This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/af58b6-9e8f-406e-ac1c-2fc030a60cea/1/d22nU0gI4UX_KMZ1R4bkaTeshU4.roa File: d22nU0gI4UX_KMZ1R4bkaTeshU4.roa (raw, json) Hash identifier: PASb3kDa0yMaHRvRxHEakhU/ewtzx7y8qX67G7qQ6yg= Subject key identifier: 77:6D:A7:53:48:08:E1:45:FF:28:C6:75:47:86:E4:69:37:AC:85:4E Certificate issuer: /CN=1329cd3ee2fe126a82ca2a58c87ed5838fe2af57 Certificate serial: 019B7C125ED25BD044C61CC7BF7CD01C1622 Authority key identifier: 13:29:CD:3E:E2:FE:12:6A:82:CA:2A:58:C8:7E:D5:83:8F:E2:AF:57 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EynNPuL-EmqCyipYyH7Vg4_ir1c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/af58b6-9e8f-406e-ac1c-2fc030a60cea/1/d22nU0gI4UX_KMZ1R4bkaTeshU4.roa Signing time: Fri 02 Jan 2026 00:18:57 +0000 ROA not before: Fri 02 Jan 2026 00:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59497 IP address blocks: 185.189.184.0/22 maxlen: 22 185.189.184.0/24 maxlen: 24 185.189.185.0/24 maxlen: 24 185.189.186.0/24 maxlen: 24 185.189.187.0/24 maxlen: 24 194.8.156.0/22 maxlen: 22 194.8.156.0/24 maxlen: 24 194.8.158.0/24 maxlen: 24 195.140.228.0/22 maxlen: 22 195.140.228.0/24 maxlen: 24 195.178.18.0/23 maxlen: 23 195.178.18.0/24 maxlen: 24 2a09:87c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/af58b6-9e8f-406e-ac1c-2fc030a60cea/1/EynNPuL-EmqCyipYyH7Vg4_ir1c.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/af58b6-9e8f-406e-ac1c-2fc030a60cea/1/EynNPuL-EmqCyipYyH7Vg4_ir1c.mft rsync://rpki.ripe.net/repository/DEFAULT/EynNPuL-EmqCyipYyH7Vg4_ir1c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:5e:d2:5b:d0:44:c6:1c:c7:bf:7c:d0:1c:16:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1329cd3ee2fe126a82ca2a58c87ed5838fe2af57 Validity Not Before: Jan 2 00:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=776da7534808e145ff28c6754786e46937ac854e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1f:42:a6:3f:69:b9:64:89:56:87:ee:ac:85: 44:6b:d5:fb:8c:5f:df:ad:a6:ca:8d:6e:30:c9:04: 1a:c5:16:98:8e:bd:4b:6b:f8:2a:0e:52:b4:7b:5d: 28:bc:22:08:b1:95:48:c0:63:6a:48:ac:12:8c:d1: 82:b2:d4:6b:be:6e:99:ff:e5:43:4e:a4:08:32:65: eb:f9:88:42:ce:b6:6e:0b:a2:9f:63:f2:1b:d4:34: 37:ff:07:6c:49:14:40:83:24:4d:41:a6:e0:76:57: 15:84:a3:a1:da:1e:ca:ae:60:ac:1f:25:8d:22:0c: 64:63:36:38:d6:cd:13:2f:59:2f:fe:58:61:24:35: 1a:bb:0b:6f:ea:9f:c1:f8:16:56:97:ff:88:5e:8d: f7:f6:6c:93:8a:c4:85:1b:73:dd:9e:0f:99:df:b1: 2b:36:6e:92:eb:ca:cf:c2:0b:ac:be:3b:4e:25:62: bf:9b:fc:d7:ad:90:4d:a0:80:b1:a0:83:0d:71:37: c3:30:fa:7a:3c:6d:3d:d8:d8:e0:f8:85:4b:ae:b5: 5d:72:b8:75:ce:cc:1f:47:dc:35:27:cb:35:78:0e: 49:40:93:29:a0:24:d7:5c:9e:df:6e:94:9d:25:af: f8:27:62:c8:d2:2d:2f:90:b6:f9:38:28:ba:16:64: dc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:6D:A7:53:48:08:E1:45:FF:28:C6:75:47:86:E4:69:37:AC:85:4E X509v3 Authority Key Identifier: