This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/468CghFJVbcMkzFD_6LLJ6KgIqI.roa File: 468CghFJVbcMkzFD_6LLJ6KgIqI.roa (raw, json) Hash identifier: I1pVpzd56rQR4bQX55OEgNlwIZn6N2UK6SbIW8BzFXs= Subject key identifier: E3:AF:02:82:11:49:55:B7:0C:93:31:43:FF:A2:CB:27:A2:A0:22:A2 Certificate issuer: /CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5 Certificate serial: 019B7A5B9C6F7263BB292C1F77BB95CD2418 Authority key identifier: 79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/468CghFJVbcMkzFD_6LLJ6KgIqI.roa Signing time: Thu 01 Jan 2026 16:19:42 +0000 ROA not before: Thu 01 Jan 2026 16:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57568 IP address blocks: 130.185.120.0/22 maxlen: 22 185.204.168.0/22 maxlen: 24 185.235.40.0/22 maxlen: 24 193.24.119.0/24 maxlen: 24 194.5.192.0/23 maxlen: 24 194.5.206.0/23 maxlen: 24 2a0f:94c0:100::/40 maxlen: 40 2a0f:94c0:200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.crl rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.mft rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:9c:6f:72:63:bb:29:2c:1f:77:bb:95:cd:24:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=79d565f99ff5e0ffb5bdf9995ed7a808d41406e5 Validity Not Before: Jan 1 16:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e3af0282114955b70c933143ffa2cb27a2a022a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:08:c7:cf:26:86:b9:b7:7d:0c:dd:5f:6a:13: 1c:f5:e8:81:48:b8:2d:ea:83:7e:0a:db:aa:15:8c: 16:60:a3:e6:18:4f:2e:63:66:83:d9:a4:5d:b9:89: 00:fd:ed:55:46:73:d1:1c:84:8d:ed:11:a8:64:19: 10:20:06:48:b8:73:7e:cf:6f:60:2f:37:b9:8d:72: 55:43:19:83:be:fc:54:ac:0c:b9:ad:93:50:99:a7: f2:7e:26:db:7e:2e:4a:47:9f:a2:55:f2:e2:06:9c: 37:36:a9:5a:e9:e4:1f:c2:4b:39:e0:e4:a1:aa:0d: c7:7c:ae:48:4c:05:61:f9:c7:48:80:2f:91:15:38: c5:55:b1:cc:32:dc:3e:d9:cd:12:f5:b9:95:e4:03: 81:aa:b3:3b:dd:3b:c9:18:7f:e6:d1:9c:13:7c:07: ba:3b:ba:0e:82:94:89:4d:89:65:79:91:41:0d:76: 3b:d1:23:09:61:f8:f4:55:6a:ba:04:ef:ce:33:b3: 6d:4b:4c:ea:97:da:cd:0a:36:50:b5:f2:c9:2d:80: 48:3d:2f:69:56:3f:30:f9:15:e0:5e:9c:0b:aa:e9: a3:b7:b6:ee:10:2e:c3:e9:63:d7:c7:f8:17:ca:4f: b4:86:34:bf:81:f4:5b:a1:06:0b:a7:27:50:28:e2: 08:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AF:02:82:11:49:55:B7:0C:93:31:43:FF:A2:CB:27:A2:A0:22:A2 X509v3 Authority Key Identifier: keyid:79:D5:65:F9:9F:F5:E0:FF:B5:BD:F9:99:5E:D7:A8:08:D4:14:06:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edVl-Z_14P-1vfmZXteoCNQUBuU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/468CghFJVbcMkzFD_6LLJ6KgIqI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ee5cd7-b30e-466b-aaad-6c3b87443e06/1/edVl-Z_14P-1vfmZXteoCNQUBuU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.185.120.0/22 185.204.168.0/22 