This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/sRhSOvBT50pEAGhy38eEzssMMhA.roa File: sRhSOvBT50pEAGhy38eEzssMMhA.roa (raw, json) Hash identifier: QbFSrZ3TjWQdjeS28WmLKPudQlt94pkB4tDP467+qjg= Subject key identifier: B1:18:52:3A:F0:53:E7:4A:44:00:68:72:DF:C7:84:CE:CB:0C:32:10 Certificate issuer: /CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2 Certificate serial: 019B79108E0E35F71643AF32DC3B720EE3F3 Authority key identifier: B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/sRhSOvBT50pEAGhy38eEzssMMhA.roa Signing time: Thu 01 Jan 2026 10:18:06 +0000 ROA not before: Thu 01 Jan 2026 10:18:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 64439 IP address blocks: 37.60.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.mft rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:8e:0e:35:f7:16:43:af:32:dc:3b:72:0e:e3:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5faec4b8d992dd6b9cd89a8489d3c3a652aecd2 Validity Not Before: Jan 1 10:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b118523af053e74a44006872dfc784cecb0c3210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2a:a0:8f:a4:d4:bb:77:a9:82:c2:51:03:cd: b8:e8:df:ca:b5:5a:04:ae:ee:96:68:06:d4:cb:a9: e7:ef:a2:a5:27:f5:1b:22:a4:d5:fb:27:8a:55:17: 16:59:75:13:5d:c3:c7:c8:16:97:b5:da:1f:31:aa: 22:b9:c1:5b:d4:b0:55:16:9c:5e:6a:fb:7e:b8:4f: 07:80:d2:a8:6f:2d:22:f3:82:9a:d6:38:cd:7f:6c: 1f:c3:5e:1b:39:bd:d4:fb:dd:ca:41:78:06:6c:13: 0b:48:04:45:32:3e:c4:46:43:b9:68:40:61:fd:2d: bf:0a:a5:6b:f0:9c:1b:7f:9a:43:da:3a:b1:49:8b: 4c:6b:e8:78:20:27:bb:9d:69:ce:75:cd:ea:78:97: 3e:89:a8:05:ee:07:19:68:73:16:dc:fe:c1:c0:ab: 39:e8:53:b9:da:ee:06:2c:83:ce:df:7f:5c:43:a9: 54:47:c4:da:07:f5:5c:65:fb:37:ab:5e:a0:b4:08: 31:fb:b1:ad:d4:f6:d2:8b:f8:97:af:ef:d1:84:df: ee:47:b7:62:f1:56:1e:ca:65:de:b5:9a:52:b2:6e: 44:33:27:40:fd:3c:7f:80:4f:2d:e2:5d:87:45:54: 4b:61:a9:cf:58:93:f5:cf:bc:c4:01:49:c2:45:55: 87:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:18:52:3A:F0:53:E7:4A:44:00:68:72:DF:C7:84:CE:CB:0C:32:10 X509v3 Authority Key Identifier: keyid:B5:FA:EC:4B:8D:99:2D:D6:B9:CD:89:A8:48:9D:3C:3A:65:2A:EC:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfrsS42ZLda5zYmoSJ08OmUq7NI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/sRhSOvBT50pEAGhy38eEzssMMhA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/68c296-69b2-4070-9ff9-4243decad360/1/tfrsS42ZLda5zYmoSJ08OmUq7NI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.60.177.0/24 Signature Algorithm: sha256WithRSAEncryption 