This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/S6Hd3FrMpHr5gvirr8r2mfbNpH0.roa File: S6Hd3FrMpHr5gvirr8r2mfbNpH0.roa (raw, json) Hash identifier: 4FAbzOC5Rxxuxqqf2z3xB7vLnXd0RHMz4zlLK9WWbfU= Subject key identifier: 4B:A1:DD:DC:5A:CC:A4:7A:F9:82:F8:AB:AF:CA:F6:99:F6:CD:A4:7D Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df Certificate serial: 019B8DDAAEA54FCD5FDB5CF62125CB737C29 Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/S6Hd3FrMpHr5gvirr8r2mfbNpH0.roa Signing time: Mon 05 Jan 2026 11:11:17 +0000 ROA not before: Mon 05 Jan 2026 11:11:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200943 IP address blocks: 129.233.200.0/23 maxlen: 23 129.233.202.0/24 maxlen: 24 153.96.62.0/23 maxlen: 23 153.96.64.0/22 maxlen: 22 153.96.142.0/24 maxlen: 24 153.96.160.0/21 maxlen: 21 153.96.186.0/23 maxlen: 23 153.97.15.0/24 maxlen: 24 153.97.174.0/23 maxlen: 23 153.97.176.0/23 maxlen: 23 192.44.9.0/24 maxlen: 24 192.88.97.0/24 maxlen: 24 192.102.146.0/23 maxlen: 23 192.102.149.0/24 maxlen: 24 192.102.154.0/23 maxlen: 23 192.102.157.0/24 maxlen: 24 192.102.166.0/24 maxlen: 24 192.102.173.0/24 maxlen: 24 2001:67c:61c::/48 maxlen: 48 2a03:db80:5460::/48 maxlen: 48 2a03:db80:5464::/48 maxlen: 48 2a03:db80:5470::/48 maxlen: 48 2a03:db80:5474::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.mft rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:8d:da:ae:a5:4f:cd:5f:db:5c:f6:21:25:cb:73:7c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df Validity Not Before: Jan 5 11:11:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4ba1dddc5acca47af982f8abafcaf699f6cda47d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:b9:71:bc:92:8a:f1:7f:3b:d1:23:cd:c5:fc: e6:f1:a6:5a:7e:d5:a2:8b:d3:11:c4:6e:96:c7:90: 83:ba:1a:12:eb:5b:5e:16:62:57:b2:1a:94:06:5c: 02:b1:21:dc:73:43:09:56:b2:11:ba:ac:e9:bb:eb: 56:3d:79:25:b5:91:66:f8:56:d8:dc:18:8a:33:af: d7:d6:6b:7d:e8:96:e2:67:be:3b:60:b0:2c:53:aa: b3:bc:93:97:ad:a9:17:22:9c:ef:b0:a7:e6:b2:f8: f7:f7:b4:fe:bd:4d:84:a5:d3:b2:66:aa:b5:6e:cc: df:81:fb:b9:71:d8:6f:6d:1b:e7:a3:a7:6d:7e:8a: f9:02:1e:66:ef:b6:33:74:04:a2:92:a8:ef:a5:8a: ef:b1:12:ad:26:b1:3b:95:a0:0b:0f:d3:ec:2a:8f: 1a:54:b9:11:e1:2a:2e:52:b2:6c:f3:bc:2d:08:f5: f0:b2:c6:dd:58:97:c3:84:b4:51:94:c7:9c:b9:29: a2:04:d2:d9:c7:81:52:8c:15:20:3a:a3:8b:90:31: f9:41:b7:5f:df:74:58:0f:b6:93:66:01:01:d9:96: 07:fd:b8:8e:c1:39:fa:1e:14:64:17:cb:25:cf:3e: a1:c9:81:72:1e:78:5e:bc:3c:b1:a4:75:72:21:53: 68:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A1:DD:DC:5A:CC:A4:7A:F9:82:F8:AB:AF:CA:F6:99:F6:CD:A4:7D X509v3 Authority Key Identifier: keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/S6Hd3FrMpHr5gvirr8r2mfbNpH0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.233.200.0-129.233.202.255 153.96.62.0-153.96.67.255 153.96.142.0/24 153.96.160.0/21 153.96.186.0/23 153.97.15.0/24 153.97.174.0-153.97.177.255 192.44.9.0/24 