This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/R3e8EP6U572NIEwLXcwI5IO-_Gc.roa File: R3e8EP6U572NIEwLXcwI5IO-_Gc.roa (raw, json) Hash identifier: IMUABkpJVknPlYeXsWWkw4ZBUgDiuzIM8ni8AxR0Udc= Subject key identifier: 47:77:BC:10:FE:94:E7:BD:8D:20:4C:0B:5D:CC:08:E4:83:BE:FC:67 Certificate issuer: /CN=0a7327805df20fb5c1d6f4e89074743caeb24af7 Certificate serial: 019B7E388A0EBA75100CE845F838C0579ADA Authority key identifier: 0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/R3e8EP6U572NIEwLXcwI5IO-_Gc.roa Signing time: Fri 02 Jan 2026 10:19:52 +0000 ROA not before: Fri 02 Jan 2026 10:19:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58289 IP address blocks: 78.109.19.0/24 maxlen: 24 85.159.94.0/24 maxlen: 24 86.54.184.0/24 maxlen: 24 91.147.111.0/24 maxlen: 24 92.240.243.0/24 maxlen: 24 109.175.215.0/24 maxlen: 24 185.162.234.0/24 maxlen: 24 193.43.251.0/24 maxlen: 24 194.31.133.0/24 maxlen: 24 194.31.135.0/24 maxlen: 24 212.108.87.0/24 maxlen: 24 2a0e:6600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.mft rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:8a:0e:ba:75:10:0c:e8:45:f8:38:c0:57:9a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0a7327805df20fb5c1d6f4e89074743caeb24af7 Validity Not Before: Jan 2 10:19:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4777bc10fe94e7bd8d204c0b5dcc08e483befc67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:80:d6:d1:8a:38:d1:b9:2d:3d:b6:04:08:1f: 5f:7c:3c:d9:d5:a5:fd:a1:8b:d8:bf:bf:6f:6a:20: e2:0b:f1:f7:d1:f7:8c:72:e6:f4:f7:04:e7:cc:5d: 8a:9a:b2:d3:3a:2b:bc:97:0e:9d:47:af:2e:e7:33: 46:db:5a:05:b1:c9:32:c7:2b:7e:38:b2:f4:9e:cf: 3b:81:e8:d2:5f:5e:c1:69:70:e9:56:20:af:66:54: 1a:b2:43:bc:4d:35:9b:d5:d9:d5:00:66:3e:ba:a0: c9:b0:ab:4f:30:f8:de:fd:58:48:a2:28:3f:3c:79: 06:62:94:a6:74:01:21:c1:3d:af:17:79:5a:d2:f6: 0e:ea:ac:1d:e0:9e:51:e9:b2:b4:9f:70:d0:e7:54: fe:39:47:5f:2e:68:7c:0c:91:91:f7:69:31:39:ba: 48:bb:97:7c:70:de:20:78:7a:95:8c:17:17:a6:28: b7:a9:eb:d9:a2:fb:f3:47:08:35:e9:7d:8f:80:2f: e2:8b:f5:0b:59:fe:b9:df:8a:b5:57:b0:be:c5:80: dd:fe:f0:91:7a:90:f3:94:a4:77:a7:c9:a0:da:f8: 4e:bb:90:ce:0f:bf:b6:06:cb:5a:72:a6:28:7b:e0: 33:0a:40:f6:e2:e6:13:7d:6a:a7:a9:72:2e:92:34: 4e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:77:BC:10:FE:94:E7:BD:8D:20:4C:0B:5D:CC:08:E4:83:BE:FC:67 X509v3 Authority Key Identifier: keyid:0A:73:27:80:5D:F2:0F:B5:C1:D6:F4:E8:90:74:74:3C:AE:B2:4A:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnMngF3yD7XB1vTokHR0PK6ySvc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/R3e8EP6U572NIEwLXcwI5IO-_Gc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/8b1fac-5a21-4848-a66a-10bb4579d528/1/CnMngF3yD7XB1vTokHR0PK6ySvc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.109.19.0/24 85.159.94.0/24 86.54.184.0/24 91.147.111.0/24 