This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/KtD6aD4KBGSPFRBC5ubxTgpv4OU.roa File: KtD6aD4KBGSPFRBC5ubxTgpv4OU.roa (raw, json) Hash identifier: zNzcDdueDysFJSzHSeNazQFGxaY5kz27vwvCAz515lA= Subject key identifier: 2A:D0:FA:68:3E:0A:04:64:8F:15:10:42:E6:E6:F1:4E:0A:6F:E0:E5 Certificate issuer: /CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466 Certificate serial: 019B7FF246D8E6D59AB4602CBC70F192C360 Authority key identifier: FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/KtD6aD4KBGSPFRBC5ubxTgpv4OU.roa Signing time: Fri 02 Jan 2026 18:22:22 +0000 ROA not before: Fri 02 Jan 2026 18:22:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 78.109.224.0/24 maxlen: 24 78.109.226.0/24 maxlen: 24 78.109.233.0/24 maxlen: 24 78.109.234.0/24 maxlen: 24 78.109.235.0/24 maxlen: 24 78.109.238.0/24 maxlen: 24 185.52.101.0/24 maxlen: 24 185.52.102.0/24 maxlen: 24 185.52.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.mft rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:46:d8:e6:d5:9a:b4:60:2c:bc:70:f1:92:c3:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466 Validity Not Before: Jan 2 18:22:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2ad0fa683e0a04648f151042e6e6f14e0a6fe0e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3d:d9:3b:fd:02:42:7e:d3:bd:0f:41:89:04: 2b:1e:8b:8b:f8:e7:9d:b1:78:39:98:44:5f:cf:bd: b7:77:f4:e7:18:95:05:39:13:f5:55:69:86:ab:ff: 83:dd:e1:1e:ea:9f:8c:f4:b7:85:a1:95:6d:27:fb: 1d:30:fb:a6:b4:f3:d1:66:d3:07:1b:c6:ad:cb:1f: a0:0b:34:19:42:b0:b0:7d:34:d2:c4:db:bb:35:19: 91:2f:2a:2b:99:fc:f1:a0:2a:8b:28:e3:c8:e5:8f: 03:93:96:37:64:1c:19:31:79:fb:0c:ec:aa:2f:a5: 17:ff:4d:72:d5:ea:0e:68:90:db:8b:71:a1:12:8c: 92:8e:b1:ac:e8:c9:00:02:dc:96:11:9b:9b:7e:ca: 65:28:9a:56:66:de:f5:d3:74:97:eb:50:06:35:82: 39:5b:66:2f:33:57:82:c7:5e:6b:b5:b6:11:92:48: 68:d9:a8:15:57:fd:ac:a1:71:92:72:bb:52:c0:37: 47:94:e2:dd:3e:a3:d1:34:e5:af:4e:ac:c3:73:16: 8e:13:c8:e8:81:eb:68:d4:29:10:8e:fa:c0:c2:ac: e2:ce:b6:82:c0:23:ef:2b:48:4a:7a:f5:98:85:82: 1c:7e:ee:c7:2d:af:08:02:96:7c:f4:5c:d1:80:00: f3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D0:FA:68:3E:0A:04:64:8F:15:10:42:E6:E6:F1:4E:0A:6F:E0:E5 X509v3 Authority Key Identifier: keyid:FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/KtD6aD4KBGSPFRBC5ubxTgpv4OU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.109.224.0/24 78.109.226.0/24 78.109.233.0-78.109.235.255 78.109.238.0/24 185.52.101.0-185.52.103.255 Signature Algorithm: sha256WithRSAEncryption 88:f7:b3:a4:eb:78:aa:f9:5b:a6:fd:c6:bd:c7:ff:2a:91:ff: 