ab5643d005dc157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d1:52:6e:35:4a:e7:31:f0:05:7f:1e:55:f5: 2e:8a:71:09:7f:20:4c:03:7e:44:23:8f:11:70:09: ac:1d:94:91:3d:5d:32:9b:1d:e2:29:f8:14:b4:d5: dd:2a:06:34:81:12:ba:d4:6e:fd:5d:62:ca:6e:e1: 06:80:71:7c:8b:19:cd:49:5b:73:50:07:34:88:67: dc:34:3a:c2:29:72:32:37:ae:fe:fb:1a:c0:5a:69: 29:ff:dc:7c:fe:20:70:e0:12:71:e4:5e:13:da:c4: 70:be:af:ca:f2:d4:4a:4a:51:46:e0:d4:ee:20:5e: 86:b9:fb:cf:9b:e4:01:fa:39:26:89:5a:f1:dc:50: cf:79:c5:7e:b2:2d:1a:a9:8f:a9:5c:33:56:e6:af: ce:13:be:5a:07:be:f9:b2:af:fa:bd:13:aa:9e:c8: 3e:83:a5:04:6d:d0:6b:87:ba:be:86:06:b9:97:bb: 47:0f:66:0d:b4:09:02:29:1a:3b:56:61:18:5d:ac: b8:cc:4d:2d:c9:66:d0:31:68:b6:aa:06:80:65:70: 16:25:87:ab:75:df:ad:04:1a:5b:09:8d:84:07:87: fe:b6:81:c6:4e:47:a1:cf:66:63:e4:4e:57:ab:55: 61:45:eb:ca:b1:f2:75:89:19:44:e4:a9:ba:65:09: bd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A2:8B:E7:BD:D3:0C:93:09:87:D9:6C:2A:B5:64:3D:00:5D:C1:57 X509v3 Authority Key Identifier: keyid:B4:38:0B:9B:8C:07:04:57:ED:54:BC:45:D1:2D:DD:D2:44:E0:6D:52 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDgLm4wHBFftVLxF0S3d0kTgbVI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/D6KL573TDJMJh9lsKrVkPQBdwVc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/bc92e6-c8ee-48f0-ae7f-36ccb5a06195/1/tDgLm4wHBFftVLxF0S3d0kTgbVI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.19.195.30/31 185.100.0.53/32 Signature Algorithm: sha256WithRSAEncryption c5:b2:d2:13:ec:aa:5f:51:98:fb:b9:a0:bd:fd:da:32:16:b9: ae:3f:01:c2:68:27:23:fe:5b:f0:43:29:9a:85:d9:62:58:2a: 5d:1d:16:e7:66:a9:61:53:59:64:29:ae:f1:0e:b9:8d:df:62: 4e:d4:1d:6b:2b:a2:07:c6:1c:86:22:b6:b0:a8:43:f4:36:94: fd:72:59:1b:e8:e4:1c:5e:63:40:39:80:37:ce:4d:b5:30:59: b0:ea:b5:5d:e3:5a:5d:2c:b6:01:32:64:62:23:01:15:89:d2: 7a:4e:2b:a1:df:d3:11:ff:c9:ec:b2:33:30:e6:cd:da:b0:fc: 09:c5:b6:b7:cf:ae:5a:5b:16:e4:d1:b7:13:9e:56:23:69:fc: 75:5e:56:05:10:1e:13:32:79:5d:96:bc:be:14:66:09:4b:62: 2d:ed:95:e6:8b:9a:96:89:d8:52:c6:40:c0:1c:32:5a:35:07: 23:42:31:37:56:c5:9a:35:f0:4c:a2:80:69:01:5f:43:68:ef: b5:5d:b3:c9:39:ab:ac:f8:69:40:c7:9d:0a:47:13:3a:84:a3: 90:c4:eb:b6:bc:ae:bd:73:c3:7e:c9:0b:b2:89:00:b7:ff:7f: 00:fe:dc:0e:1b:52:42:07:f4:13:42:b4:5e:25:be:3d:e9:54: 2b:b2:c8:05 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt3xpg2EVBZ+tyvA9Lwk/7YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0MzgwYjliOGMwNzA0NTdlZDU0YmM0NWQxMmRkZGQyNDRl MDZkNTIwHhcNMjYwMTAxMDQxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmEyOGJlN2JkZDMwYzkzMDk4N2Q5NmMyYWI1NjQzZDAwNWRjMTU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNFSbjVK5zHwBX8eVfUuinEJfyBM A35EI48RcAmsHZSRPV0ymx3iKfgUtNXdKgY0gRK61G79XWLKbuEGgHF8ixnNSVtz UAc0iGfcNDrCKXIyN67++xrAWmkp/9x8/iBw4BJx5F4T2sRwvq/K8tRKSlFG4NTu IF6GufvPm+QB+jkmiVrx3FDPecV+si0aqY+pXDNW5q/OE75aB775sq/6vROqnsg+ g6UEbdBrh7q+hga5l7tHD2YNtAkCKRo7VmEYXay4zE0tyWbQMWi2qgaAZXAWJYer dd+tBBpbCY2EB4f+toHGTkehz2Zj5E5Xq1VhRevKsfJ1iRlE5Km6ZQm9vwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFA+ii+e90wyTCYfZbCq1ZD0AXcFXMB8GA1UdIwQY MBaAFLQ4C5uMBwRX7VS8RdEt3dJE4G1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2Yt MzZjY2I1YTA2MTk1LzEvRDZLTDU3M1RESk1KaDlsc0tyVmtQUUJkd1ZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYS9iYzkyZTYtYzhlZS00OGYwLWFlN2YtMzZjY2I1YTA2MTk1 LzEvdERnTG00d0hCRmZ0Vkx4RjBTM2Qwa1RnYlZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOAwUBURPDHgMF ALlkADUwDQYJKoZIhvcNAQELBQADggEBAMWy0hPsql9RmPu5oL392jIWua4/AcJo JyP+W/BDKZqF2WJYKl0dFudmqWFTWWQprvEOuY3fYk7UHWsrogfGHIYitrCoQ/Q2 lP1yWRvo5BxeY0A5gDfOTbUwWbDqtV3jWl0stgEyZGIjARWJ0npOK6Hf0xH/yeyy MzDmzdqw/AnFtrfPrlpbFuTRtxOeViNp/HVeVgUQHhMyeV2WvL4UZglLYi3tleaL mpaJ2FLGQMAcMlo1ByNCMTdWxZo18EyigGkBX0No77Vds8k5q6z4aUDHnQpHEzqE o5DE67a8rr1zw37JC7KJALf/fwD+3A4bUkIH9BNCtF4lvj3pVCuyyAU= -----END CERTIFICATE-----Generated at Mon Jan 26 05:04:40 2026 by rpki-client