This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/5bc1cc-d02c-48ee-9935-023b6c0793f1/1/eBV3wtUeMu2mQzbDRhT7v_8FhCM.roa File: eBV3wtUeMu2mQzbDRhT7v_8FhCM.roa (raw, json) Hash identifier: dfSD4t+IvLSwRtvheEfZG9CM1+g6QasEUhniYPszLJw= Subject key identifier: 78:15:77:C2:D5:1E:32:ED:A6:43:36:C3:46:14:FB:BF:FF:05:84:23 Certificate issuer: /CN=1fa8ac37f9695169627f75e098963396de9638cc Certificate serial: 019B7E38FDB78AE4AE41BB6B04A4E14C2663 Authority key identifier: 1F:A8:AC:37:F9:69:51:69:62:7F:75:E0:98:96:33:96:DE:96:38:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6isN_lpUWlif3XgmJYzlt6WOMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/5bc1cc-d02c-48ee-9935-023b6c0793f1/1/eBV3wtUeMu2mQzbDRhT7v_8FhCM.roa Signing time: Fri 02 Jan 2026 10:20:22 +0000 ROA not before: Fri 02 Jan 2026 10:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51728 IP address blocks: 80.66.160.0/20 maxlen: 20 91.190.192.0/21 maxlen: 21 146.66.24.0/22 maxlen: 22 185.40.88.0/22 maxlen: 22 185.40.88.0/24 maxlen: 24 185.40.89.0/24 maxlen: 24 185.40.90.0/24 maxlen: 24 185.40.91.0/24 maxlen: 24 2a00:ac00::/32 maxlen: 32 2a00:ac01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/5bc1cc-d02c-48ee-9935-023b6c0793f1/1/H6isN_lpUWlif3XgmJYzlt6WOMw.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/5bc1cc-d02c-48ee-9935-023b6c0793f1/1/H6isN_lpUWlif3XgmJYzlt6WOMw.mft rsync://rpki.ripe.net/repository/DEFAULT/H6isN_lpUWlif3XgmJYzlt6WOMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:fd:b7:8a:e4:ae:41:bb:6b:04:a4:e1:4c:26:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1fa8ac37f9695169627f75e098963396de9638cc Validity Not Before: Jan 2 10:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=781577c2d51e32eda64336c34614fbbfff058423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:b8:1a:df:99:3e:3d:38:26:33:3d:72:da:2c: 19:0c:07:f1:32:09:68:04:2b:5a:ad:f9:83:03:3c: 38:02:d8:db:2e:cf:db:d5:ed:88:3d:2b:98:dd:ae: 85:7c:f5:69:d3:ac:32:85:a6:c0:10:d6:e0:02:4e: 17:2e:f5:ae:8d:7b:99:6d:cb:3a:0e:c0:08:c5:a5: 40:1d:26:2c:a8:ae:3a:51:c9:71:40:d3:62:d0:a3: fa:c5:c3:d3:f7:80:99:e2:ae:24:34:18:a2:ca:2f: 61:65:73:5c:34:b6:bc:a0:d0:7d:2c:ac:22:ae:63: d0:85:ef:3a:9b:0b:56:91:14:b9:37:0f:c9:7a:60: 81:5d:f9:c9:af:aa:73:2c:48:68:a3:9f:c6:dc:0f: bb:d1:05:b9:d8:ad:c2:8f:09:d4:3f:9a:98:de:52: 54:22:8b:13:70:e3:e4:d4:1b:70:5e:9d:e6:99:ed: f6:2d:6f:61:09:64:59:d7:fc:e2:52:c2:23:35:ce: 8c:02:10:f2:3c:9d:32:3e:62:02:8e:1d:d4:88:df: 03:89:77:69:9a:6f:8c:5e:e4:b2:0e:cb:3b:9f:c5: fc:cd:6b:81:28:9d:20:46:53:7b:29:91:40:64:5b: 13:d6:b6:58:4e:ac:f2:52:6b:bc:a6:35:02:39:62: 56:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:15:77:C2:D5:1E:32:ED:A6:43:36:C3:46:14:FB:BF:FF:05:84:23 X509v3 Authority Key Identifier: