This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Q6tmJsk2LzP8aKKZOFRvTtKlV7Y.roa File: Q6tmJsk2LzP8aKKZOFRvTtKlV7Y.roa (raw, json) Hash identifier: 6O+cQ6PMg//nmlkDWEnYP8/rkGuPnhqX1I2FvbDOgXw= Subject key identifier: 43:AB:66:26:C9:36:2F:33:FC:68:A2:99:38:54:6F:4E:D2:A5:57:B6 Certificate issuer: /CN=458d12f095053c35876b88b47685d6435421fcf2 Certificate serial: 019B7DCB20676B4D6687CF9C8AC67CC0B3D7 Authority key identifier: 45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Q6tmJsk2LzP8aKKZOFRvTtKlV7Y.roa Signing time: Fri 02 Jan 2026 08:20:22 +0000 ROA not before: Fri 02 Jan 2026 08:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39378 IP address blocks: 79.132.130.0/24 maxlen: 24 79.132.131.0/24 maxlen: 24 79.132.134.0/24 maxlen: 24 91.241.93.0/24 maxlen: 24 185.90.162.0/24 maxlen: 24 185.158.251.0/24 maxlen: 24 185.212.44.0/24 maxlen: 24 185.212.45.0/24 maxlen: 24 185.212.46.0/24 maxlen: 24 185.212.47.0/24 maxlen: 24 185.219.220.0/23 maxlen: 23 185.219.222.0/24 maxlen: 24 185.219.223.0/24 maxlen: 24 194.76.226.0/24 maxlen: 24 2a07:fc00::/48 maxlen: 48 2a0b:7140::/48 maxlen: 48 2a0b:7140:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.mft rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:20:67:6b:4d:66:87:cf:9c:8a:c6:7c:c0:b3:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=458d12f095053c35876b88b47685d6435421fcf2 Validity Not Before: Jan 2 08:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=43ab6626c9362f33fc68a29938546f4ed2a557b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:10:ca:08:82:07:07:40:42:c8:d2:e9:33:36: 5b:7a:a4:61:f8:3b:8a:47:e8:15:cf:8b:14:c9:56: 7a:2a:e0:cd:ac:e1:f7:66:d2:ee:e5:ed:01:47:fd: df:9b:fb:94:0b:45:c6:86:52:30:27:46:c5:f6:c4: 1e:d1:11:89:51:31:a5:49:5f:02:0f:74:6b:82:5e: 6f:59:08:ee:f8:5e:d2:db:0b:15:49:87:86:d4:72: b5:b3:52:b5:e1:27:9b:42:f5:74:e3:3e:60:0e:c9: 61:82:80:56:3d:b4:7d:81:bd:95:65:d6:b0:90:62: 9d:57:54:78:92:40:9e:b1:bf:73:ef:19:53:77:91: 85:71:6f:18:d8:f4:b5:ff:13:8a:1b:e1:df:4a:38: 34:02:4d:97:34:ac:da:78:62:19:f5:87:e0:58:3c: d4:1e:94:a9:c2:30:4e:ce:0d:63:30:8c:e1:f2:26: 90:52:29:e5:54:3e:e1:bd:3c:06:84:02:83:0b:0c: 94:2e:33:d9:33:2b:c3:7c:e9:74:5d:c1:ed:b0:8e: bc:ec:d0:72:20:85:ce:85:25:5f:41:c4:17:a1:00: a2:f1:b7:32:41:ed:4f:06:f5:04:e7:b2:0e:37:37: 3b:eb:e5:be:bf:ae:b4:4b:d8:f2:8e:d7:59:b5:7f: b8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AB:66:26:C9:36:2F:33:FC:68:A2:99:38:54:6F:4E:D2:A5:57:B6 X509v3 Authority Key Identifier: keyid:45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/Q6tmJsk2LzP8aKKZOFRvTtKlV7Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.132.130.0/23 79.132.134.0/24 91.241.93.0/24 185.90.162.0/24 185.158.251.0/24 185.212.44.0/22 185.219.220.0/22 