This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/5fd88e-ffb6-4652-a990-3d8bc89b4427/1/32MPHrhab7tLeHA1QgnK1TjEYxU.roa File: 32MPHrhab7tLeHA1QgnK1TjEYxU.roa (raw, json) Hash identifier: JXdy+SGJGsVbR9WQI9uRSAp0xDEYoI/Mip8shHcZQPM= Subject key identifier: DF:63:0F:1E:B8:5A:6F:BB:4B:78:70:35:42:09:CA:D5:38:C4:63:15 Certificate issuer: /CN=94306f68aea4bae124fac85f2c9aa3f5ae850113 Certificate serial: 019B7DCA94C7CB411910318B900D3857CCB8 Authority key identifier: 94:30:6F:68:AE:A4:BA:E1:24:FA:C8:5F:2C:9A:A3:F5:AE:85:01:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lDBvaK6kuuEk-shfLJqj9a6FARM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/5fd88e-ffb6-4652-a990-3d8bc89b4427/1/32MPHrhab7tLeHA1QgnK1TjEYxU.roa Signing time: Fri 02 Jan 2026 08:19:46 +0000 ROA not before: Fri 02 Jan 2026 08:19:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48031 IP address blocks: 78.136.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/5fd88e-ffb6-4652-a990-3d8bc89b4427/1/lDBvaK6kuuEk-shfLJqj9a6FARM.crl rsync://rpki.ripe.net/repository/DEFAULT/68/5fd88e-ffb6-4652-a990-3d8bc89b4427/1/lDBvaK6kuuEk-shfLJqj9a6FARM.mft rsync://rpki.ripe.net/repository/DEFAULT/lDBvaK6kuuEk-shfLJqj9a6FARM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:94:c7:cb:41:19:10:31:8b:90:0d:38:57:cc:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94306f68aea4bae124fac85f2c9aa3f5ae850113 Validity Not Before: Jan 2 08:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df630f1eb85a6fbb4b7870354209cad538c46315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:35:1c:5e:12:3a:56:79:2e:20:7d:89:b5:e7: bd:8c:b0:d3:68:60:a6:f4:cf:c6:03:a7:4b:20:8b: cc:5a:c6:7d:e9:21:58:74:0c:8e:8b:a6:e7:a2:a1: e4:33:62:69:a1:61:6b:b2:98:c6:5d:59:9a:15:0d: 74:ec:fa:44:61:cf:38:f6:77:3e:6e:e6:cb:56:b7: 16:e6:d3:32:c7:bb:83:79:09:32:28:3f:7f:1d:91: 5b:f0:44:3c:16:1d:3a:38:b2:16:1f:63:fa:22:62: 40:67:e4:25:a8:20:d6:1b:28:05:dd:28:fa:f7:8f: cb:6b:de:9f:ab:93:ab:ac:4d:1d:a7:29:5c:c1:5b: f1:80:8a:3d:b9:5c:dd:e9:9b:d4:b2:77:11:ab:be: 0a:b1:73:fa:6b:c1:e1:a0:04:12:e4:62:50:9f:c3: 34:37:ce:2e:a4:5c:9a:dc:64:a9:b9:e7:01:50:45: 7a:66:db:46:a2:b6:1b:87:69:25:eb:b2:78:99:fd: ee:18:eb:86:c8:74:00:36:62:bc:8c:e7:f7:e7:b6: a2:cc:30:58:72:31:db:44:57:b4:42:af:1a:42:57: af:f0:a0:23:3c:fe:38:a3:98:9a:a8:61:c1:e2:1e: ab:da:b9:3c:91:1d:76:2a:dd:46:11:e6:d6:d9:6b: 05:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:63:0F:1E:B8:5A:6F:BB:4B:78:70:35:42:09:CA:D5:38:C4:63:15 X509v3 Authority Key Identifier: keyid:94:30:6F:68:AE:A4:BA:E1:24:FA:C8:5F:2C:9A:A3:F5:AE:85:01:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lDBvaK6kuuEk-shfLJqj9a6FARM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/5fd88e-ffb6-4652-a990-3d8bc89b4427/1/32MPHrhab7tLeHA1QgnK1TjEYxU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/5fd88e-ffb6-4652-a990-3d8bc89b4427/1/lDBvaK6kuuEk-shfLJqj9a6FARM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.136.254.0/24 