This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/S7aKv_q0tDa7opJxCQ6myrERZA8.roa File: S7aKv_q0tDa7opJxCQ6myrERZA8.roa (raw, json) Hash identifier: Uo1iMGWEBLYQiw+xllR1axWHCCwJA31+dccJblnLXsY= Subject key identifier: 4B:B6:8A:BF:FA:B4:B4:36:BB:A2:92:71:09:0E:A6:CA:B1:11:64:0F Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff Certificate serial: 019B76EB35069AE265AB976AF875DB039116 Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/S7aKv_q0tDa7opJxCQ6myrERZA8.roa Signing time: Thu 01 Jan 2026 00:18:04 +0000 ROA not before: Thu 01 Jan 2026 00:18:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197695 IP address blocks: 79.174.77.0/24 maxlen: 24 79.174.78.0/23 maxlen: 24 79.174.80.0/21 maxlen: 24 79.174.88.0/21 maxlen: 24 89.104.64.0/21 maxlen: 24 89.104.74.0/24 maxlen: 24 89.104.94.0/24 maxlen: 24 89.111.152.0/22 maxlen: 24 89.111.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.mft rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 06:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:35:06:9a:e2:65:ab:97:6a:f8:75:db:03:91:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff Validity Not Before: Jan 1 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4bb68abffab4b436bba29271090ea6cab111640f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2a:ef:81:0e:95:cb:e4:02:b3:07:a3:ba:cf: e0:87:17:41:17:3b:72:e5:16:54:b5:46:58:05:8e: 5e:05:cb:3e:55:99:89:ad:bd:e8:fe:62:51:ad:46: 2e:e3:54:b9:b9:8a:b8:1c:2e:c4:9e:a5:86:47:95: f2:79:76:ee:e0:ef:6f:62:d5:3d:67:02:8b:c2:e8: 41:63:da:4a:37:0d:d0:e2:88:07:28:4e:fa:60:98: e9:5e:ed:ba:8f:4f:cc:e6:f8:b3:a2:6d:4c:e7:50: a7:7c:fe:28:3c:0f:20:a0:30:34:d4:73:e8:8b:ba: 39:30:a4:a1:39:9b:d9:65:fd:66:1f:b1:16:7a:f8: 3a:0b:5e:f7:c9:a9:87:5a:5f:19:b4:65:61:3b:26: 4a:4f:7d:d5:72:d9:7e:2e:71:0e:5e:45:e2:05:65: ca:49:40:ae:ff:02:ab:db:86:62:25:fa:2d:c9:ec: 59:86:11:12:dd:90:b1:e8:30:d4:5f:13:0f:4f:a0: 33:84:b4:81:71:96:e1:fc:d3:aa:1e:d1:c1:1e:25: 51:3a:bc:57:b2:7b:4c:db:b0:78:31:6c:8d:a1:72: a8:58:df:a7:c0:2f:09:ac:7c:f3:50:1f:fa:d8:0b: ee:ed:fc:9a:64:eb:44:4d:02:17:38:c5:2b:f7:14: 72:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B6:8A:BF:FA:B4:B4:36:BB:A2:92:71:09:0E:A6:CA:B1:11:64:0F X509v3 Authority Key Identifier: keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/S7aKv_q0tDa7opJxCQ6myrERZA8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.174.77.0-79.174.95.255 89.104.64.0/21 89.104.74.0/24 89.104.94.0/24 