49:dd:48:f2:5b:76:21:75:f7:e3:eb:d2:dc:e1:e0:f5:af:89: 05:6b:89:21:1c:e2:d9:b8:41:2f:e3:ef:65:c8:df:34:bb:bb: 06:85:eb:39:2d:27:19:82:be:00:42:77:ce:69:66:24:56:81: 83:b9:7e:42:63:59:a0:e4:74:9d:38:dd:c7:6b:1d:09:f8:d9: 6e:af:c4:41:f3:6c:fc:1c:fa:b0:fe:f6:a4:37:f3:c1:12:47: c7:e7:a5:2c:b3:17:74:6a:d0:d0:5e:05:42:ea:bc:48:77:cd: 2d:eb:c6:a7:b6:b2:01:b3:26:76:49:ec:01:c7:52:df:01:c4: af:58:73:95:5a:55:d7:5c:68:c8:3c:47:35:a7:2d:c1:9c:d8: 65:a8:b0:96:b4:84:1e:14:a3:9b:bb:4a:40:f7:51:d6:2c:81: 93:e5:1c:6a:05:05:ce:c8:03:89:08:3d:a5:d0:10:64:af:69: a8:4b:75:3e:e6:b8:3c:20:f7:a8:23:43:37:09:5a:87:e7:9d: 16:89:e1:6c:52:f9:ec:8d:48:6a:a0:1f:bb:ed:50:da:cd:65: 9d:35:44:97:e5:21:cb:7f:5c:f6:73:14:e6:a0:d5:e2:fe:a6: c8:ce:17:fe:90:56:69:9d:36:3c:06:0a:a3:86:a1:84:3e:c5: 4c:72:b6:eb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EI4ONfcWQ68y3DtyDuPzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1ZmFlYzRiOGQ5OTJkZDZiOWNkODlhODQ4OWQzYzNhNjUy YWVjZDIwHhcNMjYwMTAxMTAxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTE4NTIzYWYwNTNlNzRhNDQwMDY4NzJkZmM3ODRjZWNiMGMzMjEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiqgj6TUu3epgsJRA8246N/KtVoE ru6WaAbUy6nn76KlJ/UbIqTV+yeKVRcWWXUTXcPHyBaXtdofMaoiucFb1LBVFpxe avt+uE8HgNKoby0i84Ka1jjNf2wfw14bOb3U+93KQXgGbBMLSARFMj7ERkO5aEBh /S2/CqVr8Jwbf5pD2jqxSYtMa+h4ICe7nWnOdc3qeJc+iagF7gcZaHMW3P7BwKs5 6FO52u4GLIPO339cQ6lUR8TaB/VcZfs3q16gtAgx+7Gt1PbSi/iXr+/RhN/uR7di 8VYeymXetZpSsm5EMydA/Tx/gE8t4l2HRVRLYanPWJP1z7zEAUnCRVWHpQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLEYUjrwU+dKRABoct/HhM7LDDIQMB8GA1UdIwQY MBaAFLX67EuNmS3Wuc2JqEidPDplKuzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdGZyc1M0MlpMZGE1elltb1NKMDhPbVVxN05JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82OGMyOTYtNjliMi00MDcwLTlmZjkt NDI0M2RlY2FkMzYwLzEvc1JoU092QlQ1MHBFQUdoeTM4ZUV6c3NNTWhBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS82OGMyOTYtNjliMi00MDcwLTlmZjktNDI0M2RlY2FkMzYw LzEvdGZyc1M0MlpMZGE1elltb1NKMDhPbVVxN05JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJTyxMA0G CSqGSIb3DQEBCwUAA4IBAQBJ3UjyW3Yhdffj69Lc4eD1r4kFa4khHOLZuEEv4+9l yN80u7sGhes5LScZgr4AQnfOaWYkVoGDuX5CY1mg5HSdON3Hax0J+Nlur8RB82z8 HPqw/vakN/PBEkfH56Ussxd0atDQXgVC6rxId80t68antrIBsyZ2SewBx1LfAcSv WHOVWlXXXGjIPEc1py3BnNhlqLCWtIQeFKObu0pA91HWLIGT5RxqBQXOyAOJCD2l 0BBkr2moS3U+5rg8IPeoI0M3CVqH550WieFsUvnsjUhqoB+77VDazWWdNUSX5SHL f1z2cxTmoNXi/qbIzhf+kFZpnTY8BgqjhqGEPsVMcrbr -----END CERTIFICATE-----Generated at Mon Jan 26 01:15:53 2026 by rpki-client