This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/s-r4X6WFzZl_DjwTvg6rx1Dd8H0.roa File: s-r4X6WFzZl_DjwTvg6rx1Dd8H0.roa (raw, json) Hash identifier: jWgwdzxUJDbOjXM/9fnH2+wJvWnEGw4EF7mGjO4+epM= Subject key identifier: B3:EA:F8:5F:A5:85:CD:99:7F:0E:3C:13:BE:0E:AB:C7:50:DD:F0:7D Certificate issuer: /CN=d283616f1362c25d82ec2a70c4b9750565b1197f Certificate serial: 019B79EBC70976BECD388152B3AA8DB5800A Authority key identifier: D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/s-r4X6WFzZl_DjwTvg6rx1Dd8H0.roa Signing time: Thu 01 Jan 2026 14:17:33 +0000 ROA not before: Thu 01 Jan 2026 14:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.54.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.crl rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.mft rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 23:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:c7:09:76:be:cd:38:81:52:b3:aa:8d:b5:80:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d283616f1362c25d82ec2a70c4b9750565b1197f Validity Not Before: Jan 1 14:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b3eaf85fa585cd997f0e3c13be0eabc750ddf07d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:c0:5e:da:96:5c:d3:d5:39:2f:06:73:c4:20: a4:fb:d8:b6:4f:f3:90:8d:a1:7f:73:12:26:f3:f4: b9:f5:34:57:b6:a9:9c:85:ca:d9:3f:42:2d:66:e8: 9d:f8:a7:b8:39:25:cb:1b:bb:fd:1a:36:08:37:bc: ad:cb:53:82:da:c3:e3:75:ab:c0:5b:bb:4f:70:a6: 8e:60:01:18:84:f9:89:1f:55:28:99:10:16:3a:35: c0:45:fe:66:b1:6e:16:aa:62:e6:80:05:7c:b1:8a: d5:ad:09:55:eb:7f:17:8f:c1:b2:ec:83:b7:29:a3: f6:fd:1b:23:b6:4a:93:e3:f1:af:76:0c:53:dc:55: 29:86:88:14:ae:ab:3d:90:a7:7b:fa:6b:60:67:39: 62:a5:09:b5:a7:3a:e4:86:9f:58:9e:7e:88:9e:33: f5:b5:7f:6f:88:ba:b8:52:c7:bf:0a:74:f1:db:e2: 14:d7:7a:61:40:2a:12:1a:87:60:93:b5:77:45:1a: 03:7f:dc:47:4b:a8:8a:d0:b8:2f:ba:e5:f6:8a:6b: 3f:5b:4e:0e:11:ae:c1:ca:29:5e:15:34:9c:3e:88: 36:0f:25:08:09:b5:31:58:aa:fb:5e:7b:8c:df:b7: 20:7e:8e:e9:a3:9f:15:b3:af:a7:3a:26:93:0d:08: 31:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:EA:F8:5F:A5:85:CD:99:7F:0E:3C:13:BE:0E:AB:C7:50:DD:F0:7D X509v3 Authority Key Identifier: keyid:D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/s-r4X6WFzZl_DjwTvg6rx1Dd8H0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.54.72.0/22 Signature Algorithm: sha256WithRSAEncryption 78:17:76:a9:ab:e2:b6:7f:ca:56:aa:39:41:1b:c5:c2:84:65: 92:c7:10:2b:cf:73:e6:83:30:42:7a:a0:32:8c:6f:50:b6:57: 