This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/aExTrMzuwD_92S4WvXaACfUy-2A.roa File: aExTrMzuwD_92S4WvXaACfUy-2A.roa (raw, json) Hash identifier: G/mzrbIittyoI/yZqBrJ24DX4CddzRkegsmmk8tsnyA= Subject key identifier: 68:4C:53:AC:CC:EE:C0:3F:FD:D9:2E:16:BD:76:80:09:F5:32:FB:60 Certificate issuer: /CN=b6d14118dbd227298daa80c7acab11eea6d63e21 Certificate serial: 019B77C677DA955DA5CAE7BF61C81ACE1B3A Authority key identifier: B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/aExTrMzuwD_92S4WvXaACfUy-2A.roa Signing time: Thu 01 Jan 2026 04:17:34 +0000 ROA not before: Thu 01 Jan 2026 04:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57391 IP address blocks: 88.135.40.0/24 maxlen: 24 88.135.41.0/24 maxlen: 24 88.135.42.0/24 maxlen: 24 88.135.43.0/24 maxlen: 24 88.135.44.0/24 maxlen: 24 88.135.45.0/24 maxlen: 24 88.135.46.0/23 maxlen: 23 88.135.46.0/24 maxlen: 24 88.135.47.0/24 maxlen: 24 185.67.101.0/24 maxlen: 24 185.233.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.mft rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:77:da:95:5d:a5:ca:e7:bf:61:c8:1a:ce:1b:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6d14118dbd227298daa80c7acab11eea6d63e21 Validity Not Before: Jan 1 04:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=684c53accceec03ffdd92e16bd768009f532fb60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:ec:62:8d:a7:e2:e3:59:3b:18:fd:ba:c9:0a: 47:a1:61:83:6d:f1:bb:28:31:20:fc:3f:92:a7:08: de:2d:f9:d4:7b:1f:ce:35:a6:63:ec:f4:c2:18:da: 64:93:9c:14:09:13:72:62:b0:8d:52:78:28:ae:2e: 0d:67:bc:de:9b:e5:4a:e1:2a:d8:87:ec:c8:e1:b0: 02:1d:b9:5d:66:0b:9d:07:d2:8d:62:8f:db:01:2a: 5a:3c:38:23:73:a6:17:59:b0:c5:cc:98:42:35:f1: cb:a2:8b:bd:96:aa:af:f1:bb:ff:f5:f2:94:ec:3e: 74:73:2a:28:d1:7e:4a:2f:db:7d:e2:c3:66:a9:c7: 07:d3:b4:11:1b:2b:e9:ea:ab:32:81:ff:fb:c0:f1: 84:5b:d0:f8:b7:8f:76:fe:7e:82:59:ee:c8:02:37: 69:33:55:e3:32:6b:ae:91:1d:05:bb:be:8f:64:93: 54:e9:5b:6f:a3:0f:16:a8:b0:e2:25:8f:e3:eb:4b: f2:97:0e:3f:82:e1:51:9f:84:7d:59:33:67:35:d4: 29:b5:af:da:42:85:94:a4:33:f0:27:dc:0d:d1:f0: 31:f2:d8:94:1c:68:33:15:f3:a6:b4:60:dc:14:57: bc:fe:be:b7:3e:23:c8:83:bb:62:ef:79:4a:1c:f3: 7f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4C:53:AC:CC:EE:C0:3F:FD:D9:2E:16:BD:76:80:09:F5:32:FB:60 X509v3 Authority Key Identifier: keyid:B6:D1:41:18:DB:D2:27:29:8D:AA:80:C7:AC:AB:11:EE:A6:D6:3E:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttFBGNvSJymNqoDHrKsR7qbWPiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/aExTrMzuwD_92S4WvXaACfUy-2A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/ed51d7-64fd-4c73-9e8c-0e37e11d0ec3/1/ttFBGNvSJymNqoDHrKsR7qbWPiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.135.40.0/21 