This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/fJgYZ4ej2JhPoX-SwafXWVTllE4.roa File: fJgYZ4ej2JhPoX-SwafXWVTllE4.roa (raw, json) Hash identifier: oBfl5sq0NvI5C3NZdb3K0ESRoAncOv9TLGKLm+7rmlA= Subject key identifier: 7C:98:18:67:87:A3:D8:98:4F:A1:7F:92:C1:A7:D7:59:54:E5:94:4E Certificate issuer: /CN=e277538dec2efcd2f11cc637197d1d9a6fdae9d9 Certificate serial: 019B7BA53929CB0261891B0C7EE6FB5263F2 Authority key identifier: E2:77:53:8D:EC:2E:FC:D2:F1:1C:C6:37:19:7D:1D:9A:6F:DA:E9:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ndTjewu_NLxHMY3GX0dmm_a6dk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/fJgYZ4ej2JhPoX-SwafXWVTllE4.roa Signing time: Thu 01 Jan 2026 22:19:44 +0000 ROA not before: Thu 01 Jan 2026 22:19:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34941 IP address blocks: 85.118.200.0/21 maxlen: 21 185.112.136.0/23 maxlen: 23 185.112.138.0/24 maxlen: 24 185.112.139.0/24 maxlen: 24 2a06:6180::/29 maxlen: 29 2a06:6180::/40 maxlen: 40 2a06:6180:4000::/40 maxlen: 40 2a06:6180:8000::/40 maxlen: 40 2a06:6187::/35 maxlen: 35 2a06:6187:4000::/35 maxlen: 35 2a06:6187:8000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/4ndTjewu_NLxHMY3GX0dmm_a6dk.crl rsync://rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/4ndTjewu_NLxHMY3GX0dmm_a6dk.mft rsync://rpki.ripe.net/repository/DEFAULT/4ndTjewu_NLxHMY3GX0dmm_a6dk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 03:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:39:29:cb:02:61:89:1b:0c:7e:e6:fb:52:63:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e277538dec2efcd2f11cc637197d1d9a6fdae9d9 Validity Not Before: Jan 1 22:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7c98186787a3d8984fa17f92c1a7d75954e5944e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9d:e9:b1:b0:f4:bd:76:8b:56:2b:fe:28:ef: a1:97:95:29:74:b9:0f:ef:94:d7:56:8e:31:a0:7e: 7a:7e:e7:b0:9e:1b:ed:70:f8:38:4e:7b:fb:62:c9: ec:4c:f4:b1:ef:c5:ab:20:bf:36:cf:18:d8:9d:5d: 45:02:4d:d0:fb:83:f5:76:da:dd:a2:25:e8:72:b7: 9e:23:27:24:c2:87:8c:2f:87:57:fd:c0:a7:46:0f: 08:24:50:b2:68:5f:2c:3b:5a:de:df:b5:a5:cf:72: 00:77:07:67:51:9a:3b:df:21:02:3c:33:de:c7:54: 26:a2:3f:65:2f:e7:45:4d:ea:76:46:f3:18:7f:54: f2:35:f2:b6:d8:c3:24:b0:e3:34:5c:35:88:0a:4b: 27:5a:3c:4c:5c:f6:5b:9e:8d:44:d7:82:2f:2e:44: 40:aa:05:0c:a6:5f:bf:64:ad:33:b0:2e:92:92:0c: b8:7f:be:9c:1d:2f:b3:d9:f2:47:c2:4b:ce:e9:a5: da:33:97:e5:2a:76:84:da:69:ea:d1:2e:d7:e5:52: 02:e4:22:ad:28:44:64:df:7a:b3:62:ed:9d:e7:a9: a7:48:db:34:81:34:43:83:b1:a1:a7:e3:e0:5a:92: e8:ba:7e:db:c0:b9:4d:c9:1a:64:fb:a3:76:26:4e: 81:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:98:18:67:87:A3:D8:98:4F:A1:7F:92:C1:A7:D7:59:54:E5:94:4E X509v3 Authority Key Identifier: