This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d9d80-b8bf-465a-a291-9f74facae8f1/1/rHQdQwrAVRUi1O-wNwGNXoOAwg0.roa File: rHQdQwrAVRUi1O-wNwGNXoOAwg0.roa (raw, json) Hash identifier: 99E6Pbyu+albbhKOZ1Sk3PoNSHlEGTIbABGjf0VzSBw= Subject key identifier: AC:74:1D:43:0A:C0:55:15:22:D4:EF:B0:37:01:8D:5E:83:80:C2:0D Certificate issuer: /CN=f709528b8828b4d826355e2c52237d642071cd54 Certificate serial: 019B791063B8F9937FD38B70BE7C6D480954 Authority key identifier: F7:09:52:8B:88:28:B4:D8:26:35:5E:2C:52:23:7D:64:20:71:CD:54 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9wlSi4gotNgmNV4sUiN9ZCBxzVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d9d80-b8bf-465a-a291-9f74facae8f1/1/rHQdQwrAVRUi1O-wNwGNXoOAwg0.roa Signing time: Thu 01 Jan 2026 10:17:55 +0000 ROA not before: Thu 01 Jan 2026 10:17:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215759 IP address blocks: 185.79.18.0/24 maxlen: 24 2a14:6680::/48 maxlen: 48 2a14:6680:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d9d80-b8bf-465a-a291-9f74facae8f1/1/9wlSi4gotNgmNV4sUiN9ZCBxzVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/31/2d9d80-b8bf-465a-a291-9f74facae8f1/1/9wlSi4gotNgmNV4sUiN9ZCBxzVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/9wlSi4gotNgmNV4sUiN9ZCBxzVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:63:b8:f9:93:7f:d3:8b:70:be:7c:6d:48:09:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f709528b8828b4d826355e2c52237d642071cd54 Validity Not Before: Jan 1 10:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ac741d430ac0551522d4efb037018d5e8380c20d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:83:09:91:d3:97:9f:7b:09:c9:cb:ad:4d:65: 32:f8:62:a0:7c:f8:cd:31:6d:01:c8:b7:d9:ee:21: f4:7f:5b:07:8f:18:35:47:da:07:55:be:38:7a:cd: c4:2b:5a:b9:f7:d2:0d:e9:ca:61:58:0b:30:e0:3e: ec:14:dd:a2:dc:68:9b:07:38:c0:2d:21:6f:72:16: 5e:7c:4f:97:e7:ab:76:57:a9:a2:65:e8:2f:0c:50: dd:98:a5:dd:39:07:5f:c8:2a:e0:93:2e:27:96:23: fe:ba:47:51:5a:ee:b6:1d:ae:4a:4c:4a:27:6c:8f: 32:1d:43:ab:4a:52:f3:a6:ad:d3:ff:a2:6d:30:89: ec:dc:c2:43:44:bc:75:59:8d:27:f5:cc:5f:f1:22: b8:ad:e1:ba:a4:e2:cb:83:56:12:fc:2c:c0:df:83: f4:b3:b9:72:28:7c:0a:3f:27:13:06:0b:75:89:b2: 3a:6a:39:e3:e7:16:ff:5b:27:2b:0b:dc:df:90:f7: 26:e5:4a:25:cc:7c:2c:84:fa:9e:a9:fd:72:16:e4: 25:70:89:49:6b:a0:9e:fa:ad:c8:ca:ce:bb:b7:fd: c8:17:07:95:24:c5:89:46:bb:3b:b4:fe:53:ed:77: cd:16:63:c1:f9:2c:68:2c:27:3b:67:47:23:71:a3: bb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:74:1D:43:0A:C0:55:15:22:D4:EF:B0:37:01:8D:5E:83:80:C2:0D X509v3 Authority Key Identifier: keyid:F7:09:52:8B:88:28:B4:D8:26:35:5E:2C:52:23:7D:64:20:71:CD:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9wlSi4gotNgmNV4sUiN9ZCBxzVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d9d80-b8bf-465a-a291-9f74facae8f1/1/rHQdQwrAVRUi1O-wNwGNXoOAwg0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d9d80-b8bf-465a-a291-9f74facae8f1/1/9wlSi4gotNgmNV4sUiN9ZCBxzVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.79.18.0/24 