This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/fVnni3HY7sky3f7i5b4WxqKCK1w.roa File: fVnni3HY7sky3f7i5b4WxqKCK1w.roa (raw, json) Hash identifier: EnePOrLQan0VYDSXsgvz+/fx8DR+bHj24KExzs6KuKQ= Subject key identifier: 7D:59:E7:8B:71:D8:EE:C9:32:DD:FE:E2:E5:BE:16:C6:A2:82:2B:5C Certificate issuer: /CN=bb190d102ac9603b405b36374d429868604937af Certificate serial: 019B7AC920A5DED0053286CF88D2E03E4A5B Authority key identifier: BB:19:0D:10:2A:C9:60:3B:40:5B:36:37:4D:42:98:68:60:49:37:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uxkNECrJYDtAWzY3TUKYaGBJN68.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/fVnni3HY7sky3f7i5b4WxqKCK1w.roa Signing time: Thu 01 Jan 2026 18:19:20 +0000 ROA not before: Thu 01 Jan 2026 18:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202128 IP address blocks: 185.78.208.0/22 maxlen: 22 185.122.196.0/24 maxlen: 24 185.122.197.0/24 maxlen: 24 185.122.198.0/24 maxlen: 24 185.122.199.0/24 maxlen: 24 185.148.16.0/22 maxlen: 22 185.148.16.0/23 maxlen: 24 2a05:6d40::/29 maxlen: 29 2a07:5b80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/uxkNECrJYDtAWzY3TUKYaGBJN68.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/uxkNECrJYDtAWzY3TUKYaGBJN68.mft rsync://rpki.ripe.net/repository/DEFAULT/uxkNECrJYDtAWzY3TUKYaGBJN68.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:20:a5:de:d0:05:32:86:cf:88:d2:e0:3e:4a:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bb190d102ac9603b405b36374d429868604937af Validity Not Before: Jan 1 18:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7d59e78b71d8eec932ddfee2e5be16c6a2822b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:be:26:5c:8f:eb:1f:7d:a9:01:e0:4f:a1:4d: a6:1a:33:56:fe:3e:85:28:38:36:5d:19:93:b9:8a: c8:17:0a:6c:b6:a4:4d:9c:06:5c:41:2e:b2:bd:26: aa:2b:f9:da:82:e1:57:11:3e:78:1a:20:92:e4:65: 3f:24:6f:7d:e9:f4:06:ba:2f:18:1e:f4:a5:8e:8d: 59:b5:4f:66:1a:ec:b1:c3:f8:44:be:6b:34:0e:3e: 57:ca:e6:43:e0:28:15:07:27:7a:21:01:31:d1:69: 38:f4:80:49:f2:6b:0e:ac:44:cc:dc:42:7e:1e:14: 23:a3:49:19:fe:dd:30:82:dd:85:72:2e:ab:13:42: 1c:14:0a:2f:e5:12:80:67:11:58:8d:f2:82:e5:ac: 96:91:51:5d:f5:e5:36:d2:a0:f2:f5:15:8a:75:85: 21:8c:1d:41:83:03:47:9c:19:88:84:53:6b:ab:e0: eb:20:90:21:d4:80:47:6b:8f:65:f1:8f:da:57:3d: 5f:fe:62:8d:ee:d3:55:ff:89:98:a2:94:e6:d5:52: 77:83:bd:60:45:d1:c7:67:29:22:56:cb:9e:d2:ff: fe:05:73:c8:c6:9d:6d:5f:6f:ec:a2:c1:22:19:29: 3e:0e:70:41:0a:a2:cd:55:cd:e2:13:c6:87:06:d1: 9c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:59:E7:8B:71:D8:EE:C9:32:DD:FE:E2:E5:BE:16:C6:A2:82:2B:5C X509v3 Authority Key Identifier: keyid:BB:19:0D:10:2A:C9:60:3B:40:5B:36:37:4D:42:98:68:60:49:37:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uxkNECrJYDtAWzY3TUKYaGBJN68.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/fVnni3HY7sky3f7i5b4WxqKCK1w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6369e6-2304-4922-afdf-e93e2eba69b9/1/uxkNECrJYDtAWzY3TUKYaGBJN68.