This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/B2YoZgrpQEDb8UGkfFFcmk1C8WU.roa File: B2YoZgrpQEDb8UGkfFFcmk1C8WU.roa (raw, json) Hash identifier: lrmThkzbXwEgonP8nGIi95OkJtxQ+u0aZhl33JVnnGg= Subject key identifier: 07:66:28:66:0A:E9:40:40:DB:F1:41:A4:7C:51:5C:9A:4D:42:F1:65 Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41 Certificate serial: 019B7E3885FF9120906BF9F708468BDA6D7D Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/B2YoZgrpQEDb8UGkfFFcmk1C8WU.roa Signing time: Fri 02 Jan 2026 10:19:52 +0000 ROA not before: Fri 02 Jan 2026 10:19:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47697 IP address blocks: 87.118.141.0/24 maxlen: 24 212.116.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.mft rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:85:ff:91:20:90:6b:f9:f7:08:46:8b:da:6d:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41 Validity Not Before: Jan 2 10:19:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=076628660ae94040dbf141a47c515c9a4d42f165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:9e:ae:55:9b:00:a0:27:38:64:41:ad:6e:0f: 7c:0a:3b:96:f9:e0:8b:5b:87:ab:47:89:3e:d4:1d: 53:cd:12:1e:c8:6c:38:dd:03:1b:9a:18:98:5d:52: d5:d3:ad:3a:d9:d0:51:3e:5d:c8:d1:86:da:a4:1a: cd:f9:d6:01:b0:37:86:ce:d5:50:86:69:1c:99:a7: e2:89:b7:5e:e0:de:e0:b1:ab:a9:d9:be:33:ca:28: 74:8c:3a:05:6f:b9:f3:2e:4c:8d:68:aa:11:a5:bc: 66:33:0e:94:ae:ba:a4:36:91:73:64:2e:a4:dd:c2: 5c:84:6f:2e:dd:15:6f:85:20:5f:f5:75:81:82:e6: e3:49:92:85:2c:3c:cb:b3:8d:75:03:00:bf:14:ed: 33:2e:c4:04:db:2f:59:6d:cc:0b:83:3a:82:00:eb: ab:7b:4b:da:56:be:43:6a:ba:1e:fc:fa:2e:2e:e1: 65:69:de:b1:a7:d2:c2:17:dd:67:1e:b0:00:fe:1b: a7:51:82:5d:75:61:22:28:54:8a:73:c9:bc:f2:9c: 52:01:96:ce:24:5b:ed:a9:c7:f9:05:2c:03:d1:be: fc:f8:cb:75:93:b9:49:54:48:f7:3d:14:3d:37:3a: db:5b:1c:45:9d:69:81:ca:8d:c1:68:c5:68:53:b9: 02:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:66:28:66:0A:E9:40:40:DB:F1:41:A4:7C:51:5C:9A:4D:42:F1:65 X509v3 Authority Key Identifier: keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/B2YoZgrpQEDb8UGkfFFcmk1C8WU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.118.141.0/24 212.116.131.0/24 Signature Algorithm: sha256WithRSAEncryption 65:23:c8:58:20:b4:9f:2b:dd:a0:fb:37:9e:6d:91:69:18:3d: 33:77:e8:91:51:07:fb:e4:a1:a2:6b:5a:6b:0f:67:92:0d:79: 04:ae:56:77:33:68:c6:3e:53:52:7e:2f:38:8c:33:1e:c7:44: b6:09:a7:a1:6c:d6:ab:c2:05:0c:29:20:04:17:cb:80:43:de: af:32:b5:52:99:d6:64:c0:e6:8b:68:4a:8c:ff:1a:8d:38:00: 63:f1:50:02:78:64:18:fa:05:ff:b8:59:30:ff:10:87:5b:9c: f8:ed:4c:f0:b3:a3:e6:e9:11:ec:42:c1:d7:45:e7:fd:73:b9: 3d:35:17:36:49:49:18:0c:4a:ef:b5:8b:14:37:11:de:f1:34: 4b:6d:90:8b:db:6b:7f:68:45:4b:42:1f:ea:68:44:32:c4:12: d9:2e:7e:f9:98:d9:c8:f2:95:c7:bb:c1:86:b7:1b:43:5a:f0: 08:eb:5b:ef:4c:02:8d:db:75:fb:1a:d7:db:92:66:71:0f:79: a2:f2:e2:89:f1:7e:98:bb:7c:4f:1b:35:a6:07:62:95:b6:fd: e1:1b:ab:d2:f5:1a:e4:0b:a4:b7:08:36:f1:dd:ed:c5:a2:17: ff:96:b2:11:ce:d4:6b:80:db:bf:33:27:1d:f2:63:53:c8:c2: fc:6d:ed:1d -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+OIX/kSCQa/n3CEaL2m19MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwN2Q3NTczYWFjYWU4MjFjODdkNmQzNjQzMWNmZTRiMjgw MWFiNDEwHhcNMjYwMTAyMTAxOTUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNzY2Mjg2NjBhZTk0MDQwZGJmMTQxYTQ3YzUxNWM5YTRkNDJmMTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZ6uVZsAoCc4ZEGtbg98CjuW+eCL W4erR4k+1B1TzRIeyGw43QMbmhiYXVLV06062dBRPl3I0YbapBrN+dYBsDeGztVQ hmkcmafiibde4N7gsaup2b4zyih0jDoFb7nzLkyNaKoRpbxmMw6UrrqkNpFzZC6k 3cJchG8u3RVvhSBf9XWBgubjSZKFLDzLs411AwC/FO0zLsQE2y9ZbcwLgzqCAOur e0vaVr5Daroe/PouLuFlad6xp9LCF91nHrAA/hunUYJddWEiKFSKc8m88pxSAZbO JFvtqcf5BSwD0b78+Mt1k7lJVEj3PRQ9NzrbWxxFnWmByo3BaMVoU7kCHwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAdmKGYK6UBA2/FBpHxRXJpNQvFlMB8GA1UdIwQY MBaAFNB9dXOqyughyH1tNkMc/ksoAatBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEgxMWM2cks2Q0hJZlcwMlF4ei1TeWdCcTBFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi81NzI1Y2MtYWQ3MC00NmY4LWJiNjIt Y2Y5ZGM1YmFhYTc5LzEvQjJZb1pncnBRRURiOFVHa2ZGRmNtazFDOFdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi81NzI1Y2MtYWQ3MC00NmY4LWJiNjItY2Y5ZGM1YmFhYTc5 LzEvMEgxMWM2cks2Q0hJZlcwMlF4ei1TeWdCcTBFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAV3aNAwQA 1HSDMA0GCSqGSIb3DQEBCwUAA4IBAQBlI8hYILSfK92g+zeebZFpGD0zd+iRUQf7 5KGia1prD2eSDXkErlZ3M2jGPlNSfi84jDMex0S2CaehbNarwgUMKSAEF8uAQ96v MrVSmdZkwOaLaEqM/xqNOABj8VACeGQY+gX/uFkw/xCHW5z47Uzws6Pm6RHsQsHX Ref9c7k9NRc2SUkYDErvtYsUNxHe8TRLbZCL22t/aEVLQh/qaEQyxBLZLn75mNnI 8pXHu8GGtxtDWvAI61vvTAKN23X7GtfbkmZxD3mi8uKJ8X6Yu3xPGzWmB2KVtv3h G6vS9RrkC6S3CDbx3e3Fohf/lrIRztRrgNu/Mycd8mNTyML8be0d -----END CERTIFICATE-----Generated at Mon Jan 26 00:14:15 2026 by rpki-client