This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/R_8ffrcLcUzSK3vunlkyx_xgiHQ.roa File: R_8ffrcLcUzSK3vunlkyx_xgiHQ.roa (raw, json) Hash identifier: FqgDicX2pzRf23IZ0IBZJZAFGlB2fRdEsckvD736eto= Subject key identifier: 47:FF:1F:7E:B7:0B:71:4C:D2:2B:7B:EE:9E:59:32:C7:FC:60:88:74 Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Certificate serial: 019B7AC7D55AD837E4D73FB2FEDE4B2F37D9 Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/R_8ffrcLcUzSK3vunlkyx_xgiHQ.roa Signing time: Thu 01 Jan 2026 18:17:55 +0000 ROA not before: Thu 01 Jan 2026 18:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59993 IP address blocks: 159.148.73.0/24 maxlen: 24 159.148.74.0/24 maxlen: 24 159.148.77.0/24 maxlen: 24 159.148.98.0/24 maxlen: 24 159.148.121.0/24 maxlen: 24 159.148.129.0/24 maxlen: 24 159.148.159.0/24 maxlen: 24 159.148.185.0/24 maxlen: 24 159.148.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.mft rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 16:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:d5:5a:d8:37:e4:d7:3f:b2:fe:de:4b:2f:37:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec Validity Not Before: Jan 1 18:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=47ff1f7eb70b714cd22b7bee9e5932c7fc608874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:cf:7a:44:4e:5d:a1:42:95:8f:dd:23:94:ed: 38:f9:51:fc:1d:a0:27:28:d9:d4:26:a1:47:f3:ab: 57:c8:77:74:57:7f:ed:45:18:9b:a3:05:ec:7f:cd: 53:c5:35:68:da:86:1e:d1:4e:2d:8c:ab:18:25:57: 05:cb:b6:33:3a:29:be:0a:ad:0e:79:57:5a:63:bb: 97:b7:8f:66:32:db:36:97:5a:e8:0f:42:72:43:ad: a1:99:81:0d:94:79:ff:71:b6:b3:26:e6:af:ea:dd: 01:ee:17:a1:2e:8e:71:0e:31:f7:25:e2:06:83:1f: c0:f3:d9:1d:21:01:58:56:24:13:e2:28:0b:5d:21: 2f:45:97:82:49:f9:c8:8f:be:6d:4e:ce:b5:a2:15: 96:6d:b2:54:a2:ee:3b:37:66:25:9a:e6:a4:53:b0: 1c:b4:0e:03:44:6c:30:4f:8d:45:55:33:10:a5:f7: 4d:1a:91:b3:d7:a3:ff:b4:26:a8:67:e8:f2:13:19: dc:cd:8e:4d:09:59:2a:54:e2:ea:50:0a:75:3d:5b: 0c:f1:b7:f9:53:c0:bf:2c:b7:eb:77:ec:3e:5b:e6: c9:80:48:a0:4a:5d:6c:32:7c:93:a9:a5:0e:d3:e1: a1:0c:5e:89:45:7d:37:ff:c8:6d:28:ba:9f:d7:49: 2d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FF:1F:7E:B7:0B:71:4C:D2:2B:7B:EE:9E:59:32:C7:FC:60:88:74 X509v3 Authority Key Identifier: keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/R_8ffrcLcUzSK3vunlkyx_xgiHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.148.73.0-159.148.74.255 