This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/1-QuFrP2FCGdb0e2Ii_z6LaU8br8.roa File: 1-QuFrP2FCGdb0e2Ii_z6LaU8br8.roa (raw, json) Hash identifier: rbKcnlSwgT9Djc5Fqvy3u9yC2cYZiJQ7dfTu75ri+mI= Subject key identifier: F9:0B:85:AC:FD:85:08:67:5B:D1:ED:88:8B:FC:FA:2D:A5:3C:6E:BF Certificate issuer: /CN=ac7cc334f51d2b6eb4e27d6d56b9bce3e85560cc Certificate serial: 019B7EA74423CDD6EC350FE07FEC1DD2C870 Authority key identifier: AC:7C:C3:34:F5:1D:2B:6E:B4:E2:7D:6D:56:B9:BC:E3:E8:55:60:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHzDNPUdK2604n1tVrm84-hVYMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/1-QuFrP2FCGdb0e2Ii_z6LaU8br8.roa Signing time: Fri 02 Jan 2026 12:20:49 +0000 ROA not before: Fri 02 Jan 2026 12:20:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28716 IP address blocks: 45.89.180.0/22 maxlen: 24 46.243.32.0/21 maxlen: 24 46.243.38.0/24 maxlen: 24 77.95.136.0/21 maxlen: 24 77.95.136.0/24 maxlen: 24 78.159.192.0/21 maxlen: 24 78.159.216.0/21 maxlen: 24 80.94.112.0/20 maxlen: 24 80.94.116.0/24 maxlen: 24 185.41.212.0/22 maxlen: 22 185.61.12.0/22 maxlen: 24 213.178.216.0/22 maxlen: 24 217.19.144.0/20 maxlen: 24 217.19.151.0/24 maxlen: 24 217.19.156.0/24 maxlen: 24 2001:1bd0::/29 maxlen: 48 2a01:5d20::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/rHzDNPUdK2604n1tVrm84-hVYMw.crl rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/rHzDNPUdK2604n1tVrm84-hVYMw.mft rsync://rpki.ripe.net/repository/DEFAULT/rHzDNPUdK2604n1tVrm84-hVYMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:44:23:cd:d6:ec:35:0f:e0:7f:ec:1d:d2:c8:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ac7cc334f51d2b6eb4e27d6d56b9bce3e85560cc Validity Not Before: Jan 2 12:20:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f90b85acfd8508675bd1ed888bfcfa2da53c6ebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:24:aa:c3:56:96:02:41:6c:b2:dc:58:45:8f: 2d:77:d3:17:3a:61:8a:b3:29:d2:99:fb:03:48:a0: c4:65:30:ee:43:59:e6:29:f0:2f:f7:36:3b:20:5c: d9:5d:99:50:06:91:aa:c7:90:14:e3:77:57:e8:4e: 49:1b:6a:a3:4c:fe:96:a3:da:47:19:b4:c2:ea:c9: ce:2d:18:8c:17:fe:3c:eb:5f:d3:ad:4d:2f:3e:31: 4e:a0:60:9d:94:33:37:22:73:f1:84:7e:62:d4:ef: 97:78:52:8e:d6:20:f8:6c:bc:ae:6a:26:46:09:b4: ec:fa:05:cd:ff:77:47:dd:75:7b:88:1b:61:b9:e2: 00:ff:14:14:9c:f2:60:7b:2e:29:da:f6:6b:09:cb: 01:48:50:1c:7f:da:f1:23:a4:ff:42:10:82:2f:cf: a2:0d:7d:1d:64:e0:f9:1f:52:09:62:44:1a:8b:3c: 08:a1:96:38:2b:c6:05:d5:20:50:3c:7f:ff:4b:13: 87:65:d1:ae:99:80:d8:aa:f5:78:da:89:44:8d:d0: e9:3c:26:be:26:d3:3f:09:34:ec:46:ff:98:b3:73: 92:77:2f:8e:70:65:67:85:ea:34:b5:ba:94:f9:7c: 24:d3:7a:95:19:c7:23:9b:3c:0d:da:21:c3:80:62: 7e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:0B:85:AC:FD:85:08:67:5B:D1:ED:88:8B:FC:FA:2D:A5:3C:6E:BF X509v3 Authority Key Identifier: keyid:AC:7C:C3:34:F5:1D:2B:6E:B4:E2:7D:6D:56:B9:BC:E3:E8:55:60:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHzDNPUdK2604n1tVrm84-hVYMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/1-QuFrP2FCGdb0e2Ii_z6LaU8br8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/dd55e8-febd-49d0-a5a7-1cf15b2ba7be/1/rHzDNPUdK2604n1tVrm84-hVYMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.180.0/22 