This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/DSGdzHcibCi0YVTdvui1raK3oCQ.roa File: DSGdzHcibCi0YVTdvui1raK3oCQ.roa (raw, json) Hash identifier: Yw/QdOc1E6jK4lBAcp/AmCnZw4k8QvZ5RTU9I5N2CRA= Subject key identifier: 0D:21:9D:CC:77:22:6C:28:B4:61:54:DD:BE:E8:B5:AD:A2:B7:A0:24 Certificate issuer: /CN=16055801b775e774306321455fd463fbd9273c4c Certificate serial: 019B6952C3388ADDAC197C83E69A42C57B62 Authority key identifier: 16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/DSGdzHcibCi0YVTdvui1raK3oCQ.roa Signing time: Mon 29 Dec 2025 08:56:30 +0000 ROA not before: Mon 29 Dec 2025 08:56:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 25198 IP address blocks: 144.56.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.mft rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 22:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:69:52:c3:38:8a:dd:ac:19:7c:83:e6:9a:42:c5:7b:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16055801b775e774306321455fd463fbd9273c4c Validity Not Before: Dec 29 08:56:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=0d219dcc77226c28b46154ddbee8b5ada2b7a024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:99:db:58:ff:96:0a:38:ce:9e:0a:db:53:dd: 72:0f:c8:8d:6e:c6:72:bc:1c:c1:2d:85:22:1c:89: b9:fb:e8:80:c1:04:1f:7f:2c:89:11:37:a0:6f:0b: 02:0a:28:b4:f6:8c:94:4c:e6:0b:4e:0d:8e:d9:eb: c2:e9:86:fd:a4:de:e9:47:07:c1:15:8c:15:ac:da: c4:8d:7c:48:75:bf:ff:99:e0:6f:3e:19:a9:99:c5: 0f:e5:f7:a7:49:f9:82:eb:be:28:bc:b0:03:0b:3d: 80:cb:a1:db:a2:ce:2b:a1:59:47:7b:d5:2f:5b:63: fb:a3:ee:58:39:82:33:a9:8c:55:d2:87:48:1c:84: 45:2b:ab:d6:2d:62:fc:56:73:96:53:2e:31:f7:fd: 07:53:0e:30:9c:9d:f5:0f:f0:b3:4c:8a:71:e9:65: 3b:53:c3:f1:79:93:cb:72:52:37:94:02:0a:96:bd: 02:e7:d7:cf:bf:78:39:fb:47:5b:7e:1c:36:70:9b: 08:57:a9:98:e5:50:32:95:ce:cf:fc:76:ce:c9:b1: e1:e7:b9:29:6d:67:1b:af:e8:47:dc:67:89:57:fa: 08:ae:c7:d9:15:2d:bf:f4:41:a7:fd:c9:17:fc:d9: 26:2e:74:c1:48:44:3a:af:d9:96:99:35:68:9f:6f: fc:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:21:9D:CC:77:22:6C:28:B4:61:54:DD:BE:E8:B5:AD:A2:B7:A0:24 X509v3 Authority Key Identifier: keyid:16:05:58:01:B7:75:E7:74:30:63:21:45:5F:D4:63:FB:D9:27:3C:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgVYAbd153QwYyFFX9Rj-9knPEw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/DSGdzHcibCi0YVTdvui1raK3oCQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/f0340b-330e-45d7-be58-135717ef388a/1/FgVYAbd153QwYyFFX9Rj-9knPEw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.56.37.0/24 