This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/0nFOG16a6la6kMeB7VFoAXR1vn0.roa File: 0nFOG16a6la6kMeB7VFoAXR1vn0.roa (raw, json) Hash identifier: zCerIqwrSJR1nVZNueTEjxajeJlDa1k8Y1Z/6ybTWvE= Subject key identifier: D2:71:4E:1B:5E:9A:EA:56:BA:90:C7:81:ED:51:68:01:74:75:BE:7D Certificate issuer: /CN=f48b3f0c6a87c045bdcffabd900db8892be702e1 Certificate serial: 019B7FF2693D1A43FC7BA5BDD374DDD1CE10 Authority key identifier: F4:8B:3F:0C:6A:87:C0:45:BD:CF:FA:BD:90:0D:B8:89:2B:E7:02:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/0nFOG16a6la6kMeB7VFoAXR1vn0.roa Signing time: Fri 02 Jan 2026 18:22:31 +0000 ROA not before: Fri 02 Jan 2026 18:22:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5539 IP address blocks: 82.118.32.0/19 maxlen: 19 185.54.120.0/22 maxlen: 22 185.54.188.0/22 maxlen: 22 185.54.190.0/24 maxlen: 24 185.54.191.0/24 maxlen: 24 193.149.32.0/19 maxlen: 19 194.97.64.0/19 maxlen: 19 194.97.128.0/19 maxlen: 19 194.97.137.0/24 maxlen: 24 195.24.96.0/19 maxlen: 19 195.30.0.0/16 maxlen: 16 195.30.21.0/24 maxlen: 24 195.30.64.0/24 maxlen: 24 195.30.121.0/24 maxlen: 24 195.30.131.0/24 maxlen: 24 2001:608::/32 maxlen: 32 2001:608:804::/48 maxlen: 48 2001:608:e03::/48 maxlen: 48 2001:67c:158c::/48 maxlen: 48 2001:4150::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/9Is_DGqHwEW9z_q9kA24iSvnAuE.crl rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/9Is_DGqHwEW9z_q9kA24iSvnAuE.mft rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:69:3d:1a:43:fc:7b:a5:bd:d3:74:dd:d1:ce:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f48b3f0c6a87c045bdcffabd900db8892be702e1 Validity Not Before: Jan 2 18:22:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2714e1b5e9aea56ba90c781ed5168017475be7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0e:c5:bd:a7:94:52:71:6d:84:47:61:69:54: 74:79:05:02:49:a3:63:e4:d6:bb:7e:ca:72:c1:da: 56:48:b3:f4:55:1a:9a:61:a8:d0:27:09:bd:25:9c: a4:86:e0:41:28:c0:92:c3:6d:2c:cb:8e:2b:16:cc: 6b:2a:9e:e3:a1:d1:37:bd:c0:7b:ea:d6:7f:e8:81: 74:42:59:48:3b:e5:4c:92:5e:f5:35:d0:0b:ca:db: cd:ba:6b:7a:58:6e:66:f6:51:bf:14:85:49:99:fe: 28:7c:21:23:e2:2c:4b:4b:cc:f1:46:8f:8a:c7:17: 47:af:13:3a:b7:ce:d7:20:19:27:b9:d9:dc:67:c7: 6c:5a:07:ac:77:f4:47:a8:84:c7:24:d6:a4:ef:0c: 66:ac:fc:b3:62:b5:fa:64:7c:e4:40:5b:d7:da:99: 35:eb:83:c5:ce:64:f3:06:b2:db:42:f9:cc:1f:4b: fd:cf:24:df:75:e7:e3:32:0e:fb:28:e4:e7:bb:b8: 24:2e:9e:4c:66:54:8e:44:6a:2c:ea:15:37:01:2f: c0:34:3b:80:73:a7:b3:d9:82:2d:1a:17:bb:5b:5a: 91:bf:74:c8:15:26:f3:b0:65:17:d1:3d:7a:54:55: ab:7f:5f:c8:9f:c2:1b:ec:ab:8b:05:3a:2d:84:7c: 14:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:71:4E:1B:5E:9A:EA:56:BA:90:C7:81:ED:51:68:01:74:75:BE:7D X509v3 Authority Key Identifier: keyid:F4:8B:3F:0C:6A:87:C0:45:BD:CF:FA:BD:90:0D:B8:89:2B:E7:02:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/0nFOG16a6la6kMeB7VFoAXR1vn0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/9Is_DGqHwEW9z_q9kA24iSvnAuE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.118.32.0/19 