This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/jUS93b3kR9OAk9zT0yFMYbqw9IQ.roa File: jUS93b3kR9OAk9zT0yFMYbqw9IQ.roa (raw, json) Hash identifier: 3Qwq734MlX1peNwyxgPAyf/XHf3lQhOFPZnpffDz3jU= Subject key identifier: 8D:44:BD:DD:BD:E4:47:D3:80:93:DC:D3:D3:21:4C:61:BA:B0:F4:84 Certificate issuer: /CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40 Certificate serial: 019B7E38A7485D6781EA085A576D6E9FD6EB Authority key identifier: 99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/jUS93b3kR9OAk9zT0yFMYbqw9IQ.roa Signing time: Fri 02 Jan 2026 10:20:00 +0000 ROA not before: Fri 02 Jan 2026 10:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43494 IP address blocks: 78.40.2.0/23 maxlen: 23 78.40.4.0/22 maxlen: 22 185.86.236.0/22 maxlen: 24 185.86.236.0/24 maxlen: 24 185.89.244.0/23 maxlen: 23 185.89.246.0/23 maxlen: 23 212.158.176.0/24 maxlen: 24 2a00:a9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.mft rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:a7:48:5d:67:81:ea:08:5a:57:6d:6e:9f:d6:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40 Validity Not Before: Jan 2 10:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d44bdddbde447d38093dcd3d3214c61bab0f484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1d:85:71:fc:c6:d5:80:8f:9e:72:5b:19:6a: 14:df:c9:5d:78:fa:40:79:fb:1f:2b:69:e3:60:6c: ca:f0:5e:56:73:eb:76:9f:48:98:6a:13:3d:b0:eb: 2d:1f:86:53:ce:a7:a3:f1:8a:63:98:46:a7:08:13: bb:fe:a0:0c:a1:bb:ff:8b:18:3c:f6:22:3a:9b:58: d5:c2:0e:7b:09:fb:cf:d2:d7:ef:57:74:35:86:f7: 9a:43:37:2c:af:41:75:b1:85:45:1f:6c:2e:14:b1: 86:35:e3:f3:43:75:0a:30:bc:e1:cf:e5:d1:21:c0: 3d:33:34:bc:37:73:72:aa:00:a5:9d:29:08:26:07: b1:70:af:89:07:4a:e3:35:87:30:8a:1d:6b:79:9b: 75:b5:60:40:d9:77:95:dd:ac:f2:5f:33:6c:e7:b3: c0:d9:65:94:47:46:36:9b:8c:4b:c7:a0:80:dc:7d: 74:90:1a:4c:d0:64:33:32:74:dd:38:29:a1:7e:80: 04:0b:b8:f9:fe:16:a7:d6:d5:4b:45:3b:e5:10:52: 7c:f2:d7:e9:7e:ff:a5:89:15:9d:d7:cc:3e:ba:0c: b6:6b:c0:b6:4a:e2:03:c5:7b:6d:6b:f9:4a:4a:e8: e3:af:8b:be:53:5b:db:44:ee:8f:26:1d:8b:da:c7: 65:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:44:BD:DD:BD:E4:47:D3:80:93:DC:D3:D3:21:4C:61:BA:B0:F4:84 X509v3 Authority Key Identifier: keyid:99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/jUS93b3kR9OAk9zT0yFMYbqw9IQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.40.2.0-78.40.7.255 185.86.236.0/22 185.89.244.0/22 212.158.176.0/24 IPv6: 2a00:a9c0::/32 Signature Algorithm: sha256WithRSAEncryption 63:e7:d4:b5:c8:24:73:91:a7:e5:88:22:94:44:c9:30:65:be: 