This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/DjXJwzbl4W3XGaoLQo6hAmrBQG8.roa File: DjXJwzbl4W3XGaoLQo6hAmrBQG8.roa (raw, json) Hash identifier: jl1YeEZePiNEtg2usgFbuFZ6hVw7XxXcZBL3CQj31Fw= Subject key identifier: 0E:35:C9:C3:36:E5:E1:6D:D7:19:AA:0B:42:8E:A1:02:6A:C1:40:6F Certificate issuer: /CN=3ee770f47fd903925d80ac58e05e076f3baa110b Certificate serial: 019B9D3859BE6137EC3FB6EA1EC2544D28A1 Authority key identifier: 3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/DjXJwzbl4W3XGaoLQo6hAmrBQG8.roa Signing time: Thu 08 Jan 2026 10:47:54 +0000 ROA not before: Thu 08 Jan 2026 10:47:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25198 IP address blocks: 194.31.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.mft rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:9d:38:59:be:61:37:ec:3f:b6:ea:1e:c2:54:4d:28:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ee770f47fd903925d80ac58e05e076f3baa110b Validity Not Before: Jan 8 10:47:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0e35c9c336e5e16dd719aa0b428ea1026ac1406f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:68:02:03:16:0d:ca:e3:db:3d:f0:32:d6:48: 35:e5:77:02:34:c2:97:b6:f0:d7:e6:b5:e5:9c:57: 8c:6e:1b:73:c8:bb:66:b1:f9:d4:b9:49:ec:4f:16: e7:f6:60:35:86:99:51:55:03:42:83:63:0e:bb:f6: b6:66:37:78:70:d1:9d:f3:66:24:84:cd:34:aa:a5: b8:00:09:24:d7:ca:64:39:34:ea:a9:1a:43:d6:06: 7f:91:ce:60:5b:ff:86:73:d6:16:07:eb:1e:6c:8f: 75:d9:70:b1:d8:95:b9:41:bf:41:94:44:65:30:ec: b7:95:3b:07:4a:c6:1e:ac:f1:0e:a2:cd:87:0d:35: 3b:8b:fd:b9:35:0c:e4:3b:f5:b7:d0:3c:11:10:b4: 62:7f:2f:3e:72:b1:f5:b2:6c:56:70:bc:b5:f6:bd: 47:5e:f7:8e:6f:d7:61:39:49:2b:de:db:ce:ab:c1: 10:fa:6d:85:b1:51:9b:9b:dc:e0:29:10:f1:f6:70: 39:79:0c:a4:bd:6e:b4:60:59:79:b7:4b:15:6f:7d: b8:66:3a:5c:6e:cb:a8:9b:6e:23:b0:ba:f3:f9:22: fc:06:b0:ab:44:2c:18:43:b3:b5:78:af:11:53:f9: 07:2a:d2:f9:33:7c:6c:44:46:6a:25:fe:81:97:cb: 0c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:35:C9:C3:36:E5:E1:6D:D7:19:AA:0B:42:8E:A1:02:6A:C1:40:6F X509v3 Authority Key Identifier: keyid:3E:E7:70:F4:7F:D9:03:92:5D:80:AC:58:E0:5E:07:6F:3B:AA:11:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/DjXJwzbl4W3XGaoLQo6hAmrBQG8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/434344-323e-48f8-ade2-624f83682169/1/Pudw9H_ZA5JdgKxY4F4HbzuqEQs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.31.165.