This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0kVXTn66Mtlf76A6nH6OjV0ZAAg.roa File: 0kVXTn66Mtlf76A6nH6OjV0ZAAg.roa (raw, json) Hash identifier: hsCct6Bm9GJGzPIr8YO6/TTqqk2WwbfoXzf25mYX8LM= Subject key identifier: D2:45:57:4E:7E:BA:32:D9:5F:EF:A0:3A:9C:7E:8E:8D:5D:19:00:08 Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a Certificate serial: 019B78A36A9A77971C071226B4D4C026F63F Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0kVXTn66Mtlf76A6nH6OjV0ZAAg.roa Signing time: Thu 01 Jan 2026 08:18:54 +0000 ROA not before: Thu 01 Jan 2026 08:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5483 IP address blocks: 46.183.186.0/24 maxlen: 24 89.46.237.0/24 maxlen: 24 2a03:f80:36::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.mft rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:6a:9a:77:97:1c:07:12:26:b4:d4:c0:26:f6:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a Validity Not Before: Jan 1 08:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d245574e7eba32d95fefa03a9c7e8e8d5d190008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:cb:d7:fe:27:88:1b:b6:40:f4:68:31:59:89: e7:95:cf:b1:44:53:c4:ec:9b:ee:c9:06:3d:82:ca: d3:57:de:a0:8d:f0:df:43:74:c0:1a:41:d6:dc:b7: 4b:1d:67:4e:09:7b:de:9f:44:0e:6c:b3:d5:8d:3d: 00:6b:c6:75:97:14:dc:c8:22:d5:35:54:1a:f4:df: 39:84:32:c1:7e:86:19:d3:78:92:4b:c8:d3:d8:2e: ea:76:62:11:e7:0c:3f:69:32:9b:60:8c:e8:a0:af: e1:86:7c:ac:94:69:2f:c6:ed:85:55:10:44:0a:d1: 69:2a:49:3d:bd:7e:62:06:f4:7b:ae:95:f3:57:62: 05:4c:ec:2e:c2:a0:ee:ee:c9:49:fb:2d:d0:d0:1a: ce:ad:09:3f:6c:37:9b:da:63:16:1f:22:97:6d:51: 66:16:6d:59:07:82:06:cf:a9:05:7e:e5:ee:38:54: 43:2e:3a:34:d5:73:85:93:ec:50:4f:29:fe:61:a8: af:c3:68:cc:20:42:56:f2:fa:de:2e:d6:2d:eb:3e: 84:b4:a2:73:d4:89:bf:5f:39:03:49:52:44:ba:f5: 04:0c:a8:8e:a0:5f:be:38:81:5d:ff:4c:a1:98:46: b2:97:68:3b:d5:38:b9:c9:fd:d1:6c:ef:dd:78:fe: 37:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:45:57:4E:7E:BA:32:D9:5F:EF:A0:3A:9C:7E:8E:8D:5D:19:00:08 X509v3 Authority Key Identifier: keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0kVXTn66Mtlf76A6nH6OjV0ZAAg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.183.186.0/24 89.46.237.0/24 IPv6: 2a03:f80:36::/48 Signature Algorithm: sha256WithRSAEncryption 77:65:2f:b0:43:f5:27:7f:fc:ca:95:fc:6a:d5:c4:f1:47:7a: 7e:e5:fe:94:c3:a8:8e:4a:41:84:3e:32:1a:c8:83:3d:28:29: f6:e7:aa:2a:8c:6b:36:c1:27:88:49:ba:5c:12:e5:24:c0:9d: da:85:ed:78:20:c5:0b:c9:f1:2d:fe:2f:79:be:82:e5:2c:7a: 7d:d0:e7:8c:bb:05:39:b0:80:88:82:25:a4:be:63:8d:3e:8b: 90:fd:30:03:0c:84:44:ca:e5:17:dd:57:25:93:f6:b5:34:24: 4b:30:fe:f6:88:03:55:2d:f1:f4:85:75:ee:ea:61:53:71:6d: cf:fa:f2:a0:e7:90:0c:ee:72:ad:55:97:60:69:e3:a3:e6:0b: fa:56:23:c6:de:cb:b5:34:36:24:a3:ec:0c:76:ad:da:00:42: 82:45:2b:d9:e5:27:2f:2f:14:eb:66:41:64:b6:10:93:bb:69: 04:20:0b:8a:64:44:ac:20:78:ed:8f:9e:62:52:31:f0:be:d9: b5:21:69:cf:8d:64:79:d5:2a:c5:83:ac:35:0c:62:07:6b:9d: 0e:02:c7:1c:df:05:49:86:d2:df:27:e8:45:78:68:b8:91:75: 42:27:40:34:8e:3e:67:3f:c8:98:8d:c0:a6:ff:2e:e3:c1:af: fd:5f:44:de -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt4o2qad5ccBxImtNTAJvY/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyMTdiNDcyYzg0MWMxZDY4NTUwYTI0ZjE5MzZkMjljYzZj MjhmNmEwHhcNMjYwMTAxMDgxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjQ1NTc0ZTdlYmEzMmQ5NWZlZmEwM2E5YzdlOGU4ZDVkMTkwMDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MvX/ieIG7ZA9GgxWYnnlc+xRFPE 7JvuyQY9gsrTV96gjfDfQ3TAGkHW3LdLHWdOCXven0QObLPVjT0Aa8Z1lxTcyCLV NVQa9N85hDLBfoYZ03iSS8jT2C7qdmIR5ww/aTKbYIzooK/hhnyslGkvxu2FVRBE CtFpKkk9vX5iBvR7rpXzV2IFTOwuwqDu7slJ+y3Q0BrOrQk/bDeb2mMWHyKXbVFm Fm1ZB4IGz6kFfuXuOFRDLjo01XOFk+xQTyn+Yaivw2jMIEJW8vreLtYt6z6EtKJz 1Im/XzkDSVJEuvUEDKiOoF++OIFd/0yhmEayl2g71Ti5yf3RbO/deP43iwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFNJFV05+ujLZX++gOpx+jo1dGQAIMB8GA1UdIwQY MBaAFNIXtHLIQcHWhVCiTxk20pzGwo9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGIt YjM4ZTI2NzdiM2RjLzEvMGtWWFRuNjZNdGxmNzZBNm5INk9qVjBaQUFnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGItYjM4ZTI2NzdiM2Rj LzEvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQALre6AwQA WS7tMA8EAgACMAkDBwAqAw+AADYwDQYJKoZIhvcNAQELBQADggEBAHdlL7BD9Sd/ /MqV/GrVxPFHen7l/pTDqI5KQYQ+MhrIgz0oKfbnqiqMazbBJ4hJulwS5STAndqF 7XggxQvJ8S3+L3m+guUsen3Q54y7BTmwgIiCJaS+Y40+i5D9MAMMhETK5RfdVyWT 9rU0JEsw/vaIA1Ut8fSFde7qYVNxbc/68qDnkAzucq1Vl2Bp46PmC/pWI8bey7U0 NiSj7Ax2rdoAQoJFK9nlJy8vFOtmQWS2EJO7aQQgC4pkRKwgeO2PnmJSMfC+2bUh ac+NZHnVKsWDrDUMYgdrnQ4CxxzfBUmG0t8n6EV4aLiRdUInQDSOPmc/yJiNwKb/ LuPBr/1fRN4= -----END CERTIFICATE-----Generated at Sun Jan 25 22:13:21 2026 by rpki-client