92.240.243.0/24 109.175.215.0/24 185.162.234.0/24 193.43.251.0/24 194.31.133.0/24 194.31.135.0/24 212.108.87.0/24 IPv6: 2a0e:6600::/48 Signature Algorithm: sha256WithRSAEncryption b4:a1:da:0d:69:ce:aa:e4:ea:c6:1c:d0:32:5a:73:ce:21:68: 97:9f:da:1c:e7:eb:5b:fc:82:8d:c8:69:5c:de:3e:2b:17:49: 84:a6:5b:a0:ea:56:aa:b8:9b:eb:b7:e6:21:e9:0b:a2:1f:71: e9:cd:2a:c6:5c:22:b6:b6:28:ab:63:1b:e5:b0:bc:be:d2:85: 55:50:a9:79:0a:22:dc:5e:ec:c3:8a:80:20:be:ad:2a:a0:36: 4c:ae:06:b0:5f:e2:4a:20:49:eb:60:27:ad:e1:1f:db:a9:4b: 45:74:3d:14:26:2f:4e:5d:f4:17:86:88:0d:a2:7e:03:eb:b2: a4:b7:0c:52:e0:6f:4b:2b:9c:28:28:cc:aa:51:a7:df:07:f1: 02:7f:b9:28:34:9b:1e:53:2e:4d:e0:c6:bc:76:cb:4b:8c:9b: 24:e4:29:25:96:55:fd:ff:3a:dd:8f:42:34:e5:06:7c:55:d2: 88:8f:44:47:24:7c:2d:7d:2b:a3:97:24:63:5e:f2:29:58:1f: cd:70:06:ab:da:dd:30:0f:88:b6:03:11:79:ab:80:62:05:86: df:c8:8b:a0:d6:c9:ae:6c:e0:15:88:10:93:b0:88:aa:60:89: 7d:9d:1f:11:42:85:17:6a:3d:ec:42:19:d0:3c:41:d2:9b:8b: ba:fa:d3:ea -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgISAZt+OIoOunUQDOhF+DjAV5raMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBhNzMyNzgwNWRmMjBmYjVjMWQ2ZjRlODkwNzQ3NDNjYWVi MjRhZjcwHhcNMjYwMTAyMTAxOTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0Nzc3YmMxMGZlOTRlN2JkOGQyMDRjMGI1ZGNjMDhlNDgzYmVmYzY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz4DW0Yo40bktPbYECB9ffDzZ1aX9 oYvYv79vaiDiC/H30feMcub09wTnzF2KmrLTOiu8lw6dR68u5zNG21oFsckyxyt+ OLL0ns87gejSX17BaXDpViCvZlQaskO8TTWb1dnVAGY+uqDJsKtPMPje/VhIoig/ PHkGYpSmdAEhwT2vF3la0vYO6qwd4J5R6bK0n3DQ51T+OUdfLmh8DJGR92kxObpI u5d8cN4geHqVjBcXpii3qevZovvzRwg16X2PgC/ii/ULWf6534q1V7C+xYDd/vCR epDzlKR3p8mg2vhOu5DOD7+2BstacqYoe+AzCkD24uYTfWqnqXIukjROpQIDAQAB o4ICVjCCAlIwHQYDVR0OBBYEFEd3vBD+lOe9jSBMC13MCOSDvvxnMB8GA1UdIwQY MBaAFApzJ4Bd8g+1wdb06JB0dDyuskr3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ25NbmdGM3lEN1hCMXZUb2tIUjBQSzZ5U3ZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS84YjFmYWMtNWEyMS00ODQ4LWE2NmEt MTBiYjQ1NzlkNTI4LzEvUjNlOEVQNlU1NzJOSUV3TFhjd0k1SU8tX0djLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS84YjFmYWMtNWEyMS00ODQ4LWE2NmEtMTBiYjQ1NzlkNTI4 LzEvQ25NbmdGM3lEN1hCMXZUb2tIUjBQSzZ5U3ZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMGwGCCsGAQUFBwEHAQH/BF0wWzBIBAIAATBCAwQATm0TAwQA VZ9eAwQAVja4AwQAW5NvAwQAXPDzAwQAba/XAwQAuaLqAwQAwSv7AwQAwh+FAwQA wh+HAwQA1GxXMA8EAgACMAkDBwAqDmYAAAAwDQYJKoZIhvcNAQELBQADggEBALSh 2g1pzqrk6sYc0DJac84haJef2hzn61v8go3IaVzePisXSYSmW6DqVqq4m+u35iHp C6IfcenNKsZcIra2KKtjG+WwvL7ShVVQqXkKItxe7MOKgCC+rSqgNkyuBrBf4kog SetgJ63hH9upS0V0PRQmL05d9BeGiA2ifgPrsqS3DFLgb0srnCgozKpRp98H8QJ/ uSg0mx5TLk3gxrx2y0uMmyTkKSWWVf3/Ot2PQjTlBnxV0oiPREckfC19K6OXJGNe 8ilYH81wBqva3TAPiLYDEXmrgGIFht/Ii6DWya5s4BWIEJOwiKpgiX2dHxFChRdq PexCGdA8QdKbi7r60+o= -----END CERTIFICATE-----Generated at Mon Jan 26 05:43:50 2026 by rpki-client