This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/5833f3-2421-41b0-be2e-82a107c4a7e2/1/aENpbZFMMBWYCci1um8I0GEZSKc.roa File: aENpbZFMMBWYCci1um8I0GEZSKc.roa (raw, json) Hash identifier: bJqlLgnRm20xht7mBqwuocxi1HbSlACC3bpe5sLs4l4= Subject key identifier: 68:43:69:6D:91:4C:30:15:98:09:C8:B5:BA:6F:08:D0:61:19:48:A7 Certificate issuer: /CN=bd6497047f20d6f708d7db42557b698fbfb3d8fb Certificate serial: 019B7A5A86D9BED1A42426BDFEC9305821E1 Authority key identifier: BD:64:97:04:7F:20:D6:F7:08:D7:DB:42:55:7B:69:8F:BF:B3:D8:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vWSXBH8g1vcI19tCVXtpj7-z2Ps.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/5833f3-2421-41b0-be2e-82a107c4a7e2/1/aENpbZFMMBWYCci1um8I0GEZSKc.roa Signing time: Thu 01 Jan 2026 16:18:31 +0000 ROA not before: Thu 01 Jan 2026 16:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41371 IP address blocks: 77.240.32.0/24 maxlen: 24 77.240.34.0/24 maxlen: 24 77.240.36.0/24 maxlen: 24 77.240.37.0/24 maxlen: 24 77.240.40.0/24 maxlen: 24 77.240.41.0/24 maxlen: 24 77.240.42.0/24 maxlen: 24 77.240.43.0/24 maxlen: 24 88.151.176.0/21 maxlen: 21 88.151.177.0/24 maxlen: 24 88.151.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/5833f3-2421-41b0-be2e-82a107c4a7e2/1/vWSXBH8g1vcI19tCVXtpj7-z2Ps.crl rsync://rpki.ripe.net/repository/DEFAULT/18/5833f3-2421-41b0-be2e-82a107c4a7e2/1/vWSXBH8g1vcI19tCVXtpj7-z2Ps.mft rsync://rpki.ripe.net/repository/DEFAULT/vWSXBH8g1vcI19tCVXtpj7-z2Ps.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:86:d9:be:d1:a4:24:26:bd:fe:c9:30:58:21:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd6497047f20d6f708d7db42557b698fbfb3d8fb Validity Not Before: Jan 1 16:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6843696d914c30159809c8b5ba6f08d0611948a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fc:68:30:91:fd:39:67:67:80:a0:80:fd:ef: a8:b8:ae:fd:27:1f:ed:98:99:1d:d6:8c:68:f1:c2: 2b:6d:8a:9d:43:53:48:df:13:11:29:b6:1c:a1:a8: 03:83:c1:28:7b:dc:40:47:0c:c2:b8:83:e0:71:7f: 72:c6:4f:0a:81:4a:e9:13:c0:71:6b:1d:92:31:a5: 0b:53:2c:d6:f5:b5:a8:47:30:2a:f1:74:13:1f:2a: 1a:04:0d:87:cf:01:ab:13:5b:7f:ac:b5:cc:65:9f: 3b:45:f4:d3:87:02:ed:21:5e:92:af:7f:7a:b4:94: 21:73:29:07:96:0b:e2:27:b5:af:85:ba:f5:89:c4: cd:99:09:74:4e:3c:de:9b:8e:ed:e6:a5:1c:fc:b3: e5:af:ca:32:3c:34:5b:aa:c1:b2:f8:4c:5e:d9:4f: fe:e1:03:a1:e9:10:b9:ed:20:1e:1a:da:3e:c2:dc: cb:77:e6:24:b2:3c:0f:7d:d7:91:55:36:d6:18:9a: 52:13:cb:90:25:8f:ba:34:d6:e1:a7:29:ff:af:12: 08:35:0f:97:3d:ea:e7:ee:89:11:0c:bf:ef:25:06: 59:22:7a:22:77:0f:e2:2d:0b:a4:4a:06:64:a4:8f: 5a:ad:ce:b9:8a:bc:97:f2:0d:bf:49:70:9b:7d:f0: 01:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:43:69:6D:91:4C:30:15:98:09:C8:B5:BA:6F:08:D0:61:19:48:A7 X509v3 Authority Key Identifier: keyid:BD:64:97:04:7F:20:D6:F7:08:D7:DB:42:55:7B:69:8F:BF:B3:D8:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWSXBH8g1vcI19tCVXtpj7-z2Ps.