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.78.208.0/22 185.122.196.0/22 185.148.16.0/22 IPv6: 2a05:6d40::/29 2a07:5b80::/29 Signature Algorithm: sha256WithRSAEncryption c9:26:79:43:9e:b0:cc:9e:f0:50:bd:72:46:84:4c:6a:9e:81: dd:6e:f0:70:30:76:f9:08:0d:7d:0d:d7:42:fb:35:65:ec:c5: 29:ed:4d:0b:91:6a:88:7b:c0:fb:8c:92:7d:e1:b3:38:fd:82: 59:35:0e:62:8b:e1:02:55:ab:e1:21:8e:bb:ff:08:78:df:33: f3:76:7d:9c:73:5a:20:06:0e:9a:cc:66:07:f8:c5:b3:97:f0: f4:aa:df:f5:ff:5a:e9:6a:e1:21:b9:8b:60:bf:bc:f9:2f:39: c4:65:d8:6b:72:40:61:c2:b4:48:81:bb:46:4d:f0:d4:43:1b: 94:86:4f:58:14:3f:6c:f9:a1:c1:e2:ef:f6:11:0a:2e:79:60: ce:5b:62:5e:f7:df:05:d9:66:8e:6b:08:56:2f:79:1d:84:fb: dc:54:b9:5d:b9:be:28:77:3c:fd:e2:9b:80:d3:3b:4e:1a:ba: 36:ec:64:24:71:cc:66:7c:f1:43:4f:22:34:5f:b5:52:3b:47: 7b:9b:88:7f:07:ae:42:54:d8:b5:c6:2f:5e:01:88:17:32:5c: 2c:df:b9:83:aa:5f:e4:7a:92:24:1a:6d:94:9b:24:98:1b:9d: 38:ce:79:26:e8:3a:f2:44:70:bb:2c:80:13:18:cb:ff:25:99: 1d:22:61:87 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt6ySCl3tAFMobPiNLgPkpbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiMTkwZDEwMmFjOTYwM2I0MDViMzYzNzRkNDI5ODY4NjA0 OTM3YWYwHhcNMjYwMTAxMTgxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZDU5ZTc4YjcxZDhlZWM5MzJkZGZlZTJlNWJlMTZjNmEyODIyYjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5L4mXI/rH32pAeBPoU2mGjNW/j6F KDg2XRmTuYrIFwpstqRNnAZcQS6yvSaqK/naguFXET54GiCS5GU/JG996fQGui8Y HvSljo1ZtU9mGuyxw/hEvms0Dj5XyuZD4CgVByd6IQEx0Wk49IBJ8msOrETM3EJ+ HhQjo0kZ/t0wgt2Fci6rE0IcFAov5RKAZxFYjfKC5ayWkVFd9eU20qDy9RWKdYUh jB1BgwNHnBmIhFNrq+DrIJAh1IBHa49l8Y/aVz1f/mKN7tNV/4mYopTm1VJ3g71g RdHHZykiVsue0v/+BXPIxp1tX2/sosEiGSk+DnBBCqLNVc3iE8aHBtGcMQIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFH1Z54tx2O7JMt3+4uW+FsaigitcMB8GA1UdIwQY MBaAFLsZDRAqyWA7QFs2N01CmGhgSTevMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdXhrTkVDckpZRHRBV3pZM1RVS1lhR0JKTjY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS82MzY5ZTYtMjMwNC00OTIyLWFmZGYt ZTkzZTJlYmE2OWI5LzEvZlZubmkzSFk3c2t5M2Y3aTViNFd4cUtDSzF3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS82MzY5ZTYtMjMwNC00OTIyLWFmZGYtZTkzZTJlYmE2OWI5 LzEvdXhrTkVDckpZRHRBV3pZM1RVS1lhR0JKTjY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEEGCCsGAQUFBwEHAQH/BDIwMDAYBAIAATASAwQCuU7QAwQC uXrEAwQCuZQQMBQEAgACMA4DBQMqBW1AAwUDKgdbgDANBgkqhkiG9w0BAQsFAAOC AQEAySZ5Q56wzJ7wUL1yRoRMap6B3W7wcDB2+QgNfQ3XQvs1ZezFKe1NC5FqiHvA +4ySfeGzOP2CWTUOYovhAlWr4SGOu/8IeN8z83Z9nHNaIAYOmsxmB/jFs5fw9Krf 9f9a6WrhIbmLYL+8+S85xGXYa3JAYcK0SIG7Rk3w1EMblIZPWBQ/bPmhweLv9hEK LnlgzltiXvffBdlmjmsIVi95HYT73FS5Xbm+KHc8/eKbgNM7Thq6NuxkJHHMZnzx Q08iNF+1UjtHe5uIfweuQlTYtcYvXgGIFzJcLN+5g6pf5HqSJBptlJskmBudOM55 Jug68kRwuyyAExjL/yWZHSJhhw== -----END CERTIFICATE-----Generated at Sun Jan 25 22:28:40 2026 by rpki-client