37:c8:c3:d0:5c:3f:ce:c8:b5:53:bb:2a:d0:97:3c:dc:4e:6e: b0:27:85:c7:4f:93:c3:a6:5d:2c:04:9a:5e:49:47:ed:93:b0: eb:53:de:56:2f:30:1a:db:8d:8b:b0:99:78:58:d8:91:5e:61: 44:ff:65:31:96:64:ab:05:82:23:6d:8f:99:e2:e8:f7:5e:db: 29:a9:0e:54:84:25:98:e6:09:3c:d3:72:8a:17:3b:d0:21:3e: 33:3b:36:12:dd:94:99:d9:65:c5:47:c3:62:be:b1:0e:28:89: a4:30:8b:eb:29:62:29:8d:3f:54:04:f7:92:c9:b4:c5:e9:fd: 0a:54:c9:1c:f0:4c:58:ac:57:38:2c:6c:28:cb:bb:6c:ed:42: 05:1c:30:e0:11:93:66:86:d7:23:ae:0d:3e:e2:dd:97:87:59: 82:02:9f:c2:81:ce:56:11:aa:76:12:be:81:22:a5:8f:fe:80: 7c:b1:e7:25:5f:bf:73:7a:2f:62:9e:a6:c0:73:71:b9:42:4c: 2f:48:ec:5c:a4:51:68:5f:2c:2e:df:a2:c2:91:4f:b9:a2:90: 9b:e8:a9:04:eb:95:4b:a8:78:a3:39:bc:f0:da:10:2a:c3:02: a4:91:d5:54 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZt/8kbY5tWatGAsvHDxksNgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiMDYxYTM5ZjBhMDM3OTIzMTEzZDZiOGJiOWI1YmRhYjVi MmY0NjYwHhcNMjYwMTAyMTgyMjIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYWQwZmE2ODNlMGEwNDY0OGYxNTEwNDJlNmU2ZjE0ZTBhNmZlMGU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqj3ZO/0CQn7TvQ9BiQQrHouL+Oed sXg5mERfz723d/TnGJUFORP1VWmGq/+D3eEe6p+M9LeFoZVtJ/sdMPumtPPRZtMH G8atyx+gCzQZQrCwfTTSxNu7NRmRLyormfzxoCqLKOPI5Y8Dk5Y3ZBwZMXn7DOyq L6UX/01y1eoOaJDbi3GhEoySjrGs6MkAAtyWEZubfsplKJpWZt7103SX61AGNYI5 W2YvM1eCx15rtbYRkkho2agVV/2soXGScrtSwDdHlOLdPqPRNOWvTqzDcxaOE8jo geto1CkQjvrAwqzizraCwCPvK0hKevWYhYIcfu7HLa8IApZ89FzRgADz+wIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFCrQ+mg+CgRkjxUQQubm8U4Kb+DlMB8GA1UdIwQY MBaAFPsGGjnwoDeSMRPWuLubW9q1svRmMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS13WWFPZkNnTjVJeEU5YTR1NXRiMnJXeTlHWS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvYTMyOTRiLWQ0NzgtNGRiZC1hYWU1 LWZkMTY3YWQ5MmE5ZC8xL0t0RDZhRDRLQkdTUEZSQkM1dWJ4VGdwdjRPVS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvZjMvYTMyOTRiLWQ0NzgtNGRiZC1hYWU1LWZkMTY3YWQ5MmE5 ZC8xLzEtd1lhT2ZDZ041SXhFOWE0dTV0YjJyV3k5R1kuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwRwYIKwYBBQUHAQcBAf8EODA2MDQEAgABMC4DBABObeAD BABObeIwDAMEAE5t6QMEAk5t6AMEAE5t7jAMAwQAuTRlAwQDuTRgMA0GCSqGSIb3 DQEBCwUAA4IBAQCI97Ok63iq+Vum/ca9x/8qkf83yMPQXD/OyLVTuyrQlzzcTm6w J4XHT5PDpl0sBJpeSUftk7DrU95WLzAa242LsJl4WNiRXmFE/2UxlmSrBYIjbY+Z 4uj3XtspqQ5UhCWY5gk803KKFzvQIT4zOzYS3ZSZ2WXFR8NivrEOKImkMIvrKWIp jT9UBPeSybTF6f0KVMkc8ExYrFc4LGwoy7ts7UIFHDDgEZNmhtcjrg0+4t2Xh1mC Ap/Cgc5WEap2Er6BIqWP/oB8seclX79zei9inqbAc3G5QkwvSOxcpFFoXywu36LC kU+5opCb6KkE65VLqHijObzw2hAqwwKkkdVU -----END CERTIFICATE-----Generated at Tue Jan 20 01:19:53 2026 by rpki-client