This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bG9KVmnue1FHevY-_HcUUIqxyIw.roa File: bG9KVmnue1FHevY-_HcUUIqxyIw.roa (raw, json) Hash identifier: xpGTZtpuTo/TBjDESAEDvDdpAQIIb/LdA7JU5vMXtPo= Subject key identifier: 6C:6F:4A:56:69:EE:7B:51:47:7A:F6:3E:FC:77:14:50:8A:B1:C8:8C Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362 Certificate serial: 019B7C12D64F70A78FCE14BC9E4DE1F6A54B Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bG9KVmnue1FHevY-_HcUUIqxyIw.roa Signing time: Fri 02 Jan 2026 00:19:27 +0000 ROA not before: Fri 02 Jan 2026 00:19:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48314 IP address blocks: 5.175.233.0/24 maxlen: 24 77.90.0.0/24 maxlen: 24 77.90.2.0/24 maxlen: 24 77.90.8.0/24 maxlen: 24 77.90.13.0/24 maxlen: 24 77.90.18.0/24 maxlen: 24 77.90.51.0/24 maxlen: 24 94.249.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.mft rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 14:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:d6:4f:70:a7:8f:ce:14:bc:9e:4d:e1:f6:a5:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362 Validity Not Before: Jan 2 00:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6c6f4a5669ee7b51477af63efc7714508ab1c88c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f7:3f:68:da:af:7a:b9:35:94:30:f8:16:59: 5d:3e:37:1e:36:9a:97:22:4d:99:cd:61:6f:0f:b7: 32:25:53:e2:5c:45:92:42:b5:ec:be:8f:c3:4a:39: 78:f8:c0:cf:30:af:dc:91:1d:e4:d1:9f:27:c6:c9: 47:53:ea:1b:4c:d6:12:11:21:e7:26:b9:cd:2c:60: 7c:de:3d:05:ac:b3:cb:bc:4e:bf:de:b0:6e:6d:ea: 67:fe:6a:cc:0b:01:14:fb:3f:b2:63:56:96:d9:40: 24:2e:1f:d4:05:ac:67:78:8d:c2:13:49:93:ae:59: d7:22:f3:fa:d1:8b:48:f6:6c:ae:12:03:20:bd:a0: 5d:60:d4:5a:ad:60:d5:5c:ca:bd:97:ab:31:6a:9d: 81:17:7f:f6:14:18:9e:a2:14:a0:cc:b6:e7:31:b3: b9:9e:62:eb:9a:ae:5e:70:a8:94:b3:34:31:54:d7: f6:fc:9d:10:b0:d7:ec:5a:58:58:47:70:95:f6:35: 6b:77:e0:35:c5:1d:10:59:ea:26:83:ce:21:6d:b6: b1:ce:55:bc:35:9b:4a:d9:d7:f2:85:ef:52:53:a5: e9:1d:cb:91:e1:f8:6d:06:f4:a2:e7:43:7d:c9:58: 26:34:03:f6:f8:38:3e:b1:56:95:cf:01:08:2d:f8: 35:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6F:4A:56:69:EE:7B:51:47:7A:F6:3E:FC:77:14:50:8A:B1:C8:8C X509v3 Authority Key Identifier: keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/bG9KVmnue1FHevY-_HcUUIqxyIw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.175.233.0/24 77.90.0.0/24 77.90.2.0/24 77.90.8.0/24 77.90.13.0/24 77.90.18.0/24 77.90.51.0/24 94.249.193.0/24 Signature Algorithm: sha256WithRSAEncryption 98:f7:3c:aa:26:3c:de:4c:fb:fb:93:8f:8e:39:5f:24:bc:27: 07:7d:f6:07:75:79:2e:bd:83:b1:58:2f:93:04:87:cf:04:ba: 28:59:f9:80:36:5a:45:54:1e:07:b6:31:50:09:06:0b:46:ed: 5e:55:2b:01:56:a7:87:8c:14:82:ab:79:e4:02:cb:16:0a:30: 0d:07:3f:5f:7c:5c:3b:fa:e1:4e:19:f3:7b:82:b7:41:34:c9: cf:9b:bb:65:47:e7:d8:1b:36:1c:4d:1a:de:03:cc:d0:c7:79: 2d:5d:4d:b5:ae:89:24:5c:1d:bc:2b:95:71:ff:01:86:42:10: 7c:c5:f3:10:0c:3e:a2:31:ea:40:9b:37:cb:aa:31:f6:9c:2f: b6:be:34:d0:7b:87:78:f4:35:b4:cd:94:15:4c:91:f2:6a:c3: d4:0a:d4:5e:be:90:c1:ee:ea:bb:e7:03:ec:4c:9c:b3:11:c8: 36:bb:ab:36:3f:62:b7:e1:97:9c:3b:97:44:87:96:71:6e:21: b2:6a:97:ef:58:15:62:23:7c:fe:6e:95:22:a3:b9:dd:a5:e9: 0d:75:8a:22:54:a5:bc:e8:9f:aa:e6:6e:e2:48:c8:c7:49:a0: 73:e9:11:20:c9:b9:25:90:c9:8f:a0:27:16:00:c5:59:2b:ea: 18:b8:b7:01 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt8EtZPcKePzhS8nk3h9qVLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5 YjIzNjIwHhcNMjYwMTAyMDAxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YzZmNGE1NjY5ZWU3YjUxNDc3YWY2M2VmYzc3MTQ1MDhhYjFjODhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/c/aNqverk1lDD4FlldPjceNpqX Ik2ZzWFvD7cyJVPiXEWSQrXsvo/DSjl4+MDPMK/ckR3k0Z8nxslHU+obTNYSESHn JrnNLGB83j0FrLPLvE6/3rBubepn/mrMCwEU+z+yY1aW2UAkLh/UBaxneI3CE0mT rlnXIvP60YtI9myuEgMgvaBdYNRarWDVXMq9l6sxap2BF3/2FBieohSgzLbnMbO5 nmLrmq5ecKiUszQxVNf2/J0QsNfsWlhYR3CV9jVrd+A1xR0QWeomg84hbbaxzlW8 NZtK2dfyhe9SU6XpHcuR4fhtBvSi50N9yVgmNAP2+Dg+sVaVzwEILfg16wIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFGxvSlZp7ntRR3r2Pvx3FFCKsciMMB8GA1UdIwQY MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt ZTFiZDg4ZDNmZDA3LzEvYkc5S1ZtbnVlMUZIZXZZLV9IY1VVSXF4eUl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3 LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQABa/pAwQA TVoAAwQATVoCAwQATVoIAwQATVoNAwQATVoSAwQATVozAwQAXvnBMA0GCSqGSIb3 DQEBCwUAA4IBAQCY9zyqJjzeTPv7k4+OOV8kvCcHffYHdXkuvYOxWC+TBIfPBLoo WfmANlpFVB4HtjFQCQYLRu1eVSsBVqeHjBSCq3nkAssWCjANBz9ffFw7+uFOGfN7 grdBNMnPm7tlR+fYGzYcTRreA8zQx3ktXU21rokkXB28K5Vx/wGGQhB8xfMQDD6i MepAmzfLqjH2nC+2vjTQe4d49DW0zZQVTJHyasPUCtRevpDB7uq75wPsTJyzEcg2 u6s2P2K34ZecO5dEh5ZxbiGyapfvWBViI3z+bpUio7ndpekNdYoiVKW86J+q5m7i SMjHSaBz6REgybklkMmPoCcWAMVZK+oYuLcB -----END CERTIFICATE-----Generated at Mon Jan 19 19:56:33 2026 by rpki-client