11:5e:a5:a7:e7:44:64:1a:ff:51:8c:7d:da:6e:f1:c9:b7:86: d7:dd:7b:ea:b2:68:5c:a1:78:43:43:cb:8a:6d:54:3b:17:11: 8a:c7:f4:92:87:52:e3:80:6f:e4:ae:03:96:91:43:ee:6d:b2: 21:6c:7f:27:4d:dd:8e:ec:c7:5c:a1:c9:1d:52:5c:72:4a:55: dc:a7:e0:21:fc:ef:30:dd:0e:22:1f:54:b6:4f:66:7a:d9:42: 4f:f4:5a:42:93:de:c4:ba:91:01:0c:e3:aa:14:e7:19:b5:20: 76:79:5b:1a:5f:3d:d2:61:aa:3a:ec:b1:db:cf:db:90:6c:57: 48:6d:3b:b5:2e:59:8e:98:3c:aa:b6:fd:06:9e:f3:8a:31:97: f4:46:c8:71:98:34:e1:6c:77:dd:ca:7c:a6:89:1f:e5:c5:45: 55:54:bc:66:30:91:6e:ae:58:54:0b:6f:d6:db:fd:2f:6e:78: 97:2c:dc:80:93:ac:b0:e2:54:5d:6b:e6:1d:f1:5f:3a:b3:1f: 5a:2f:a5:92:5f:72:be:44:e7:e4:88:71:51:d2:0f:0d:d1:66: 53:5f:b9:36 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt568cJdr7NOIFSs6qNtYAKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyODM2MTZmMTM2MmMyNWQ4MmVjMmE3MGM0Yjk3NTA1NjVi MTE5N2YwHhcNMjYwMTAxMTQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiM2VhZjg1ZmE1ODVjZDk5N2YwZTNjMTNiZTBlYWJjNzUwZGRmMDdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjsBe2pZc09U5LwZzxCCk+9i2T/OQ jaF/cxIm8/S59TRXtqmchcrZP0ItZuid+Ke4OSXLG7v9GjYIN7yty1OC2sPjdavA W7tPcKaOYAEYhPmJH1UomRAWOjXARf5msW4WqmLmgAV8sYrVrQlV638Xj8Gy7IO3 KaP2/RsjtkqT4/GvdgxT3FUphogUrqs9kKd7+mtgZzlipQm1pzrkhp9Ynn6InjP1 tX9viLq4Use/CnTx2+IU13phQCoSGodgk7V3RRoDf9xHS6iK0LgvuuX2ims/W04O Ea7ByileFTScPog2DyUICbUxWKr7XnuM37cgfo7po58Vs6+nOiaTDQgxLQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLPq+F+lhc2Zfw48E74Oq8dQ3fB9MB8GA1UdIwQY MBaAFNKDYW8TYsJdguwqcMS5dQVlsRl/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG9OaGJ4Tml3bDJDN0Nwd3hMbDFCV1d4R1g4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8yZmJjY2MtNjRiNi00ZjY2LTg5Njkt YTZkMjdjNDMxODE4LzEvcy1yNFg2V0Z6WmxfRGp3VHZnNnJ4MURkOEgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My8yZmJjY2MtNjRiNi00ZjY2LTg5NjktYTZkMjdjNDMxODE4 LzEvMG9OaGJ4Tml3bDJDN0Nwd3hMbDFCV1d4R1g4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTZIMA0G CSqGSIb3DQEBCwUAA4IBAQB4F3apq+K2f8pWqjlBG8XChGWSxxArz3PmgzBCeqAy jG9QtlcRXqWn50RkGv9RjH3abvHJt4bX3XvqsmhcoXhDQ8uKbVQ7FxGKx/SSh1Lj gG/krgOWkUPubbIhbH8nTd2O7MdcockdUlxySlXcp+Ah/O8w3Q4iH1S2T2Z62UJP 9FpCk97EupEBDOOqFOcZtSB2eVsaXz3SYao67LHbz9uQbFdIbTu1LlmOmDyqtv0G nvOKMZf0RshxmDThbHfdynymiR/lxUVVVLxmMJFurlhUC2/W2/0vbniXLNyAk6yw 4lRda+Yd8V86sx9aL6WSX3K+ROfkiHFR0g8N0WZTX7k2 -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:10 2026 by rpki-client