keyid:E2:77:53:8D:EC:2E:FC:D2:F1:1C:C6:37:19:7D:1D:9A:6F:DA:E9:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ndTjewu_NLxHMY3GX0dmm_a6dk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/fJgYZ4ej2JhPoX-SwafXWVTllE4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a31ddb-1fd2-461c-bfeb-82ee2d2b4289/1/4ndTjewu_NLxHMY3GX0dmm_a6dk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.118.200.0/21 185.112.136.0/22 IPv6: 2a06:6180::/29 Signature Algorithm: sha256WithRSAEncryption 7f:74:67:a3:f4:02:a2:f9:43:50:67:78:f7:3d:a0:f2:3c:44: e5:3a:ed:a1:53:74:57:38:34:bc:76:ed:4e:67:6a:53:ec:e7: b8:3e:5d:ae:60:d2:ae:d9:a8:d3:16:2f:bb:01:b3:14:a2:47: 79:b0:e0:61:6f:5f:6a:11:91:df:ad:f1:de:81:65:54:52:28: 3f:fb:62:06:83:ee:fd:70:83:f2:c1:e6:e7:61:7a:5c:5f:ef: a8:9f:45:c3:5f:3b:1b:9c:f5:d7:02:e8:f7:85:8a:24:66:a6: 83:18:d6:80:fb:81:8e:63:93:4d:ff:71:c0:dd:9b:dd:88:71: b0:98:09:9e:3b:77:7f:36:cb:04:22:64:c2:fc:68:f5:e2:fb: 8e:23:f6:7e:2f:6f:f6:a8:61:e2:9f:04:24:dd:92:c6:ae:96: d9:e5:1e:1e:bf:3f:b2:10:f7:bb:2e:91:0e:8a:bb:89:e4:1e: 37:e8:ae:3c:29:f2:6e:b3:6e:94:9c:1c:07:1c:bd:f3:a9:1c: 89:3c:79:e4:95:48:dc:e9:6d:93:8c:ef:b7:0e:a9:ad:46:c7: 1b:5c:47:0f:3b:34:5d:4e:a8:65:23:73:55:0a:af:cc:ca:65: 54:d8:75:3f:79:1f:bf:13:6b:7d:2e:4d:b9:cc:c2:1e:7b:4c: 09:36:e5:87 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7pTkpywJhiRsMfub7UmPyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyNzc1MzhkZWMyZWZjZDJmMTFjYzYzNzE5N2QxZDlhNmZk YWU5ZDkwHhcNMjYwMTAxMjIxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3Yzk4MTg2Nzg3YTNkODk4NGZhMTdmOTJjMWE3ZDc1OTU0ZTU5NDRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnp3psbD0vXaLViv+KO+hl5UpdLkP 75TXVo4xoH56fuewnhvtcPg4Tnv7YsnsTPSx78WrIL82zxjYnV1FAk3Q+4P1dtrd oiXocreeIyckwoeML4dX/cCnRg8IJFCyaF8sO1re37Wlz3IAdwdnUZo73yECPDPe x1Qmoj9lL+dFTep2RvMYf1TyNfK22MMksOM0XDWICksnWjxMXPZbno1E14IvLkRA qgUMpl+/ZK0zsC6Skgy4f76cHS+z2fJHwkvO6aXaM5flKnaE2mnq0S7X5VIC5CKt KERk33qzYu2d56mnSNs0gTRDg7Ghp+PgWpLoun7bwLlNyRpk+6N2Jk6B/QIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFHyYGGeHo9iYT6F/ksGn11lU5ZROMB8GA1UdIwQY MBaAFOJ3U43sLvzS8RzGNxl9HZpv2unZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNG5kVGpld3VfTkx4SE1ZM0dYMGRtbV9hNmRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9hMzFkZGItMWZkMi00NjFjLWJmZWIt ODJlZTJkMmI0Mjg5LzEvZkpnWVo0ZWoySmhQb1gtU3dhZlhXVlRsbEU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9hMzFkZGItMWZkMi00NjFjLWJmZWItODJlZTJkMmI0Mjg5 LzEvNG5kVGpld3VfTkx4SE1ZM0dYMGRtbV9hNmRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDVXbIAwQC uXCIMA0EAgACMAcDBQMqBmGAMA0GCSqGSIb3DQEBCwUAA4IBAQB/dGej9AKi+UNQ Z3j3PaDyPETlOu2hU3RXODS8du1OZ2pT7Oe4Pl2uYNKu2ajTFi+7AbMUokd5sOBh b19qEZHfrfHegWVUUig/+2IGg+79cIPywebnYXpcX++on0XDXzsbnPXXAuj3hYok ZqaDGNaA+4GOY5NN/3HA3ZvdiHGwmAmeO3d/NssEImTC/Gj14vuOI/Z+L2/2qGHi nwQk3ZLGrpbZ5R4evz+yEPe7LpEOiruJ5B436K48KfJus26UnBwHHL3zqRyJPHnk lUjc6W2TjO+3DqmtRscbXEcPOzRdTqhlI3NVCq/MymVU2HU/eR+/E2t9Lk25zMIe e0wJNuWH -----END CERTIFICATE-----Generated at Thu Jan 29 11:29:15 2026 by rpki-client