This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/aTXtQ3Z2K6TSE6KNWgBdEr8tXhg.roa File: aTXtQ3Z2K6TSE6KNWgBdEr8tXhg.roa (raw, json) Hash identifier: ayQ15/oxxjtoAl0GHDbaT1Ld3ENYq1g1s6ZPtUrE0LE= Subject key identifier: 69:35:ED:43:76:76:2B:A4:D2:13:A2:8D:5A:00:5D:12:BF:2D:5E:18 Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8 Certificate serial: 019B7E3904C08A2CF2C6719BFC8791E7DD03 Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/aTXtQ3Z2K6TSE6KNWgBdEr8tXhg.roa Signing time: Fri 02 Jan 2026 10:20:24 +0000 ROA not before: Fri 02 Jan 2026 10:20:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29321 IP address blocks: 80.243.96.0/20 maxlen: 20 94.143.168.0/21 maxlen: 21 109.239.64.0/20 maxlen: 20 194.59.240.0/22 maxlen: 22 217.195.160.0/20 maxlen: 20 2a02:b20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:04:c0:8a:2c:f2:c6:71:9b:fc:87:91:e7:dd:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8 Validity Not Before: Jan 2 10:20:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6935ed4376762ba4d213a28d5a005d12bf2d5e18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:dc:1c:b6:48:06:5a:36:61:3a:4a:e1:d5:16: b6:f3:16:0f:83:38:8b:5d:72:cf:89:af:fc:c2:fe: d0:1a:17:fc:3f:be:7b:52:77:f4:90:d7:23:8f:05: ab:65:ea:1a:c0:c6:6b:0c:d8:a1:50:03:53:12:c7: d8:fc:29:14:53:0c:43:47:a5:aa:9e:6b:0c:48:28: e8:ea:c7:b4:7c:d2:e0:d9:3b:d9:12:a1:37:14:f0: 80:14:fe:c4:00:71:0b:25:88:77:3c:6f:2f:23:a7: 85:13:84:9d:f7:f2:27:c7:bb:4f:7b:1d:4b:73:e3: 61:c1:f5:84:03:f7:3f:30:eb:14:bf:be:7b:e3:d5: 2b:dc:16:0e:34:26:97:4c:38:0d:b2:80:a9:19:a1: aa:e2:a5:eb:89:5c:0c:1d:98:08:5d:cb:ed:ca:59: de:52:9c:fc:e2:8f:1e:61:d4:a7:cc:75:87:54:a0: ee:65:10:bf:38:e6:93:27:e2:63:0a:7a:f0:de:80: 28:1d:69:56:6f:cc:dc:c2:0d:d7:e3:30:74:ce:13: d8:2a:a6:55:a1:56:0c:44:cd:da:cb:6f:6e:9b:e1: 92:ea:b8:16:34:93:64:df:ce:3f:eb:0f:63:4d:fb: a5:3d:46:d3:9f:c1:51:fb:08:1f:ce:18:02:0f:55: e8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:35:ED:43:76:76:2B:A4:D2:13:A2:8D:5A:00:5D:12:BF:2D:5E:18 X509v3 Authority Key Identifier: keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/aTXtQ3Z2K6TSE6KNWgBdEr8tXhg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.243.96.0/20 94.143.168.0/21 109.239.64.0/20 194.59.240.0/22 217.195.160.0/20 IPv6: 2a02:b20::/32 Signature Algorithm: sha256WithRSAEncryption 71:86:2c:bc:8b:fe:09:c1:c5:5f:28:f2:4a:a9:71:6c:c3:b9: