This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/1D6VdZ93vriFw0vJq3zsA_SVHYQ.roa File: 1D6VdZ93vriFw0vJq3zsA_SVHYQ.roa (raw, json) Hash identifier: wfcEJ94VdVBOXkIE/uYqWDRHCjqI3CAKjspAjKdc5FA= Subject key identifier: D4:3E:95:75:9F:77:BE:B8:85:C3:4B:C9:AB:7C:EC:03:F4:95:1D:84 Certificate issuer: /CN=a15e3f974b5f974656ccf4d45596caad1b9096d4 Certificate serial: 019B7B364685E2B1512E3256BA48F4A8610F Authority key identifier: A1:5E:3F:97:4B:5F:97:46:56:CC:F4:D4:55:96:CA:AD:1B:90:96:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/1D6VdZ93vriFw0vJq3zsA_SVHYQ.roa Signing time: Thu 01 Jan 2026 20:18:33 +0000 ROA not before: Thu 01 Jan 2026 20:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205376 IP address blocks: 185.220.148.0/22 maxlen: 24 185.220.148.0/24 maxlen: 24 185.220.149.0/24 maxlen: 24 185.220.150.0/24 maxlen: 24 185.220.151.0/24 maxlen: 24 194.45.71.0/24 maxlen: 24 2a0b:f840::/29 maxlen: 32 2a0b:f840::/32 maxlen: 32 2a0b:f841::/32 maxlen: 32 2a0b:f847::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.crl rsync://rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.mft rsync://rpki.ripe.net/repository/DEFAULT/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:46:85:e2:b1:51:2e:32:56:ba:48:f4:a8:61:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15e3f974b5f974656ccf4d45596caad1b9096d4 Validity Not Before: Jan 1 20:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d43e95759f77beb885c34bc9ab7cec03f4951d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:af:01:98:a1:d4:b9:c3:bc:19:e9:ee:15:a7: bc:8f:e9:a5:12:7c:00:18:a2:9c:0a:a4:d0:5d:fc: 88:c8:9c:99:98:b7:77:67:34:e3:87:0d:42:e1:91: f1:0d:ed:9d:2b:8d:15:bb:a7:ed:a4:59:71:51:41: ff:ba:19:a9:b4:30:a7:6a:56:39:95:ec:e5:9b:5b: 3b:b7:19:a6:fa:db:af:3b:18:35:ff:cb:a8:ad:19: 78:3a:3a:80:15:90:f3:fb:f5:66:07:a9:de:9d:aa: 6b:0c:1e:81:b3:e0:c4:b2:a3:00:23:ae:5e:b1:60: 18:12:00:df:39:89:a5:40:f0:f4:3d:20:bb:96:74: f4:0e:30:a5:12:13:b8:f8:84:65:d7:43:68:07:4e: 20:e5:53:43:53:53:a3:f3:d4:fe:4b:41:9d:24:4a: 06:61:8a:80:f9:62:fc:5a:30:58:bd:e2:97:9f:b2: 5f:46:01:91:fc:6f:e0:eb:2b:c8:11:4f:da:79:46: 7d:4b:76:70:94:79:03:80:4f:4f:6e:a0:0a:cd:35: 97:51:09:f2:d0:16:f6:6c:40:61:8f:70:81:b9:85: 58:10:38:49:ac:e3:f1:71:6c:81:fb:97:de:49:97: c9:a0:fd:ac:b8:22:29:58:87:da:a4:58:e3:cf:95: 6e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3E:95:75:9F:77:BE:B8:85:C3:4B:C9:AB:7C:EC:03:F4:95:1D:84 X509v3 Authority Key Identifier: keyid:A1:5E:3F:97:4B:5F:97:46:56:CC:F4:D4:55:96:CA:AD:1B:90:96:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/1D6VdZ93vriFw0vJq3zsA_SVHYQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d6a422-3612-45af-83ab-d24b68966e0e/1/oV4_l0tfl0ZWzPTUVZbKrRuQltQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.220.148.0/22 