This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/rPGOaQT_OmBAJqUyQykV24mLyKs.roa File: rPGOaQT_OmBAJqUyQykV24mLyKs.roa (raw, json) Hash identifier: f9K5lcsoxS9S8VliZjknC4Exxafsx0Xp+rbtKzm43FU= Subject key identifier: AC:F1:8E:69:04:FF:3A:60:40:26:A5:32:43:29:15:DB:89:8B:C8:AB Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86 Certificate serial: 019B79ED25952641CB1A420EAE3C5C73793D Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/rPGOaQT_OmBAJqUyQykV24mLyKs.roa Signing time: Thu 01 Jan 2026 14:19:03 +0000 ROA not before: Thu 01 Jan 2026 14:19:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 213232 IP address blocks: 94.188.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.mft rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:25:95:26:41:cb:1a:42:0e:ae:3c:5c:73:79:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86 Validity Not Before: Jan 1 14:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=acf18e6904ff3a604026a532432915db898bc8ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:54:60:6f:73:3e:10:c9:80:f1:b7:c0:de:53: 6a:0c:35:06:ca:30:8f:21:44:80:f1:12:cf:d0:a8: d7:00:19:74:f8:63:91:87:2c:09:75:3f:da:aa:ff: 0d:77:e3:ca:0e:33:ec:09:b9:3a:b2:24:48:bc:d1: c3:9d:90:f6:c3:98:39:2d:0d:10:d6:e1:a6:65:5f: c8:21:60:2d:2c:dd:99:e9:4f:1b:26:29:a2:c6:4c: ec:47:72:b2:01:65:dc:52:32:a4:8d:92:03:e4:c6: 39:45:6a:09:27:34:62:ac:09:e4:2a:b7:44:51:a8: f4:9a:d4:1a:91:04:69:7b:da:cd:c3:38:0e:a0:b6: 09:f3:f9:b2:25:98:16:c9:a8:04:82:38:39:09:88: b4:98:ac:f0:ac:e5:85:07:59:80:95:6b:50:77:f3: 3a:d2:65:4c:6c:9e:f0:5a:53:c7:b9:8c:1f:bf:1d: 57:98:94:37:f6:21:d7:39:75:0b:a9:40:45:67:e4: 9e:9d:05:18:af:85:25:f7:74:60:1b:c9:3e:fd:c3: a3:7c:41:f8:6f:f8:9b:eb:38:6a:51:82:bb:8e:2d: 6e:3d:4f:c8:b4:e4:03:c2:c3:e1:2f:cf:cb:37:e6: da:e8:de:0b:c8:41:c3:d0:07:7e:ec:99:67:d2:bd: 71:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F1:8E:69:04:FF:3A:60:40:26:A5:32:43:29:15:DB:89:8B:C8:AB X509v3 Authority Key Identifier: keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/rPGOaQT_OmBAJqUyQykV24mLyKs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.188.135.0/24 Signature Algorithm: sha256WithRSAEncryption 72:bf:d0:b1:e2:a6:09:e2:94:fb:5f:67:fc:d1:62:36:25:89: c3:83:f2:b8:7a:f0:80:59:1f:5e:14:1b:dd:60:be:f1:d3:92: ec:f5:21:07:3b:18:ef:2f:c6:ef:8e:9b:18:c4:c4:50:8d:5a: 72:f2:a2:60:97:b5:64:a4:d2:4d:fa:86:f1:0d:b3:f0:d6:fb: c8:6f:61:98:6e:19:c9:e4:a8:1e:51:ce:94:b6:cb:e4:58:f2: 96:6e:09:34:f8:37:d7:c0:6a:03:df:a4:53:5a:ad:c2:a6:22: 04:92:6a:d9:5b:2a:40:5a:61:3b:6e:80:18:26:87:2c:6b:53: 72:f1:17:76:52:ad:b0:c4:f8:c5:8d:56:41:d6:62:ed:ac:8f: a0:d3:5a:fe:61:c1:e4:4d:33:2c:e8:d4:d1:99:1d:b7:a4:1d: a9:51:17:b9:1e:54:39:16:bc:3d:28:30:c1:0a:be:a5:7c:17: c4:fc:47:94:10:55:31:4e:9a:46:e2:2d:14:03:17:79:46:94: 77:ef:c6:22:c4:33:10:04:83:4b:55:30:f8:d0:69:c8:db:e0: e8:ef:4b:34:09:a5:61:37:e3:f6:b0:cb:47:27:aa:d2:12:e5: c6:da:1c:82:3c:a0:f2:65:fa:d1:eb:85:a5:26:60:26:59:30: 63:b6:a9:25 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57SWVJkHLGkIOrjxcc3k9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGUyZDViYjQwMTE4MGU1NWY1YzE2NWQ0NzkwOGRmZjRmZTI5 YTBkODYwHhcNMjYwMTAxMTQxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhY2YxOGU2OTA0ZmYzYTYwNDAyNmE1MzI0MzI5MTVkYjg5OGJjOGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlRgb3M+EMmA8bfA3lNqDDUGyjCP IUSA8RLP0KjXABl0+GORhywJdT/aqv8Nd+PKDjPsCbk6siRIvNHDnZD2w5g5LQ0Q 1uGmZV/IIWAtLN2Z6U8bJimixkzsR3KyAWXcUjKkjZID5MY5RWoJJzRirAnkKrdE Uaj0mtQakQRpe9rNwzgOoLYJ8/myJZgWyagEgjg5CYi0mKzwrOWFB1mAlWtQd/M6 0mVMbJ7wWlPHuYwfvx1XmJQ39iHXOXULqUBFZ+SenQUYr4Ul93RgG8k+/cOjfEH4 b/ib6zhqUYK7ji1uPU/ItOQDwsPhL8/LN+ba6N4LyEHD0Ad+7Jln0r1xHwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKzxjmkE/zpgQCalMkMpFduJi8irMB8GA1UdIwQY MBaAFOLVu0ARgOVfXBZdR5CN/0/img2GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEt NDIxZTZiYzdlMmU4LzEvclBHT2FRVF9PbUJBSnFVeVF5a1YyNG1MeUtzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS84NjI5N2EtZDIxOS00NTY3LTkxNzEtNDIxZTZiYzdlMmU4 LzEvNHRXN1FCR0E1VjljRmwxSGtJM19ULUthRFlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXryHMA0G CSqGSIb3DQEBCwUAA4IBAQByv9Cx4qYJ4pT7X2f80WI2JYnDg/K4evCAWR9eFBvd YL7x05Ls9SEHOxjvL8bvjpsYxMRQjVpy8qJgl7VkpNJN+obxDbPw1vvIb2GYbhnJ 5KgeUc6UtsvkWPKWbgk0+DfXwGoD36RTWq3CpiIEkmrZWypAWmE7boAYJocsa1Ny 8Rd2Uq2wxPjFjVZB1mLtrI+g01r+YcHkTTMs6NTRmR23pB2pURe5HlQ5Frw9KDDB Cr6lfBfE/EeUEFUxTppG4i0UAxd5RpR378YixDMQBINLVTD40GnI2+Do70s0CaVh N+P2sMtHJ6rSEuXG2hyCPKDyZfrR64WlJmAmWTBjtqkl -----END CERTIFICATE-----Generated at Sun Jan 25 17:48:16 2026 by rpki-client