This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/kFv7q6Jp67fIIAQMeV7uZT4EmkQ.roa File: kFv7q6Jp67fIIAQMeV7uZT4EmkQ.roa (raw, json) Hash identifier: 0CpnGAo2LBBFh80C/UER9DcCFEeZWCCWbyEIqzLxoow= Subject key identifier: 90:5B:FB:AB:A2:69:EB:B7:C8:20:04:0C:79:5E:EE:65:3E:04:9A:44 Certificate issuer: /CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Certificate serial: 019B77C698379936E7793D2112C150ADED9F Authority key identifier: DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/kFv7q6Jp67fIIAQMeV7uZT4EmkQ.roa Signing time: Thu 01 Jan 2026 04:17:42 +0000 ROA not before: Thu 01 Jan 2026 04:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206757 IP address blocks: 5.154.37.0/24 maxlen: 24 78.136.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.mft rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:98:37:99:36:e7:79:3d:21:12:c1:50:ad:ed:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=daaf17b0015dbb7cd992f26cdff01c4e2620b73e Validity Not Before: Jan 1 04:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=905bfbaba269ebb7c820040c795eee653e049a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6d:ea:96:cb:63:8e:90:68:76:76:c1:2c:36: 9c:95:5c:a7:5f:2a:a9:96:29:43:e1:20:98:e4:7d: fd:1f:e6:a5:b6:e0:ae:33:68:1c:83:98:05:13:24: 75:b6:bf:91:5e:ea:f5:b6:5a:d4:a9:f5:80:91:6c: 80:6c:17:39:70:b6:e7:e2:89:2d:b2:0a:a5:06:9a: 2e:cc:70:49:7a:f9:60:fd:c4:a3:92:a8:b6:71:b4: 73:a5:a5:bb:68:d1:99:34:77:02:d7:bc:96:1f:e9: b1:89:e4:6f:a1:ab:d8:9e:e6:3e:39:a1:60:ff:e8: f1:74:48:d8:5d:41:da:6b:45:67:40:bc:ae:42:a7: 67:b9:e5:6a:8d:b1:18:e6:35:68:c7:51:92:da:d3: de:35:f0:00:39:c1:d1:43:6c:a2:ad:3a:1a:3b:65: 3c:0b:83:ba:9d:e7:31:ea:15:ff:47:e5:5a:85:c5: 73:fb:f1:29:37:88:6d:79:ec:52:81:77:45:8a:7c: 61:e7:6b:06:57:3f:d0:1f:4b:48:70:dd:78:72:50: 48:06:f7:23:ff:8f:c7:b7:bf:64:da:51:98:b5:fe: 4c:40:54:23:3d:d4:d7:be:43:7d:c1:d9:fc:1f:46: 44:e3:81:01:82:03:ca:0f:c3:6b:01:de:9a:1f:08: b8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:5B:FB:AB:A2:69:EB:B7:C8:20:04:0C:79:5E:EE:65:3E:04:9A:44 X509v3 Authority Key Identifier: keyid:DA:AF:17:B0:01:5D:BB:7C:D9:92:F2:6C:DF:F0:1C:4E:26:20:B7:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2q8XsAFdu3zZkvJs3_AcTiYgtz4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/kFv7q6Jp67fIIAQMeV7uZT4EmkQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/45/c8973c-3cfa-4604-8110-cf06d1983ba1/1/2q8XsAFdu3zZkvJs3_AcTiYgtz4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.154.37.0/24 