This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/RKeJP9iEvuDf3LggtuJwNO7uQEk.roa File: RKeJP9iEvuDf3LggtuJwNO7uQEk.roa (raw, json) Hash identifier: +VIR5z/XQ5Qx7TTNzGJldp0pk9LFlEUwye6JlD69ltQ= Subject key identifier: 44:A7:89:3F:D8:84:BE:E0:DF:DC:B8:20:B6:E2:70:34:EE:EE:40:49 Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672 Certificate serial: 019B797EA31FC1FF414EFE81EEC914E35B5B Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/RKeJP9iEvuDf3LggtuJwNO7uQEk.roa Signing time: Thu 01 Jan 2026 12:18:20 +0000 ROA not before: Thu 01 Jan 2026 12:18:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9002 IP address blocks: 87.245.208.0/20 maxlen: 20 87.245.208.0/21 maxlen: 21 87.245.224.0/19 maxlen: 19 89.19.36.0/22 maxlen: 22 94.158.240.0/22 maxlen: 22 139.45.192.0/19 maxlen: 19 185.82.8.0/22 maxlen: 22 193.109.100.0/22 maxlen: 22 2a02:2d8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:a3:1f:c1:ff:41:4e:fe:81:ee:c9:14:e3:5b:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672 Validity Not Before: Jan 1 12:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=44a7893fd884bee0dfdcb820b6e27034eeee4049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c2:c5:24:d3:49:c5:d8:e6:b9:b4:e2:50:e7: bf:bc:a8:c0:02:9c:cd:f8:dc:02:5b:57:0d:01:61: 98:65:34:79:ec:e4:63:b4:2b:35:37:6d:fb:f1:05: b7:e2:f9:f9:a5:db:5d:c5:0e:7c:5e:87:b6:6c:20: 6b:8e:74:d0:e6:32:86:46:d1:a1:a8:4c:67:ab:02: 2d:a7:1b:9c:55:f7:c1:8b:72:f6:70:4a:72:b6:ee: 66:d5:f4:56:36:84:11:ac:38:c1:84:b3:0e:1f:74: c4:60:3f:1d:dd:19:c2:6f:28:e7:96:0f:a3:79:c3: e9:bc:de:64:d5:d6:8e:38:a5:dc:3e:de:af:48:c9: f0:6f:0f:07:b1:ac:e0:d4:0c:b6:03:8a:6d:36:d8: d2:69:10:c6:1a:e6:0c:93:98:65:56:bc:60:b1:a3: cd:dc:39:4b:89:1d:df:a1:c0:ca:60:cc:48:2e:c0: 8c:85:e3:12:c1:84:59:57:99:ae:83:47:be:bd:ee: 9c:f0:b0:13:c9:12:aa:ee:2e:fa:39:b7:bb:be:33: 44:6c:e7:90:d0:b5:fd:f2:b9:8b:f4:59:56:7b:f4: 3d:be:53:e2:2a:88:9c:e0:87:c2:1c:ae:e5:be:49: 33:82:fd:75:76:0e:be:18:bf:64:a9:3a:8d:82:c5: 4d:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:A7:89:3F:D8:84:BE:E0:DF:DC:B8:20:B6:E2:70:34:EE:EE:40:49 X509v3 Authority Key Identifier: keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/RKeJP9iEvuDf3LggtuJwNO7uQEk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.245.208.0-87.245.255.255 89.19.36.0/22 94.158.240.0/22 139.45.192.0/19 185.82.8.0/22 