This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/DT8ZHpsnu95pA077Bij5e4AaTEY.roa File: DT8ZHpsnu95pA077Bij5e4AaTEY.roa (raw, json) Hash identifier: QTft8cX4BupKj8g0B2lC6ytondXy0rFBo523NlqKQRE= Subject key identifier: 0D:3F:19:1E:9B:27:BB:DE:69:03:4E:FB:06:28:F9:7B:80:1A:4C:46 Certificate issuer: /CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de Certificate serial: 019B7DCA010830E2FE4EDA90946963192B7A Authority key identifier: 62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/DT8ZHpsnu95pA077Bij5e4AaTEY.roa Signing time: Fri 02 Jan 2026 08:19:09 +0000 ROA not before: Fri 02 Jan 2026 08:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60475 IP address blocks: 5.178.120.0/21 maxlen: 21 185.235.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:01:08:30:e2:fe:4e:da:90:94:69:63:19:2b:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de Validity Not Before: Jan 2 08:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0d3f191e9b27bbde69034efb0628f97b801a4c46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5a:bd:96:61:f6:68:59:4c:3b:7b:aa:e2:a1: 47:a4:91:43:e7:31:47:2a:d6:4c:02:42:e5:2c:d4: 58:f8:11:ff:62:98:3b:ec:b9:be:f2:a6:f4:e1:e2: 08:18:f0:dd:11:af:55:32:65:f5:2d:ab:62:8d:c7: 02:25:6b:58:2a:50:82:75:00:94:07:59:0a:f0:91: 10:8a:44:7f:2d:e1:f1:14:fc:08:30:02:7f:13:0a: b9:10:68:10:0a:91:12:b7:12:8a:c7:04:db:11:c3: ab:55:85:d0:ac:ed:5d:29:59:33:13:d2:d9:51:01: 58:2d:8a:c5:c4:3a:c6:e0:e6:55:ec:fd:9b:96:a6: ef:c3:ea:c6:92:c0:a2:5b:f0:86:1c:a8:8c:26:fe: 95:9f:e3:05:4e:87:e3:09:b7:27:76:6e:6d:a2:c6: 2d:96:69:e4:45:98:40:7c:90:00:96:3f:b5:45:63: 45:c3:aa:42:af:98:2d:b6:77:e0:04:9c:fc:fe:8a: 90:87:36:fd:c2:b4:2c:99:1c:ab:16:c1:de:a7:f8: cf:93:55:65:08:03:31:83:5c:88:2f:a6:09:4c:a5: 96:2a:38:6f:c7:5e:61:07:90:e3:65:0a:02:5d:e8: ca:f4:05:41:79:51:b1:60:90:0c:0c:0e:b6:34:5c: 25:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:3F:19:1E:9B:27:BB:DE:69:03:4E:FB:06:28:F9:7B:80:1A:4C:46 X509v3 Authority Key Identifier: keyid:62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/DT8ZHpsnu95pA077Bij5e4AaTEY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.178.120.0/21 185.235.20.0/22 Signature Algorithm: sha256WithRSAEncryption 55:8c:be:6f:47:bf:f0:a6:48:1a:08:6e:54:9a:c3:37:aa:18: 52:ac:a8:3c:78:31:70:af:c4:8e:25:01:4b:cf:4a:05:5d:b3: 98:26:5b:6f:cd:5f:04:ed:a7:cd:7a:62:1c:ed:52:ab:32:fd: 68:3d:44:4b:85:3a:7b:ae:c9:79:47:df:54:5d:6b:a6:e4:f2: c1:61:48:ae:55:71:8e:78:2a:6c:2e:7d:fa:a8:77:cb:f9:f0: b5:47:78:ba:84:7f:24:4d:3e:ff:21:a4:1a:55:0d:88:21:4f: 38:e3:03:41:00:84:6f:1e:b0:d7:f4:3d:95:ef:95:1b:78:52: fe:bd:2e:63:03:fe:44:a7:ae:d6:35:9c:5d:80:7a:8b:a1:c9: b1:96:49:10:99:1d:01:22:89:28:61:67:37:2a:73:ff:86:b6: 22:9b:90:07:1f:72:ba:6b:22:ee:7a:72:91:d9:9e:70:67:85: 25:6c:07:91:b3:0c:7a:f8:51:c8:6e:6c:83:f7:76:86:6b:db: 12:23:49:06:98:60:78:7c:1e:7a:10:69:ad:52:b4:3e:bb:b2: 06:89:ea:e8:e3:0c:2e:0b:94:be:ff:f7:91:03:70:58:f6:e6: df:58:1e:65:33:19:b5:e2:52:87:b3:39:c2:2a:d1:e9:1e:09: 05:f2:6c:56 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9ygEIMOL+TtqQlGljGSt6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyYzRjNzQzZDVjMmFmY2YyN2YxMDRlYjZlMDMxNjExNmM4 NWM3ZGUwHhcNMjYwMTAyMDgxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDNmMTkxZTliMjdiYmRlNjkwMzRlZmIwNjI4Zjk3YjgwMWE0YzQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFq9lmH2aFlMO3uq4qFHpJFD5zFH KtZMAkLlLNRY+BH/Ypg77Lm+8qb04eIIGPDdEa9VMmX1LatijccCJWtYKlCCdQCU B1kK8JEQikR/LeHxFPwIMAJ/Ewq5EGgQCpEStxKKxwTbEcOrVYXQrO1dKVkzE9LZ UQFYLYrFxDrG4OZV7P2blqbvw+rGksCiW/CGHKiMJv6Vn+MFTofjCbcndm5tosYt lmnkRZhAfJAAlj+1RWNFw6pCr5gttnfgBJz8/oqQhzb9wrQsmRyrFsHep/jPk1Vl CAMxg1yIL6YJTKWWKjhvx15hB5DjZQoCXejK9AVBeVGxYJAMDA62NFwl7wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFA0/GR6bJ7veaQNO+wYo+XuAGkxGMB8GA1UdIwQY MBaAFGLEx0PVwq/PJ/EE624DFhFshcfeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83MjhjNDAtZjcxMi00ZmVmLTg5NDUt ZGUzNTJhOTJmNmJhLzEvRFQ4Wkhwc251OTVwQTA3N0JpajVlNEFhVEVZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My83MjhjNDAtZjcxMi00ZmVmLTg5NDUtZGUzNTJhOTJmNmJh LzEvWXNUSFE5WENyODhuOFFUcmJnTVdFV3lGeDk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDBbJ4AwQC uesUMA0GCSqGSIb3DQEBCwUAA4IBAQBVjL5vR7/wpkgaCG5UmsM3qhhSrKg8eDFw r8SOJQFLz0oFXbOYJltvzV8E7afNemIc7VKrMv1oPURLhTp7rsl5R99UXWum5PLB YUiuVXGOeCpsLn36qHfL+fC1R3i6hH8kTT7/IaQaVQ2IIU844wNBAIRvHrDX9D2V 75UbeFL+vS5jA/5Ep67WNZxdgHqLocmxlkkQmR0BIokoYWc3KnP/hrYim5AHH3K6 ayLuenKR2Z5wZ4UlbAeRswx6+FHIbmyD93aGa9sSI0kGmGB4fB56EGmtUrQ+u7IG iero4wwuC5S+//eRA3BY9ubfWB5lMxm14lKHsznCKtHpHgkF8mxW -----END CERTIFICATE-----Generated at Mon Jan 12 04:03:51 2026 by rpki-client