This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/foe6bjNKy2RY9GyXgQA4zC6fcFM.roa File: foe6bjNKy2RY9GyXgQA4zC6fcFM.roa (raw, json) Hash identifier: joPE24Kh7dqztiodL8bvn6PoAVe3vtE5PgIRM/lh6dI= Subject key identifier: 7E:87:BA:6E:33:4A:CB:64:58:F4:6C:97:81:00:38:CC:2E:9F:70:53 Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Certificate serial: 019B7AC8D11CF90B4DF469F2C0F83009CEE1 Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/foe6bjNKy2RY9GyXgQA4zC6fcFM.roa Signing time: Thu 01 Jan 2026 18:18:59 +0000 ROA not before: Thu 01 Jan 2026 18:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215702 IP address blocks: 78.28.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.mft rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:d1:1c:f9:0b:4d:f4:69:f2:c0:f8:30:09:ce:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491 Validity Not Before: Jan 1 18:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7e87ba6e334acb6458f46c97810038cc2e9f7053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c7:c5:ca:de:87:49:ff:62:d3:7f:ee:a8:b3: 58:42:42:9e:16:9a:6e:77:5c:8f:eb:0f:fc:22:b9: 24:b2:9e:92:9a:04:41:98:4e:d8:6c:62:16:bc:70: fe:d0:c7:ad:84:78:00:32:ca:62:a1:bc:2c:1a:bd: 77:11:61:24:74:50:f3:65:c1:88:1d:d3:d2:de:03: b8:97:2c:e3:31:c7:1d:8b:3d:44:d3:70:2e:ee:42: ed:f5:b2:6e:72:fe:84:26:5d:81:01:4d:e3:65:24: 93:44:a1:b6:4a:66:8e:57:4b:dc:a3:32:c8:46:76: 02:0a:d5:1f:4b:2e:cb:9c:24:be:99:15:cf:e8:59: bd:2c:a2:9c:eb:9b:96:1b:25:22:76:ac:9c:af:18: 3a:cc:7c:96:5c:f7:22:4d:dd:11:a7:db:eb:34:00: 24:86:3f:a2:f5:73:17:73:c0:7e:c9:9c:ac:7c:39: 29:09:65:40:b7:1e:61:20:eb:89:97:0d:04:06:57: 46:79:ba:22:66:da:08:d0:3c:ff:d0:b6:66:8b:ea: 6a:1a:89:5c:cb:f6:c4:18:d9:b5:b0:fc:42:a7:40: c2:77:d3:e7:75:c6:2a:50:79:dd:c0:6f:a3:3d:d8: e6:22:ea:d3:54:07:e2:bb:20:b5:cc:60:68:bd:8b: 12:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:87:BA:6E:33:4A:CB:64:58:F4:6C:97:81:00:38:CC:2E:9F:70:53 X509v3 Authority Key Identifier: keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/foe6bjNKy2RY9GyXgQA4zC6fcFM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.28.234.0/24 Signature Algorithm: sha256WithRSAEncryption 17:66:b5:1f:17:00:15:91:fb:83:38:3c:7c:1f:b4:f3:90:99: 4c:1a:e8:5d:fc:e1:42:5f:73:8d:b6:5c:6a:c0:4a:d5:5e:5b: 47:2c:1b:67:5d:a5:96:7a:87:41:84:ed:f4:1c:5f:14:d8:53: 6e:8f:43:b2:bb:fc:7d:1e:40:01:0e:6b:e8:2b:eb:ef:fd:a7: 6c:64:9d:60:53:11:b8:62:14:4a:1f:81:f3:91:d7:3c:ab:0e: 74:8c:2b:8f:6f:ef:f9:7e:54:49:c4:e8:d2:91:f7:3c:48:52: b2:9f:82:b3:b3:c7:83:08:d1:56:96:2c:78:e3:20:fe:8e:16: 94:4c:36:5d:d6:c3:c6:44:21:09:20:e5:3e:c8:52:1a:d4:fe: 3a:51:d4:17:4e:97:00:63:e2:97:b3:55:b8:d3:66:cf:46:5d: 61:db:3d:9d:ca:4a:7e:de:99:0e:40:cd:a9:69:10:0c:52:21: c3:15:95:fc:d1:3f:c5:b0:65:a4:91:7f:07:0c:bf:00:fc:7c: 8e:67:5f:58:40:91:d5:ea:13:72:76:ec:06:6f:da:6e:4d:75: 25:2e:d8:4f:c7:8a:b4:79:ef:90:08:4b:2a:34:79:2a:ec:4c: 32:5e:61:3b:fd:48:75:d0:07:6c:7d:06:8b:02:c9:24:c7:3e: fa:4e:a5:c0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yNEc+QtN9GnywPgwCc7hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUzYmUwN2NiMWZkNGYxZTNjOTIyMzAzYjY3MGE4ODFiODJl NjE0OTEwHhcNMjYwMTAxMTgxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZTg3YmE2ZTMzNGFjYjY0NThmNDZjOTc4MTAwMzhjYzJlOWY3MDUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmcfFyt6HSf9i03/uqLNYQkKeFppu d1yP6w/8Irkksp6SmgRBmE7YbGIWvHD+0MethHgAMspiobwsGr13EWEkdFDzZcGI HdPS3gO4lyzjMccdiz1E03Au7kLt9bJucv6EJl2BAU3jZSSTRKG2SmaOV0vcozLI RnYCCtUfSy7LnCS+mRXP6Fm9LKKc65uWGyUidqycrxg6zHyWXPciTd0Rp9vrNAAk hj+i9XMXc8B+yZysfDkpCWVAtx5hIOuJlw0EBldGeboiZtoI0Dz/0LZmi+pqGolc y/bEGNm1sPxCp0DCd9PndcYqUHndwG+jPdjmIurTVAfiuyC1zGBovYsSJQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFH6Hum4zSstkWPRsl4EAOMwun3BTMB8GA1UdIwQY MBaAFOO+B8sf1PHjySIwO2cKiBuC5hSRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMt ZDRlZTFkMzg5ZTBkLzEvZm9lNmJqTkt5MlJZOUd5WGdRQTR6QzZmY0ZNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS84ZjVmYWUtZGE5MC00MzE0LWJmZmMtZDRlZTFkMzg5ZTBk LzEvNDc0SHl4X1U4ZVBKSWpBN1p3cUlHNExtRkpFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAThzqMA0G CSqGSIb3DQEBCwUAA4IBAQAXZrUfFwAVkfuDODx8H7TzkJlMGuhd/OFCX3ONtlxq wErVXltHLBtnXaWWeodBhO30HF8U2FNuj0Oyu/x9HkABDmvoK+vv/adsZJ1gUxG4 YhRKH4Hzkdc8qw50jCuPb+/5flRJxOjSkfc8SFKyn4Kzs8eDCNFWlix44yD+jhaU TDZd1sPGRCEJIOU+yFIa1P46UdQXTpcAY+KXs1W402bPRl1h2z2dykp+3pkOQM2p aRAMUiHDFZX80T/FsGWkkX8HDL8A/HyOZ19YQJHV6hNyduwGb9puTXUlLthPx4q0 ee+QCEsqNHkq7EwyXmE7/Uh10AdsfQaLAskkxz76TqXA -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:51 2026 by rpki-client