This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/RSPqJer2GxHPRRgn7mg4dhkHOBw.roa File: RSPqJer2GxHPRRgn7mg4dhkHOBw.roa (raw, json) Hash identifier: 7i2L3D7sVlNeXVt8GqQE+rm6gyBVSmDTLbXKjTKH2nY= Subject key identifier: 45:23:EA:25:EA:F6:1B:11:CF:45:18:27:EE:68:38:76:19:07:38:1C Certificate issuer: /CN=2979cc43c2469ffa5cf8b7ac639b01f3a768ac55 Certificate serial: 019B7D5C6A9E4584658C1276CF7CC6301843 Authority key identifier: 29:79:CC:43:C2:46:9F:FA:5C:F8:B7:AC:63:9B:01:F3:A7:68:AC:55 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXnMQ8JGn_pc-LesY5sB86dorFU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/RSPqJer2GxHPRRgn7mg4dhkHOBw.roa Signing time: Fri 02 Jan 2026 06:19:27 +0000 ROA not before: Fri 02 Jan 2026 06:19:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.188.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/KXnMQ8JGn_pc-LesY5sB86dorFU.crl rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/KXnMQ8JGn_pc-LesY5sB86dorFU.mft rsync://rpki.ripe.net/repository/DEFAULT/KXnMQ8JGn_pc-LesY5sB86dorFU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 15:01:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:6a:9e:45:84:65:8c:12:76:cf:7c:c6:30:18:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2979cc43c2469ffa5cf8b7ac639b01f3a768ac55 Validity Not Before: Jan 2 06:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4523ea25eaf61b11cf451827ee6838761907381c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c2:dc:b0:9d:56:ff:5d:84:8c:1e:cd:96:22: 6f:1f:07:b2:41:ec:54:6a:a9:ea:4f:77:2d:ca:d7: 71:49:34:52:23:e6:30:0c:a0:d6:52:96:6c:c2:7b: 28:82:c1:d9:e4:dd:1d:0c:c0:94:af:6f:e8:83:b7: 80:cf:f9:21:40:12:4d:5a:3d:75:99:60:af:04:4b: e2:3e:a8:ef:a2:55:be:6d:cf:ff:77:43:54:4c:5a: 21:78:f9:7c:86:6a:5f:62:da:bc:32:9c:4b:98:f1: c1:52:ca:c4:f4:27:cf:fa:2a:a8:27:ce:41:72:f9: 43:f1:2f:e4:fa:77:e8:97:0b:22:51:45:74:ce:c7: 1f:a0:58:64:58:e8:3b:da:ea:13:83:95:83:12:e8: 0e:14:04:04:6b:97:7d:42:46:a3:96:de:b5:4a:c7: d0:48:74:dd:2d:67:58:54:1c:5e:c9:aa:49:85:12: e2:f8:2f:5a:b3:13:9d:7a:c3:1e:b6:97:84:15:17: 8d:60:0f:5e:49:dc:57:7b:44:e9:08:a7:18:5a:51: 17:9e:7d:fb:45:bc:ad:06:75:00:42:ae:60:27:bd: a9:d6:dc:b6:72:91:fb:85:7f:a6:dd:21:63:7f:2a: 28:12:92:27:10:1d:9b:ee:5f:1d:76:c1:1e:29:1e: 75:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:23:EA:25:EA:F6:1B:11:CF:45:18:27:EE:68:38:76:19:07:38:1C X509v3 Authority Key Identifier: keyid:29:79:CC:43:C2:46:9F:FA:5C:F8:B7:AC:63:9B:01:F3:A7:68:AC:55 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXnMQ8JGn_pc-LesY5sB86dorFU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/RSPqJer2GxHPRRgn7mg4dhkHOBw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/e40f9d-00f4-40d9-8b8d-40eaebc1c47e/1/KXnMQ8JGn_pc-LesY5sB86dorFU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.188.140.0/24 