This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/43xKNj8d1J5ZbdUCB9huFf51dlY.roa File: 43xKNj8d1J5ZbdUCB9huFf51dlY.roa (raw, json) Hash identifier: 0C77rsfbABsBAgXhMhHrXliF4EtBR+zdrxbfWGDutkA= Subject key identifier: E3:7C:4A:36:3F:1D:D4:9E:59:6D:D5:02:07:D8:6E:15:FE:75:76:56 Certificate issuer: /CN=16307d29f5543f21ea3009b9523fe71b8f1369ca Certificate serial: 019B783454FA271599E0FB603BE5CE0181A4 Authority key identifier: 16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/43xKNj8d1J5ZbdUCB9huFf51dlY.roa Signing time: Thu 01 Jan 2026 06:17:34 +0000 ROA not before: Thu 01 Jan 2026 06:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 32787 IP address blocks: 62.255.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/FjB9KfVUPyHqMAm5Uj_nG48Taco.crl rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/FjB9KfVUPyHqMAm5Uj_nG48Taco.mft rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 00:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:54:fa:27:15:99:e0:fb:60:3b:e5:ce:01:81:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16307d29f5543f21ea3009b9523fe71b8f1369ca Validity Not Before: Jan 1 06:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e37c4a363f1dd49e596dd50207d86e15fe757656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4d:32:cf:b1:fe:88:47:c4:e0:c1:45:15:35: 9e:15:29:91:90:67:3a:2e:f7:0c:bb:06:75:f4:96: 00:cb:34:fe:49:be:2a:eb:97:7b:d7:c7:9c:af:04: d9:5e:92:92:aa:ab:56:ee:84:3d:5a:e0:6e:f4:e8: b8:58:16:f5:8e:bf:c3:64:22:b3:4b:8c:83:07:4f: 11:d6:84:42:9a:e1:7d:0c:f9:7b:c9:ea:94:6c:43: 64:55:3a:b3:98:5f:6f:93:9c:e7:13:23:6d:18:dd: fc:8a:a9:79:6f:3f:91:a1:fd:4d:44:63:a0:43:5e: fd:b2:26:c4:13:4c:ee:04:52:70:4d:fa:c2:c6:65: 2a:c3:fa:e2:0e:a7:8b:f0:67:a8:e7:db:d2:78:24: b6:66:68:55:74:9a:4d:52:16:84:34:df:3f:3b:ee: dd:4f:44:dd:e0:69:e4:9c:c1:0f:f3:42:9b:a7:b8: cc:37:a2:9c:7a:06:0f:12:7f:ed:db:9f:bd:a5:e1: 52:b7:df:b5:09:a9:73:e5:18:f0:45:7b:27:18:b9: d2:bd:92:cf:01:27:88:65:a7:6e:81:46:9d:24:17: 09:c6:0b:95:9d:4c:1a:8c:42:af:8c:d4:32:49:39: 77:9a:dc:21:dc:0e:e0:2c:1f:c7:bf:ef:de:09:14: 81:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:7C:4A:36:3F:1D:D4:9E:59:6D:D5:02:07:D8:6E:15:FE:75:76:56 X509v3 Authority Key Identifier: keyid:16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/43xKNj8d1J5ZbdUCB9huFf51dlY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/FjB9KfVUPyHqMAm5Uj_nG48Taco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.255.142.