This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6ccab3-479b-4da8-ae98-2cb6e3fdf9cd/1/0NnQ6CmrMCqMwE4mOtRw-a44dsw.roa File: 0NnQ6CmrMCqMwE4mOtRw-a44dsw.roa (raw, json) Hash identifier: TDRg0BsJgLqYwmE7Ufn9LFqM+sISiM819H/0xE9q97Q= Subject key identifier: D0:D9:D0:E8:29:AB:30:2A:8C:C0:4E:26:3A:D4:70:F9:AE:38:76:CC Certificate issuer: /CN=3ec9fb0d13552aad04f3aaaeb58d4dd4e7cf40f0 Certificate serial: 019B797E97B850CC055D751CD0C03855528D Authority key identifier: 3E:C9:FB:0D:13:55:2A:AD:04:F3:AA:AE:B5:8D:4D:D4:E7:CF:40:F0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Psn7DRNVKq0E86qutY1N1OfPQPA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6ccab3-479b-4da8-ae98-2cb6e3fdf9cd/1/0NnQ6CmrMCqMwE4mOtRw-a44dsw.roa Signing time: Thu 01 Jan 2026 12:18:18 +0000 ROA not before: Thu 01 Jan 2026 12:18:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62166 IP address blocks: 185.65.106.0/24 maxlen: 24 185.83.172.0/22 maxlen: 22 185.83.172.0/23 maxlen: 23 185.83.174.0/23 maxlen: 23 185.208.44.0/22 maxlen: 22 185.208.44.0/23 maxlen: 23 185.208.46.0/23 maxlen: 23 185.240.68.0/22 maxlen: 22 185.240.68.0/23 maxlen: 23 185.240.70.0/23 maxlen: 23 193.25.203.0/24 maxlen: 24 193.58.36.0/22 maxlen: 22 193.58.36.0/23 maxlen: 23 193.58.38.0/23 maxlen: 23 2a05:9d40::/29 maxlen: 29 2a05:9d40:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/6ccab3-479b-4da8-ae98-2cb6e3fdf9cd/1/Psn7DRNVKq0E86qutY1N1OfPQPA.crl rsync://rpki.ripe.net/repository/DEFAULT/87/6ccab3-479b-4da8-ae98-2cb6e3fdf9cd/1/Psn7DRNVKq0E86qutY1N1OfPQPA.mft rsync://rpki.ripe.net/repository/DEFAULT/Psn7DRNVKq0E86qutY1N1OfPQPA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:97:b8:50:cc:05:5d:75:1c:d0:c0:38:55:52:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ec9fb0d13552aad04f3aaaeb58d4dd4e7cf40f0 Validity Not Before: Jan 1 12:18:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0d9d0e829ab302a8cc04e263ad470f9ae3876cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:16:47:42:91:b0:17:1e:27:d2:1a:24:6d:62: 08:81:dd:86:54:c0:32:9c:b8:c7:04:dd:45:a7:c8: b0:f4:28:97:12:25:8f:f5:4a:28:fc:9a:26:2d:d9: 8d:a2:f7:72:d0:8a:15:ae:96:74:6d:a7:29:fe:f0: e1:b6:3b:e6:07:9e:95:c0:08:4d:6a:da:b0:92:11: 30:c4:29:2f:bf:bf:60:81:ff:fe:9a:b6:a4:19:ec: 05:90:5d:69:bd:7d:88:7d:26:2b:0a:00:9b:fc:b5: f3:84:2e:4c:1f:a7:46:53:05:cf:0a:2f:ca:1f:8f: 37:fa:4a:a7:37:b3:43:5b:bf:60:53:81:6f:e2:96: 92:78:99:ea:34:b6:a8:84:50:a1:8a:a4:48:10:39: 69:92:3b:63:61:9e:47:14:29:ff:51:13:ab:86:b0: f9:2d:e8:a8:8f:e9:d2:55:b1:05:a6:69:e9:11:dd: 53:5e:71:01:e3:39:41:1c:d3:17:4d:4f:51:b7:e0: 03:99:36:30:4e:c2:cf:67:37:f4:ad:dd:ce:e5:96: 52:59:90:21:c1:02:8e:f5:0b:e1:c0:f4:78:dc:c6: 36:56:ea:1f:19:7c:1c:7b:58:06:d8:9b:5e:c7:a6: 81:95:de:41:85:ae:30:7f:0a:92:35:d8:84:20:24: 86:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D9:D0:E8:29:AB:30:2A:8C:C0:4E:26:3A:D4:70:F9:AE:38:76:CC X509v3 Authority Key Identifier: