This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/60AgYXI0MVWEVUOzuDwIpQcFWrE.roa File: 60AgYXI0MVWEVUOzuDwIpQcFWrE.roa (raw, json) Hash identifier: 1Lj/1bPCIRRdQ0zsLEkl5mAqw0n7NxUgu4JklwVrAAs= Subject key identifier: EB:40:20:61:72:34:31:55:84:55:43:B3:B8:3C:08:A5:07:05:5A:B1 Certificate issuer: /CN=740f65f302335baa90ed81c05384d53f2332391a Certificate serial: 019BBCCAFFA4481D969CC6CCE5E691C92E90 Authority key identifier: 74:0F:65:F3:02:33:5B:AA:90:ED:81:C0:53:84:D5:3F:23:32:39:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dA9l8wIzW6qQ7YHAU4TVPyMyORo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/60AgYXI0MVWEVUOzuDwIpQcFWrE.roa Signing time: Wed 14 Jan 2026 13:56:18 +0000 ROA not before: Wed 14 Jan 2026 13:56:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206844 IP address blocks: 45.156.32.0/22 maxlen: 24 45.158.54.0/23 maxlen: 24 45.158.55.0/24 maxlen: 25 80.250.120.0/22 maxlen: 24 80.250.120.0/24 maxlen: 24 80.250.121.0/24 maxlen: 24 80.250.122.0/24 maxlen: 24 80.250.123.0/24 maxlen: 24 185.125.241.0/24 maxlen: 24 185.174.160.0/22 maxlen: 24 2a07:1280::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/dA9l8wIzW6qQ7YHAU4TVPyMyORo.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/dA9l8wIzW6qQ7YHAU4TVPyMyORo.mft rsync://rpki.ripe.net/repository/DEFAULT/dA9l8wIzW6qQ7YHAU4TVPyMyORo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 01:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:bc:ca:ff:a4:48:1d:96:9c:c6:cc:e5:e6:91:c9:2e:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=740f65f302335baa90ed81c05384d53f2332391a Validity Not Before: Jan 14 13:56:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eb40206172343155845543b3b83c08a507055ab1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:38:3c:fc:54:0b:20:3b:cb:6f:15:25:ea:4a: e4:ae:44:a0:99:fa:b5:87:4e:49:ff:78:d9:54:26: 39:23:b4:8f:59:3f:5c:ac:0a:36:c4:fa:42:aa:36: 17:42:2b:f8:4c:ad:49:ec:d9:47:a2:28:da:e1:b3: ed:e6:e0:ee:32:9a:b6:34:58:2f:60:95:4a:78:bc: 6c:62:52:4b:05:95:51:99:f6:52:5f:67:c5:16:f4: c2:fd:21:08:82:b0:65:65:62:30:1a:71:3e:64:d7: 7b:33:86:45:56:0d:8c:55:58:cd:71:76:11:c4:d0: c7:47:19:88:58:20:3b:db:7a:16:fc:6f:45:87:11: 09:13:44:c8:0c:35:67:1e:e7:57:66:19:02:b1:ae: 6b:59:23:ab:73:10:d0:36:eb:da:5d:2b:8e:af:f6: eb:8d:30:92:44:d9:f4:11:9a:7b:ee:52:36:fd:1b: 83:64:c5:62:e8:96:6b:08:37:0f:96:50:12:c2:24: 23:50:5b:ef:7c:7d:00:14:6d:15:4f:08:6b:2a:a3: cb:60:cf:7b:74:b0:7e:ae:71:cc:ed:0d:32:d7:5f: 20:cc:1f:02:d5:00:5e:30:b3:39:b9:d7:e7:2f:02: 35:2a:71:c2:8c:10:02:75:e4:c0:3e:66:13:23:f0: ee:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:40:20:61:72:34:31:55:84:55:43:B3:B8:3C:08:A5:07:05:5A:B1 X509v3 Authority Key Identifier: keyid:74:0F:65:F3:02:33:5B:AA:90:ED:81:C0:53:84:D5:3F:23:32:39:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dA9l8wIzW6qQ7YHAU4TVPyMyORo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/60AgYXI0MVWEVUOzuDwIpQcFWrE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/3b1c1f-2d8c-4861-b71d-d03a2c435aec/1/dA9l8wIzW6qQ7YHAU4TVPyMyORo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.156.32.0/22 45.158.54.0/23 80.250.120.0/22 185.125.241.0/24 185.174.160.0/22 IPv6: 2a07:1280::/32 Signature Algorithm: sha256WithRSAEncryption 34:f1:22:10:31:9e:9f:87:9c:02:e1:70:f2:bd:ed:74:ca:46: 2a:05:0b:fe:c0:5a:95:d1:54:37:b0:7f:da:92:76:2b:2c:64: a5:0b:51:a4:41:c1:66:34:e0:27:29:ed:19:35:e3:d1:73:be: 17:2c:05:83:0a:ef:a1:4a:c7:0d:9b:65:39:f7:cb:40:63:89: 15:3f:ab:2b:7e:56:ce:08:4c:7a:f8:eb:48:8d:f3:9d:57:2b: b8:9f:84:de:31:7d:77:a5:18:a5:a8:5d:3f:6a:43:d4:00:88: d8:4a:68:6d:46:e2:b3:5b:23:fb:5e:03:09:ef:10:69:5c:ba: b6:91:81:2b:67:f1:1f:d5:80:94:0e:39:32:36:15:f9:b4:13: ae:24:0b:2f:2a:c4:ab:9b:ab:4d:c3:31:40:93:1e:db:6f:6a: b1:f8:32:0f:7d:86:81:55:92:11:07:a4:25:85:2b:49:18:b2: ba:19:42:8a:22:a0:c6:3d:14:48:10:ef:d1:f6:9a:20:56:6f: 40:c7:f0:de:3b:ce:d9:82:a2:5b:63:29:c7:04:37:5d:19:10: 0d:c0:fb:b2:41:55:ee:25:66:c3:77:df:c7:68:f9:74:75:38: ac:cb:0f:d1:5d:ec:54:8d:46:df:69:72:02:ed:05:59:10:40: ec:b1:69:c9 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZu8yv+kSB2WnMbM5eaRyS6QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0MGY2NWYzMDIzMzViYWE5MGVkODFjMDUzODRkNTNmMjMz MjM5MWEwHhcNMjYwMTE0MTM1NjE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYjQwMjA2MTcyMzQzMTU1ODQ1NTQzYjNiODNjMDhhNTA3MDU1YWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjjg8/FQLIDvLbxUl6krkrkSgmfq1 h05J/3jZVCY5I7SPWT9crAo2xPpCqjYXQiv4TK1J7NlHoija4bPt5uDuMpq2NFgv YJVKeLxsYlJLBZVRmfZSX2fFFvTC/SEIgrBlZWIwGnE+ZNd7M4ZFVg2MVVjNcXYR xNDHRxmIWCA723oW/G9FhxEJE0TIDDVnHudXZhkCsa5rWSOrcxDQNuvaXSuOr/br jTCSRNn0EZp77lI2/RuDZMVi6JZrCDcPllASwiQjUFvvfH0AFG0VTwhrKqPLYM97 dLB+rnHM7Q0y118gzB8C1QBeMLM5udfnLwI1KnHCjBACdeTAPmYTI/DusQIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFOtAIGFyNDFVhFVDs7g8CKUHBVqxMB8GA1UdIwQY MBaAFHQPZfMCM1uqkO2BwFOE1T8jMjkaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEE5bDh3SXpXNnFRN1lIQVU0VFZQeU15T1JvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8zYjFjMWYtMmQ4Yy00ODYxLWI3MWQt ZDAzYTJjNDM1YWVjLzEvNjBBZ1lYSTBNVldFVlVPenVEd0lwUWNGV3JFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS8zYjFjMWYtMmQ4Yy00ODYxLWI3MWQtZDAzYTJjNDM1YWVj LzEvZEE5bDh3SXpXNnFRN1lIQVU0VFZQeU15T1JvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCLZwgAwQB LZ42AwQCUPp4AwQAuX3xAwQCua6gMA0EAgACMAcDBQAqBxKAMA0GCSqGSIb3DQEB CwUAA4IBAQA08SIQMZ6fh5wC4XDyve10ykYqBQv+wFqV0VQ3sH/aknYrLGSlC1Gk QcFmNOAnKe0ZNePRc74XLAWDCu+hSscNm2U598tAY4kVP6srflbOCEx6+OtIjfOd Vyu4n4TeMX13pRilqF0/akPUAIjYSmhtRuKzWyP7XgMJ7xBpXLq2kYErZ/Ef1YCU DjkyNhX5tBOuJAsvKsSrm6tNwzFAkx7bb2qx+DIPfYaBVZIRB6QlhStJGLK6GUKK IqDGPRRIEO/R9pogVm9Ax/DeO87ZgqJbYynHBDddGRANwPuyQVXuJWbDd9/HaPl0 dTisyw/RXexUjUbfaXIC7QVZEEDssWnJ -----END CERTIFICATE-----Generated at Tue Jan 20 07:46:27 2026 by rpki-client