fc:cb:eb:98:44:97:44:8c:84:5d:c7:b5:37:28:e4:22:38:4d: 4c:92:e9:07:78:c0:d9:05:10:3a:cf:24:2a:41:9e:54:b5:89: 28:16:e6:96:6e:1a:0e:f8:ea:82:73:70:af:2b:2a:9a:5e:b9: b6:9b:dd:0e:77:3e:3c:b4:42:ff:73:ab:8e:24:17:a6:a4:27: db:be:a1:86:a0:e0:df:f1:a1:bc:1b:1a:de:d3:6f:59:dd:54: 6c:c7:07:50:9a:9b:7c:4f:2c:9b:18:de:43:a5:6c:0d:02:01: 81:95:f8:0a:97:f4:c7:01:fd:81:49:f5:f6:56:9b:fb:f3:a7: 65:ed:67:7e:e5:92:18:b7:a5:c7:2c:75:b2:02:5b:25:63:86: b5:8d:b8:40:5f:ea:71:79:d2:b4:ef:e6:f1:a5:61:e1:1c:eb: 35:68:af:fd:62:4f:bc:60:c9:09:e9:e1:44:1e:e4:6f:75:99: 42:b8:62:e4:13:d4:de:e9:fe:45:d5:af:a2:73:05:d2:c4:4a: 6a:cc:b9:8e:ba:a8:f6:8d:d0:34:66:b0:6d:7d:33:c7:e4:27: 83:24:ab:23:f0:30:55:97:23:13:ca:6f:6d:5e:fd:51:34:9d: db:4d:ff:8d -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgISAZt+OQTAiizyxnGb/IeR590DMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZDZjNmU4YmNlZDQwYmQwMzJkMTc3MThjMWIxZTM5YWU4 NDFhZTgwHhcNMjYwMTAyMTAyMDI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTM1ZWQ0Mzc2NzYyYmE0ZDIxM2EyOGQ1YTAwNWQxMmJmMmQ1ZTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxtwctkgGWjZhOkrh1Ra28xYPgziL XXLPia/8wv7QGhf8P757Unf0kNcjjwWrZeoawMZrDNihUANTEsfY/CkUUwxDR6Wq nmsMSCjo6se0fNLg2TvZEqE3FPCAFP7EAHELJYh3PG8vI6eFE4Sd9/Inx7tPex1L c+NhwfWEA/c/MOsUv75749Ur3BYONCaXTDgNsoCpGaGq4qXriVwMHZgIXcvtylne Upz84o8eYdSnzHWHVKDuZRC/OOaTJ+JjCnrw3oAoHWlWb8zcwg3X4zB0zhPYKqZV oVYMRM3ay29um+GS6rgWNJNk384/6w9jTfulPUbTn8FR+wgfzhgCD1XoSQIDAQAB o4ICMDCCAiwwHQYDVR0OBBYEFGk17UN2diuk0hOijVoAXRK/LV4YMB8GA1UdIwQY MBaAFOXWxui87UC9Ay0XcYwbHjmuhBroMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wODk0ZjctZTI0ZC00NzI4LThjYWQt YmQyNDliNjI1Nzk3LzEvYVRYdFEzWjJLNlRTRTZLTldnQmRFcjh0WGhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8wODk0ZjctZTI0ZC00NzI4LThjYWQtYmQyNDliNjI1Nzk3 LzEvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQEUPNgAwQD Xo+oAwQEbe9AAwQCwjvwAwQE2cOgMA0EAgACMAcDBQAqAgsgMA0GCSqGSIb3DQEB CwUAA4IBAQBxhiy8i/4JwcVfKPJKqXFsw7n8y+uYRJdEjIRdx7U3KOQiOE1MkukH eMDZBRA6zyQqQZ5UtYkoFuaWbhoO+OqCc3CvKyqaXrm2m90Odz48tEL/c6uOJBem pCfbvqGGoODf8aG8Gxre029Z3VRsxwdQmpt8TyybGN5DpWwNAgGBlfgKl/THAf2B SfX2Vpv786dl7Wd+5ZIYt6XHLHWyAlslY4a1jbhAX+pxedK07+bxpWHhHOs1aK/9 Yk+8YMkJ6eFEHuRvdZlCuGLkE9Te6f5F1a+icwXSxEpqzLmOuqj2jdA0ZrBtfTPH 5CeDJKsj8DBVlyMTym9tXv1RNJ3bTf+N -----END CERTIFICATE-----Generated at Sun Jan 25 17:47:21 2026 by rpki-client