This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/_v2WHlFRDcYhLkjXUloV_hg-H_k.roa File: _v2WHlFRDcYhLkjXUloV_hg-H_k.roa (raw, json) Hash identifier: 2xB0wD+Tur4/gI83e6PeVkTwe5048HzykjHm5uoJNv0= Subject key identifier: FE:FD:96:1E:51:51:0D:C6:21:2E:48:D7:52:5A:15:FE:18:3E:1F:F9 Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f Certificate serial: 019B79ED25BE0FB013548120AB689F6B9615 Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/_v2WHlFRDcYhLkjXUloV_hg-H_k.roa Signing time: Thu 01 Jan 2026 14:19:03 +0000 ROA not before: Thu 01 Jan 2026 14:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204679 IP address blocks: 193.59.78.0/23 maxlen: 24 194.181.179.0/24 maxlen: 24 195.164.128.0/17 maxlen: 24 195.164.128.0/18 maxlen: 18 195.164.192.0/18 maxlen: 18 2001:a17::/32 maxlen: 48 2001:a17:fffa::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.mft rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:25:be:0f:b0:13:54:81:20:ab:68:9f:6b:96:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f Validity Not Before: Jan 1 14:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fefd961e51510dc6212e48d7525a15fe183e1ff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d7:9a:f6:9d:15:37:5d:6e:5f:bb:73:df:85: eb:83:f0:31:14:6e:2e:14:4c:0d:e2:dc:4e:5d:75: ff:82:bd:67:00:08:31:bf:77:66:ec:9b:6d:08:8a: 7f:81:4a:a4:41:e1:f5:27:01:1d:39:bb:7c:3b:66: 14:9d:86:49:76:ad:13:d7:94:5f:5d:ae:b6:45:f7: f1:db:b4:6a:bc:91:6a:48:59:a9:04:22:c4:d7:88: a5:9c:42:ab:b8:bf:d0:29:52:2c:08:92:92:b0:34: 5c:51:5e:1d:52:da:30:32:53:a2:be:6a:ad:28:86: b3:5d:a5:c2:be:c0:7e:d0:cc:44:77:76:3f:15:9e: c2:44:65:d8:8c:a7:66:50:78:c7:40:b6:e1:10:75: c8:ad:d1:04:e0:50:45:4f:06:4b:a5:b4:bd:89:75: 69:92:5d:51:65:75:84:d2:5e:52:0d:01:d6:56:62: 30:20:38:bc:69:49:b3:1f:cc:d4:85:ac:62:f6:48: 0d:5f:2f:25:9a:d0:5f:69:52:ec:cd:4a:00:17:72: 5c:51:d4:a8:a3:71:b7:94:09:dc:18:b6:2d:36:a7: 33:40:d9:c4:be:ce:5e:fc:10:80:73:21:01:6b:e6: f8:a4:f7:50:97:e0:01:11:33:0e:11:cc:09:b1:ac: 29:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:FD:96:1E:51:51:0D:C6:21:2E:48:D7:52:5A:15:FE:18:3E:1F:F9 X509v3 Authority Key Identifier: keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/_v2WHlFRDcYhLkjXUloV_hg-H_k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.59.78.0/23 194.181.179.0/24 195.164.128.0/17 IPv6: 2001:a17::/32 Signature Algorithm: sha256WithRSAEncryption 47:b9:b4:0e:7b:a0:0f:47:3a:12:9f:ac:2e:42:dd:0d:8d:d5: af:ff:5a:02:d5:25:5a:2c:35:71:9e:17:ba:a5:4a:6f:5c:7a: fd:c3:77:cc:e1:74:e2:99:66:9d:f7:17:28:e6:be:9f:62:0b: 34:a9:94:f5:65:15:a5:22:78:3b:3b:d9:22:7e:b2:97:c8:f5: 01:5c:e1:02:dc:0b:29:c0:ba:ae:72:8d:33:8f:20:3e:a4:2e: 89:62:d4:c8:48:f0:46:86:fc:88:6e:ef:32:0d:22:a5:ff:43: 12:65:0c:6c:fc:1f:db:f2:14:0e:d0:c4:61:d1:cd:da:71:e4: d6:5c:0e:8a:80:14:b9:2e:a6:97:6a:ec:c3:0f:54:1b:46:41: 5c:7c:b1:09:28:aa:a7:39:95:e5:39:9f:aa:9e:2b:f1:10:7c: 8b:c5:cf:9d:8f:52:ca:6b:2d:d2:8d:88:6d:35:ad:37:04:e1: 80:7e:58:1e:c3:9d:47:7d:c9:e4:02:53:46:44:01:79:2a:dc: ae:37:42:40:df:a7:52:09:8a:da:61:52:ff:25:9a:15:e1:2a: f1:9d:4f:de:10:85:a9:7c:f9:b7:18:c2:80:09:23:c6:f8:1f: 28:93:1f:99:b7:b8:2e:98:0a:4d:37:c6:64:8e:2b:d4:10:8d: aa:d9:cf:5e -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt57SW+D7ATVIEgq2ifa5YVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw MTE4OGYwHhcNMjYwMTAxMTQxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZWZkOTYxZTUxNTEwZGM2MjEyZTQ4ZDc1MjVhMTVmZTE4M2UxZmY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9ea9p0VN11uX7tz34Xrg/AxFG4u FEwN4txOXXX/gr1nAAgxv3dm7JttCIp/gUqkQeH1JwEdObt8O2YUnYZJdq0T15Rf Xa62Rffx27RqvJFqSFmpBCLE14ilnEKruL/QKVIsCJKSsDRcUV4dUtowMlOivmqt KIazXaXCvsB+0MxEd3Y/FZ7CRGXYjKdmUHjHQLbhEHXIrdEE4FBFTwZLpbS9iXVp kl1RZXWE0l5SDQHWVmIwIDi8aUmzH8zUhaxi9kgNXy8lmtBfaVLszUoAF3JcUdSo o3G3lAncGLYtNqczQNnEvs5e/BCAcyEBa+b4pPdQl+ABETMOEcwJsawpYQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFP79lh5RUQ3GIS5I11JaFf4YPh/5MB8GA1UdIwQY MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt YzA2NzFiZjRjZjNlLzEvX3YyV0hsRlJEY1loTGtqWFVsb1ZfaGctSF9rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQBwTtOAwQA wrWzAwQHw6SAMA0EAgACMAcDBQAgAQoXMA0GCSqGSIb3DQEBCwUAA4IBAQBHubQO e6APRzoSn6wuQt0NjdWv/1oC1SVaLDVxnhe6pUpvXHr9w3fM4XTimWad9xco5r6f Ygs0qZT1ZRWlIng7O9kifrKXyPUBXOEC3AspwLquco0zjyA+pC6JYtTISPBGhvyI bu8yDSKl/0MSZQxs/B/b8hQO0MRh0c3aceTWXA6KgBS5LqaXauzDD1QbRkFcfLEJ KKqnOZXlOZ+qnivxEHyLxc+dj1LKay3SjYhtNa03BOGAflgew51HfcnkAlNGRAF5 KtyuN0JA36dSCYraYVL/JZoV4SrxnU/eEIWpfPm3GMKACSPG+B8okx+Zt7gumApN N8ZkjivUEI2q2c9e -----END CERTIFICATE-----Generated at Mon Jan 26 08:38:57 2026 by rpki-client