This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/tDGcwqlaTPnixLkEemSY0dR8oEE.roa File: tDGcwqlaTPnixLkEemSY0dR8oEE.roa (raw, json) Hash identifier: dntAFtICbpLiWSfID0C/faNT0VRienZetlVV8mxC9ro= Subject key identifier: B4:31:9C:C2:A9:5A:4C:F9:E2:C4:B9:04:7A:64:98:D1:D4:7C:A0:41 Certificate issuer: /CN=27d54e4a788d6967a2eef3a6692622626f54efad Certificate serial: 019B7C122522AACE9AE8D9A285F9BE0BFD54 Authority key identifier: 27:D5:4E:4A:78:8D:69:67:A2:EE:F3:A6:69:26:22:62:6F:54:EF:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9VOSniNaWei7vOmaSYiYm9U760.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/tDGcwqlaTPnixLkEemSY0dR8oEE.roa Signing time: Fri 02 Jan 2026 00:18:42 +0000 ROA not before: Fri 02 Jan 2026 00:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208871 IP address blocks: 185.156.24.0/22 maxlen: 22 185.156.24.0/24 maxlen: 24 185.156.25.0/24 maxlen: 24 185.156.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/J9VOSniNaWei7vOmaSYiYm9U760.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/J9VOSniNaWei7vOmaSYiYm9U760.mft rsync://rpki.ripe.net/repository/DEFAULT/J9VOSniNaWei7vOmaSYiYm9U760.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 06:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:25:22:aa:ce:9a:e8:d9:a2:85:f9:be:0b:fd:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27d54e4a788d6967a2eef3a6692622626f54efad Validity Not Before: Jan 2 00:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4319cc2a95a4cf9e2c4b9047a6498d1d47ca041 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:33:03:6a:6d:e4:5d:3a:ed:f5:bc:d7:37:99: 3b:3c:79:3f:7a:2a:aa:46:03:42:e0:e6:c9:ff:9c: eb:47:36:21:5f:76:39:46:5b:52:00:1e:54:4b:24: a9:3a:0c:d5:22:ef:b7:02:0e:e3:f1:36:fc:5f:26: e4:1a:77:10:eb:11:cf:67:4e:76:4f:e7:9d:92:ce: bc:18:dd:15:10:b3:55:70:33:c9:d2:98:9e:d4:f3: a8:1b:c1:a3:56:9f:7e:29:c0:94:ae:7a:26:fb:bc: 86:b0:bc:98:9c:2e:27:a9:2f:69:06:a2:22:31:c6: 72:5e:63:14:ae:a5:57:90:f2:bf:4f:be:f4:ea:c6: 92:3d:c2:71:f8:48:87:a2:c8:c8:d0:3a:84:6d:10: c1:07:6e:b7:ff:8d:91:9a:a2:01:56:c1:6f:e2:c1: 5f:02:43:e5:eb:0c:20:be:e3:23:2d:75:c3:13:3c: 32:6f:b3:a8:29:3e:a2:84:34:61:16:0f:a9:d9:28: 44:3a:d1:6f:dc:6f:d6:43:94:5e:4a:ad:cc:27:50: 56:e4:91:62:4b:35:be:91:c2:32:da:43:ed:96:96: d7:a7:2f:b0:99:11:b5:f8:2e:92:e6:e7:e6:a6:2b: 39:02:e4:47:06:47:5b:22:4d:e6:6f:42:45:c4:19: fd:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:31:9C:C2:A9:5A:4C:F9:E2:C4:B9:04:7A:64:98:D1:D4:7C:A0:41 X509v3 Authority Key Identifier: keyid:27:D5:4E:4A:78:8D:69:67:A2:EE:F3:A6:69:26:22:62:6F:54:EF:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9VOSniNaWei7vOmaSYiYm9U760.