This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/7e0b13-ec91-483d-b96a-659b4ccd7f4a/1/iFAn1u3EcEzNKFFEGLpbIFooV4w.roa File: iFAn1u3EcEzNKFFEGLpbIFooV4w.roa (raw, json) Hash identifier: QNlIF2jmeLo4oV4a+RaHCBWLuy9tqbGyVZgSq0+yZ+A= Subject key identifier: 88:50:27:D6:ED:C4:70:4C:CD:28:51:44:18:BA:5B:20:5A:28:57:8C Certificate issuer: /CN=9af188a04bb45d4ee74c44dc76d71fffbdc04f60 Certificate serial: 019B79EBC3174B852014D5D0342686C8163B Authority key identifier: 9A:F1:88:A0:4B:B4:5D:4E:E7:4C:44:DC:76:D7:1F:FF:BD:C0:4F:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvGIoEu0XU7nTETcdtcf_73AT2A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/7e0b13-ec91-483d-b96a-659b4ccd7f4a/1/iFAn1u3EcEzNKFFEGLpbIFooV4w.roa Signing time: Thu 01 Jan 2026 14:17:32 +0000 ROA not before: Thu 01 Jan 2026 14:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 77.83.236.0/22 maxlen: 22 2a09:9280::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/7e0b13-ec91-483d-b96a-659b4ccd7f4a/1/mvGIoEu0XU7nTETcdtcf_73AT2A.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/7e0b13-ec91-483d-b96a-659b4ccd7f4a/1/mvGIoEu0XU7nTETcdtcf_73AT2A.mft rsync://rpki.ripe.net/repository/DEFAULT/mvGIoEu0XU7nTETcdtcf_73AT2A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 11:01:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:c3:17:4b:85:20:14:d5:d0:34:26:86:c8:16:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9af188a04bb45d4ee74c44dc76d71fffbdc04f60 Validity Not Before: Jan 1 14:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=885027d6edc4704ccd28514418ba5b205a28578c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cc:b5:da:1b:33:29:bf:7a:af:d0:b5:a5:d0: 55:37:e1:93:67:23:ec:2a:54:41:a0:ac:07:a4:b1: a6:6a:5a:0e:38:7b:bf:18:b1:20:a8:66:3a:52:b7: e5:b2:03:0f:00:f4:51:b6:13:2c:bb:68:6b:dc:3f: 8d:c6:f0:13:15:23:ea:8f:18:62:1c:0a:b4:76:3e: 0e:bc:6d:fa:ab:69:c7:2b:4a:9e:f3:a5:29:7b:a6: a8:97:02:86:06:a6:ab:70:bc:d9:d6:a5:b7:6e:f6: 3a:65:2e:32:50:40:d2:e6:69:1f:cb:88:65:b8:9f: b5:81:27:1b:15:4b:f2:17:e6:20:f4:f4:f8:34:ae: 35:04:bd:c0:0e:3e:de:ab:2f:20:9c:1e:67:1a:e1: 36:8b:5a:94:bf:c0:2a:c6:d8:51:cc:4b:96:36:e6: 61:6b:9a:e8:5b:a5:58:a5:e2:df:9c:b3:b7:12:0c: 5c:f1:68:84:b5:fc:86:3e:d3:c7:ab:a8:08:74:c0: 9f:63:ef:ae:8e:74:d5:eb:09:8d:a5:11:67:d1:3c: 10:12:bf:6f:0d:34:fd:50:7a:5c:c0:44:80:fe:82: 77:ca:cd:ae:aa:57:ae:84:9e:70:1a:e9:1f:8d:ef: cc:ea:6b:f1:9e:5d:19:21:5c:95:37:f8:42:f4:cc: 72:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:50:27:D6:ED:C4:70:4C:CD:28:51:44:18:BA:5B:20:5A:28:57:8C X509v3 Authority Key Identifier: keyid:9A:F1:88:A0:4B:B4:5D:4E:E7:4C:44:DC:76:D7:1F:FF:BD:C0:4F:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvGIoEu0XU7nTETcdtcf_73AT2A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/7e0b13-ec91-483d-b96a-659b4ccd7f4a/1/iFAn1u3EcEzNKFFEGLpbIFooV4w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/7e0b13-ec91-483d-b96a-659b4ccd7f4a/1/mvGIoEu0XU7nTETcdtcf_73AT2A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.83.236.0/22 