keyid:3E:C9:FB:0D:13:55:2A:AD:04:F3:AA:AE:B5:8D:4D:D4:E7:CF:40:F0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Psn7DRNVKq0E86qutY1N1OfPQPA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6ccab3-479b-4da8-ae98-2cb6e3fdf9cd/1/0NnQ6CmrMCqMwE4mOtRw-a44dsw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6ccab3-479b-4da8-ae98-2cb6e3fdf9cd/1/Psn7DRNVKq0E86qutY1N1OfPQPA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.65.106.0/24 185.83.172.0/22 185.208.44.0/22 185.240.68.0/22 193.25.203.0/24 193.58.36.0/22 IPv6: 2a05:9d40::/29 Signature Algorithm: sha256WithRSAEncryption 24:28:d5:9c:da:6b:c3:de:be:27:54:d3:c6:f5:64:38:51:0b: e4:ae:ad:82:9d:e8:7b:02:0f:bd:bc:f8:9e:c2:29:8e:3f:6a: 23:90:b2:92:fd:5c:22:76:b7:52:53:93:55:a7:97:a1:a9:14: d3:0c:66:9f:3c:1c:1f:4d:e8:3e:7f:b6:1b:67:b3:f5:e0:16: 13:cc:20:83:6c:bd:b5:99:e1:7b:53:2c:b3:6d:33:32:4f:0d: b0:7c:5d:30:7d:b6:8f:b3:fd:49:e3:1f:b9:7f:c6:df:35:7f: 61:f5:4d:3f:4d:3b:80:83:cf:4a:9e:95:52:6f:c1:a0:ea:2d: 13:e7:41:b1:00:b7:e2:c4:10:1d:37:95:73:8e:b4:aa:ec:02: b5:78:00:9a:35:fe:c3:cd:43:ce:25:9b:89:d1:d0:5e:e6:84: f1:41:cc:6d:50:c5:1d:15:91:08:81:7c:60:a0:76:af:86:83: f7:6d:09:b5:de:c6:e4:7e:ae:d8:12:38:63:67:99:d1:d6:94: 81:79:66:42:62:55:28:29:df:ea:c6:cc:f7:81:84:1c:c4:c5: a0:1d:b8:89:2f:83:92:cf:08:01:af:fd:32:0e:d8:f6:15:85: b5:ef:29:c6:93:36:87:a0:d0:e5:a8:c6:96:c4:96:7a:21:a4: 38:dc:c6:b5 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt5fpe4UMwFXXUc0MA4VVKNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYzlmYjBkMTM1NTJhYWQwNGYzYWFhZWI1OGQ0ZGQ0ZTdj ZjQwZjAwHhcNMjYwMTAxMTIxODE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGQ5ZDBlODI5YWIzMDJhOGNjMDRlMjYzYWQ0NzBmOWFlMzg3NmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRZHQpGwFx4n0hokbWIIgd2GVMAy nLjHBN1Fp8iw9CiXEiWP9Uoo/JomLdmNovdy0IoVrpZ0bacp/vDhtjvmB56VwAhN atqwkhEwxCkvv79ggf/+mrakGewFkF1pvX2IfSYrCgCb/LXzhC5MH6dGUwXPCi/K H483+kqnN7NDW79gU4Fv4paSeJnqNLaohFChiqRIEDlpkjtjYZ5HFCn/UROrhrD5 Leioj+nSVbEFpmnpEd1TXnEB4zlBHNMXTU9Rt+ADmTYwTsLPZzf0rd3O5ZZSWZAh wQKO9QvhwPR43MY2VuofGXwce1gG2Jtex6aBld5Bha4wfwqSNdiEICSGxQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFNDZ0OgpqzAqjMBOJjrUcPmuOHbMMB8GA1UdIwQY MBaAFD7J+w0TVSqtBPOqrrWNTdTnz0DwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHNuN0RSTlZLcTBFODZxdXRZMU4xT2ZQUVBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny82Y2NhYjMtNDc5Yi00ZGE4LWFlOTgt MmNiNmUzZmRmOWNkLzEvME5uUTZDbXJNQ3FNd0U0bU90UnctYTQ0ZHN3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny82Y2NhYjMtNDc5Yi00ZGE4LWFlOTgtMmNiNmUzZmRmOWNk LzEvUHNuN0RSTlZLcTBFODZxdXRZMU4xT2ZQUVBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQAuUFqAwQC uVOsAwQCudAsAwQCufBEAwQAwRnLAwQCwTokMA0EAgACMAcDBQMqBZ1AMA0GCSqG SIb3DQEBCwUAA4IBAQAkKNWc2mvD3r4nVNPG9WQ4UQvkrq2Cneh7Ag+9vPiewimO P2ojkLKS/VwidrdSU5NVp5ehqRTTDGafPBwfTeg+f7YbZ7P14BYTzCCDbL21meF7 UyyzbTMyTw2wfF0wfbaPs/1J4x+5f8bfNX9h9U0/TTuAg89KnpVSb8Gg6i0T50Gx ALfixBAdN5VzjrSq7AK1eACaNf7DzUPOJZuJ0dBe5oTxQcxtUMUdFZEIgXxgoHav hoP3bQm13sbkfq7YEjhjZ5nR1pSBeWZCYlUoKd/qxsz3gYQcxMWgHbiJL4OSzwgB r/0yDtj2FYW17ynGkzaHoNDlqMaWxJZ6IaQ43Ma1 -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:35 2026 by rpki-client