Signature Algorithm: sha256WithRSAEncryption 26:ad:29:b7:25:77:35:ea:ab:4a:51:88:06:1f:d8:90:c3:b4: 43:1a:8b:de:68:33:de:e5:9e:75:23:97:31:e7:da:22:5b:4b: df:e1:46:73:83:1a:9d:1d:05:9c:03:1f:c0:10:c3:09:00:80: 1d:a2:16:c8:e2:1b:6e:b0:f8:ae:66:4e:b0:f0:af:3a:c3:69: a9:2e:80:e8:23:bd:ce:38:c9:56:e8:6b:07:bb:b7:b4:92:30: 49:49:67:9c:5b:5e:ad:00:a7:f8:bc:13:e6:84:46:7b:ba:8b: e8:52:89:a2:92:42:93:79:ca:e4:53:27:29:c0:4d:7a:bc:39: 2b:ce:00:f4:70:a2:e4:15:c0:74:21:62:22:81:0b:0f:e1:e9: 37:a8:dd:8f:97:89:ee:d4:5f:81:0e:35:83:e0:0f:90:9e:70: 79:df:e3:ae:6a:3c:18:70:60:26:80:be:f4:bf:d2:65:af:cb: c3:ed:a1:6e:22:a2:af:0f:b4:25:e5:8d:c1:04:69:a1:6f:67: 66:aa:cd:76:82:16:e5:a2:c7:12:6c:5c:e2:79:a9:e3:ad:a7: 9d:06:63:90:c4:5f:12:0d:62:57:23:a5:1d:f9:38:b4:41:3f: ac:5d:31:b1:d1:e1:d5:9d:fb:b7:42:3f:80:52:4b:87:f8:10: 19:b9:58:93 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZtpUsM4it2sGXyD5ppCxXtiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MDU1ODAxYjc3NWU3NzQzMDYzMjE0NTVmZDQ2M2ZiZDky NzNjNGMwHhcNMjUxMjI5MDg1NjMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZDIxOWRjYzc3MjI2YzI4YjQ2MTU0ZGRiZWU4YjVhZGEyYjdhMDI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJnbWP+WCjjOngrbU91yD8iNbsZy vBzBLYUiHIm5++iAwQQffyyJETegbwsCCii09oyUTOYLTg2O2evC6Yb9pN7pRwfB FYwVrNrEjXxIdb//meBvPhmpmcUP5fenSfmC674ovLADCz2Ay6Hbos4roVlHe9Uv W2P7o+5YOYIzqYxV0odIHIRFK6vWLWL8VnOWUy4x9/0HUw4wnJ31D/CzTIpx6WU7 U8PxeZPLclI3lAIKlr0C59fPv3g5+0dbfhw2cJsIV6mY5VAylc7P/HbOybHh57kp bWcbr+hH3GeJV/oIrsfZFS2/9EGn/ckX/NkmLnTBSEQ6r9mWmTVon2/8uQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA0hncx3ImwotGFU3b7ota2it6AkMB8GA1UdIwQY MBaAFBYFWAG3ded0MGMhRV/UY/vZJzxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgt MTM1NzE3ZWYzODhhLzEvRFNHZHpIY2liQ2kwWVZUZHZ1aTFyYUszb0NRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy9mMDM0MGItMzMwZS00NWQ3LWJlNTgtMTM1NzE3ZWYzODhh LzEvRmdWWUFiZDE1M1F3WXlGRlg5UmotOWtuUEV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkDglMA0G CSqGSIb3DQEBCwUAA4IBAQAmrSm3JXc16qtKUYgGH9iQw7RDGoveaDPe5Z51I5cx 59oiW0vf4UZzgxqdHQWcAx/AEMMJAIAdohbI4htusPiuZk6w8K86w2mpLoDoI73O OMlW6GsHu7e0kjBJSWecW16tAKf4vBPmhEZ7uovoUomikkKTecrkUycpwE16vDkr zgD0cKLkFcB0IWIigQsP4ek3qN2Pl4nu1F+BDjWD4A+QnnB53+OuajwYcGAmgL70 v9Jlr8vD7aFuIqKvD7Ql5Y3BBGmhb2dmqs12ghbloscSbFzieanjraedBmOQxF8S DWJXI6Ud+Ti0QT+sXTGx0eHVnfu3Qj+AUkuH+BAZuViT -----END CERTIFICATE-----Generated at Wed Dec 31 03:39:43 2025 by rpki-client