78.136.68.0/24 Signature Algorithm: sha256WithRSAEncryption 12:bf:3d:bb:b3:1b:95:18:13:ae:cf:af:1c:7a:43:bb:ed:ba: 0f:9b:1f:15:84:62:11:0c:bf:84:2b:30:58:42:f0:c0:67:d8: d8:2a:b1:ad:d8:a8:d5:21:d3:4c:ae:c5:f1:e1:ed:9f:f4:18: 75:96:f9:7d:40:55:b6:61:b0:0a:13:cc:22:4b:7b:1d:3c:fa: c1:17:28:e8:6d:38:b0:4a:25:32:48:b8:38:18:46:b3:cf:56: 67:db:8e:87:3b:fc:b1:81:34:93:f2:6c:c3:0c:cb:1e:15:43: 28:01:f7:28:fe:b7:f4:59:57:28:63:ff:1d:4c:0e:99:9e:23: 31:58:52:b3:04:be:36:24:38:1a:60:47:7e:01:20:3c:dc:57: bc:d5:28:64:56:4e:14:77:2a:1b:cb:9f:23:36:de:ca:af:95: 06:55:f0:e1:37:a7:da:ad:f4:d6:e7:2c:07:80:7c:23:ea:11: ad:7c:4a:f7:cd:9c:d1:b4:54:9a:92:7e:be:21:01:05:48:b1: 7e:61:0d:e9:f9:36:e5:9b:26:e4:aa:03:a2:d9:2a:70:1e:04: 5a:3d:e8:a2:5a:ca:25:f1:55:c6:3a:9c:68:87:db:3d:be:f3: e4:35:31:81:25:40:49:db:93:1c:4c:64:ee:00:0a:dc:b5:37: 25:fa:f0:5b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xpg3mTbneT0hEsFQre2fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhYWYxN2IwMDE1ZGJiN2NkOTkyZjI2Y2RmZjAxYzRlMjYy MGI3M2UwHhcNMjYwMTAxMDQxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MDViZmJhYmEyNjllYmI3YzgyMDA0MGM3OTVlZWU2NTNlMDQ5YTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0G3qlstjjpBodnbBLDaclVynXyqp lilD4SCY5H39H+altuCuM2gcg5gFEyR1tr+RXur1tlrUqfWAkWyAbBc5cLbn4okt sgqlBpouzHBJevlg/cSjkqi2cbRzpaW7aNGZNHcC17yWH+mxieRvoavYnuY+OaFg /+jxdEjYXUHaa0VnQLyuQqdnueVqjbEY5jVox1GS2tPeNfAAOcHRQ2yirToaO2U8 C4O6necx6hX/R+VahcVz+/EpN4hteexSgXdFinxh52sGVz/QH0tIcN14clBIBvcj /4/Ht79k2lGYtf5MQFQjPdTXvkN9wdn8H0ZE44EBggPKD8NrAd6aHwi4pQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJBb+6uiaeu3yCAEDHle7mU+BJpEMB8GA1UdIwQY MBaAFNqvF7ABXbt82ZLybN/wHE4mILc+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAt Y2YwNmQxOTgzYmExLzEva0Z2N3E2SnA2N2ZJSUFRTWVWN3VaVDRFbWtRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NS9jODk3M2MtM2NmYS00NjA0LTgxMTAtY2YwNmQxOTgzYmEx LzEvMnE4WHNBRmR1M3paa3ZKczNfQWNUaVlndHo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABZolAwQA TohEMA0GCSqGSIb3DQEBCwUAA4IBAQASvz27sxuVGBOuz68cekO77boPmx8VhGIR DL+EKzBYQvDAZ9jYKrGt2KjVIdNMrsXx4e2f9Bh1lvl9QFW2YbAKE8wiS3sdPPrB FyjobTiwSiUySLg4GEazz1Zn246HO/yxgTST8mzDDMseFUMoAfco/rf0WVcoY/8d TA6ZniMxWFKzBL42JDgaYEd+ASA83Fe81ShkVk4Udyoby58jNt7Kr5UGVfDhN6fa rfTW5ywHgHwj6hGtfEr3zZzRtFSakn6+IQEFSLF+YQ3p+TblmybkqgOi2SpwHgRa PeiiWsol8VXGOpxoh9s9vvPkNTGBJUBJ25McTGTuAArctTcl+vBb -----END CERTIFICATE-----Generated at Sun Jan 25 10:14:49 2026 by rpki-client