This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/xFVFZVAAhHRDtGJZaM0Y_XGZPFw.roa File: xFVFZVAAhHRDtGJZaM0Y_XGZPFw.roa (raw, json) Hash identifier: uH5QpDGpCPr21i/FceSry1JKOVd212+3NezDLU2tE04= Subject key identifier: C4:55:45:65:50:00:84:74:43:B4:62:59:68:CD:18:FD:71:99:3C:5C Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da Certificate serial: 019B7E37B03967578B2CD192EC4AD82C485F Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/xFVFZVAAhHRDtGJZaM0Y_XGZPFw.roa Signing time: Fri 02 Jan 2026 10:18:57 +0000 ROA not before: Fri 02 Jan 2026 10:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13335 IP address blocks: 77.246.245.0/24 maxlen: 24 124.198.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.mft rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:b0:39:67:57:8b:2c:d1:92:ec:4a:d8:2c:48:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da Validity Not Before: Jan 2 10:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c45545655000847443b4625968cd18fd71993c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:ef:07:f2:23:fe:0f:7a:6c:be:1c:fc:cd: cd:34:5d:37:68:7a:13:00:c5:12:73:68:12:46:68: ba:93:3c:60:e8:0e:60:61:69:89:59:18:9c:c6:56: 43:21:b7:8b:91:1f:2f:70:2b:d0:ce:80:e9:90:8f: 16:b9:8e:1c:bf:8a:27:90:5e:18:48:00:68:90:0f: bc:52:47:2d:ac:ff:79:19:f4:b2:8e:f3:eb:92:92: 02:d6:e0:38:d7:e6:ff:f3:87:bb:a0:48:57:10:11: 00:21:34:06:6f:84:22:55:f3:fa:70:2d:3c:7f:9e: 9f:dc:38:72:cc:d1:75:cf:ea:57:88:10:14:3d:cf: 13:44:59:78:01:b5:44:ac:b9:17:af:b7:f9:32:e0: 00:77:92:d1:cb:96:b9:bb:68:20:7a:83:ea:1d:84: bc:e3:dc:a2:c1:16:33:9f:d1:28:7f:50:1e:4a:d8: 0d:32:b1:fe:a1:39:fb:d0:10:a1:33:63:ad:63:65: 55:68:e4:63:d9:bf:46:25:07:34:09:b6:a2:a0:23: 44:d8:a3:e6:bf:ae:1e:ee:b5:a4:52:42:21:e2:02: 69:0d:62:ef:9d:e9:07:82:8e:49:cd:e6:36:f1:3e: 43:d7:ef:0f:0a:74:2b:e7:21:2f:c5:bf:35:68:e2: bb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:55:45:65:50:00:84:74:43:B4:62:59:68:CD:18:FD:71:99:3C:5C X509v3 Authority Key Identifier: keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/xFVFZVAAhHRDtGJZaM0Y_XGZPFw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.246.245.0/24 124.198.128.0/23 Signature Algorithm: sha256WithRSAEncryption bf:ca:86:ed:23:b4:dc:ce:71:2e:b4:96:55:a7:77:70:cd:03: 80:9d:35:fe:1d:14:7f:59:e1:19:65:a0:c1:bd:a5:57:8a:7f: 97:3c:0c:5b:01:48:52:bb:d4:fb:34:d3:4c:62:5d:2d:0e:22: a4:a1:02:14:db:4e:8c:50:b0:26:29:a8:ba:0b:bf:8d:37:58: 97:24:38:c0:a8:57:b1:bd:5f:4e:37:73:15:6f:37:5e:40:6e: 0c:f1:9c:e5:2c:86:e8:fd:84:94:d8:49:cf:c8:c6:5e:70:25: 14:81:46:9d:22:05:1b:4d:ad:55:b2:b7:8a:05:a3:91:b7:03: 67:13:c7:44:d7:ee:37:81:45:1a:0d:89:44:4c:8e:aa:9a:13: 2a:8d:05:46:02:cc:10:0b:84:9b:32:05:08:24:6a:16:7f:f9: 0c:44:65:82:98:ab:33:c4:3b:9a:5e:35:2b:9c:8d:cd:9a:1e: f6:ed:c2:95:99:cc:f6:be:5c:e2:1e:28:f0:15:1d:57:56:62: f3:e7:43:bc:ba:24:51:ec:5c:a2:df:34:0d:7b:d3:83:46:20: 15:02:76:7c:85:b6:b0:68:fd:6f:e0:26:fa:cf:61:d8:4a:c1: 78:54:8b:63:a9:8c:17:37:57:73:41:2c:41:6c:37:e2:47:54: e8:a6:fa:b8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N7A5Z1eLLNGS7ErYLEhfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwNGE1ODA0N2YzN2JiYzA1Nzk0NGJiZjhjYWQ4NzQyODc5 NTkyZGEwHhcNMjYwMTAyMTAxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNDU1NDU2NTUwMDA4NDc0NDNiNDYyNTk2OGNkMThmZDcxOTkzYzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoK/vB/Ij/g96bL4c/M3NNF03aHoT AMUSc2gSRmi6kzxg6A5gYWmJWRicxlZDIbeLkR8vcCvQzoDpkI8WuY4cv4onkF4Y SABokA+8UkctrP95GfSyjvPrkpIC1uA41+b/84e7oEhXEBEAITQGb4QiVfP6cC08 f56f3DhyzNF1z+pXiBAUPc8TRFl4AbVErLkXr7f5MuAAd5LRy5a5u2ggeoPqHYS8 49yiwRYzn9Eof1AeStgNMrH+oTn70BChM2OtY2VVaORj2b9GJQc0CbaioCNE2KPm v64e7rWkUkIh4gJpDWLvnekHgo5JzeY28T5D1+8PCnQr5yEvxb81aOK7iQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFMRVRWVQAIR0Q7RiWWjNGP1xmTxcMB8GA1UdIwQY MBaAFPBKWAR/N7vAV5RLv4yth0KHlZLaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYt ZjVmYjcxYjlhNTFmLzEveEZWRlpWQUFoSFJEdEdKWmFNMFlfWEdaUEZ3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni8yYmE5N2UtNTk4Yi00OGRkLThkNTYtZjVmYjcxYjlhNTFm LzEvOEVwWUJIODN1OEJYbEV1X2pLMkhRb2VWa3RvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATfb1AwQB fMaAMA0GCSqGSIb3DQEBCwUAA4IBAQC/yobtI7TcznEutJZVp3dwzQOAnTX+HRR/ WeEZZaDBvaVXin+XPAxbAUhSu9T7NNNMYl0tDiKkoQIU206MULAmKai6C7+NN1iX JDjAqFexvV9ON3MVbzdeQG4M8ZzlLIbo/YSU2EnPyMZecCUUgUadIgUbTa1VsreK BaORtwNnE8dE1+43gUUaDYlETI6qmhMqjQVGAswQC4SbMgUIJGoWf/kMRGWCmKsz xDuaXjUrnI3Nmh727cKVmcz2vlziHijwFR1XVmLz50O8uiRR7Fyi3zQNe9ODRiAV AnZ8hbawaP1v4Cb6z2HYSsF4VItjqYwXN1dzQSxBbDfiR1Topvq4 -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:29 2026 by rpki-client