This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/4c0413-ce81-4dc8-8a4d-a70eee3db5e5/1/r2FzkDk8bJYrPqzaqgtlaBonfqk.roa File: r2FzkDk8bJYrPqzaqgtlaBonfqk.roa (raw, json) Hash identifier: f1HN7BXYId6gEL/AZojIIht1vxFDri+lbHrSLek1YkE= Subject key identifier: AF:61:73:90:39:3C:6C:96:2B:3E:AC:DA:AA:0B:65:68:1A:27:7E:A9 Certificate issuer: /CN=534972956bdff83b0d881e01afd3d6c52651e04b Certificate serial: 019B79114A99440F9FD9A67C1D02275DC996 Authority key identifier: 53:49:72:95:6B:DF:F8:3B:0D:88:1E:01:AF:D3:D6:C5:26:51:E0:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U0lylWvf-DsNiB4Br9PWxSZR4Es.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/4c0413-ce81-4dc8-8a4d-a70eee3db5e5/1/r2FzkDk8bJYrPqzaqgtlaBonfqk.roa Signing time: Thu 01 Jan 2026 10:18:54 +0000 ROA not before: Thu 01 Jan 2026 10:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60656 IP address blocks: 78.128.32.0/24 maxlen: 24 78.128.33.0/24 maxlen: 24 78.128.34.0/24 maxlen: 24 78.128.35.0/24 maxlen: 24 78.128.44.0/24 maxlen: 24 78.128.45.0/24 maxlen: 24 78.128.46.0/24 maxlen: 24 78.128.47.0/24 maxlen: 24 78.128.48.0/24 maxlen: 24 78.128.49.0/24 maxlen: 24 78.128.50.0/24 maxlen: 24 78.128.51.0/24 maxlen: 24 78.128.64.0/24 maxlen: 24 78.128.65.0/24 maxlen: 24 78.128.68.0/23 maxlen: 23 78.128.70.0/23 maxlen: 23 79.124.85.0/24 maxlen: 24 130.185.252.0/24 maxlen: 24 185.149.104.0/24 maxlen: 24 185.149.105.0/24 maxlen: 24 185.149.106.0/24 maxlen: 24 185.149.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/4c0413-ce81-4dc8-8a4d-a70eee3db5e5/1/U0lylWvf-DsNiB4Br9PWxSZR4Es.crl rsync://rpki.ripe.net/repository/DEFAULT/79/4c0413-ce81-4dc8-8a4d-a70eee3db5e5/1/U0lylWvf-DsNiB4Br9PWxSZR4Es.mft rsync://rpki.ripe.net/repository/DEFAULT/U0lylWvf-DsNiB4Br9PWxSZR4Es.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:4a:99:44:0f:9f:d9:a6:7c:1d:02:27:5d:c9:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534972956bdff83b0d881e01afd3d6c52651e04b Validity Not Before: Jan 1 10:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af617390393c6c962b3eacdaaa0b65681a277ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f0:77:63:c6:31:97:fe:59:a1:e1:12:6b:9b: 5a:86:73:10:d7:9f:15:40:30:83:6d:03:11:9d:c5: e1:f0:e8:45:b8:10:63:91:dc:73:85:a6:b8:c7:a7: 1b:09:ef:97:83:fd:50:8f:42:07:01:98:02:a3:11: b3:d7:17:59:6f:6e:ed:f2:6e:df:46:54:09:7a:be: 70:c8:2f:9d:c7:3c:b5:0f:f9:d0:e7:d9:0b:58:21: b3:ca:a2:7e:13:de:60:11:27:cd:cc:dc:d1:e5:48: 32:32:8b:d7:0e:67:c0:0d:d3:b0:e8:11:ef:47:cf: fd:dd:bf:ff:99:e7:22:ac:a2:f9:0a:51:a3:dc:56: 37:33:38:32:72:ac:eb:76:d9:83:dc:36:76:2d:4a: 2a:06:fc:ea:f3:18:e1:19:5a:d4:7b:3a:7a:28:17: c8:38:7c:c5:71:5e:fd:19:0c:1b:71:03:80:2e:88: dc:1e:30:b1:83:2d:7c:32:e9:58:49:2b:e2:d7:f3: 48:c0:4c:2b:46:9b:3f:6e:b4:3c:09:3b:96:b1:fd: da:36:a6:de:dd:31:15:3c:1a:f9:1f:86:b4:54:27: 91:b7:6e:67:04:9d:3f:2e:bd:8f:f9:3b:13:36:ff: 8c:84:b1:8a:fa:ed:4b:0f:2b:43:12:e3:5e:f0:92: 39:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:61:73:90:39:3C:6C:96:2B:3E:AC:DA:AA:0B:65:68:1A:27:7E:A9 X509v3 Authority Key Identifier: keyid:53:49:72:95:6B:DF:F8:3B:0D:88:1E:01:AF:D3:D6:C5:26:51:E0:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U0lylWvf-DsNiB4Br9PWxSZR4Es.