192.88.97.0/24 192.102.146.0/23 192.102.149.0/24 192.102.154.0/23 192.102.157.0/24 192.102.166.0/24 192.102.173.0/24 IPv6: 2001:67c:61c::/48 2a03:db80:5460::/48 2a03:db80:5464::/48 2a03:db80:5470::/48 2a03:db80:5474::/48 Signature Algorithm: sha256WithRSAEncryption a1:8e:6c:02:d5:7a:2c:91:ee:d9:bf:4a:50:81:69:fb:95:9d: dc:00:9c:e7:53:3c:82:af:bb:db:c3:80:16:7d:3a:6e:52:d2: 7f:1c:88:23:af:ec:b7:a9:ba:38:6e:8b:35:38:55:7a:d4:7b: 3b:b8:a1:a1:28:8e:21:12:33:7c:a0:76:36:5d:84:0b:ed:36: 8f:9a:da:a5:f8:1f:f0:bf:28:b2:74:e8:f4:34:61:d7:6a:c0: 64:a7:39:9d:53:57:9e:00:e3:cd:07:d2:74:ab:35:4e:38:a5: 93:53:f7:f0:03:56:80:be:8f:93:a2:af:fa:63:09:52:0d:1e: 3b:00:fc:24:0f:c1:bb:ff:f7:36:1a:d2:c6:17:cb:89:39:0f: 6b:ae:06:2c:d5:fa:4f:b4:4d:08:74:d7:db:bc:79:01:c6:39: 2c:ee:54:db:30:86:33:6f:6b:6b:32:b5:8e:c9:fb:ba:2a:00: 6d:98:e6:53:75:89:dc:cd:da:70:e7:2c:6f:7c:a5:d7:f2:57: 48:c2:58:22:ad:e2:79:aa:7a:51:c7:56:aa:da:ea:35:ac:08: b2:c2:cf:9f:a9:22:ed:2a:f3:eb:67:12:fc:29:c1:33:0a:ac: 18:16:20:2c:c1:89:82:2a:2b:cd:ab:ee:0e:71:3c:08:2f:4e: 7a:d4:98:b3 -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgISAZuN2q6lT81f21z2ISXLc3wpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2YTc1ODI2ZTk5MTIyNWE0MjlmZjhhMWU3ZmZkYzgwNDY2 NDIwZGYwHhcNMjYwMTA1MTExMTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YmExZGRkYzVhY2NhNDdhZjk4MmY4YWJhZmNhZjY5OWY2Y2RhNDdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLlxvJKK8X870SPNxfzm8aZaftWi i9MRxG6Wx5CDuhoS61teFmJXshqUBlwCsSHcc0MJVrIRuqzpu+tWPXkltZFm+FbY 3BiKM6/X1mt96JbiZ747YLAsU6qzvJOXrakXIpzvsKfmsvj397T+vU2EpdOyZqq1 bszfgfu5cdhvbRvno6dtfor5Ah5m77YzdASikqjvpYrvsRKtJrE7laALD9PsKo8a VLkR4SouUrJs87wtCPXwssbdWJfDhLRRlMecuSmiBNLZx4FSjBUgOqOLkDH5Qbdf 33RYD7aTZgEB2ZYH/biOwTn6HhRkF8slzz6hyYFyHnhevDyxpHVyIVNoGwIDAQAB o4ICrTCCAqkwHQYDVR0OBBYEFEuh3dxazKR6+YL4q6/K9pn2zaR9MB8GA1UdIwQY MBaAFHanWCbpkSJaQp/4oef/3IBGZCDfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTct YWQ4ZmJlYWE4ZGQ5LzEvUzZIZDNGck1wSHI1Z3ZpcnI4cjJtZmJOcEgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS8xZDMzY2EtOGQxYy00OWMwLWJlOTctYWQ4ZmJlYWE4ZGQ5 LzEvZHFkWUp1bVJJbHBDbl9paDVfX2NnRVprSU44LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMIHCBggrBgEFBQcBBwEB/wSBsjCBrzB4BAIAATByMAwDBAOB 6cgDBACB6cowDAMEAZlgPgMEAplgQAMEAJlgjgMEA5lgoAMEAZlgugMEAJlhDzAM AwQBmWGuAwQBmWGwAwQAwCwJAwQAwFhhAwQBwGaSAwQAwGaVAwQBwGaaAwQAwGad AwQAwGamAwQAwGatMDMEAgACMC0DBwAgAQZ8BhwDBwAqA9uAVGADBwAqA9uAVGQD BwAqA9uAVHADBwAqA9uAVHQwDQYJKoZIhvcNAQELBQADggEBAKGObALVeiyR7tm/ SlCBafuVndwAnOdTPIKvu9vDgBZ9Om5S0n8ciCOv7LepujhuizU4VXrUezu4oaEo jiESM3ygdjZdhAvtNo+a2qX4H/C/KLJ06PQ0YddqwGSnOZ1TV54A480H0nSrNU44 pZNT9/ADVoC+j5Oir/pjCVINHjsA/CQPwbv/9zYa0sYXy4k5D2uuBizV+k+0TQh0 19u8eQHGOSzuVNswhjNva2sytY7J+7oqAG2Y5lN1idzN2nDnLG98pdfyV0jCWCKt 4nmqelHHVqra6jWsCLLCz5+pIu0q8+tnEvwpwTMKrBgWICzBiYIqK82r7g5xPAgv TnrUmLM= -----END CERTIFICATE-----Generated at Wed Jan 21 14:40:54 2026 by rpki-client