185.54.120.0/22 185.54.188.0/22 193.149.32.0/19 194.97.64.0/19 194.97.128.0/19 195.24.96.0/19 195.30.0.0/16 IPv6: 2001:608::/32 2001:67c:158c::/48 2001:4150::/32 Signature Algorithm: sha256WithRSAEncryption ca:19:6d:be:b7:77:28:b2:75:ff:13:00:34:c5:d1:01:94:7b: a2:cf:87:7c:3d:5d:41:d7:3e:35:30:75:cc:fd:1c:bb:98:fa: 81:4c:00:c8:80:ec:21:d1:2c:e5:4b:c6:d3:67:13:8b:f2:c4: 8f:37:d2:3a:b4:81:01:d5:6b:8a:16:1b:67:2f:1d:56:b3:04: 3c:46:bc:f5:8b:f5:26:f3:71:f0:00:3f:ba:b9:d0:9a:53:14: 2d:8e:cc:d8:6b:8c:46:91:20:ca:3e:4a:c1:bd:8a:75:72:64: 73:dc:cb:12:d0:b9:42:3d:50:81:95:6c:32:dc:c6:ff:f8:6f: 7d:4f:9a:44:8a:31:60:f8:34:9a:17:d9:6b:f9:70:28:cd:38: bd:64:67:ee:3e:cb:db:bc:4a:9b:0d:67:8b:58:a1:c7:d0:e8: df:c1:b4:dc:ee:ce:2b:2a:be:53:06:cd:9c:5e:e9:13:22:ff: da:bc:22:9a:02:05:6e:16:e8:15:7e:52:1a:b2:7f:b7:5d:3f: 27:f8:81:80:d9:74:e2:c3:82:e2:97:dd:92:15:8b:70:f7:00: 1a:47:09:b4:cd:a1:c1:ca:5e:9b:88:2b:1d:16:02:be:75:97: 0b:24:42:d3:08:1d:18:93:8e:f6:26:74:3e:9e:89:4a:c7:41: 6c:67:6f:b0 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgISAZt/8mk9GkP8e6W903Td0c4QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0OGIzZjBjNmE4N2MwNDViZGNmZmFiZDkwMGRiODg5MmJl NzAyZTEwHhcNMjYwMTAyMTgyMjMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjcxNGUxYjVlOWFlYTU2YmE5MGM3ODFlZDUxNjgwMTc0NzViZTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuw7FvaeUUnFthEdhaVR0eQUCSaNj 5Na7fspywdpWSLP0VRqaYajQJwm9JZykhuBBKMCSw20sy44rFsxrKp7jodE3vcB7 6tZ/6IF0QllIO+VMkl71NdALytvNumt6WG5m9lG/FIVJmf4ofCEj4ixLS8zxRo+K xxdHrxM6t87XIBknudncZ8dsWgesd/RHqITHJNak7wxmrPyzYrX6ZHzkQFvX2pk1 64PFzmTzBrLbQvnMH0v9zyTfdefjMg77KOTnu7gkLp5MZlSORGos6hU3AS/ANDuA c6ez2YItGhe7W1qRv3TIFSbzsGUX0T16VFWrf1/In8Ib7KuLBTothHwUYQIDAQAB o4ICUTCCAk0wHQYDVR0OBBYEFNJxThtemupWupDHge1RaAF0db59MB8GA1UdIwQY MBaAFPSLPwxqh8BFvc/6vZANuIkr5wLhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUlzX0RHcUh3RVc5el9xOWtBMjRpU3ZuQXVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8yZTI3NDctYWQ3NC00ZDMxLTkyNTYt ZDM1ZWRiOWZkZDIxLzEvMG5GT0cxNmE2bGE2a01lQjdWRm9BWFIxdm4wLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8yZTI3NDctYWQ3NC00ZDMxLTkyNTYtZDM1ZWRiOWZkZDIx LzEvOUlzX0RHcUh3RVc5el9xOWtBMjRpU3ZuQXVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGcGCCsGAQUFBwEHAQH/BFgwVjA1BAIAATAvAwQFUnYgAwQC uTZ4AwQCuTa8AwQFwZUgAwQFwmFAAwQFwmGAAwQFwxhgAwMAwx4wHQQCAAIwFwMF ACABBggDBwAgAQZ8FYwDBQAgAUFQMA0GCSqGSIb3DQEBCwUAA4IBAQDKGW2+t3co snX/EwA0xdEBlHuiz4d8PV1B1z41MHXM/Ry7mPqBTADIgOwh0SzlS8bTZxOL8sSP N9I6tIEB1WuKFhtnLx1WswQ8Rrz1i/Um83HwAD+6udCaUxQtjszYa4xGkSDKPkrB vYp1cmRz3MsS0LlCPVCBlWwy3Mb/+G99T5pEijFg+DSaF9lr+XAozTi9ZGfuPsvb vEqbDWeLWKHH0OjfwbTc7s4rKr5TBs2cXukTIv/avCKaAgVuFugVflIasn+3XT8n +IGA2XTiw4Lil92SFYtw9wAaRwm0zaHByl6biCsdFgK+dZcLJELTCB0Yk472JnQ+ nolKx0FsZ2+w -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:11 2026 by rpki-client