This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bT8JFNc4np3tRDP98bqSH7REW4Q.roa File: bT8JFNc4np3tRDP98bqSH7REW4Q.roa (raw, json) Hash identifier: +aDWw4YZL/qOiO8vusV2cVafple7GFbrsU/YUcKqYRI= Subject key identifier: 6D:3F:09:14:D7:38:9E:9D:ED:44:33:FD:F1:BA:92:1F:B4:44:5B:84 Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37D0A861A4938BF26F3A13D8F4E114 Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bT8JFNc4np3tRDP98bqSH7REW4Q.roa Signing time: Fri 02 Jan 2026 10:19:05 +0000 ROA not before: Fri 02 Jan 2026 10:19:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 400696 IP address blocks: 46.244.98.0/24 maxlen: 24 66.56.83.0/24 maxlen: 24 92.240.148.0/24 maxlen: 24 103.138.78.0/24 maxlen: 24 124.198.134.0/24 maxlen: 24 155.2.193.0/24 maxlen: 24 155.2.220.0/24 maxlen: 24 158.173.145.0/24 maxlen: 24 185.102.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 24 Jan 2026 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:d0:a8:61:a4:93:8b:f2:6f:3a:13:d8:f4:e1:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:19:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d3f0914d7389e9ded4433fdf1ba921fb4445b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ec:be:f6:6c:b5:df:a5:2f:84:08:bb:e6:aa: 0f:19:60:42:99:e2:c5:c2:4f:ce:60:fd:f9:9e:1f: 76:c9:e3:72:57:2f:08:31:75:d6:f4:12:72:92:26: 85:83:6f:f9:53:fe:a9:79:9d:e6:a6:67:53:de:17: 46:15:10:9f:7e:ac:c6:cd:73:45:e5:02:8c:99:6c: 6f:e0:fc:9b:3a:ae:d9:b9:f6:71:b7:9b:8a:67:db: 9e:26:cb:28:27:72:a4:4c:a4:7a:30:c1:8d:ac:3d: 08:1f:9f:f6:54:ad:9e:60:28:0a:d5:28:72:01:bc: e3:72:4b:aa:9d:da:a6:95:d9:95:51:d6:18:16:08: d6:11:96:cb:9d:13:44:4b:4e:2e:b9:47:9d:f8:a6: f4:a4:71:59:92:0b:9b:ed:3f:ac:fb:f6:49:09:22: db:90:0c:3d:45:5e:01:45:d1:11:dc:23:ac:4b:48: 7b:27:0d:1e:0a:4a:da:b4:58:a6:f8:51:95:f5:0e: 2f:e7:15:72:a3:f0:2e:bb:c1:1e:3c:cc:55:36:31: c8:bb:85:15:a7:2e:2a:90:41:66:91:fd:0e:10:66: 50:55:0d:d7:48:96:3c:a0:00:f5:b1:53:9e:4c:13: 8a:91:ed:76:dc:af:0d:1f:f5:08:5c:09:97:06:ad: 6e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:3F:09:14:D7:38:9E:9D:ED:44:33:FD:F1:BA:92:1F:B4:44:5B:84 X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/bT8JFNc4np3tRDP98bqSH7REW4Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.244.98.0/24 66.56.83.0/24 92.240.148.0/24 103.138.78.0/24 124.198.134.0/24 155.2.193.0/24 155.2.220.0/24 158.173.145.0/24 185.102.168.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:45:f1:90:bb:c0:ca:bc:c2:b4:02:be:ad:73:a4:60:8f:84: 77:06:c5:bd:eb:2f:49:cf:94:00:60:4a:86:cf:3f:99:45:09: dd:9b:9d:01:d0:7c:14:51:78:3f:58:15:95:70:15:8d:51:07: c5:a6:47:02:0a:8e:82:47:37:f5:71:a8:c8:ee:b5:bf:63:2b: 24:ae:2d:3d:01:6a:79:d7:51:7b:25:22:08:b1:31:b6:fa:9e: 84:ff:a1:8d:5f:f2:59:ea:79:f5:12:1e:96:8d:cf:52:3a:8c: f7:1b:8a:89:87:f0:e0:a3:3b:b7:59:1f:80:5a:9a:75:ed:09: 67:bb:21:1b:7f:dd:17:ce:72:33:1a:d5:fe:9b:8e:c8:ec:0f: d2:65:a6:78:4d:4e:67:1e:0f:cf:9b:17:02:a4:a3:77:d9:2e: 2e:d7:a8:a5:a4:02:b1:f6:30:b0:bf:f4:3b:d0:d4:24:de:74: 2b:e2:c4:c4:ac:0c:b8:ef:aa:8c:af:33:71:73:eb:40:98:36: 3c:bb:a1:67:2b:fd:a6:0c:02:40:20:c8:52:71:08:b0:5a:53: 63:f3:a9:27:d1:81:d5:5e:1b:49:ae:c6:4b:7a:20:fa:b4:4c: 6f:f8:11:ca:61:54:8a:7f:8b:bf:1e:c1:a3:af:f0:4e:3d:9f: 71:e4:b1:91 -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt+N9CoYaSTi/JvOhPY9OEUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxOTA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDNmMDkxNGQ3Mzg5ZTlkZWQ0NDMzZmRmMWJhOTIxZmI0NDQ1Yjg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+y+9my136UvhAi75qoPGWBCmeLF wk/OYP35nh92yeNyVy8IMXXW9BJykiaFg2/5U/6peZ3mpmdT3hdGFRCffqzGzXNF 5QKMmWxv4PybOq7ZufZxt5uKZ9ueJssoJ3KkTKR6MMGNrD0IH5/2VK2eYCgK1Shy AbzjckuqndqmldmVUdYYFgjWEZbLnRNES04uuUed+Kb0pHFZkgub7T+s+/ZJCSLb kAw9RV4BRdER3COsS0h7Jw0eCkratFim+FGV9Q4v5xVyo/Auu8EePMxVNjHIu4UV py4qkEFmkf0OEGZQVQ3XSJY8oAD1sVOeTBOKke123K8NH/UIXAmXBq1uLQIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFG0/CRTXOJ6d7UQz/fG6kh+0RFuEMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEvYlQ4SkZOYzRucDN0UkRQOThicVNIN1JFVzRRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQALvRiAwQA QjhTAwQAXPCUAwQAZ4pOAwQAfMaGAwQAmwLBAwQAmwLcAwQAnq2RAwQAuWaoMA0G CSqGSIb3DQEBCwUAA4IBAQBLRfGQu8DKvMK0Ar6tc6Rgj4R3BsW96y9Jz5QAYEqG zz+ZRQndm50B0HwUUXg/WBWVcBWNUQfFpkcCCo6CRzf1cajI7rW/Yyskri09AWp5 11F7JSIIsTG2+p6E/6GNX/JZ6nn1Eh6Wjc9SOoz3G4qJh/Dgozu3WR+AWpp17Qln uyEbf90XznIzGtX+m47I7A/SZaZ4TU5nHg/PmxcCpKN32S4u16ilpAKx9jCwv/Q7 0NQk3nQr4sTErAy476qMrzNxc+tAmDY8u6FnK/2mDAJAIMhScQiwWlNj86kn0YHV XhtJrsZLeiD6tExv+BHKYVSKf4u/HsGjr/BOPZ9x5LGR -----END CERTIFICATE-----Generated at Fri Jan 23 04:39:15 2026 by rpki-client