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:a6:86:cd:54:8d:1f:46:92:71:c8:1d:89:d6:7d:b0:76:e3: d1:ad:8e:57:38:a7:7c:2a:65:22:17:f4:71:f3:29:f2:43:e9: e3:fc:75:ad:f7:68:d1:77:07:33:9c:0d:9a:42:a2:94:ca:c6: 5b:c2:59:ee:f3:50:ce:3f:96:89:06:79:43:6f:0e:46:c9:31: 8d:f7:38:80:8e:ee:cc:b6:a6:13:de:12:9b:e3:ad:bb:07:4c: 7c:26:70:1d:c1:1c:e7:d4:74:71:40:0d:b6:9e:fe:1a:ea:e2: ef:83:ab:6a:39:25:e1:0f:27:cf:02:c3:af:54:33:1a:f1:30: f5:52:84:71:00:50:8d:9d:7c:7a:2b:4a:b0:93:01:bb:8d:67: 9c:a9:4f:18:e2:17:48:6e:21:8f:77:2b:02:95:d3:c8:db:e0: 3f:54:98:b5:54:18:7d:dc:83:db:32:52:e4:a9:b3:46:4e:26: cd:09:7e:ad:20:7d:39:f8:2a:bd:42:4d:95:b6:0d:44:40:69: 23:47:f4:34:47:3a:d2:f8:17:3b:eb:ca:3e:69:36:6d:29:0e: 55:60:5b:51:03:09:47:dd:d6:5e:43:fd:33:82:54:0f:f7:d5: b0:26:5b:53:08:4e:8b:c5:e3:14:39:43:c4:28:1a:bd:cd:fb: 3b:d2:ab:e8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZudOFm+YTfsP7bqHsJUTSihMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlZTc3MGY0N2ZkOTAzOTI1ZDgwYWM1OGUwNWUwNzZmM2Jh YTExMGIwHhcNMjYwMTA4MTA0NzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZTM1YzljMzM2ZTVlMTZkZDcxOWFhMGI0MjhlYTEwMjZhYzE0MDZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5WgCAxYNyuPbPfAy1kg15XcCNMKX tvDX5rXlnFeMbhtzyLtmsfnUuUnsTxbn9mA1hplRVQNCg2MOu/a2Zjd4cNGd82Yk hM00qqW4AAkk18pkOTTqqRpD1gZ/kc5gW/+Gc9YWB+sebI912XCx2JW5Qb9BlERl MOy3lTsHSsYerPEOos2HDTU7i/25NQzkO/W30DwRELRify8+crH1smxWcLy19r1H XveOb9dhOUkr3tvOq8EQ+m2FsVGbm9zgKRDx9nA5eQykvW60YFl5t0sVb324Zjpc bsuom24jsLrz+SL8BrCrRCwYQ7O1eK8RU/kHKtL5M3xsREZqJf6Bl8sM+QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA41ycM25eFt1xmqC0KOoQJqwUBvMB8GA1UdIwQY MBaAFD7ncPR/2QOSXYCsWOBeB287qhELMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTIt NjI0ZjgzNjgyMTY5LzEvRGpYSnd6Ymw0VzNYR2FvTFFvNmhBbXJCUUc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi80MzQzNDQtMzIzZS00OGY4LWFkZTItNjI0ZjgzNjgyMTY5 LzEvUHVkdzlIX1pBNUpkZ0t4WTRGNEhienVxRVFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwh+lMA0G CSqGSIb3DQEBCwUAA4IBAQCOpobNVI0fRpJxyB2J1n2wduPRrY5XOKd8KmUiF/Rx 8ynyQ+nj/HWt92jRdwcznA2aQqKUysZbwlnu81DOP5aJBnlDbw5GyTGN9ziAju7M tqYT3hKb4627B0x8JnAdwRzn1HRxQA22nv4a6uLvg6tqOSXhDyfPAsOvVDMa8TD1 UoRxAFCNnXx6K0qwkwG7jWecqU8Y4hdIbiGPdysCldPI2+A/VJi1VBh93IPbMlLk qbNGTibNCX6tIH05+Cq9Qk2Vtg1EQGkjR/Q0RzrS+Bc768o+aTZtKQ5VYFtRAwlH 3dZeQ/0zglQP99WwJltTCE6LxeMUOUPEKBq9zfs70qvo -----END CERTIFICATE-----Generated at Mon Jan 12 01:22:24 2026 by rpki-client