This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/dEFpqvjQA0JxyxJprch9jCnyPtQ.roa File: dEFpqvjQA0JxyxJprch9jCnyPtQ.roa (raw, json) Hash identifier: YlQsoVluRkz7sHf6N39+KpsENZK1ax6g2ruQYAyFf4E= Subject key identifier: 74:41:69:AA:F8:D0:03:42:71:CB:12:69:AD:C8:7D:8C:29:F2:3E:D4 Certificate issuer: /CN=185a2f67d245cba9518b017061a71692ee79e7ff Certificate serial: 019B7AC8CCAE158008D82F6059154CF366AB Authority key identifier: 18:5A:2F:67:D2:45:CB:A9:51:8B:01:70:61:A7:16:92:EE:79:E7:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GFovZ9JFy6lRiwFwYacWku555_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/dEFpqvjQA0JxyxJprch9jCnyPtQ.roa Signing time: Thu 01 Jan 2026 18:18:58 +0000 ROA not before: Thu 01 Jan 2026 18:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200638 IP address blocks: 81.163.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/GFovZ9JFy6lRiwFwYacWku555_8.crl rsync://rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/GFovZ9JFy6lRiwFwYacWku555_8.mft rsync://rpki.ripe.net/repository/DEFAULT/GFovZ9JFy6lRiwFwYacWku555_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:cc:ae:15:80:08:d8:2f:60:59:15:4c:f3:66:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=185a2f67d245cba9518b017061a71692ee79e7ff Validity Not Before: Jan 1 18:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=744169aaf8d0034271cb1269adc87d8c29f23ed4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ee:2a:1a:d4:2b:ba:37:8d:28:74:99:d6:33: 8c:40:3e:82:73:27:25:92:7b:90:cf:89:71:ce:a3: 65:12:8d:a9:33:d2:e4:3f:81:11:0f:66:18:60:e1: 9a:46:14:52:bd:f1:af:eb:11:44:60:a0:37:74:35: a5:89:ce:c9:41:fc:31:ca:6d:d5:3f:3a:f4:ff:13: 9e:c1:f2:56:3e:ff:eb:e1:b1:12:96:b2:b8:c6:09: a4:99:24:cf:4c:30:6d:67:61:a7:49:a9:36:48:ba: a7:2c:21:96:e4:67:2e:f7:6e:5c:c6:35:cb:d8:e9: fd:73:67:0a:e4:d9:57:f4:90:5a:dc:00:b7:23:ab: 5d:73:6d:e6:35:d4:f2:90:d0:15:46:5c:dc:dc:c6: 2a:2e:b9:5e:a6:49:cc:21:9a:0e:db:c6:ce:43:23: 1d:77:36:a0:10:47:41:56:f0:59:a9:ea:83:7c:d5: 3c:4f:d1:21:10:55:1d:df:95:91:93:5e:02:7b:29: 14:49:07:95:b9:5e:29:89:ce:4f:d0:13:a1:8f:b0: 4a:e5:fb:84:0f:62:6d:e7:cf:74:02:43:50:aa:ee: 55:92:a6:4b:0b:eb:fd:48:ea:63:9c:29:51:21:1f: e7:fa:db:22:fd:ad:2a:ea:37:fb:22:30:86:6e:da: b7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:41:69:AA:F8:D0:03:42:71:CB:12:69:AD:C8:7D:8C:29:F2:3E:D4 X509v3 Authority Key Identifier: keyid:18:5A:2F:67:D2:45:CB:A9:51:8B:01:70:61:A7:16:92:EE:79:E7:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GFovZ9JFy6lRiwFwYacWku555_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/dEFpqvjQA0JxyxJprch9jCnyPtQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d55988-42d2-4206-95a9-bb018cfbeaa2/1/GFovZ9JFy6lRiwFwYacWku555_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.163.195.