This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/dKCh7yZe8FNLO1VuBvygQCSKwoo.roa File: dKCh7yZe8FNLO1VuBvygQCSKwoo.roa (raw, json) Hash identifier: vyQvKYy/XVn4iGMkDt97MOyHZ4JXy9RdrZJ5+cuKD4A= Subject key identifier: 74:A0:A1:EF:26:5E:F0:53:4B:3B:55:6E:06:FC:A0:40:24:8A:C2:8A Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb Certificate serial: 019B7CEDC68751D9DCC1EFC5A4E8E6B5C8F2 Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/dKCh7yZe8FNLO1VuBvygQCSKwoo.roa Signing time: Fri 02 Jan 2026 04:18:36 +0000 ROA not before: Fri 02 Jan 2026 04:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25198 IP address blocks: 77.246.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:c6:87:51:d9:dc:c1:ef:c5:a4:e8:e6:b5:c8:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb Validity Not Before: Jan 2 04:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74a0a1ef265ef0534b3b556e06fca040248ac28a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fd:78:da:ef:9d:86:e9:45:2f:b0:c5:51:d0: cc:89:ff:ba:cf:3e:22:23:1a:21:6f:ba:48:75:e9: 04:e1:40:a4:a3:a8:e0:05:19:0f:36:aa:89:6c:e5: 5b:66:7f:6d:b1:89:8b:83:c7:3a:3d:d1:c8:5c:d9: 5c:07:a2:f8:2e:00:20:81:3c:29:6c:5c:bd:9d:c0: c6:f5:8a:f3:2b:7e:93:f0:6d:4d:6c:f1:d3:cd:56: df:cd:39:8e:5b:2b:14:48:dc:2d:5b:13:3f:0c:62: b6:92:24:11:3d:0f:ad:3b:8d:2d:2c:03:50:b9:4a: 95:f7:72:31:55:1d:0e:fa:b9:42:e4:8e:dd:dc:ac: 9d:02:8c:73:d1:99:b1:ab:52:c5:16:12:fe:f8:bd: a3:b1:59:0b:34:55:97:f2:14:76:f9:7a:48:ba:81: 54:be:0b:d2:36:a9:5b:70:0a:b4:3a:9e:86:57:39: ca:c1:b6:08:23:72:5c:aa:bc:49:a1:f8:ac:0d:fe: 08:cb:41:43:ee:6b:ac:76:0e:54:ee:c0:c6:9e:24: 72:40:3e:a0:3d:6b:ac:da:9c:ed:8a:32:1b:bf:72: 58:5e:15:bf:31:b7:2d:a0:85:1b:a6:c8:13:34:ee: 08:6a:e0:c3:75:3f:ea:b8:83:1c:d4:d6:c1:c7:00: 6c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:A0:A1:EF:26:5E:F0:53:4B:3B:55:6E:06:FC:A0:40:24:8A:C2:8A X509v3 Authority Key Identifier: keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/dKCh7yZe8FNLO1VuBvygQCSKwoo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.246.223.0/24 Signature Algorithm: sha256WithRSAEncryption 61:91:35:59:d8:d8:a1:ab:e0:3d:79:29:11:79:df:66:89:9d: 87:3c:ed:da:8d:47:c7:28:e0:56:b4:4c:50:99:a4:39:23:fe: c4:5f:c9:d5:28:0e:31:2e:b0:5c:a5:0a:ef:a2:4f:7e:60:a9: 50:e4:c8:6b:ab:4b:3e:09:4d:24:33:96:04:4a:a4:37:33:b1: 77:c5:74:fa:7f:f6:49:63:90:e5:4c:a0:99:d5:2d:24:49:f3: 8a:5b:70:f8:f8:9b:6c:e9:77:ea:a4:13:2c:21:29:94:67:a4: 0c:85:35:dc:a4:97:93:1e:f0:2b:c7:7c:25:20:b2:a1:a9:16: a0:6c:db:30:6f:a4:08:b0:76:94:fb:65:12:07:bf:51:37:0c: ad:83:ae:c6:ed:ca:a7:21:76:e4:37:8f:a4:38:62:27:42:de: 48:45:e5:21:6c:da:c4:14:4a:d8:33:2d:3e:d3:0f:a7:b4:b4: 91:d0:ac:db:31:e5:4a:fa:00:f1:2e:7a:53:66:0a:01:1b:f5: dc:95:4d:ff:ef:b2:cd:b9:c7:3b:8d:12:11:ee:95:68:f3:b4: 75:0f:7a:d1:2a:56:52:4a:11:80:28:6d:3d:35:f4:c6:bf:cd: 09:0f:a4:fb:b4:45:60:ba:42:1d:7a:12:ec:7e:53:d1:3b:0f: 4b:80:2e:5d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87caHUdncwe/FpOjmtcjyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMjRmYmExZTQwMWMwM2U1YmExY2Q3N2FlOWVlMzljZmQ2 MzFiZmIwHhcNMjYwMTAyMDQxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGEwYTFlZjI2NWVmMDUzNGIzYjU1NmUwNmZjYTA0MDI0OGFjMjhhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnv142u+dhulFL7DFUdDMif+6zz4i Ixohb7pIdekE4UCko6jgBRkPNqqJbOVbZn9tsYmLg8c6PdHIXNlcB6L4LgAggTwp bFy9ncDG9YrzK36T8G1NbPHTzVbfzTmOWysUSNwtWxM/DGK2kiQRPQ+tO40tLANQ uUqV93IxVR0O+rlC5I7d3KydAoxz0Zmxq1LFFhL++L2jsVkLNFWX8hR2+XpIuoFU vgvSNqlbcAq0Op6GVznKwbYII3JcqrxJofisDf4Iy0FD7musdg5U7sDGniRyQD6g PWus2pztijIbv3JYXhW/MbctoIUbpsgTNO4IauDDdT/quIMc1NbBxwBs0wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHSgoe8mXvBTSztVbgb8oEAkisKKMB8GA1UdIwQY MBaAFFEk+6HkAcA+W6HNd66e45z9Yxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEt YWI4ZjFmMzM4N2VlLzEvZEtDaDd5WmU4Rk5MTzFWdUJ2eWdRQ1NLd29vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEtYWI4ZjFmMzM4N2Vl LzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATfbfMA0G CSqGSIb3DQEBCwUAA4IBAQBhkTVZ2Nihq+A9eSkRed9miZ2HPO3ajUfHKOBWtExQ maQ5I/7EX8nVKA4xLrBcpQrvok9+YKlQ5Mhrq0s+CU0kM5YESqQ3M7F3xXT6f/ZJ Y5DlTKCZ1S0kSfOKW3D4+Jts6XfqpBMsISmUZ6QMhTXcpJeTHvArx3wlILKhqRag bNswb6QIsHaU+2USB79RNwytg67G7cqnIXbkN4+kOGInQt5IReUhbNrEFErYMy0+ 0w+ntLSR0KzbMeVK+gDxLnpTZgoBG/XclU3/77LNucc7jRIR7pVo87R1D3rRKlZS ShGAKG09NfTGv80JD6T7tEVgukIdehLsflPROw9LgC5d -----END CERTIFICATE-----Generated at Mon Jan 19 14:22:38 2026 by rpki-client