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/tDGcwqlaTPnixLkEemSY0dR8oEE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/J9VOSniNaWei7vOmaSYiYm9U760.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.156.24.0/22 Signature Algorithm: sha256WithRSAEncryption 74:c1:86:82:6f:cf:c7:2d:83:8c:ff:f6:9d:8b:77:41:b6:2a: c2:6c:94:fe:a8:cf:84:a1:82:06:87:62:c4:5d:f0:20:95:d0: 44:bc:8d:ec:80:e6:ec:ce:7b:69:c1:b8:b2:b6:42:8c:b2:63: ea:c1:94:02:63:2b:26:c6:88:33:98:46:30:32:b5:7a:6d:8e: b4:f9:b6:a7:17:d1:79:da:cd:fe:24:e1:07:2f:68:96:db:b3: c0:77:c3:ad:d4:c7:4a:6d:b6:e8:1f:86:53:3d:ae:e8:b1:72: 43:57:e6:e0:1d:3e:0c:9c:87:96:0a:dd:4e:3e:7b:79:49:c4: df:4d:9c:4a:ed:5d:9e:46:74:7c:d6:e9:57:b9:ea:de:c4:eb: 27:b1:3b:18:d5:97:63:c6:1a:b8:1e:c7:af:64:87:02:38:d7: c5:67:b1:0a:d7:91:7c:d4:37:97:7a:63:5b:1d:b1:2b:a5:cc: 5a:17:04:96:fc:29:8c:68:7c:e2:1e:8d:49:ad:cf:3f:ad:64: 11:0f:27:69:cb:2e:e6:6b:c9:18:1d:5f:f0:a4:7b:04:02:b7: 86:7f:a8:22:1f:78:b3:bc:82:5d:fd:a9:71:e3:be:45:2f:b6: 81:32:f0:10:10:9f:ca:76:19:51:9a:bb:88:76:42:63:df:0e: 5e:4e:d3:aa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EiUiqs6a6Nmihfm+C/1UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3ZDU0ZTRhNzg4ZDY5NjdhMmVlZjNhNjY5MjYyMjYyNmY1 NGVmYWQwHhcNMjYwMTAyMDAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDMxOWNjMmE5NWE0Y2Y5ZTJjNGI5MDQ3YTY0OThkMWQ0N2NhMDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzMDam3kXTrt9bzXN5k7PHk/eiqq RgNC4ObJ/5zrRzYhX3Y5RltSAB5USySpOgzVIu+3Ag7j8Tb8XybkGncQ6xHPZ052 T+edks68GN0VELNVcDPJ0pie1POoG8GjVp9+KcCUrnom+7yGsLyYnC4nqS9pBqIi McZyXmMUrqVXkPK/T7706saSPcJx+EiHosjI0DqEbRDBB263/42RmqIBVsFv4sFf AkPl6wwgvuMjLXXDEzwyb7OoKT6ihDRhFg+p2ShEOtFv3G/WQ5ReSq3MJ1BW5JFi SzW+kcIy2kPtlpbXpy+wmRG1+C6S5ufmpis5AuRHBkdbIk3mb0JFxBn9mwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLQxnMKpWkz54sS5BHpkmNHUfKBBMB8GA1UdIwQY MBaAFCfVTkp4jWlnou7zpmkmImJvVO+tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjlWT1NuaU5hV2VpN3ZPbWFTWWlZbTlVNzYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84MzIxNDctMzEwZS00YmI1LTk5ZGEt ZTk5YThkYzMwMjU1LzEvdERHY3dxbGFUUG5peExrRWVtU1kwZFI4b0VFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC84MzIxNDctMzEwZS00YmI1LTk5ZGEtZTk5YThkYzMwMjU1 LzEvSjlWT1NuaU5hV2VpN3ZPbWFTWWlZbTlVNzYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuZwYMA0G CSqGSIb3DQEBCwUAA4IBAQB0wYaCb8/HLYOM//adi3dBtirCbJT+qM+EoYIGh2LE XfAgldBEvI3sgObszntpwbiytkKMsmPqwZQCYysmxogzmEYwMrV6bY60+banF9F5 2s3+JOEHL2iW27PAd8Ot1MdKbbboH4ZTPa7osXJDV+bgHT4MnIeWCt1OPnt5ScTf TZxK7V2eRnR81ulXuerexOsnsTsY1Zdjxhq4HsevZIcCONfFZ7EK15F81DeXemNb HbErpcxaFwSW/CmMaHziHo1Jrc8/rWQRDydpyy7ma8kYHV/wpHsEAreGf6giH3iz vIJd/alx475FL7aBMvAQEJ/KdhlRmruIdkJj3w5eTtOq -----END CERTIFICATE-----Generated at Wed Jan 7 14:41:02 2026 by rpki-client