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:c6:d2:2c:cf:a8:4d:eb:80:0a:91:b0:82:97:0e:e7:32:45: e0:9a:e3:dc:a7:1e:8c:bd:67:15:4f:58:1c:95:80:90:ec:82: 46:c6:bd:e0:b6:07:38:1a:98:ff:2f:7f:0b:76:2e:0c:76:c7: 77:46:70:31:6c:18:b1:33:21:1f:b8:a5:bf:74:60:ee:97:67: 61:f9:cb:7d:ed:ff:e7:67:61:81:9b:c7:21:1b:66:e7:99:74: 16:a2:22:1e:0d:35:f3:f0:c4:3a:58:b3:02:da:a0:43:84:52: ad:c0:be:1f:81:b4:c1:52:de:2a:d4:e6:70:76:33:f0:c8:ab: 63:77:d0:85:a3:57:37:31:64:d1:db:14:0d:19:a0:67:12:0e: b7:94:df:40:cc:8e:be:96:6b:d5:6a:a4:83:93:98:ba:b5:81: 67:1e:a6:53:2f:f8:76:6b:17:54:2a:d6:d2:ca:d8:f1:1c:48: 6e:4c:39:52:17:ea:5f:84:10:ae:f3:6e:ae:fd:23:47:50:e5: b9:a6:2b:77:ce:a2:1b:97:b5:75:3a:cc:e5:64:c7:b4:f8:b2: a8:c0:22:cc:1a:e7:8f:3e:33:2c:3b:21:ac:ac:14:63:0e:61: 45:26:21:82:44:1c:e2:fc:13:3e:53:68:bd:04:98:b3:88:7a: ad:08:42:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yMyuFYAI2C9gWRVM82arMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE4NWEyZjY3ZDI0NWNiYTk1MThiMDE3MDYxYTcxNjkyZWU3 OWU3ZmYwHhcNMjYwMTAxMTgxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDQxNjlhYWY4ZDAwMzQyNzFjYjEyNjlhZGM4N2Q4YzI5ZjIzZWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAye4qGtQrujeNKHSZ1jOMQD6Ccycl knuQz4lxzqNlEo2pM9LkP4ERD2YYYOGaRhRSvfGv6xFEYKA3dDWlic7JQfwxym3V Pzr0/xOewfJWPv/r4bESlrK4xgmkmSTPTDBtZ2GnSak2SLqnLCGW5Gcu925cxjXL 2On9c2cK5NlX9JBa3AC3I6tdc23mNdTykNAVRlzc3MYqLrlepknMIZoO28bOQyMd dzagEEdBVvBZqeqDfNU8T9EhEFUd35WRk14CeykUSQeVuV4pic5P0BOhj7BK5fuE D2Jt5890AkNQqu5VkqZLC+v9SOpjnClRIR/n+tsi/a0q6jf7IjCGbtq3QQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHRBaar40ANCccsSaa3IfYwp8j7UMB8GA1UdIwQY MBaAFBhaL2fSRcupUYsBcGGnFpLueef/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR0Zvdlo5SkZ5NmxSaXdGd1lhY1drdTU1NV84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kNTU5ODgtNDJkMi00MjA2LTk1YTkt YmIwMThjZmJlYWEyLzEvZEVGcHF2alFBMEp4eXhKcHJjaDlqQ255UHRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yi9kNTU5ODgtNDJkMi00MjA2LTk1YTktYmIwMThjZmJlYWEy LzEvR0Zvdlo5SkZ5NmxSaXdGd1lhY1drdTU1NV84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUaPDMA0G CSqGSIb3DQEBCwUAA4IBAQBuxtIsz6hN64AKkbCClw7nMkXgmuPcpx6MvWcVT1gc lYCQ7IJGxr3gtgc4Gpj/L38Ldi4Mdsd3RnAxbBixMyEfuKW/dGDul2dh+ct97f/n Z2GBm8chG2bnmXQWoiIeDTXz8MQ6WLMC2qBDhFKtwL4fgbTBUt4q1OZwdjPwyKtj d9CFo1c3MWTR2xQNGaBnEg63lN9AzI6+lmvVaqSDk5i6tYFnHqZTL/h2axdUKtbS ytjxHEhuTDlSF+pfhBCu826u/SNHUOW5pit3zqIbl7V1OszlZMe0+LKowCLMGueP PjMsOyGsrBRjDmFFJiGCRBzi/BM+U2i9BJiziHqtCEI/ -----END CERTIFICATE-----Generated at Mon Jan 12 03:23:14 2026 by rpki-client