This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a481fa-2d0d-4e8e-b2d3-28d8248b5b61/1/75GtR8MU0hokzNxKXIWlMPnolv0.roa File: 75GtR8MU0hokzNxKXIWlMPnolv0.roa (raw, json) Hash identifier: Fey2h9ggN57tWJ2x6VzuQ69CSI5bRiEMaqNk0Q05Fuk= Subject key identifier: EF:91:AD:47:C3:14:D2:1A:24:CC:DC:4A:5C:85:A5:30:F9:E8:96:FD Certificate issuer: /CN=be9f159bab83661fd93ead430c3bdb1eaa7eaf08 Certificate serial: 019B7834800D66FB2C49F75C7BB31DB1B1C5 Authority key identifier: BE:9F:15:9B:AB:83:66:1F:D9:3E:AD:43:0C:3B:DB:1E:AA:7E:AF:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vp8Vm6uDZh_ZPq1DDDvbHqp-rwg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a481fa-2d0d-4e8e-b2d3-28d8248b5b61/1/75GtR8MU0hokzNxKXIWlMPnolv0.roa Signing time: Thu 01 Jan 2026 06:17:45 +0000 ROA not before: Thu 01 Jan 2026 06:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39571 IP address blocks: 89.235.64.0/22 maxlen: 22 89.235.64.0/24 maxlen: 24 89.235.65.0/24 maxlen: 24 89.235.66.0/24 maxlen: 24 89.235.67.0/24 maxlen: 24 185.135.28.0/22 maxlen: 22 185.135.28.0/24 maxlen: 24 185.135.29.0/24 maxlen: 24 185.135.30.0/24 maxlen: 24 185.135.31.0/24 maxlen: 24 2a06:f100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a481fa-2d0d-4e8e-b2d3-28d8248b5b61/1/vp8Vm6uDZh_ZPq1DDDvbHqp-rwg.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/a481fa-2d0d-4e8e-b2d3-28d8248b5b61/1/vp8Vm6uDZh_ZPq1DDDvbHqp-rwg.mft rsync://rpki.ripe.net/repository/DEFAULT/vp8Vm6uDZh_ZPq1DDDvbHqp-rwg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:80:0d:66:fb:2c:49:f7:5c:7b:b3:1d:b1:b1:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be9f159bab83661fd93ead430c3bdb1eaa7eaf08 Validity Not Before: Jan 1 06:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef91ad47c314d21a24ccdc4a5c85a530f9e896fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:04:20:4e:c4:b5:48:d1:34:f9:bf:3f:f1:77: ae:30:13:86:b2:57:55:b2:99:90:25:34:dd:d2:0c: 9f:27:fc:74:18:b4:a7:e1:5c:cc:28:59:06:a4:ea: a8:b4:67:25:37:8c:4a:23:98:bb:59:37:b9:5d:b8: 5d:de:5c:39:05:9d:1c:a4:05:f9:33:d2:5c:5d:36: 19:d6:1a:b5:0a:4f:5d:bf:d0:7d:6c:1d:68:49:00: 11:59:00:b2:ff:4e:75:7f:d1:91:43:bb:d8:38:d2: 8d:9d:b8:c2:ef:83:25:9d:f6:68:98:3b:8f:25:9d: 94:ce:d6:e8:60:d4:e9:e7:62:f9:0f:4a:6b:9a:0b: 0b:6e:84:20:64:19:55:f2:0c:e4:c5:15:94:81:f2: db:b6:b3:2d:a9:61:14:22:e3:9a:cb:60:84:6b:dc: d5:6a:72:c9:8e:d7:35:2c:79:42:3c:5a:2f:b9:72: 13:5e:7b:fb:ef:69:1b:72:bf:f2:d0:8b:43:98:70: 74:76:5a:ad:76:24:a5:c4:ae:ad:54:cf:94:dd:61: 60:46:3d:82:0b:e0:14:4f:db:a7:66:3e:07:34:eb: 00:9a:e0:24:40:0d:42:1f:a3:45:f8:49:c8:c2:06: 4b:33:e3:f3:e9:15:d5:88:38:d5:88:95:85:96:c2: 68:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:91:AD:47:C3:14:D2:1A:24:CC:DC:4A:5C:85:A5:30:F9:E8:96:FD X509v3 Authority Key Identifier: