This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8O7JNt2Vo2f0jYPhS9QYa_L4TNc.roa File: 8O7JNt2Vo2f0jYPhS9QYa_L4TNc.roa (raw, json) Hash identifier: ES2ZdNLvMxmWofufgBo82l8soz2ypB3LUavvU+sZlH4= Subject key identifier: F0:EE:C9:36:DD:95:A3:67:F4:8D:83:E1:4B:D4:18:6B:F2:F8:4C:D7 Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B7C12D1FB29FD1C7645D806F4F3A5435A Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8O7JNt2Vo2f0jYPhS9QYa_L4TNc.roa Signing time: Fri 02 Jan 2026 00:19:26 +0000 ROA not before: Fri 02 Jan 2026 00:19:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44486 IP address blocks: 5.83.145.0/24 maxlen: 24 5.175.220.0/24 maxlen: 24 77.90.3.0/24 maxlen: 24 77.90.28.0/24 maxlen: 24 89.144.33.0/24 maxlen: 24 89.144.42.0/24 maxlen: 24 94.103.172.0/24 maxlen: 24 94.103.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:d1:fb:29:fd:1c:76:45:d8:06:f4:f3:a5:43:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Jan 2 00:19:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f0eec936dd95a367f48d83e14bd4186bf2f84cd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f2:08:9f:47:4d:b8:5a:57:eb:dd:66:8c:8f: b5:11:cd:bb:80:02:1f:8f:a3:a0:73:6c:f6:c3:a1: dc:bd:2c:50:3e:ee:a7:11:0d:95:18:28:ef:0b:d4: 83:0e:25:d4:e7:7a:62:39:f2:67:64:e4:1b:64:c5: 3e:17:6f:ab:14:49:4f:3a:21:6d:d0:42:4a:5a:85: 80:36:e2:ec:29:30:f8:de:af:8b:b5:6d:b8:3a:ba: 5d:09:51:62:15:fc:b2:0c:cd:97:ff:09:3b:c0:23: 71:50:fb:a2:ad:0c:25:f9:e9:c2:00:92:61:42:66: e8:cf:27:7a:41:41:72:f9:76:bb:c3:70:3b:7f:0c: 0a:8c:01:14:6d:32:2a:6a:fb:ec:9a:31:b6:76:4d: 24:1c:d4:5e:8f:66:06:59:ca:37:c9:ce:42:31:aa: 96:08:66:75:98:42:af:e8:66:ec:d7:82:f9:69:e8: 3a:d5:e7:e6:12:a5:4b:94:78:2e:3b:76:c4:75:e3: 62:bf:62:bf:eb:d2:86:98:2f:3d:1f:5d:eb:2c:c1: 67:be:7e:b9:69:7a:e1:72:ed:c1:a2:52:05:70:a6: eb:79:60:1f:cd:92:48:62:28:ba:b8:c0:11:1f:d7: f6:03:b7:fb:61:0e:82:99:ea:40:a6:c5:1f:49:66: e5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:EE:C9:36:DD:95:A3:67:F4:8D:83:E1:4B:D4:18:6B:F2:F8:4C:D7 X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/8O7JNt2Vo2f0jYPhS9QYa_L4TNc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.145.0/24 5.175.220.0/24 77.90.3.0/24 77.90.28.0/24 89.144.33.0/24 89.144.42.0/24 94.103.172.0/23 Signature Algorithm: sha256WithRSAEncryption 16:8c:07:15:82:c7:1f:36:cc:c9:3d:aa:73:d9:93:9a:8f:f3: f3:7b:4e:64:1f:4f:b8:c0:a9:f5:4f:5e:37:ed:95:54:6f:4a: 9f:78:5d:cb:02:2b:c1:9d:df:d9:c6:c5:5c:81:c1:bd:da:43: 2a:11:38:2e:19:cb:cf:62:0f:d9:0a:82:43:2b:28:a4:c9:0e: cd:0b:4c:94:4e:25:bd:49:be:41:ce:ca:9c:af:ee:56:bc:58: 63:74:24:da:f2:19:92:c6:f3:a4:af:24:ac:1a:8a:78:ef:31: d1:6a:72:36:75:de:3d:2e:0b:83:ac:9c:73:ca:9d:70:bf:eb: 7a:17:eb:72:48:11:fe:26:3c:2b:a4:65:35:c0:df:17:6c:21: 72:6f:bc:bb:60:b8:38:9b:83:1b:16:51:b6:ad:4a:06:ac:57: d6:de:fb:f0:07:69:64:3a:c9:27:e5:f6:68:22:ae:7e:f4:ca: 76:69:fc:f8:df:34:bc:71:a3:1f:64:1f:bb:59:ce:ce:a8:26: 72:0d:3f:6e:3c:4d:11:69:74:f2:a2:6f:c3:66:18:3d:2e:4b: 4d:da:75:a7:1d:87:e7:be:16:fd:4a:71:85:4b:c7:8c:75:44: b4:20:9a:36:28:6a:d7:0b:87:9f:32:db:ae:b2:b6:a8:9b:86: 7f:e0:a0:3c -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt8EtH7Kf0cdkXYBvTzpUNaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjYwMTAyMDAxOTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMGVlYzkzNmRkOTVhMzY3ZjQ4ZDgzZTE0YmQ0MTg2YmYyZjg0Y2Q3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/IIn0dNuFpX691mjI+1Ec27gAIf j6Ogc2z2w6HcvSxQPu6nEQ2VGCjvC9SDDiXU53piOfJnZOQbZMU+F2+rFElPOiFt 0EJKWoWANuLsKTD43q+LtW24OrpdCVFiFfyyDM2X/wk7wCNxUPuirQwl+enCAJJh Qmbozyd6QUFy+Xa7w3A7fwwKjAEUbTIqavvsmjG2dk0kHNRej2YGWco3yc5CMaqW CGZ1mEKv6Gbs14L5aeg61efmEqVLlHguO3bEdeNiv2K/69KGmC89H13rLMFnvn65 aXrhcu3BolIFcKbreWAfzZJIYii6uMARH9f2A7f7YQ6CmepApsUfSWblhQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFPDuyTbdlaNn9I2D4UvUGGvy+EzXMB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvOE83Sk50MlZvMmYwallQaFM5UVlhX0w0VE5jLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQABVORAwQA Ba/cAwQATVoDAwQATVocAwQAWZAhAwQAWZAqAwQBXmesMA0GCSqGSIb3DQEBCwUA A4IBAQAWjAcVgscfNszJPapz2ZOaj/Pze05kH0+4wKn1T1437ZVUb0qfeF3LAivB nd/ZxsVcgcG92kMqETguGcvPYg/ZCoJDKyikyQ7NC0yUTiW9Sb5Bzsqcr+5WvFhj dCTa8hmSxvOkrySsGop47zHRanI2dd49LguDrJxzyp1wv+t6F+tySBH+JjwrpGU1 wN8XbCFyb7y7YLg4m4MbFlG2rUoGrFfW3vvwB2lkOskn5fZoIq5+9Mp2afz43zS8 caMfZB+7Wc7OqCZyDT9uPE0RaXTyom/DZhg9LktN2nWnHYfnvhb9SnGFS8eMdUS0 IJo2KGrXC4efMtuusraom4Z/4KA8 -----END CERTIFICATE-----Generated at Sun Jan 18 08:32:43 2026 by rpki-client