89.111.152.0/22 89.111.168.0/21 Signature Algorithm: sha256WithRSAEncryption 19:aa:1c:9f:eb:43:2e:8f:50:b1:3d:8a:4b:1c:c5:92:7f:8f: 0a:ee:62:8e:b6:5f:d8:9c:81:45:60:5a:63:99:68:82:84:ef: 5f:19:2f:30:53:35:98:4b:3b:cc:33:4a:5f:10:9f:8c:cb:43: de:24:17:ca:50:1f:c3:cc:2b:55:0e:ee:f8:84:09:43:ce:74: 5b:84:3d:93:ac:0f:16:5d:51:d2:be:58:55:44:0b:84:c4:f2: 54:07:44:1b:6a:12:97:e9:30:52:fc:86:82:88:41:60:e4:ce: 22:e6:f5:12:74:91:7d:57:2f:a2:da:79:30:4a:74:d6:2d:d2: 64:44:d5:b9:f4:45:07:3b:82:1b:06:9b:df:90:ef:36:8c:cb: f8:9b:08:f1:de:78:9f:f9:37:6d:39:ea:11:e9:77:63:e2:cd: c5:f1:71:91:2c:f6:45:9c:80:73:13:f2:2a:d0:f8:9a:f4:01: 7c:a8:38:af:63:ef:3a:0a:45:ff:ec:6e:cf:c7:ff:67:ad:7b: d0:5f:70:16:e1:27:b3:67:d2:b2:2e:85:ca:a9:3d:2f:81:36: 3f:dc:a1:42:1f:cd:ed:6e:c6:fc:42:29:2d:0f:d2:8b:18:5e: d9:d9:fb:a8:e8:59:ea:59:df:29:4a:18:93:65:48:29:3d:7a: a7:df:bd:f7 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt26zUGmuJlq5dq+HXbA5EWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZmFkMjNlMTFjZjBkMjRhNDc3NTk0ZWJhMDlmOTlhY2M2 ZjFmZmYwHhcNMjYwMTAxMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YmI2OGFiZmZhYjRiNDM2YmJhMjkyNzEwOTBlYTZjYWIxMTE2NDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvCrvgQ6Vy+QCswejus/ghxdBFzty 5RZUtUZYBY5eBcs+VZmJrb3o/mJRrUYu41S5uYq4HC7EnqWGR5XyeXbu4O9vYtU9 ZwKLwuhBY9pKNw3Q4ogHKE76YJjpXu26j0/M5vizom1M51CnfP4oPA8goDA01HPo i7o5MKShOZvZZf1mH7EWevg6C173yamHWl8ZtGVhOyZKT33Vctl+LnEOXkXiBWXK SUCu/wKr24ZiJfotyexZhhES3ZCx6DDUXxMPT6AzhLSBcZbh/NOqHtHBHiVROrxX sntM27B4MWyNoXKoWN+nwC8JrHzzUB/62Avu7fyaZOtETQIXOMUr9xRy+wIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFEu2ir/6tLQ2u6KScQkOpsqxEWQPMB8GA1UdIwQY MBaAFL360j4Rzw0kpHdZTroJ+ZrMbx//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEt NGY0ZTcxZTMyMDg0LzEvUzdhS3ZfcTB0RGE3b3BKeENRNm15ckVSWkE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEtNGY0ZTcxZTMyMDg0 LzEvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsMAwDBABPrk0D BAVPrkADBANZaEADBABZaEoDBABZaF4DBAJZb5gDBANZb6gwDQYJKoZIhvcNAQEL BQADggEBABmqHJ/rQy6PULE9ikscxZJ/jwruYo62X9icgUVgWmOZaIKE718ZLzBT NZhLO8wzSl8Qn4zLQ94kF8pQH8PMK1UO7viECUPOdFuEPZOsDxZdUdK+WFVEC4TE 8lQHRBtqEpfpMFL8hoKIQWDkziLm9RJ0kX1XL6LaeTBKdNYt0mRE1bn0RQc7ghsG m9+Q7zaMy/ibCPHeeJ/5N2056hHpd2PizcXxcZEs9kWcgHMT8irQ+Jr0AXyoOK9j 7zoKRf/sbs/H/2ete9BfcBbhJ7Nn0rIuhcqpPS+BNj/coUIfze1uxvxCKS0P0osY XtnZ+6joWepZ3ylKGJNlSCk9eqffvfc= -----END CERTIFICATE-----Generated at Tue Jan 27 16:27:38 2026 by rpki-client