185.67.101.0/24 185.233.14.0/24 Signature Algorithm: sha256WithRSAEncryption 55:72:70:ba:d6:d3:1a:c3:60:c5:86:e4:19:cf:71:0e:a5:67: 23:83:3d:92:8a:dc:42:2b:d9:23:d8:ba:17:23:2b:fa:8a:2d: cd:85:9f:40:78:e1:ff:05:75:7f:9d:65:f1:ad:6a:8d:34:06: 1d:21:bd:30:5c:c9:92:4d:1d:5f:b9:63:ad:14:1f:46:99:3c: a4:c9:47:4f:ee:2c:d3:3e:2c:95:67:fa:3e:66:2a:ed:54:74: 5b:38:6a:6a:13:58:25:a5:87:7e:6b:26:a1:12:2a:fe:d3:7f: ea:ea:05:8d:51:8e:aa:72:4e:ca:72:e9:b0:90:db:5c:64:d4: 43:fd:1c:2e:d7:cb:d2:2e:f8:7c:48:1d:ad:2f:be:91:68:37: 02:df:8e:aa:ac:d2:53:4d:75:c1:cb:82:d1:b4:9f:32:9b:9c: 01:ca:84:08:ca:32:d3:ef:1b:a4:f6:4f:82:3e:a3:06:3f:17: 91:34:db:7b:45:3c:d1:1c:f4:b9:7c:76:da:e8:ef:c1:63:cc: c9:65:b2:54:f5:59:a1:50:9a:4d:01:6e:6b:29:56:93:41:2f: f8:f4:c9:62:10:51:98:81:b5:1d:31:3c:e5:b6:3b:7f:22:79: a9:b3:f7:13:bd:7e:59:63:da:13:7e:d6:02:1e:44:82:e2:b7: 8b:c8:42:92 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt3xnfalV2lyue/Ycgazhs6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2ZDE0MTE4ZGJkMjI3Mjk4ZGFhODBjN2FjYWIxMWVlYTZk NjNlMjEwHhcNMjYwMTAxMDQxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODRjNTNhY2NjZWVjMDNmZmRkOTJlMTZiZDc2ODAwOWY1MzJmYjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOxijafi41k7GP26yQpHoWGDbfG7 KDEg/D+SpwjeLfnUex/ONaZj7PTCGNpkk5wUCRNyYrCNUngori4NZ7zem+VK4SrY h+zI4bACHbldZgudB9KNYo/bASpaPDgjc6YXWbDFzJhCNfHLoou9lqqv8bv/9fKU 7D50cyoo0X5KL9t94sNmqccH07QRGyvp6qsygf/7wPGEW9D4t492/n6CWe7IAjdp M1XjMmuukR0Fu76PZJNU6Vtvow8WqLDiJY/j60vylw4/guFRn4R9WTNnNdQpta/a QoWUpDPwJ9wN0fAx8tiUHGgzFfOmtGDcFFe8/r63PiPIg7ti73lKHPN/xwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFGhMU6zM7sA//dkuFr12gAn1MvtgMB8GA1UdIwQY MBaAFLbRQRjb0icpjaqAx6yrEe6m1j4hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHRGQkdOdlNKeW1OcW9ESHJLc1I3cWJXUGlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lZDUxZDctNjRmZC00YzczLTllOGMt MGUzN2UxMWQwZWMzLzEvYUV4VHJNenV3RF85MlM0V3ZYYUFDZlV5LTJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9lZDUxZDctNjRmZC00YzczLTllOGMtMGUzN2UxMWQwZWMz LzEvdHRGQkdOdlNKeW1OcW9ESHJLc1I3cWJXUGlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQDWIcoAwQA uUNlAwQAuekOMA0GCSqGSIb3DQEBCwUAA4IBAQBVcnC61tMaw2DFhuQZz3EOpWcj gz2SitxCK9kj2LoXIyv6ii3NhZ9AeOH/BXV/nWXxrWqNNAYdIb0wXMmSTR1fuWOt FB9GmTykyUdP7izTPiyVZ/o+ZirtVHRbOGpqE1glpYd+ayahEir+03/q6gWNUY6q ck7KcumwkNtcZNRD/Rwu18vSLvh8SB2tL76RaDcC346qrNJTTXXBy4LRtJ8ym5wB yoQIyjLT7xuk9k+CPqMGPxeRNNt7RTzRHPS5fHba6O/BY8zJZbJU9VmhUJpNAW5r KVaTQS/49MliEFGYgbUdMTzltjt/Inmps/cTvX5ZY9oTftYCHkSC4reLyEKS -----END CERTIFICATE-----Generated at Mon Jan 26 04:38:53 2026 by rpki-client