193.109.100.0/22 IPv6: 2a02:2d8::/32 Signature Algorithm: sha256WithRSAEncryption 7f:1d:87:03:8c:04:39:35:5d:cc:1c:38:3c:e5:39:b1:7b:1e: b7:3d:8a:e8:f1:94:9e:7d:bb:a5:26:6f:85:1f:1b:35:ad:4e: 1a:b4:9e:bb:54:dd:76:6a:02:f0:2e:7a:e6:da:7d:fe:67:13: af:05:62:e5:78:c4:3f:48:f7:64:a6:6e:05:63:49:b6:d3:d2: db:25:f9:20:1a:f8:27:4b:a3:90:af:b6:22:ad:29:28:81:b7: 11:5e:15:8f:50:01:86:e6:e6:33:ab:35:fb:f7:0d:93:9a:39: 98:d8:30:79:98:e5:bd:f0:31:ed:93:15:63:0e:22:68:26:de: f8:4b:ca:2e:41:6c:94:8f:2b:bd:7c:25:7a:2e:44:b6:11:48: 5d:1e:6c:aa:5b:e5:b2:ef:da:fe:b9:fe:7f:22:e3:32:bf:09: b2:06:b7:42:13:d5:49:b0:dd:2e:57:ca:b1:4f:ad:af:01:dd: 16:30:07:df:fa:f8:76:94:5e:57:54:ac:4b:01:a0:64:02:f5: 57:38:67:1d:9e:2e:40:86:c3:ea:5c:fd:ea:e3:a0:d9:fa:fb: 78:8e:a4:49:08:ac:ed:2c:53:3f:11:54:b3:0b:14:62:37:38: c8:8a:bf:e8:31:91:98:db:52:fe:91:d5:7c:d5:e2:4c:f8:f0: ab:87:2f:f9 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt5fqMfwf9BTv6B7skU41tbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3 Y2M2NzIwHhcNMjYwMTAxMTIxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NGE3ODkzZmQ4ODRiZWUwZGZkY2I4MjBiNmUyNzAzNGVlZWU0MDQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMLFJNNJxdjmubTiUOe/vKjAApzN +NwCW1cNAWGYZTR57ORjtCs1N2378QW34vn5pdtdxQ58Xoe2bCBrjnTQ5jKGRtGh qExnqwItpxucVffBi3L2cEpytu5m1fRWNoQRrDjBhLMOH3TEYD8d3RnCbyjnlg+j ecPpvN5k1daOOKXcPt6vSMnwbw8Hsazg1Ay2A4ptNtjSaRDGGuYMk5hlVrxgsaPN 3DlLiR3focDKYMxILsCMheMSwYRZV5mug0e+ve6c8LATyRKq7i76Obe7vjNEbOeQ 0LX98rmL9FlWe/Q9vlPiKoic4IfCHK7lvkkzgv11dg6+GL9kqTqNgsVNvwIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFESniT/YhL7g39y4ILbicDTu7kBJMB8GA1UdIwQY MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt MDAzYTE1NjhiZjNmLzEvUktlSlA5aUV2dURmM0xnZ3R1SndOTzd1UUVrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjAxBAIAATArMAsDBARX9dAD AwFX9AMEAlkTJAMEAl6e8AMEBYstwAMEArlSCAMEAsFtZDANBAIAAjAHAwUAKgIC 2DANBgkqhkiG9w0BAQsFAAOCAQEAfx2HA4wEOTVdzBw4POU5sXsetz2K6PGUnn27 pSZvhR8bNa1OGrSeu1TddmoC8C565tp9/mcTrwVi5XjEP0j3ZKZuBWNJttPS2yX5 IBr4J0ujkK+2Iq0pKIG3EV4Vj1ABhubmM6s1+/cNk5o5mNgweZjlvfAx7ZMVYw4i aCbe+EvKLkFslI8rvXwlei5EthFIXR5sqlvlsu/a/rn+fyLjMr8Jsga3QhPVSbDd LlfKsU+trwHdFjAH3/r4dpReV1SsSwGgZAL1VzhnHZ4uQIbD6lz96uOg2fr7eI6k SQis7SxTPxFUswsUYjc4yIq/6DGRmNtS/pHVfNXiTPjwq4cv+Q== -----END CERTIFICATE-----Generated at Sun Jan 25 17:19:11 2026 by rpki-client