IPv6: 2a14:6680::/48 2a14:6680:12::/48 Signature Algorithm: sha256WithRSAEncryption 67:44:75:4d:d6:05:c0:72:df:96:7f:01:ff:06:d4:a9:42:48: cc:f2:c8:35:e6:42:76:52:b3:5b:46:c4:48:60:1b:db:3a:e6: 9d:4b:83:45:b3:12:bc:f7:cf:42:21:f4:17:82:e6:eb:8f:53: 55:13:11:08:76:01:9f:cf:8e:c2:70:f5:05:a5:dd:27:83:70: 42:a8:8e:f6:e0:c3:b9:67:fd:07:ee:a8:5c:4f:11:80:33:e4: cd:9a:4b:65:54:ed:84:91:34:e1:02:07:ec:07:6d:e7:4e:8d: 02:8c:c4:50:1b:7b:61:30:43:e9:a8:55:49:10:dd:f2:4b:60: 9b:47:ae:81:e6:fb:be:b7:8d:e7:53:f1:95:f6:c7:e8:b8:0b: 3b:40:2a:66:52:cc:fa:dd:04:72:3a:4f:c1:fb:84:b7:0f:15: ff:5d:10:9f:e6:33:7c:12:d8:a2:21:3f:e1:0d:09:f6:85:65: ef:30:f6:cc:5d:1f:ff:82:dc:cc:80:7c:ed:09:e5:e2:6c:e7: 88:a3:f3:20:b4:9f:73:52:2b:7f:fb:99:6d:c4:d0:54:06:65: 15:ce:29:a0:8f:8b:5f:51:d7:cd:10:e6:0c:58:f6:63:42:61: 61:9b:e4:08:73:c7:f1:95:aa:12:7e:8f:ad:f1:18:00:a0:b3: e8:95:e2:c8 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt5EGO4+ZN/04twvnxtSAlUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY3MDk1MjhiODgyOGI0ZDgyNjM1NWUyYzUyMjM3ZDY0MjA3 MWNkNTQwHhcNMjYwMTAxMTAxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzc0MWQ0MzBhYzA1NTE1MjJkNGVmYjAzNzAxOGQ1ZTgzODBjMjBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIMJkdOXn3sJycutTWUy+GKgfPjN MW0ByLfZ7iH0f1sHjxg1R9oHVb44es3EK1q599IN6cphWAsw4D7sFN2i3GibBzjA LSFvchZefE+X56t2V6miZegvDFDdmKXdOQdfyCrgky4nliP+ukdRWu62Ha5KTEon bI8yHUOrSlLzpq3T/6JtMIns3MJDRLx1WY0n9cxf8SK4reG6pOLLg1YS/CzA34P0 s7lyKHwKPycTBgt1ibI6ajnj5xb/WycrC9zfkPcm5UolzHwshPqeqf1yFuQlcIlJ a6Ce+q3Iys67t/3IFweVJMWJRrs7tP5T7XfNFmPB+SxoLCc7Z0cjcaO76QIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFKx0HUMKwFUVItTvsDcBjV6DgMINMB8GA1UdIwQY MBaAFPcJUouIKLTYJjVeLFIjfWQgcc1UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOXdsU2k0Z290TmdtTlY0c1VpTjlaQ0J4elZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8yZDlkODAtYjhiZi00NjVhLWEyOTEt OWY3NGZhY2FlOGYxLzEvckhRZFF3ckFWUlVpMU8td053R05Yb09Bd2cwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS8yZDlkODAtYjhiZi00NjVhLWEyOTEtOWY3NGZhY2FlOGYx LzEvOXdsU2k0Z290TmdtTlY0c1VpTjlaQ0J4elZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAuU8SMBgE AgACMBIDBwAqFGaAAAADBwAqFGaAABIwDQYJKoZIhvcNAQELBQADggEBAGdEdU3W BcBy35Z/Af8G1KlCSMzyyDXmQnZSs1tGxEhgG9s65p1Lg0WzErz3z0Ih9BeC5uuP U1UTEQh2AZ/PjsJw9QWl3SeDcEKojvbgw7ln/QfuqFxPEYAz5M2aS2VU7YSRNOEC B+wHbedOjQKMxFAbe2EwQ+moVUkQ3fJLYJtHroHm+763jedT8ZX2x+i4CztAKmZS zPrdBHI6T8H7hLcPFf9dEJ/mM3wS2KIhP+ENCfaFZe8w9sxdH/+C3MyAfO0J5eJs 54ij8yC0n3NSK3/7mW3E0FQGZRXOKaCPi19R180Q5gxY9mNCYWGb5Ahzx/GVqhJ+ j63xGACgs+iV4sg= -----END CERTIFICATE-----Generated at Mon Jan 26 02:07:46 2026 by rpki-client