This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/exX8D204pUSMlQDRe6-0vKudRw8.roa File: exX8D204pUSMlQDRe6-0vKudRw8.roa (raw, json) Hash identifier: hw0brhXYOTSxVJVmx1MBXDRVxmLR1RsTQRFAr9ka18U= Subject key identifier: 7B:15:FC:0F:6D:38:A5:44:8C:95:00:D1:7B:AF:B4:BC:AB:9D:47:0F Certificate issuer: /CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f Certificate serial: 019B76EB2415CADF2C700574E22A454356EB Authority key identifier: AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/exX8D204pUSMlQDRe6-0vKudRw8.roa Signing time: Thu 01 Jan 2026 00:18:00 +0000 ROA not before: Thu 01 Jan 2026 00:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397065 IP address blocks: 78.143.240.0/24 maxlen: 24 78.143.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.mft rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:24:15:ca:df:2c:70:05:74:e2:2a:45:43:56:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aeb66ec5e8f2405f6f8d486e73fb82b8de0dee0f Validity Not Before: Jan 1 00:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7b15fc0f6d38a5448c9500d17bafb4bcab9d470f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c6:51:9c:76:75:87:15:e5:1c:c6:99:ea:ee: a9:b9:a2:d1:42:98:8d:1d:cb:ad:f3:71:1c:29:66: d5:41:7c:3b:ff:40:64:5b:f2:4c:59:a9:9b:5b:22: e9:50:6d:a0:f0:b4:0e:49:95:d8:d7:03:03:80:b8: ea:e3:75:90:0c:ec:e6:ea:11:16:65:af:13:ac:8d: c0:93:09:8e:f6:ed:73:78:cf:71:de:fb:6a:12:05: b1:3b:c6:fa:31:0e:04:b7:5d:80:07:d5:bb:93:51: 76:e6:fa:f6:8e:d5:a5:7c:5e:fb:4d:41:02:51:98: 2a:62:8e:3d:ca:5f:d5:fd:96:11:e4:7e:c9:62:d1: b5:4e:a9:a5:ca:f1:7a:04:b8:e2:d7:56:62:63:e7: 5a:6c:b5:8e:4d:38:ef:88:01:77:a3:b4:8a:59:88: aa:41:aa:3a:10:af:8c:2e:52:e8:5b:c6:c3:a7:52: 4f:a8:90:97:52:21:00:2b:c1:5c:04:01:02:2a:50: ee:c3:f4:b1:14:68:b1:92:0d:b2:76:3a:e3:74:75: 2c:0c:99:0d:82:ee:1a:16:93:6b:eb:1e:3b:01:9c: f1:3c:ff:b5:f3:90:d9:5f:f4:ed:cf:bd:7a:22:8d: 91:4f:e4:35:e8:5a:d4:e8:72:d8:46:63:a7:81:29: 14:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:15:FC:0F:6D:38:A5:44:8C:95:00:D1:7B:AF:B4:BC:AB:9D:47:0F X509v3 Authority Key Identifier: keyid:AE:B6:6E:C5:E8:F2:40:5F:6F:8D:48:6E:73:FB:82:B8:DE:0D:EE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrZuxejyQF9vjUhuc_uCuN4N7g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/exX8D204pUSMlQDRe6-0vKudRw8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/153788-14b7-4551-9ade-6aea9057c800/1/rrZuxejyQF9vjUhuc_uCuN4N7g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.143.240.0/24 78.143.243.0/24 Signature Algorithm: sha256WithRSAEncryption 02:c2:46:8d:38:ca:c8:a7:1d:73:b1:ea:b5:63:a6:4a:f8:df: 2c:41:da:7d:01:92:38:2a:4e:8e:a5:60:0e:56:07:aa:4d:54: 5a:7d:ac:3b:8c:08:e2:3d:a7:c3:5e:e6:59:85:f5:40:44:fb: 99:b4:91:d7:39:bc:ce:fa:1d:1e:10:c7:a5:2d:8c:97:01:5d: b4:78:4d:89:b1:bd:65:13:96:90:ab:7a:ed:00:9d:ee:64:19: 7c:4c:f2:70:00:21:35:1c:e6:9c:02:fe:60:17:82:cc:fd:12: 1c:a3:2d:7f:89:f1:81:e1:85:4a:45:31:67:71:08:5f:2b:2e: a4:48:56:db:6e:68:51:a0:aa:6b:11:b1:bd:9d:e7:34:a8:e0: e6:6c:62:2c:51:14:85:94:3f:eb:47:44:69:23:b6:d7:2f:d0: 72:24:2b:31:cf:0c:cc:e9:79:79:44:26:65:33:9d:9b:f6:7e: ae:c6:8b:3f:02:69:ca:32:98:18:33:b2:2a:0e:50:dc:01:c5: 17:77:59:7a:ce:54:38:df:4a:4b:14:4f:23:3d:be:ff:4b:db: 3c:0b:ba:72:18:7d:6d:61:5b:9f:cc:21:e3:75:de:c0:48:8a: 79:12:1b:20:e4:2a:b7:ad:04:71:74:77:a9:95:71:d9:9c:f8: df:ec:b9:28 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26yQVyt8scAV04ipFQ1brMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlYjY2ZWM1ZThmMjQwNWY2ZjhkNDg2ZTczZmI4MmI4ZGUw ZGVlMGYwHhcNMjYwMTAxMDAxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YjE1ZmMwZjZkMzhhNTQ0OGM5NTAwZDE3YmFmYjRiY2FiOWQ0NzBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MZRnHZ1hxXlHMaZ6u6puaLRQpiN Hcut83EcKWbVQXw7/0BkW/JMWambWyLpUG2g8LQOSZXY1wMDgLjq43WQDOzm6hEW Za8TrI3AkwmO9u1zeM9x3vtqEgWxO8b6MQ4Et12AB9W7k1F25vr2jtWlfF77TUEC UZgqYo49yl/V/ZYR5H7JYtG1TqmlyvF6BLji11ZiY+dabLWOTTjviAF3o7SKWYiq Qao6EK+MLlLoW8bDp1JPqJCXUiEAK8FcBAECKlDuw/SxFGixkg2ydjrjdHUsDJkN gu4aFpNr6x47AZzxPP+185DZX/Ttz716Io2RT+Q16FrU6HLYRmOngSkUAQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFHsV/A9tOKVEjJUA0XuvtLyrnUcPMB8GA1UdIwQY MBaAFK62bsXo8kBfb41IbnP7grjeDe4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnJadXhlanlRRjl2alVodWNfdUN1TjRON2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xNTM3ODgtMTRiNy00NTUxLTlhZGUt NmFlYTkwNTdjODAwLzEvZXhYOEQyMDRwVVNNbFFEUmU2LTB2S3VkUnc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi8xNTM3ODgtMTRiNy00NTUxLTlhZGUtNmFlYTkwNTdjODAw LzEvcnJadXhlanlRRjl2alVodWNfdUN1TjRON2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATo/wAwQA To/zMA0GCSqGSIb3DQEBCwUAA4IBAQACwkaNOMrIpx1zseq1Y6ZK+N8sQdp9AZI4 Kk6OpWAOVgeqTVRafaw7jAjiPafDXuZZhfVARPuZtJHXObzO+h0eEMelLYyXAV20 eE2Jsb1lE5aQq3rtAJ3uZBl8TPJwACE1HOacAv5gF4LM/RIcoy1/ifGB4YVKRTFn cQhfKy6kSFbbbmhRoKprEbG9nec0qODmbGIsURSFlD/rR0RpI7bXL9ByJCsxzwzM 6Xl5RCZlM52b9n6uxos/AmnKMpgYM7IqDlDcAcUXd1l6zlQ430pLFE8jPb7/S9s8 C7pyGH1tYVufzCHjdd7ASIp5Ehsg5Cq3rQRxdHeplXHZnPjf7Lko -----END CERTIFICATE-----Generated at Sun Jan 25 20:34:50 2026 by rpki-client