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4c0413-ce81-4dc8-8a4d-a70eee3db5e5/1/r2FzkDk8bJYrPqzaqgtlaBonfqk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/4c0413-ce81-4dc8-8a4d-a70eee3db5e5/1/U0lylWvf-DsNiB4Br9PWxSZR4Es.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.128.32.0/22 78.128.44.0-78.128.51.255 78.128.64.0/23 78.128.68.0/22 79.124.85.0/24 130.185.252.0/24 185.149.104.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:84:54:47:b8:23:07:b2:68:d8:4a:c3:1d:4a:f9:7e:17:9e: ea:01:14:02:b3:0c:b0:1b:c1:ad:12:f4:73:db:f1:ec:34:10: 36:11:e7:b7:88:b4:66:5d:69:83:ea:30:93:09:50:27:58:ad: 28:e0:09:25:d7:7b:a6:26:d3:86:73:8d:2f:cd:8c:e8:d0:b2: 0b:98:89:a6:c6:ad:78:62:24:47:dc:50:7c:33:ff:f5:f3:c1: 00:f7:24:92:7c:81:30:cd:24:78:f6:2e:dd:d8:d4:7d:ab:cd: 3a:b4:71:7b:58:59:52:84:90:68:88:8e:6e:f3:0b:c9:02:6b: e6:81:f6:e0:4e:ed:8c:1a:c5:44:41:30:e1:38:6d:f2:ea:54: 4e:69:a3:9d:74:8d:71:6a:69:1e:7b:36:ea:da:5f:73:c5:4c: d2:98:9d:c0:a0:74:42:3f:de:36:40:81:13:f9:14:29:6f:34: 14:0d:e0:50:de:08:91:53:8e:15:c9:d8:21:05:fb:60:5d:fa: b8:65:50:68:da:30:6c:c7:97:c9:de:83:81:ff:22:81:eb:4a: bf:82:a8:d5:8c:07:c0:7f:db:70:ce:ec:0a:ef:10:bf:5a:d2: 51:2e:ce:a0:ce:2c:07:51:df:60:a7:05:41:4f:0d:75:8c:24: 7b:67:4b:c8 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZt5EUqZRA+f2aZ8HQInXcmWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzNDk3Mjk1NmJkZmY4M2IwZDg4MWUwMWFmZDNkNmM1MjY1 MWUwNGIwHhcNMjYwMTAxMTAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjYxNzM5MDM5M2M2Yzk2MmIzZWFjZGFhYTBiNjU2ODFhMjc3ZWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6vB3Y8Yxl/5ZoeESa5tahnMQ158V QDCDbQMRncXh8OhFuBBjkdxzhaa4x6cbCe+Xg/1Qj0IHAZgCoxGz1xdZb27t8m7f RlQJer5wyC+dxzy1D/nQ59kLWCGzyqJ+E95gESfNzNzR5UgyMovXDmfADdOw6BHv R8/93b//mecirKL5ClGj3FY3MzgycqzrdtmD3DZ2LUoqBvzq8xjhGVrUezp6KBfI OHzFcV79GQwbcQOALojcHjCxgy18MulYSSvi1/NIwEwrRps/brQ8CTuWsf3aNqbe 3TEVPBr5H4a0VCeRt25nBJ0/Lr2P+TsTNv+MhLGK+u1LDytDEuNe8JI5jQIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFK9hc5A5PGyWKz6s2qoLZWgaJ36pMB8GA1UdIwQY MBaAFFNJcpVr3/g7DYgeAa/T1sUmUeBLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTBseWxXdmYtRHNOaUI0QnI5UFd4U1pSNEVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS80YzA0MTMtY2U4MS00ZGM4LThhNGQt YTcwZWVlM2RiNWU1LzEvcjJGemtEazhiSllyUHF6YXFndGxhQm9uZnFrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS80YzA0MTMtY2U4MS00ZGM4LThhNGQtYTcwZWVlM2RiNWU1 LzEvVTBseWxXdmYtRHNOaUI0QnI5UFd4U1pSNEVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQCToAgMAwD BAJOgCwDBAJOgDADBAFOgEADBAJOgEQDBABPfFUDBACCufwDBAK5lWgwDQYJKoZI hvcNAQELBQADggEBAB6EVEe4IweyaNhKwx1K+X4XnuoBFAKzDLAbwa0S9HPb8ew0 EDYR57eItGZdaYPqMJMJUCdYrSjgCSXXe6Ym04ZzjS/NjOjQsguYiabGrXhiJEfc UHwz//XzwQD3JJJ8gTDNJHj2Lt3Y1H2rzTq0cXtYWVKEkGiIjm7zC8kCa+aB9uBO 7YwaxURBMOE4bfLqVE5po510jXFqaR57NuraX3PFTNKYncCgdEI/3jZAgRP5FClv NBQN4FDeCJFTjhXJ2CEF+2Bd+rhlUGjaMGzHl8neg4H/IoHrSr+CqNWMB8B/23DO 7ArvEL9a0lEuzqDOLAdR32CnBUFPDXWMJHtnS8g= -----END CERTIFICATE-----Generated at Tue Feb 10 05:55:30 2026 by rpki-client