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:81:11:53:38:16:e5:46:1f:15:30:f1:7c:34:a6:7a:fb:c1: fc:c8:68:99:a6:95:aa:b3:4d:6e:fb:20:92:8b:8a:69:d5:3b: 8c:56:f4:2f:3a:93:89:17:f0:41:83:d0:31:e7:c8:3c:98:76: c2:ab:92:26:12:b2:30:27:d6:2b:f7:d7:bd:48:68:50:bf:59: 6b:5e:55:f7:6c:40:81:cd:84:58:69:ff:56:af:51:fe:63:0b: 2b:22:5d:3c:96:34:53:83:d3:59:bc:8d:4e:a4:36:a1:01:65: 72:da:a1:54:f7:32:e1:37:46:57:a4:dc:1a:b9:b7:00:d6:cb: 61:4f:d2:62:2d:9b:e7:f8:86:5b:61:1a:7b:6e:7b:d9:42:5c: a1:68:a2:f6:05:a3:03:d9:99:ca:cb:68:b8:7d:da:59:3b:a5: 30:8e:cf:23:e8:2c:aa:f2:1f:ad:a5:cc:ef:b4:29:ba:76:13: 9e:96:d8:45:bf:1e:d8:06:a5:26:cd:7e:d6:5e:b9:ea:14:c7: c0:33:04:fd:0c:96:f0:e5:be:85:91:ac:4d:4b:f3:78:59:25: af:83:bd:27:2e:1f:ef:b4:fe:b7:66:61:f8:ac:35:fc:11:0d: 2d:21:cf:71:97:21:96:bb:1c:b0:e1:4e:68:f5:d8:b7:8f:02: a1:fd:5b:65 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NFT6JxWZ4PtgO+XOAYGkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE2MzA3ZDI5ZjU1NDNmMjFlYTMwMDliOTUyM2ZlNzFiOGYx MzY5Y2EwHhcNMjYwMTAxMDYxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzdjNGEzNjNmMWRkNDllNTk2ZGQ1MDIwN2Q4NmUxNWZlNzU3NjU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7E0yz7H+iEfE4MFFFTWeFSmRkGc6 LvcMuwZ19JYAyzT+Sb4q65d718ecrwTZXpKSqqtW7oQ9WuBu9Oi4WBb1jr/DZCKz S4yDB08R1oRCmuF9DPl7yeqUbENkVTqzmF9vk5znEyNtGN38iql5bz+Rof1NRGOg Q179sibEE0zuBFJwTfrCxmUqw/riDqeL8Geo59vSeCS2ZmhVdJpNUhaENN8/O+7d T0Td4GnknMEP80Kbp7jMN6KcegYPEn/t25+9peFSt9+1Calz5RjwRXsnGLnSvZLP ASeIZadugUadJBcJxguVnUwajEKvjNQySTl3mtwh3A7gLB/Hv+/eCRSBtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFON8SjY/HdSeWW3VAgfYbhX+dXZWMB8GA1UdIwQY MBaAFBYwfSn1VD8h6jAJuVI/5xuPE2nKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRmpCOUtmVlVQeUhxTUFtNVVqX25HNDhUYWNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9iZjVlNzAtNjY2NS00OWRlLWI5Y2Yt NGNmZTQwZjA3YTZiLzEvNDN4S05qOGQxSjVaYmRVQ0I5aHVGZjUxZGxZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNS9iZjVlNzAtNjY2NS00OWRlLWI5Y2YtNGNmZTQwZjA3YTZi LzEvRmpCOUtmVlVQeUhxTUFtNVVqX25HNDhUYWNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPv+OMA0G CSqGSIb3DQEBCwUAA4IBAQBbgRFTOBblRh8VMPF8NKZ6+8H8yGiZppWqs01u+yCS i4pp1TuMVvQvOpOJF/BBg9Ax58g8mHbCq5ImErIwJ9Yr99e9SGhQv1lrXlX3bECB zYRYaf9Wr1H+YwsrIl08ljRTg9NZvI1OpDahAWVy2qFU9zLhN0ZXpNwaubcA1sth T9JiLZvn+IZbYRp7bnvZQlyhaKL2BaMD2ZnKy2i4fdpZO6Uwjs8j6Cyq8h+tpczv tCm6dhOelthFvx7YBqUmzX7WXrnqFMfAMwT9DJbw5b6FkaxNS/N4WSWvg70nLh/v tP63ZmH4rDX8EQ0tIc9xlyGWuxyw4U5o9di3jwKh/Vtl -----END CERTIFICATE-----Generated at Tue Jan 20 07:56:31 2026 by rpki-client