99:2a:70:e8:b7:98:9f:57:21:f4:34:dd:18:cb:48:65:b3:f8: f7:1d:64:7a:11:73:66:0a:d8:85:39:42:ad:da:d4:d4:8b:ea: fc:bd:ed:58:c3:c6:83:4d:22:ba:c3:bf:83:af:43:f6:6d:d0: 14:04:73:38:67:8b:7f:06:bd:45:ad:10:fc:d5:42:04:a6:56: 49:18:29:d3:a5:6d:64:bd:ce:39:34:bc:7f:86:89:22:a1:32: af:cf:0f:5f:66:06:b9:35:81:e2:ed:91:11:94:9b:ee:b0:af: 4d:bf:87:69:36:b2:77:87:d8:5c:20:d0:89:68:ce:e8:2e:b5: 17:70:18:ca:d6:81:f3:72:76:2f:5f:53:c8:90:50:86:9c:1f: 6f:95:54:0c:a2:af:c1:89:54:fe:1d:6e:ea:5c:57:7c:0f:7a: ee:e0:ca:be:23:9d:7e:71:a7:67:75:cf:59:d5:b5:c3:a3:12: c9:70:d7:36:d5:8a:4a:6f:bd:bb:e4:bc:36:e5:9f:1b:52:0a: 62:55:63:39:61:02:80:4d:6e:14:5d:4c:45:5c:d0:46:b5:ab: 04:82:8c:26:9d:27:87:61:86:ea:e5:67:5b:22:bf:2a:e6:ef: 5a:be:f6:71 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt+OKdIXWeB6ghaV21un9brMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5ZTcyMDlhOGM5YjE3NmZiZjYyM2VkZjNlZTBiODIwMDdm YzJjNDAwHhcNMjYwMTAyMTAyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDQ0YmRkZGJkZTQ0N2QzODA5M2RjZDNkMzIxNGM2MWJhYjBmNDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqx2FcfzG1YCPnnJbGWoU38ldePpA efsfK2njYGzK8F5Wc+t2n0iYahM9sOstH4ZTzqej8YpjmEanCBO7/qAMobv/ixg8 9iI6m1jVwg57CfvP0tfvV3Q1hveaQzcsr0F1sYVFH2wuFLGGNePzQ3UKMLzhz+XR IcA9MzS8N3NyqgClnSkIJgexcK+JB0rjNYcwih1reZt1tWBA2XeV3azyXzNs57PA 2WWUR0Y2m4xLx6CA3H10kBpM0GQzMnTdOCmhfoAEC7j5/han1tVLRTvlEFJ88tfp fv+liRWd18w+ugy2a8C2SuIDxXtta/lKSujjr4u+U1vbRO6PJh2L2sdlfwIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFI1Evd295EfTgJPc09MhTGG6sPSEMB8GA1UdIwQY MBaAFJnnIJqMmxdvv2I+3z7guCAH/CxAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbWVjZ21veWJGMi1fWWo3ZlB1QzRJQWY4TEVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9lZjU4NTYtYmJjMC00NWE0LTg5MWUt YjJkY2MxODYzZThiLzEvalVTOTNiM2tSOU9Bazl6VDB5Rk1ZYnF3OUlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9lZjU4NTYtYmJjMC00NWE0LTg5MWUtYjJkY2MxODYzZThi LzEvbWVjZ21veWJGMi1fWWo3ZlB1QzRJQWY4TEVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzAmBAIAATAgMAwDBAFOKAID BANOKAADBAK5VuwDBAK5WfQDBADUnrAwDQQCAAIwBwMFACoAqcAwDQYJKoZIhvcN AQELBQADggEBAGPn1LXIJHORp+WIIpREyTBlvpkqcOi3mJ9XIfQ03RjLSGWz+Pcd ZHoRc2YK2IU5Qq3a1NSL6vy97VjDxoNNIrrDv4OvQ/Zt0BQEczhni38GvUWtEPzV QgSmVkkYKdOlbWS9zjk0vH+GiSKhMq/PD19mBrk1geLtkRGUm+6wr02/h2k2sneH 2Fwg0IlozugutRdwGMrWgfNydi9fU8iQUIacH2+VVAyir8GJVP4dbupcV3wPeu7g yr4jnX5xp2d1z1nVtcOjEslw1zbVikpvvbvkvDblnxtSCmJVYzlhAoBNbhRdTEVc 0Ea1qwSCjCadJ4dhhurlZ1sivyrm71q+9nE= -----END CERTIFICATE-----Generated at Tue Feb 10 04:15:45 2026 by rpki-client