194.45.71.0/24 IPv6: 2a0b:f840::/29 Signature Algorithm: sha256WithRSAEncryption 48:44:ca:08:5b:8c:7d:16:75:2f:7c:16:cd:1d:a6:e2:0a:7f: 1e:ac:d3:f5:58:79:a2:e5:56:ab:95:1c:b6:15:2a:c2:58:b3: e5:4e:1e:9f:eb:e6:73:8b:09:c1:fb:1b:32:7c:07:e8:5a:0a: 08:c2:20:93:b5:a6:7a:2c:4d:eb:90:c8:dd:f9:9e:e1:19:4b: 0d:c0:b3:4c:70:c5:53:c4:dd:bb:5b:4b:96:2e:7a:21:0d:6f: f4:82:f6:7b:33:4c:c5:08:3b:9e:1e:a7:0e:1b:fd:db:d9:8a: 0a:2f:3a:78:7a:18:48:0a:e3:f0:e7:7a:14:f3:ec:9f:29:6b: 61:4a:30:77:35:c3:9a:ec:c6:65:f3:80:92:ad:d4:21:0d:b0: c3:d4:e1:5a:c3:03:69:37:d5:82:e7:d3:73:f0:e6:fe:47:8e: 63:26:ff:35:34:45:aa:43:97:de:ac:db:d6:12:f6:52:c6:0f: 31:e4:d1:a9:17:6d:c7:43:61:b4:5c:b5:a5:81:49:d3:57:ec: 51:f4:12:4c:ab:2c:82:65:bc:a9:ae:fa:7b:1a:05:c3:67:fa: 55:1c:38:c2:e6:a0:05:a2:3b:16:72:da:cf:4c:48:8c:cc:d2: a0:4d:a0:be:68:09:a3:94:92:b6:fe:6e:94:c7:ec:78:6f:92: 23:8c:67:4d -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7NkaF4rFRLjJWukj0qGEPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExNWUzZjk3NGI1Zjk3NDY1NmNjZjRkNDU1OTZjYWFkMWI5 MDk2ZDQwHhcNMjYwMTAxMjAxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNDNlOTU3NTlmNzdiZWI4ODVjMzRiYzlhYjdjZWMwM2Y0OTUxZDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2q8BmKHUucO8GenuFae8j+mlEnwA GKKcCqTQXfyIyJyZmLd3ZzTjhw1C4ZHxDe2dK40Vu6ftpFlxUUH/uhmptDCnalY5 lezlm1s7txmm+tuvOxg1/8uorRl4OjqAFZDz+/VmB6nenaprDB6Bs+DEsqMAI65e sWAYEgDfOYmlQPD0PSC7lnT0DjClEhO4+IRl10NoB04g5VNDU1Oj89T+S0GdJEoG YYqA+WL8WjBYveKXn7JfRgGR/G/g6yvIEU/aeUZ9S3ZwlHkDgE9PbqAKzTWXUQny 0Bb2bEBhj3CBuYVYEDhJrOPxcWyB+5feSZfJoP2suCIpWIfapFjjz5Vu1wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFNQ+lXWfd764hcNLyat87AP0lR2EMB8GA1UdIwQY MBaAFKFeP5dLX5dGVsz01FWWyq0bkJbUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1Y0X2wwdGZsMFpXelBUVVZaYktyUnVRbHRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9kNmE0MjItMzYxMi00NWFmLTgzYWIt ZDI0YjY4OTY2ZTBlLzEvMUQ2VmRaOTN2cmlGdzB2SnEzenNBX1NWSFlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9kNmE0MjItMzYxMi00NWFmLTgzYWItZDI0YjY4OTY2ZTBl LzEvb1Y0X2wwdGZsMFpXelBUVVZaYktyUnVRbHRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCudyUAwQA wi1HMA0EAgACMAcDBQMqC/hAMA0GCSqGSIb3DQEBCwUAA4IBAQBIRMoIW4x9FnUv fBbNHabiCn8erNP1WHmi5VarlRy2FSrCWLPlTh6f6+ZziwnB+xsyfAfoWgoIwiCT taZ6LE3rkMjd+Z7hGUsNwLNMcMVTxN27W0uWLnohDW/0gvZ7M0zFCDueHqcOG/3b 2YoKLzp4ehhICuPw53oU8+yfKWthSjB3NcOa7MZl84CSrdQhDbDD1OFawwNpN9WC 59Nz8Ob+R45jJv81NEWqQ5ferNvWEvZSxg8x5NGpF23HQ2G0XLWlgUnTV+xR9BJM qyyCZbyprvp7GgXDZ/pVHDjC5qAFojsWctrPTEiMzNKgTaC+aAmjlJK2/m6Ux+x4 b5IjjGdN -----END CERTIFICATE-----Generated at Thu Jan 22 01:30:01 2026 by rpki-client