46.243.32.0/21 77.95.136.0/21 78.159.192.0/21 78.159.216.0/21 80.94.112.0/20 185.41.212.0/22 185.61.12.0/22 213.178.216.0/22 217.19.144.0/20 IPv6: 2001:1bd0::/29 2a01:5d20::/29 Signature Algorithm: sha256WithRSAEncryption 47:ef:f3:e0:3b:ba:6d:aa:a5:bf:6b:e9:05:75:e9:4e:b1:fe: aa:47:b9:12:bf:29:f6:66:92:07:24:86:6f:2a:12:bc:bd:c2: 91:9b:ce:e8:cc:e5:ff:bc:44:22:8e:f1:d6:e0:a3:ad:ee:d1: 0c:3a:90:64:13:37:21:28:45:33:76:69:11:95:03:76:a4:22: 9b:31:40:42:ae:7e:85:ed:fc:6d:94:df:41:5a:25:23:ca:6e: 1c:75:19:53:bb:ae:94:96:99:45:9f:d8:6d:38:d1:b6:1f:35: fa:f5:4b:fb:56:e2:69:e9:24:99:e1:e8:0b:82:68:14:b2:5b: 90:cd:01:82:bc:5a:56:8d:3f:29:c8:69:c7:8d:f2:e3:c8:4f: 67:df:2f:e7:f8:ce:8d:aa:b5:16:97:27:7d:b8:4d:b0:82:dd: b3:1b:0f:d7:41:14:79:9c:20:f2:01:d9:6b:2f:90:ca:d0:4e: eb:50:cb:5d:60:28:5c:93:d0:3e:d2:4b:86:bc:b4:d6:e6:ce: cf:22:a8:ea:89:60:55:d3:ce:8a:99:0a:fa:d0:20:7e:c0:55: 14:c3:c1:b3:a6:50:3d:77:56:de:60:3a:4b:c4:69:ce:54:b8: 31:7c:cf:8d:18:27:c5:17:ee:a6:85:ef:78:42:36:ea:78:e4: 00:c8:49:98 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgISAZt+p0QjzdbsNQ/gf+wd0shwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFjN2NjMzM0ZjUxZDJiNmViNGUyN2Q2ZDU2YjliY2UzZTg1 NTYwY2MwHhcNMjYwMTAyMTIyMDQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOTBiODVhY2ZkODUwODY3NWJkMWVkODg4YmZjZmEyZGE1M2M2ZWJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5SSqw1aWAkFsstxYRY8td9MXOmGK synSmfsDSKDEZTDuQ1nmKfAv9zY7IFzZXZlQBpGqx5AU43dX6E5JG2qjTP6Wo9pH GbTC6snOLRiMF/4861/TrU0vPjFOoGCdlDM3InPxhH5i1O+XeFKO1iD4bLyuaiZG CbTs+gXN/3dH3XV7iBthueIA/xQUnPJgey4p2vZrCcsBSFAcf9rxI6T/QhCCL8+i DX0dZOD5H1IJYkQaizwIoZY4K8YF1SBQPH//SxOHZdGumYDYqvV42olEjdDpPCa+ JtM/CTTsRv+Ys3OSdy+OcGVnheo0tbqU+Xwk03qVGccjmzwN2iHDgGJ+uQIDAQAB o4ICVjCCAlIwHQYDVR0OBBYEFPkLhaz9hQhnW9HtiIv8+i2lPG6/MB8GA1UdIwQY MBaAFKx8wzT1HStutOJ9bVa5vOPoVWDMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvckh6RE5QVWRLMjYwNG4xdFZybTg0LWhWWU13LmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS9kZDU1ZTgtZmViZC00OWQwLWE1YTct MWNmMTViMmJhN2JlLzEvMS1RdUZyUDJGQ0dkYjBlMklpX3o2TGFVOGJyOC5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNTUvZGQ1NWU4LWZlYmQtNDlkMC1hNWE3LTFjZjE1YjJiYTdi ZS8xL3JIekROUFVkSzI2MDRuMXRWcm04NC1oVllNdy5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjBrBggrBgEFBQcBBwEB/wRcMFowQgQCAAEwPAMEAi1ZtAME Ay7zIAMEA01fiAMEA06fwAMEA06f2AMEBFBecAMEArkp1AMEArk9DAMEAtWy2AME BNkTkDAUBAIAAjAOAwUDIAEb0AMFAyoBXSAwDQYJKoZIhvcNAQELBQADggEBAEfv 8+A7um2qpb9r6QV16U6x/qpHuRK/KfZmkgckhm8qEry9wpGbzujM5f+8RCKO8dbg o63u0Qw6kGQTNyEoRTN2aRGVA3akIpsxQEKufoXt/G2U30FaJSPKbhx1GVO7rpSW mUWf2G040bYfNfr1S/tW4mnpJJnh6AuCaBSyW5DNAYK8WlaNPynIaceN8uPIT2ff L+f4zo2qtRaXJ324TbCC3bMbD9dBFHmcIPIB2WsvkMrQTutQy11gKFyT0D7SS4a8 tNbmzs8iqOqJYFXTzoqZCvrQIH7AVRTDwbOmUD13Vt5gOkvEac5UuDF8z40YJ8UX 7qaF73hCNup45ADISZg= -----END CERTIFICATE-----Generated at Mon Jan 26 11:43:56 2026 by rpki-client