keyid:13:29:CD:3E:E2:FE:12:6A:82:CA:2A:58:C8:7E:D5:83:8F:E2:AF:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EynNPuL-EmqCyipYyH7Vg4_ir1c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/af58b6-9e8f-406e-ac1c-2fc030a60cea/1/d22nU0gI4UX_KMZ1R4bkaTeshU4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/af58b6-9e8f-406e-ac1c-2fc030a60cea/1/EynNPuL-EmqCyipYyH7Vg4_ir1c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.189.184.0/22 194.8.156.0/22 195.140.228.0/22 195.178.18.0/23 IPv6: 2a09:87c0::/29 Signature Algorithm: sha256WithRSAEncryption 98:a3:b5:f1:4c:a9:ff:43:79:23:d8:0d:42:31:53:44:30:54: 11:cb:eb:12:9f:9e:51:69:e1:df:24:33:95:6a:53:eb:87:8d: 78:8f:08:70:8c:f0:16:96:bf:6d:f8:a4:76:34:86:e9:e8:bf: 23:26:61:31:95:e1:d1:9d:5d:21:8a:8b:7b:85:fe:a0:b0:90: 7c:6c:70:52:44:8f:53:29:8b:c4:36:53:bd:a7:b6:a5:35:45: dd:74:eb:60:b1:e3:eb:67:9c:5b:3f:cd:74:ee:e8:0d:09:35: 8e:79:04:34:ab:5b:6d:9f:25:55:b5:3c:cc:15:8c:ff:9a:15: c2:b4:fb:b6:4e:1a:ae:fd:60:ca:f1:89:b1:8d:8b:b2:c9:15: 73:45:6a:87:c6:e9:f9:54:26:5e:07:3e:32:17:ad:ab:15:d3: a7:0a:d9:c6:38:99:02:7c:18:6b:1c:2e:83:72:69:84:9d:a4: bb:68:55:67:14:b6:ef:d3:c3:d4:74:5c:82:58:ad:3c:2b:da: b0:e1:37:7d:3f:1c:d5:ad:af:01:22:da:25:d6:cd:49:f7:f9: 30:62:e0:e2:f5:c6:61:ed:db:b2:62:be:33:6e:7f:63:3d:6e: c7:c5:44:15:26:79:a7:9b:76:18:c4:04:6c:69:5a:26:88:c6: 5d:fe:d0:8f -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt8El7SW9BExhzHv3zQHBYiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEzMjljZDNlZTJmZTEyNmE4MmNhMmE1OGM4N2VkNTgzOGZl MmFmNTcwHhcNMjYwMTAyMDAxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzZkYTc1MzQ4MDhlMTQ1ZmYyOGM2NzU0Nzg2ZTQ2OTM3YWM4NTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6R9Cpj9puWSJVofurIVEa9X7jF/f rabKjW4wyQQaxRaYjr1La/gqDlK0e10ovCIIsZVIwGNqSKwSjNGCstRrvm6Z/+VD TqQIMmXr+YhCzrZuC6KfY/Ib1DQ3/wdsSRRAgyRNQabgdlcVhKOh2h7KrmCsHyWN IgxkYzY41s0TL1kv/lhhJDUauwtv6p/B+BZWl/+IXo339myTisSFG3Pdng+Z37Er Nm6S68rPwgusvjtOJWK/m/zXrZBNoICxoIMNcTfDMPp6PG092Njg+IVLrrVdcrh1 zswfR9w1J8s1eA5JQJMpoCTXXJ7fbpSdJa/4J2LI0i0vkLb5OCi6FmTcXwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFHdtp1NICOFF/yjGdUeG5Gk3rIVOMB8GA1UdIwQY MBaAFBMpzT7i/hJqgsoqWMh+1YOP4q9XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRXluTlB1TC1FbXFDeWlwWXlIN1ZnNF9pcjFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9hZjU4YjYtOWU4Zi00MDZlLWFjMWMt MmZjMDMwYTYwY2VhLzEvZDIyblUwZ0k0VVhfS01aMVI0YmthVGVzaFU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy9hZjU4YjYtOWU4Zi00MDZlLWFjMWMtMmZjMDMwYTYwY2Vh LzEvRXluTlB1TC1FbXFDeWlwWXlIN1ZnNF9pcjFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCub24AwQC wgicAwQCw4zkAwQBw7ISMA0EAgACMAcDBQMqCYfAMA0GCSqGSIb3DQEBCwUAA4IB AQCYo7XxTKn/Q3kj2A1CMVNEMFQRy+sSn55RaeHfJDOValPrh414jwhwjPAWlr9t +KR2NIbp6L8jJmExleHRnV0hiot7hf6gsJB8bHBSRI9TKYvENlO9p7alNUXddOtg sePrZ5xbP8107ugNCTWOeQQ0q1ttnyVVtTzMFYz/mhXCtPu2Thqu/WDK8YmxjYuy yRVzRWqHxun5VCZeBz4yF62rFdOnCtnGOJkCfBhrHC6DcmmEnaS7aFVnFLbv08PU dFyCWK08K9qw4Td9PxzVra8BItol1s1J9/kwYuDi9cZh7duyYr4zbn9jPW7HxUQV Jnmnm3YYxARsaVomiMZd/tCP -----END CERTIFICATE-----Generated at Mon Jan 26 17:44:24 2026 by rpki-client