185.235.40.0/22 193.24.119.0/24 194.5.192.0/23 194.5.206.0/23 IPv6: 2a0f:94c0:100::-2a0f:94c0:2ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b5:68:c7:95:8a:ea:cb:51:36:d1:38:3e:7e:4f:25:ce:99:ba: ea:f2:69:e6:8f:3c:2a:f9:11:89:ca:2a:b7:d7:4b:3c:d6:e6: 7c:ac:72:2e:0b:b8:cd:e9:b1:79:e2:69:6e:d3:32:69:64:70: f9:f7:01:b6:94:36:a8:f9:e1:67:11:a3:45:47:ec:1a:e9:a2: 31:89:63:79:b0:33:00:11:5b:0a:d9:a6:f7:29:14:9f:ce:ed: 5b:3e:0b:d2:21:80:ae:0c:2f:84:5b:b1:25:a2:71:7a:d0:2a: f8:87:dd:04:f1:18:fa:bb:3e:a1:22:c1:01:ba:83:eb:42:e5: de:d3:26:fd:e0:80:6f:53:34:9e:55:98:c5:b4:01:ed:39:ef: 7c:87:b7:cf:3a:3f:07:3c:ba:82:e5:24:fa:bf:f5:85:3e:fc: eb:0f:b7:b1:be:2d:b7:61:2b:68:76:12:6b:70:cc:11:60:16: 7e:38:44:38:78:71:8a:25:43:ea:96:be:c9:e7:e9:09:92:c3: e1:0c:ae:5c:97:30:ea:6f:ac:95:fa:a4:5f:b4:f2:c6:62:4d: 0a:06:3f:d0:fb:23:d5:80:e7:47:e3:4b:4d:56:6e:b5:03:43: dd:b1:f3:a3:2a:ff:6d:e6:da:42:81:f8:fe:e3:d5:44:80:f7: d8:ca:b9:d9 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZt6W5xvcmO7KSwfd7uVzSQYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc5ZDU2NWY5OWZmNWUwZmZiNWJkZjk5OTVlZDdhODA4ZDQx NDA2ZTUwHhcNMjYwMTAxMTYxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlM2FmMDI4MjExNDk1NWI3MGM5MzMxNDNmZmEyY2IyN2EyYTAyMmEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAjHzyaGubd9DN1fahMc9eiBSLgt 6oN+CtuqFYwWYKPmGE8uY2aD2aRduYkA/e1VRnPRHISN7RGoZBkQIAZIuHN+z29g Lze5jXJVQxmDvvxUrAy5rZNQmafyfibbfi5KR5+iVfLiBpw3Nqla6eQfwks54OSh qg3HfK5ITAVh+cdIgC+RFTjFVbHMMtw+2c0S9bmV5AOBqrM73TvJGH/m0ZwTfAe6 O7oOgpSJTYlleZFBDXY70SMJYfj0VWq6BO/OM7NtS0zql9rNCjZQtfLJLYBIPS9p Vj8w+RXgXpwLqumjt7buEC7D6WPXx/gXyk+0hjS/gfRboQYLpydQKOIILQIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFOOvAoIRSVW3DJMxQ/+iyyeioCKiMB8GA1UdIwQY MBaAFHnVZfmf9eD/tb35mV7XqAjUFAblMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZWRWbC1aXzE0UC0xdmZtWlh0ZW9DTlFVQnVVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9lZTVjZDctYjMwZS00NjZiLWFhYWQt NmMzYjg3NDQzZTA2LzEvNDY4Q2doRkpWYmNNa3pGRF82TExKNktnSXFJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC9lZTVjZDctYjMwZS00NjZiLWFhYWQtNmMzYjg3NDQzZTA2 LzEvZWRWbC1aXzE0UC0xdmZtWlh0ZW9DTlFVQnVVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjAqBAIAATAkAwQCgrl4AwQC ucyoAwQCuesoAwQAwRh3AwQBwgXAAwQBwgXOMBgEAgACMBIwEAMGACoPlMABAwYA Kg+UwAIwDQYJKoZIhvcNAQELBQADggEBALVox5WK6stRNtE4Pn5PJc6ZuuryaeaP PCr5EYnKKrfXSzzW5nysci4LuM3psXniaW7TMmlkcPn3AbaUNqj54WcRo0VH7Brp ojGJY3mwMwARWwrZpvcpFJ/O7Vs+C9IhgK4ML4RbsSWicXrQKviH3QTxGPq7PqEi wQG6g+tC5d7TJv3ggG9TNJ5VmMW0Ae0573yHt886Pwc8uoLlJPq/9YU+/OsPt7G+ LbdhK2h2EmtwzBFgFn44RDh4cYolQ+qWvsnn6QmSw+EMrlyXMOpvrJX6pF+08sZi TQoGP9D7I9WA50fjS01WbrUDQ92x86Mq/23m2kKB+P7j1USA99jKudk= -----END CERTIFICATE-----Generated at Mon Jan 26 08:37:36 2026 by rpki-client