keyid:1F:A8:AC:37:F9:69:51:69:62:7F:75:E0:98:96:33:96:DE:96:38:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6isN_lpUWlif3XgmJYzlt6WOMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5bc1cc-d02c-48ee-9935-023b6c0793f1/1/eBV3wtUeMu2mQzbDRhT7v_8FhCM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5bc1cc-d02c-48ee-9935-023b6c0793f1/1/H6isN_lpUWlif3XgmJYzlt6WOMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.66.160.0/20 91.190.192.0/21 146.66.24.0/22 185.40.88.0/22 IPv6: 2a00:ac00::/31 Signature Algorithm: sha256WithRSAEncryption 14:80:ac:2a:55:15:e1:f8:fc:14:d7:4c:e9:40:5e:8e:9e:50: 3a:1b:35:f7:13:87:67:77:1a:c1:58:da:86:57:34:20:40:8d: 42:76:0b:81:0f:15:84:97:1f:b3:71:94:ff:80:7e:c6:29:89: d7:12:b3:28:2e:e2:0e:c6:be:09:35:ce:23:09:13:e9:a0:a0: 40:60:c1:8f:93:ac:fe:2e:e7:bc:59:ab:44:f6:dd:fe:2c:c2: b1:b1:30:d5:99:4c:c6:41:4d:83:67:9e:4d:05:a0:9d:49:de: 42:fa:30:c5:41:1a:89:90:22:41:ff:9d:2b:2a:5d:cb:5e:33: 96:cf:11:9d:bd:d4:27:71:a3:eb:99:b2:3a:d5:b4:92:47:b9: 00:6d:e5:ef:cd:de:76:25:a9:4c:16:3e:e2:66:05:32:fb:a1: 3e:9d:e7:f5:13:ee:72:b3:ca:80:0a:8e:87:a8:fe:ad:39:d5: c7:0e:16:80:d8:1a:b4:82:8f:57:3f:7c:6f:41:9a:f5:53:71: f4:c8:cc:d0:36:6e:f2:02:a5:a1:da:ab:ad:fb:3c:00:f3:bf: 2b:73:13:af:f7:11:b8:72:0c:74:d5:bd:2f:8c:7f:d0:49:a5: b3:f6:22:0e:ff:ee:8f:aa:1a:75:d2:3a:a1:e8:68:fc:16:0a: 30:1b:3e:0b -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt+OP23iuSuQbtrBKThTCZjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmYThhYzM3Zjk2OTUxNjk2MjdmNzVlMDk4OTYzMzk2ZGU5 NjM4Y2MwHhcNMjYwMTAyMTAyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ODE1NzdjMmQ1MWUzMmVkYTY0MzM2YzM0NjE0ZmJiZmZmMDU4NDIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjLga35k+PTgmMz1y2iwZDAfxMglo BCtarfmDAzw4AtjbLs/b1e2IPSuY3a6FfPVp06wyhabAENbgAk4XLvWujXuZbcs6 DsAIxaVAHSYsqK46UclxQNNi0KP6xcPT94CZ4q4kNBiiyi9hZXNcNLa8oNB9LKwi rmPQhe86mwtWkRS5Nw/JemCBXfnJr6pzLEhoo5/G3A+70QW52K3CjwnUP5qY3lJU IosTcOPk1BtwXp3mme32LW9hCWRZ1/ziUsIjNc6MAhDyPJ0yPmICjh3UiN8DiXdp mm+MXuSyDss7n8X8zWuBKJ0gRlN7KZFAZFsT1rZYTqzyUmu8pjUCOWJWIwIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFHgVd8LVHjLtpkM2w0YU+7//BYQjMB8GA1UdIwQY MBaAFB+orDf5aVFpYn914JiWM5beljjMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDZpc05fbHBVV2xpZjNYZ21KWXpsdDZXT013LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi81YmMxY2MtZDAyYy00OGVlLTk5MzUt MDIzYjZjMDc5M2YxLzEvZUJWM3d0VWVNdTJtUXpiRFJoVDd2XzhGaENNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi81YmMxY2MtZDAyYy00OGVlLTk5MzUtMDIzYjZjMDc5M2Yx LzEvSDZpc05fbHBVV2xpZjNYZ21KWXpsdDZXT013LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQEUEKgAwQD W77AAwQCkkIYAwQCuShYMA0EAgACMAcDBQEqAKwAMA0GCSqGSIb3DQEBCwUAA4IB AQAUgKwqVRXh+PwU10zpQF6OnlA6GzX3E4dndxrBWNqGVzQgQI1CdguBDxWElx+z cZT/gH7GKYnXErMoLuIOxr4JNc4jCRPpoKBAYMGPk6z+Lue8WatE9t3+LMKxsTDV mUzGQU2DZ55NBaCdSd5C+jDFQRqJkCJB/50rKl3LXjOWzxGdvdQncaPrmbI61bSS R7kAbeXvzd52JalMFj7iZgUy+6E+nef1E+5ys8qACo6HqP6tOdXHDhaA2Bq0go9X P3xvQZr1U3H0yMzQNm7yAqWh2qut+zwA878rcxOv9xG4cgx01b0vjH/QSaWz9iIO /+6Pqhp10jqh6Gj8FgowGz4L -----END CERTIFICATE-----Generated at Mon Feb 9 21:23:39 2026 by rpki-client