keyid:BE:9F:15:9B:AB:83:66:1F:D9:3E:AD:43:0C:3B:DB:1E:AA:7E:AF:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vp8Vm6uDZh_ZPq1DDDvbHqp-rwg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a481fa-2d0d-4e8e-b2d3-28d8248b5b61/1/75GtR8MU0hokzNxKXIWlMPnolv0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a481fa-2d0d-4e8e-b2d3-28d8248b5b61/1/vp8Vm6uDZh_ZPq1DDDvbHqp-rwg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.235.64.0/22 185.135.28.0/22 IPv6: 2a06:f100::/29 Signature Algorithm: sha256WithRSAEncryption 17:fc:15:85:6b:01:cb:9a:f2:e4:a0:5a:87:dc:13:91:36:da: da:98:e3:75:8a:22:c2:95:04:67:5c:f4:7b:41:d8:7c:69:2e: 9f:21:1e:1d:c9:81:3a:79:27:a5:f4:78:ef:f4:3e:ac:b0:75: 9e:b3:6e:1f:fa:63:9f:b8:97:77:d4:13:59:14:14:92:33:f2: 09:af:eb:83:3d:dc:05:fc:bc:a8:86:73:0b:e0:7c:d0:63:c8: 3e:1c:ae:5a:c0:c9:66:a9:8e:ae:bc:07:fc:59:22:f9:35:e9: 9d:dd:74:9d:e5:a5:a9:4f:4d:50:f7:b3:49:65:de:35:2c:e6: 2a:c6:84:6d:04:a2:58:87:1a:a7:ee:d2:97:39:11:14:9b:65: ac:f8:0d:32:43:71:2a:9f:47:19:56:3b:88:69:cd:51:98:34: 28:6f:09:79:f7:bd:31:f4:f4:68:b4:76:2d:2b:09:47:ff:62: 50:57:a6:e5:13:17:d5:3f:07:f1:c9:b3:ed:46:10:30:43:ef: cc:84:00:f9:77:3a:f0:8f:78:32:00:90:16:c4:df:8a:88:eb: f4:81:e9:40:53:e4:22:8d:16:01:4d:90:d3:eb:cf:8d:72:26: df:3b:5c:ca:ad:d0:97:08:05:98:86:61:54:88:b6:3b:aa:d6: ed:e1:c0:33 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4NIANZvssSfdce7MdsbHFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlOWYxNTliYWI4MzY2MWZkOTNlYWQ0MzBjM2JkYjFlYWE3 ZWFmMDgwHhcNMjYwMTAxMDYxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjkxYWQ0N2MzMTRkMjFhMjRjY2RjNGE1Yzg1YTUzMGY5ZTg5NmZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AQgTsS1SNE0+b8/8XeuMBOGsldV spmQJTTd0gyfJ/x0GLSn4VzMKFkGpOqotGclN4xKI5i7WTe5Xbhd3lw5BZ0cpAX5 M9JcXTYZ1hq1Ck9dv9B9bB1oSQARWQCy/051f9GRQ7vYONKNnbjC74MlnfZomDuP JZ2UztboYNTp52L5D0prmgsLboQgZBlV8gzkxRWUgfLbtrMtqWEUIuOay2CEa9zV anLJjtc1LHlCPFovuXITXnv772kbcr/y0ItDmHB0dlqtdiSlxK6tVM+U3WFgRj2C C+AUT9unZj4HNOsAmuAkQA1CH6NF+EnIwgZLM+Pz6RXViDjViJWFlsJoHQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFO+RrUfDFNIaJMzcSlyFpTD56Jb9MB8GA1UdIwQY MBaAFL6fFZurg2Yf2T6tQww72x6qfq8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdnA4Vm02dURaaF9aUHExREREdmJIcXAtcndnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9hNDgxZmEtMmQwZC00ZThlLWIyZDMt MjhkODI0OGI1YjYxLzEvNzVHdFI4TVUwaG9rek54S1hJV2xNUG5vbHYwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS9hNDgxZmEtMmQwZC00ZThlLWIyZDMtMjhkODI0OGI1YjYx LzEvdnA4Vm02dURaaF9aUHExREREdmJIcXAtcndnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCWetAAwQC uYccMA0EAgACMAcDBQMqBvEAMA0GCSqGSIb3DQEBCwUAA4IBAQAX/BWFawHLmvLk oFqH3BORNtramON1iiLClQRnXPR7Qdh8aS6fIR4dyYE6eSel9Hjv9D6ssHWes24f +mOfuJd31BNZFBSSM/IJr+uDPdwF/LyohnML4HzQY8g+HK5awMlmqY6uvAf8WSL5 Nemd3XSd5aWpT01Q97NJZd41LOYqxoRtBKJYhxqn7tKXOREUm2Ws+A0yQ3Eqn0cZ VjuIac1RmDQobwl5970x9PRotHYtKwlH/2JQV6blExfVPwfxybPtRhAwQ+/MhAD5 dzrwj3gyAJAWxN+KiOv0gelAU+QijRYBTZDT68+NcibfO1zKrdCXCAWYhmFUiLY7 qtbt4cAz -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:42 2026 by rpki-client