IPv6: 2a09:9280::/29 Signature Algorithm: sha256WithRSAEncryption 4c:82:e9:e5:39:65:c5:8b:cc:b0:36:19:ab:07:33:df:0c:75: 9f:a4:9f:b0:05:5b:c9:51:bd:09:79:9d:17:84:11:be:15:5b: 7f:c0:84:07:2a:ee:88:97:ab:8e:85:39:3b:06:64:b6:4a:63: e5:2d:0f:b1:07:5b:15:c0:60:bf:81:ab:ba:17:16:eb:f4:06: bd:f5:53:fa:74:0e:5f:26:e6:0a:e5:d7:72:97:ca:e1:e4:86: 72:c6:d7:b5:43:87:fc:bc:0f:69:34:71:59:68:3a:bb:1a:08: 95:b5:6b:cd:12:31:88:aa:0f:52:6c:fc:f1:56:de:f3:6d:a3: e8:b1:c8:2a:b5:75:8d:3a:e5:a8:08:6d:a3:fe:27:33:82:4c: f8:52:09:2a:9a:1c:3d:aa:ae:b7:89:9d:54:f2:2d:66:42:7f: 15:7f:cc:15:13:6d:59:47:98:f3:1f:8a:7c:44:0d:3e:04:35: 68:5a:1d:a4:6d:90:f1:93:0f:fc:b6:6b:5c:0f:c0:cd:e0:b8: 7d:bc:85:e9:3c:6d:c9:a7:58:ea:43:01:5f:cf:ad:01:54:ee: cb:ac:4a:d8:b6:32:f3:f2:d6:32:db:bb:da:ee:fd:1e:a7:c7: 86:44:f1:ac:93:09:74:65:d6:b0:31:7b:48:3d:59:ad:85:9c: 0d:0f:1e:ff -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt568MXS4UgFNXQNCaGyBY7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhZjE4OGEwNGJiNDVkNGVlNzRjNDRkYzc2ZDcxZmZmYmRj MDRmNjAwHhcNMjYwMTAxMTQxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODUwMjdkNmVkYzQ3MDRjY2QyODUxNDQxOGJhNWIyMDVhMjg1NzhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsy12hszKb96r9C1pdBVN+GTZyPs KlRBoKwHpLGmaloOOHu/GLEgqGY6UrflsgMPAPRRthMsu2hr3D+NxvATFSPqjxhi HAq0dj4OvG36q2nHK0qe86Upe6aolwKGBqarcLzZ1qW3bvY6ZS4yUEDS5mkfy4hl uJ+1gScbFUvyF+Yg9PT4NK41BL3ADj7eqy8gnB5nGuE2i1qUv8AqxthRzEuWNuZh a5roW6VYpeLfnLO3Egxc8WiEtfyGPtPHq6gIdMCfY++ujnTV6wmNpRFn0TwQEr9v DTT9UHpcwESA/oJ3ys2uqleuhJ5wGukfje/M6mvxnl0ZIVyVN/hC9MxyfQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIhQJ9btxHBMzShRRBi6WyBaKFeMMB8GA1UdIwQY MBaAFJrxiKBLtF1O50xE3HbXH/+9wE9gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXZHSW9FdTBYVTduVEVUY2R0Y2ZfNzNBVDJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy83ZTBiMTMtZWM5MS00ODNkLWI5NmEt NjU5YjRjY2Q3ZjRhLzEvaUZBbjF1M0VjRXpOS0ZGRUdMcGJJRm9vVjR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy83ZTBiMTMtZWM5MS00ODNkLWI5NmEtNjU5YjRjY2Q3ZjRh LzEvbXZHSW9FdTBYVTduVEVUY2R0Y2ZfNzNBVDJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCTVPsMA0E AgACMAcDBQMqCZKAMA0GCSqGSIb3DQEBCwUAA4IBAQBMgunlOWXFi8ywNhmrBzPf DHWfpJ+wBVvJUb0JeZ0XhBG+FVt/wIQHKu6Il6uOhTk7BmS2SmPlLQ+xB1sVwGC/ gau6Fxbr9Aa99VP6dA5fJuYK5ddyl8rh5IZyxte1Q4f8vA9pNHFZaDq7GgiVtWvN EjGIqg9SbPzxVt7zbaPoscgqtXWNOuWoCG2j/iczgkz4Ugkqmhw9qq63iZ1U8i1m Qn8Vf8wVE21ZR5jzH4p8RA0+BDVoWh2kbZDxkw/8tmtcD8DN4Lh9vIXpPG3Jp1jq QwFfz60BVO7LrErYtjLz8tYy27va7v0ep8eGRPGskwl0ZdawMXtIPVmthZwNDx7/ -----END CERTIFICATE-----Generated at Fri Jan 9 17:05:10 2026 by rpki-client