159.148.77.0/24 159.148.98.0/24 159.148.121.0/24 159.148.129.0/24 159.148.159.0/24 159.148.185.0/24 159.148.204.0/24 Signature Algorithm: sha256WithRSAEncryption bd:4a:fa:34:a0:74:73:ab:54:66:0b:6d:d0:9f:39:f4:ad:40: bd:c4:5e:8a:6c:5e:ee:b3:bc:20:5d:96:f5:ed:45:74:d2:1e: f8:f3:f1:0f:3e:74:8a:e4:c4:18:95:ba:b6:d8:79:0f:6e:e9: 7a:f2:49:dd:a3:69:79:b1:c4:41:91:71:03:4c:e9:df:0d:14: 3e:3e:50:b0:b5:60:5c:8a:20:45:7c:04:ca:71:2f:4b:b1:83: c1:46:8d:94:e2:93:08:5b:63:0e:d5:9c:ef:55:db:f5:8f:94: bb:f1:10:27:bc:7e:0d:09:39:e3:8f:72:43:3d:2a:b6:42:bd: f8:8b:24:18:b1:03:01:f5:18:6f:2a:7f:a8:cf:ec:3c:8f:7f: 2d:22:98:ab:df:b4:86:c7:6b:6b:03:83:47:47:d1:48:9b:88: d0:d6:73:a1:16:93:8b:bb:06:63:3b:a2:77:8d:86:73:01:5c: b8:40:98:17:01:8b:36:bf:78:e0:5b:e1:b7:d3:4f:34:b6:a7: f2:fe:af:72:4c:d9:76:82:3d:94:d2:26:c6:b5:d9:55:a7:49: 1c:64:04:08:a1:a6:06:92:0e:4d:43:ca:eb:50:7f:e2:66:38: 52:cb:c0:25:4e:2f:e9:07:5f:73:f6:21:0c:70:84:c9:06:25: 08:8b:cb:0c -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt6x9Va2Dfk1z+y/t5LLzfZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm YzQxZWMwHhcNMjYwMTAxMTgxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0N2ZmMWY3ZWI3MGI3MTRjZDIyYjdiZWU5ZTU5MzJjN2ZjNjA4ODc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3c96RE5doUKVj90jlO04+VH8HaAn KNnUJqFH86tXyHd0V3/tRRibowXsf81TxTVo2oYe0U4tjKsYJVcFy7YzOim+Cq0O eVdaY7uXt49mMts2l1roD0JyQ62hmYENlHn/cbazJuav6t0B7hehLo5xDjH3JeIG gx/A89kdIQFYViQT4igLXSEvRZeCSfnIj75tTs61ohWWbbJUou47N2YlmuakU7Ac tA4DRGwwT41FVTMQpfdNGpGz16P/tCaoZ+jyExnczY5NCVkqVOLqUAp1PVsM8bf5 U8C/LLfrd+w+W+bJgEigSl1sMnyTqaUO0+GhDF6JRX03/8htKLqf10ktKwIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFEf/H363C3FM0it77p5ZMsf8YIh0MB8GA1UdIwQY MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt NTU1NGQ2ZTE2ODZmLzEvUl84ZmZyY0xjVXpTSzN2dW5sa3l4X3hnaUhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4MAwDBACflEkD BACflEoDBACflE0DBACflGIDBACflHkDBACflIEDBACflJ8DBACflLkDBACflMww DQYJKoZIhvcNAQELBQADggEBAL1K+jSgdHOrVGYLbdCfOfStQL3EXopsXu6zvCBd lvXtRXTSHvjz8Q8+dIrkxBiVurbYeQ9u6XrySd2jaXmxxEGRcQNM6d8NFD4+ULC1 YFyKIEV8BMpxL0uxg8FGjZTikwhbYw7VnO9V2/WPlLvxECe8fg0JOeOPckM9KrZC vfiLJBixAwH1GG8qf6jP7DyPfy0imKvftIbHa2sDg0dH0UibiNDWc6EWk4u7BmM7 oneNhnMBXLhAmBcBiza/eOBb4bfTTzS2p/L+r3JM2XaCPZTSJsa12VWnSRxkBAih pgaSDk1DyutQf+JmOFLLwCVOL+kHX3P2IQxwhMkGJQiLyww= -----END CERTIFICATE-----Generated at Mon Jan 19 20:00:53 2026 by rpki-client