This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/120e32-793c-4e23-9dd8-4a75a14121bf/1/acv-v2eHqlrCvjloaRGiMlCidZI.roa File: acv-v2eHqlrCvjloaRGiMlCidZI.roa (raw, json) Hash identifier: oC/VXdmhm0cHY+VKvZYv7E0OaLtC7J/ULHsMcrTf+MI= Subject key identifier: 69:CB:FE:BF:67:87:AA:5A:C2:BE:39:68:69:11:A2:32:50:A2:75:92 Certificate issuer: /CN=a11966c5ab4ea0673cc41c786e0778394b8bdacf Certificate serial: 019B7759536BEFA27CC7ADE7D841F9E358EB Authority key identifier: A1:19:66:C5:AB:4E:A0:67:3C:C4:1C:78:6E:07:78:39:4B:8B:DA:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oRlmxatOoGc8xBx4bgd4OUuL2s8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/120e32-793c-4e23-9dd8-4a75a14121bf/1/acv-v2eHqlrCvjloaRGiMlCidZI.roa Signing time: Thu 01 Jan 2026 02:18:21 +0000 ROA not before: Thu 01 Jan 2026 02:18:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44486 IP address blocks: 45.88.108.0/22 maxlen: 22 45.88.108.0/24 maxlen: 24 45.88.109.0/24 maxlen: 24 45.88.110.0/24 maxlen: 24 45.88.111.0/24 maxlen: 24 45.135.200.0/22 maxlen: 22 91.218.64.0/22 maxlen: 24 2a04:e8c0::/29 maxlen: 29 2a04:e8c0:19::/48 maxlen: 48 2a0c:75c0::/29 maxlen: 48 2a0c:75c0::/48 maxlen: 48 2a0c:75c0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/120e32-793c-4e23-9dd8-4a75a14121bf/1/oRlmxatOoGc8xBx4bgd4OUuL2s8.crl rsync://rpki.ripe.net/repository/DEFAULT/68/120e32-793c-4e23-9dd8-4a75a14121bf/1/oRlmxatOoGc8xBx4bgd4OUuL2s8.mft rsync://rpki.ripe.net/repository/DEFAULT/oRlmxatOoGc8xBx4bgd4OUuL2s8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 23:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:53:6b:ef:a2:7c:c7:ad:e7:d8:41:f9:e3:58:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a11966c5ab4ea0673cc41c786e0778394b8bdacf Validity Not Before: Jan 1 02:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69cbfebf6787aa5ac2be39686911a23250a27592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c8:4d:9c:ff:b9:67:81:30:80:89:1b:f3:4d: ec:f9:52:f4:d3:e9:76:c4:73:c3:d6:a0:19:4c:e2: 4a:1c:74:01:eb:4e:b2:75:a6:1c:cd:ed:81:7d:13: 7a:93:71:1a:cb:81:c0:12:85:7f:35:97:50:ce:d5: b4:0f:a5:da:cd:25:c7:85:0d:2f:69:65:d2:a5:60: e5:3c:83:a7:be:91:fc:ca:fe:7f:f2:74:35:96:5c: 2b:89:73:6d:77:37:5b:73:b5:2a:5a:fc:5c:40:03: 38:4c:37:8c:e5:50:71:ee:0b:87:17:53:06:6f:7e: a4:e8:3f:6b:de:eb:d5:22:70:c9:f0:8c:f0:58:c8: 56:8b:0d:d2:92:c5:fb:67:82:cf:f6:42:47:fc:5d: b0:28:6f:5d:f7:22:00:6d:94:0f:64:b8:3f:5b:5f: 81:9d:eb:93:97:d9:76:f3:16:24:be:72:be:f9:3f: b0:0e:78:d1:93:18:9c:1c:01:e7:43:c8:83:c1:3a: d0:ca:a8:82:e7:1a:73:5e:1f:81:f8:50:55:ed:20: 76:45:09:64:6e:68:06:ea:36:c5:ac:1c:89:96:9f: f9:2d:06:4d:9c:68:f2:6a:e4:87:14:79:c1:7c:3e: 0a:ef:c8:f3:68:00:f2:d5:3b:68:3d:98:06:0d:4e: 70:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CB:FE:BF:67:87:AA:5A:C2:BE:39:68:69:11:A2:32:50:A2:75:92 X509v3 Authority Key Identifier: keyid:A1:19:66:C5:AB:4E:A0:67:3C:C4:1C:78:6E:07:78:39:4B:8B:DA:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oRlmxatOoGc8xBx4bgd4OUuL2s8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/120e32-793c-4e23-9dd8-4a75a14121bf/1/acv-v2eHqlrCvjloaRGiMlCidZI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/120e32-793c-4e23-9dd8-4a75a14121bf/1/oRlmxatOoGc8xBx4bgd4OUuL2s8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.88.108.0/22 45.135.200.0/22 91.218.64.0/22 IPv6: 2a04:e8c0::/29 2a0c:75c0::/29 Signature Algorithm: sha256WithRSAEncryption 4d:c6:d6:11:69:25:4e:8f:e0:ca:42:0f:79:e5:66:54:8f:88: 68:47:b1:a5:4c:ca:69:8c:73:ca:38:8c:0f:ba:38:ae:0b:91: b8:52:de:4a:3a:87:c5:01:2c:bb:6f:58:d4:38:49:86:41:fd: 7c:31:11:ea:2a:f6:99:c2:c2:dd:42:bc:3d:fd:a7:9a:8f:aa: c1:f0:99:80:35:4a:54:f6:75:e2:e3:3b:e3:68:0e:c6:77:5f: 47:c8:5a:e3:3a:6b:16:be:65:1a:24:cc:61:1d:67:d0:ea:c0: 9d:73:35:39:f5:1d:f0:be:af:71:41:1c:c0:5d:65:9e:8e:31: f2:46:d1:3a:e7:8f:36:5e:2b:fc:e1:d7:cb:d2:6d:f5:f7:c1: fc:59:ec:36:fd:64:e7:db:1f:05:c0:2e:b2:1d:97:e3:40:8f: 1b:cd:df:5f:79:5c:e6:d8:74:b4:6d:16:e3:ef:6a:69:3d:be: cf:7d:17:26:37:9c:bf:fd:bb:65:1a:fa:45:fc:da:14:46:da: 43:6d:82:a9:ad:73:09:03:f4:07:2e:87:29:40:cf:33:cd:62: d3:a7:8b:51:4e:21:fd:00:b5:ec:0f:79:b6:84:1e:62:f4:d2: 97:0f:8f:7b:41:2e:85:0b:71:45:2d:09:5f:07:b1:7f:bf:3c: 37:30:c2:f7 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt3WVNr76J8x63n2EH541jrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGExMTk2NmM1YWI0ZWEwNjczY2M0MWM3ODZlMDc3ODM5NGI4 YmRhY2YwHhcNMjYwMTAxMDIxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OWNiZmViZjY3ODdhYTVhYzJiZTM5Njg2OTExYTIzMjUwYTI3NTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqshNnP+5Z4EwgIkb803s+VL00+l2 xHPD1qAZTOJKHHQB606ydaYcze2BfRN6k3Eay4HAEoV/NZdQztW0D6XazSXHhQ0v aWXSpWDlPIOnvpH8yv5/8nQ1llwriXNtdzdbc7UqWvxcQAM4TDeM5VBx7guHF1MG b36k6D9r3uvVInDJ8IzwWMhWiw3SksX7Z4LP9kJH/F2wKG9d9yIAbZQPZLg/W1+B neuTl9l28xYkvnK++T+wDnjRkxicHAHnQ8iDwTrQyqiC5xpzXh+B+FBV7SB2RQlk bmgG6jbFrByJlp/5LQZNnGjyauSHFHnBfD4K78jzaADy1TtoPZgGDU5wDQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFGnL/r9nh6pawr45aGkRojJQonWSMB8GA1UdIwQY MBaAFKEZZsWrTqBnPMQceG4HeDlLi9rPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb1JsbXhhdE9vR2M4eEJ4NGJnZDRPVXVMMnM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8xMjBlMzItNzkzYy00ZTIzLTlkZDgt NGE3NWExNDEyMWJmLzEvYWN2LXYyZUhxbHJDdmpsb2FSR2lNbENpZFpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8xMjBlMzItNzkzYy00ZTIzLTlkZDgtNGE3NWExNDEyMWJm LzEvb1JsbXhhdE9vR2M4eEJ4NGJnZDRPVXVMMnM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAYBAIAATASAwQCLVhsAwQC LYfIAwQCW9pAMBQEAgACMA4DBQMqBOjAAwUDKgx1wDANBgkqhkiG9w0BAQsFAAOC AQEATcbWEWklTo/gykIPeeVmVI+IaEexpUzKaYxzyjiMD7o4rguRuFLeSjqHxQEs u29Y1DhJhkH9fDER6ir2mcLC3UK8Pf2nmo+qwfCZgDVKVPZ14uM742gOxndfR8ha 4zprFr5lGiTMYR1n0OrAnXM1OfUd8L6vcUEcwF1lno4x8kbROuePNl4r/OHXy9Jt 9ffB/FnsNv1k59sfBcAush2X40CPG83fX3lc5th0tG0W4+9qaT2+z30XJjecv/27 ZRr6RfzaFEbaQ22Cqa1zCQP0By6HKUDPM81i06eLUU4h/QC17A95toQeYvTSlw+P e0EuhQtxRS0JXwexf788NzDC9w== -----END CERTIFICATE-----Generated at Sun Jan 18 08:33:18 2026 by rpki-client