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/5833f3-2421-41b0-be2e-82a107c4a7e2/1/aENpbZFMMBWYCci1um8I0GEZSKc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/18/5833f3-2421-41b0-be2e-82a107c4a7e2/1/vWSXBH8g1vcI19tCVXtpj7-z2Ps.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.240.32.0/24 77.240.34.0/24 77.240.36.0/23 77.240.40.0/22 88.151.176.0/21 Signature Algorithm: sha256WithRSAEncryption 36:59:df:5f:fb:1e:a6:26:fd:3c:e2:03:4f:d8:b4:5e:a7:49: ce:cd:ff:b1:61:26:99:24:ea:5d:fe:94:a1:45:44:b5:06:64: 8c:35:73:5d:fe:94:13:11:03:31:fb:19:8a:9f:da:ca:4c:8e: 8b:d5:aa:94:4b:a2:97:ca:45:79:da:dd:8d:c0:45:2a:d1:e3: aa:d0:44:ae:06:58:25:85:ed:30:48:52:5d:7a:b9:e3:a2:a8: d0:69:ba:b4:94:34:d4:ea:3b:e8:39:8e:53:4a:62:41:55:a5: 43:80:90:f9:5d:7c:69:dc:00:4d:d2:cf:25:da:39:a0:c2:a5: 4c:9a:7a:21:31:c4:87:ba:93:62:fe:f4:1d:65:e1:18:1d:82: 0c:d9:0f:8f:1a:03:d3:4e:49:06:93:2a:cd:ac:da:3c:98:41: 22:5e:ed:fd:17:18:f5:d1:5c:5d:a1:2a:de:9e:27:50:97:d2: fa:e3:02:e9:ce:fe:52:fc:b2:c6:e6:a6:98:70:e3:12:4f:e5: 98:af:fe:3a:f5:f2:cb:07:bc:54:ef:7f:09:46:d8:08:61:b7: 63:30:09:49:6f:4a:55:c3:1f:33:d7:56:5a:4f:fb:62:f7:4c: ac:8b:62:e1:16:5e:ee:0e:8e:54:f7:5d:1e:56:6c:72:01:6a: 7b:35:af:8d -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt6WobZvtGkJCa9/skwWCHhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkNjQ5NzA0N2YyMGQ2ZjcwOGQ3ZGI0MjU1N2I2OThmYmZi M2Q4ZmIwHhcNMjYwMTAxMTYxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODQzNjk2ZDkxNGMzMDE1OTgwOWM4YjViYTZmMDhkMDYxMTk0OGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfxoMJH9OWdngKCA/e+ouK79Jx/t mJkd1oxo8cIrbYqdQ1NI3xMRKbYcoagDg8Eoe9xARwzCuIPgcX9yxk8KgUrpE8Bx ax2SMaULUyzW9bWoRzAq8XQTHyoaBA2HzwGrE1t/rLXMZZ87RfTThwLtIV6Sr396 tJQhcykHlgviJ7Wvhbr1icTNmQl0Tjzem47t5qUc/LPlr8oyPDRbqsGy+Exe2U/+ 4QOh6RC57SAeGto+wtzLd+YksjwPfdeRVTbWGJpSE8uQJY+6NNbhpyn/rxIINQ+X Pern7okRDL/vJQZZInoidw/iLQukSgZkpI9arc65iryX8g2/SXCbffABqwIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFGhDaW2RTDAVmAnItbpvCNBhGUinMB8GA1UdIwQY MBaAFL1klwR/INb3CNfbQlV7aY+/s9j7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdldTWEJIOGcxdmNJMTl0Q1ZYdHBqNy16MlBzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC81ODMzZjMtMjQyMS00MWIwLWJlMmUt ODJhMTA3YzRhN2UyLzEvYUVOcGJaRk1NQldZQ2NpMXVtOEkwR0VaU0tjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOC81ODMzZjMtMjQyMS00MWIwLWJlMmUtODJhMTA3YzRhN2Uy LzEvdldTWEJIOGcxdmNJMTl0Q1ZYdHBqNy16MlBzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQATfAgAwQA TfAiAwQBTfAkAwQCTfAoAwQDWJewMA0GCSqGSIb3DQEBCwUAA4IBAQA2Wd9f+x6m Jv084gNP2LRep0nOzf+xYSaZJOpd/pShRUS1BmSMNXNd/pQTEQMx+xmKn9rKTI6L 1aqUS6KXykV52t2NwEUq0eOq0ESuBlglhe0wSFJdernjoqjQabq0lDTU6jvoOY5T SmJBVaVDgJD5XXxp3ABN0s8l2jmgwqVMmnohMcSHupNi/vQdZeEYHYIM2Q+PGgPT TkkGkyrNrNo8mEEiXu39Fxj10VxdoSrenidQl9L64wLpzv5S/LLG5qaYcOMST+WY r/469fLLB7xU738JRtgIYbdjMAlJb0pVwx8z11ZaT/ti90ysi2LhFl7uDo5U910e VmxyAWp7Na+N -----END CERTIFICATE-----Generated at Tue Feb 10 04:15:00 2026 by rpki-client