194.76.226.0/24 IPv6: 2a07:fc00::/48 2a0b:7140::/48 2a0b:7140:5::/48 Signature Algorithm: sha256WithRSAEncryption 97:ac:c5:e0:c7:a3:5f:f7:22:03:9f:db:06:86:9b:61:15:77: a5:80:c9:08:bb:6e:02:4f:99:0a:66:61:05:12:30:56:be:67: 25:cf:ed:80:d1:33:8d:50:7f:b0:2a:1f:a0:1d:3d:d8:3e:02: 41:10:71:1c:99:51:c5:d6:4d:74:e9:32:2a:50:4b:2b:3f:f4: fc:e4:02:7e:a0:22:7b:aa:93:ec:63:cb:b1:c9:8c:5f:c6:d4: 9c:c6:47:10:bd:77:2a:51:71:ad:a8:2b:9c:ce:bd:89:07:d1: 5c:2d:51:5d:8a:1e:99:50:f3:ea:dd:64:8b:78:79:cf:a4:ef: d3:4e:24:87:50:d0:16:80:0f:ad:b6:88:61:9f:29:d3:ea:ff: 77:e9:68:78:e6:dc:89:58:14:91:a9:45:68:29:56:e6:bc:85: b6:2e:66:6d:b6:40:de:c5:14:3e:bf:9a:1c:8a:db:62:7b:34: 7e:93:47:47:9c:ec:d0:6a:f0:a5:ac:0b:48:74:48:d9:ad:5b: 09:87:57:dd:e2:03:95:bd:a9:09:ce:70:00:58:e3:b7:11:8b: 06:86:ba:ac:ca:42:b9:50:c8:97:a5:c9:55:b8:62:34:e7:2f: b0:43:db:1b:39:f1:c1:76:7a:48:d2:cc:34:95:51:f2:5e:3a: 58:3b:72:49 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgISAZt9yyBna01mh8+cisZ8wLPXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ1OGQxMmYwOTUwNTNjMzU4NzZiODhiNDc2ODVkNjQzNTQy MWZjZjIwHhcNMjYwMTAyMDgyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0M2FiNjYyNmM5MzYyZjMzZmM2OGEyOTkzODU0NmY0ZWQyYTU1N2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBDKCIIHB0BCyNLpMzZbeqRh+DuK R+gVz4sUyVZ6KuDNrOH3ZtLu5e0BR/3fm/uUC0XGhlIwJ0bF9sQe0RGJUTGlSV8C D3Rrgl5vWQju+F7S2wsVSYeG1HK1s1K14SebQvV04z5gDslhgoBWPbR9gb2VZdaw kGKdV1R4kkCesb9z7xlTd5GFcW8Y2PS1/xOKG+HfSjg0Ak2XNKzaeGIZ9YfgWDzU HpSpwjBOzg1jMIzh8iaQUinlVD7hvTwGhAKDCwyULjPZMyvDfOl0XcHtsI687NBy IIXOhSVfQcQXoQCi8bcyQe1PBvUE57IONzc76+W+v660S9jyjtdZtX+4uwIDAQAB o4ICVjCCAlIwHQYDVR0OBBYEFEOrZibJNi8z/GiimThUb07SpVe2MB8GA1UdIwQY MBaAFEWNEvCVBTw1h2uItHaF1kNUIfzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUlkwUzhKVUZQRFdIYTRpMGRvWFdRMVFoX1BJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83Y2VjYzctZjYzZC00M2ZjLWIyMTkt Mzk1NTk1OWVhZjgxLzEvUTZ0bUpzazJMelA4YUtLWk9GUnZUdEtsVjdZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS83Y2VjYzctZjYzZC00M2ZjLWIyMTktMzk1NTk1OWVhZjgx LzEvUlkwUzhKVUZQRFdIYTRpMGRvWFdRMVFoX1BJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGwGCCsGAQUFBwEHAQH/BF0wWzA2BAIAATAwAwQBT4SCAwQA T4SGAwQAW/FdAwQAuVqiAwQAuZ77AwQCudQsAwQCudvcAwQAwkziMCEEAgACMBsD BwAqB/wAAAADBwAqC3FAAAADBwAqC3FAAAUwDQYJKoZIhvcNAQELBQADggEBAJes xeDHo1/3IgOf2waGm2EVd6WAyQi7bgJPmQpmYQUSMFa+ZyXP7YDRM41Qf7AqH6Ad Pdg+AkEQcRyZUcXWTXTpMipQSys/9PzkAn6gInuqk+xjy7HJjF/G1JzGRxC9dypR ca2oK5zOvYkH0VwtUV2KHplQ8+rdZIt4ec+k79NOJIdQ0BaAD622iGGfKdPq/3fp aHjm3IlYFJGpRWgpVua8hbYuZm22QN7FFD6/mhyK22J7NH6TR0ec7NBq8KWsC0h0 SNmtWwmHV93iA5W9qQnOcABY47cRiwaGuqzKQrlQyJelyVW4YjTnL7BD2xs58cF2 ekjSzDSVUfJeOlg7ckk= -----END CERTIFICATE-----Generated at Sun Jan 25 20:58:55 2026 by rpki-client