Signature Algorithm: sha256WithRSAEncryption 27:b1:1b:10:98:cf:f9:bd:66:d0:b3:80:cb:0a:fc:b2:53:22: 0a:2b:ac:1a:2f:ae:c1:55:79:06:fd:09:f3:0f:59:90:fc:e2: eb:ca:aa:ef:67:ff:14:04:21:b1:03:bd:5f:aa:cc:d3:1d:6e: 5f:f3:ee:25:f9:9f:11:c4:b7:8f:3d:91:86:6b:09:f1:c3:7a: e7:32:e1:c2:8c:78:1e:a0:02:06:a5:0a:bc:07:03:8e:e0:81: d3:59:95:0e:d6:13:c9:40:6b:53:83:90:b9:37:1d:b1:a7:f1: 3b:91:1e:13:db:6e:3a:c5:a6:85:4b:b4:9b:50:36:37:10:c3: 2c:7e:26:25:ef:07:01:9b:4d:d4:c5:81:a0:6f:ab:90:58:78: 8e:cf:ae:ea:ac:f1:66:ad:74:6e:b3:99:be:5a:66:4b:0e:72: bf:a2:86:3c:4b:83:8e:42:6a:c3:a9:03:b2:d9:78:86:37:1e: d7:09:64:aa:40:bf:09:46:76:62:f2:5a:5f:13:b4:c6:c3:ad: 1b:bc:79:ed:03:39:2b:54:9e:80:3e:8d:70:fe:40:68:fe:90: 90:b4:22:ef:ff:ed:a8:cf:eb:07:f5:31:19:3a:ed:09:c4:56: 42:5c:6d:2b:67:33:61:70:4e:7c:0b:ad:8d:a6:53:80:71:c1: 17:92:06:80 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9ypTHy0EZEDGLkA04V8y4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0MzA2ZjY4YWVhNGJhZTEyNGZhYzg1ZjJjOWFhM2Y1YWU4 NTAxMTMwHhcNMjYwMTAyMDgxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjYzMGYxZWI4NWE2ZmJiNGI3ODcwMzU0MjA5Y2FkNTM4YzQ2MzE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTUcXhI6VnkuIH2Jtee9jLDTaGCm 9M/GA6dLIIvMWsZ96SFYdAyOi6bnoqHkM2JpoWFrspjGXVmaFQ107PpEYc849nc+ bubLVrcW5tMyx7uDeQkyKD9/HZFb8EQ8Fh06OLIWH2P6ImJAZ+QlqCDWGygF3Sj6 94/La96fq5OrrE0dpylcwVvxgIo9uVzd6ZvUsncRq74KsXP6a8HhoAQS5GJQn8M0 N84upFya3GSpuecBUEV6ZttGorYbh2kl67J4mf3uGOuGyHQANmK8jOf357aizDBY cjHbRFe0Qq8aQlev8KAjPP44o5iaqGHB4h6r2rk8kR12Kt1GEebW2WsFaQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFN9jDx64Wm+7S3hwNUIJytU4xGMVMB8GA1UdIwQY MBaAFJQwb2iupLrhJPrIXyyao/WuhQETMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbERCdmFLNmt1dUVrLXNoZkxKcWo5YTZGQVJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC81ZmQ4OGUtZmZiNi00NjUyLWE5OTAt M2Q4YmM4OWI0NDI3LzEvMzJNUEhyaGFiN3RMZUhBMVFnbksxVGpFWXhVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC81ZmQ4OGUtZmZiNi00NjUyLWE5OTAtM2Q4YmM4OWI0NDI3 LzEvbERCdmFLNmt1dUVrLXNoZkxKcWo5YTZGQVJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAToj+MA0G CSqGSIb3DQEBCwUAA4IBAQAnsRsQmM/5vWbQs4DLCvyyUyIKK6waL67BVXkG/Qnz D1mQ/OLryqrvZ/8UBCGxA71fqszTHW5f8+4l+Z8RxLePPZGGawnxw3rnMuHCjHge oAIGpQq8BwOO4IHTWZUO1hPJQGtTg5C5Nx2xp/E7kR4T2246xaaFS7SbUDY3EMMs fiYl7wcBm03UxYGgb6uQWHiOz67qrPFmrXRus5m+WmZLDnK/ooY8S4OOQmrDqQOy 2XiGNx7XCWSqQL8JRnZi8lpfE7TGw60bvHntAzkrVJ6APo1w/kBo/pCQtCLv/+2o z+sH9TEZOu0JxFZCXG0rZzNhcE58C62NplOAccEXkgaA -----END CERTIFICATE-----Generated at Sat Jan 10 20:49:45 2026 by rpki-client