Signature Algorithm: sha256WithRSAEncryption 09:c0:0a:53:d8:77:a8:d4:38:da:a2:b6:fb:38:66:45:3f:59: 44:7a:05:00:6e:6f:bf:c3:b0:37:e0:cb:98:cb:9a:2f:5c:0b: ca:38:03:b7:72:31:06:d7:a3:0e:98:a7:53:f1:2f:03:1a:8b: d0:86:74:7d:4a:df:3e:ff:3a:d2:4b:ac:d7:27:f5:5a:a7:1f: 98:f7:bc:70:40:a2:10:cb:7d:e6:45:3c:78:5d:8b:14:e9:ba: 7d:e7:cb:dc:02:df:1d:26:6c:4b:6a:d2:53:73:13:8d:62:7f: 00:82:e2:cc:a0:46:52:8e:11:64:1c:38:a1:21:5b:82:33:ad: 63:49:bd:41:a5:8a:eb:31:e0:a7:81:c5:7b:3c:32:75:65:1c: 75:8a:09:c6:a6:ec:9f:a3:fd:31:16:ba:39:79:dd:04:f8:9b: e3:cb:a1:3c:1d:1f:d7:7c:7e:4c:71:3e:b8:56:1c:5c:96:bd: 34:d1:6d:fe:5a:30:73:68:5f:44:e2:d6:82:a7:65:0a:7b:54: ed:21:98:40:56:50:fe:63:9b:b2:e6:a1:76:8b:c0:06:e8:0e: 8c:de:a9:b1:c1:bd:b4:61:3b:65:b7:5d:cd:f0:5d:5d:46:5d: 27:30:78:b7:7b:b1:cb:d4:29:d1:ab:cd:1c:9b:58:03:d3:68: f6:e9:5b:cc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XGqeRYRljBJ2z3zGMBhDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5NzljYzQzYzI0NjlmZmE1Y2Y4YjdhYzYzOWIwMWYzYTc2 OGFjNTUwHhcNMjYwMTAyMDYxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTIzZWEyNWVhZjYxYjExY2Y0NTE4MjdlZTY4Mzg3NjE5MDczODFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcLcsJ1W/12EjB7NliJvHweyQexU aqnqT3ctytdxSTRSI+YwDKDWUpZswnsogsHZ5N0dDMCUr2/og7eAz/khQBJNWj11 mWCvBEviPqjvolW+bc//d0NUTFohePl8hmpfYtq8MpxLmPHBUsrE9CfP+iqoJ85B cvlD8S/k+nfolwsiUUV0zscfoFhkWOg72uoTg5WDEugOFAQEa5d9Qkajlt61SsfQ SHTdLWdYVBxeyapJhRLi+C9asxOdesMetpeEFReNYA9eSdxXe0TpCKcYWlEXnn37 RbytBnUAQq5gJ72p1ty2cpH7hX+m3SFjfyooEpInEB2b7l8ddsEeKR51DQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEUj6iXq9hsRz0UYJ+5oOHYZBzgcMB8GA1UdIwQY MBaAFCl5zEPCRp/6XPi3rGObAfOnaKxVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1huTVE4SkduX3BjLUxlc1k1c0I4NmRvckZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9lNDBmOWQtMDBmNC00MGQ5LThiOGQt NDBlYWViYzFjNDdlLzEvUlNQcUplcjJHeEhQUlJnbjdtZzRkaGtIT0J3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9lNDBmOWQtMDBmNC00MGQ5LThiOGQtNDBlYWViYzFjNDdl LzEvS1huTVE4SkduX3BjLUxlc1k1c0I4NmRvckZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubyMMA0G CSqGSIb3DQEBCwUAA4IBAQAJwApT2Heo1Djaorb7OGZFP1lEegUAbm+/w7A34MuY y5ovXAvKOAO3cjEG16MOmKdT8S8DGovQhnR9St8+/zrSS6zXJ/Vapx+Y97xwQKIQ y33mRTx4XYsU6bp958vcAt8dJmxLatJTcxONYn8AguLMoEZSjhFkHDihIVuCM61j Sb1BpYrrMeCngcV7PDJ1ZRx1ignGpuyfo/0xFro5ed0E+Jvjy6E8HR/XfH5McT64 Vhxclr000W3+WjBzaF9E4taCp2UKe1TtIZhAVlD+Y5uy5qF2i8AG6A6M3qmxwb20 YTtlt13N8F1dRl0nMHi3e7HL1CnRq80cm1gD02j26VvM -----END CERTIFICATE-----Generated at Fri Jan 9 00:58:29 2026 by rpki-client