This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/pNtvCWf1JhfNrxLlRUiYdBdP4Ig.roa File: pNtvCWf1JhfNrxLlRUiYdBdP4Ig.roa (raw, json) Hash identifier: CqbewWfHqE2gM/Mgf6NMNCjbj247CFncgoZ3Cq7NTcs= Subject key identifier: A4:DB:6F:09:67:F5:26:17:CD:AF:12:E5:45:48:98:74:17:4F:E0:88 Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b Certificate serial: 019B77C79B7C79A86FDBB9F36BCA5AA5CC13 Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/pNtvCWf1JhfNrxLlRUiYdBdP4Ig.roa Signing time: Thu 01 Jan 2026 04:18:48 +0000 ROA not before: Thu 01 Jan 2026 04:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215985 IP address blocks: 195.136.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.mft rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:9b:7c:79:a8:6f:db:b9:f3:6b:ca:5a:a5:cc:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b Validity Not Before: Jan 1 04:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a4db6f0967f52617cdaf12e545489874174fe088 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:01:dd:8f:fc:14:66:ad:d9:77:2e:f0:2e:09: d1:db:83:3c:35:4f:6f:cd:28:83:d3:ff:d0:56:bd: 15:14:bd:ac:85:5d:df:26:b4:9a:51:49:b9:8f:49: bf:8e:d5:7e:fe:83:87:6c:b9:72:48:0e:55:15:73: 68:4d:58:be:80:d2:e1:e5:94:79:1c:21:cc:38:a7: e2:53:bf:11:5e:b9:ba:12:8e:e7:3a:6a:13:d1:79: 7c:b9:7d:8c:7c:35:1b:b4:5d:1a:b1:85:8d:f2:2b: 49:f3:5e:ec:6b:a1:28:02:94:98:44:be:f8:ee:a0: 9d:1e:bd:de:81:20:82:a9:a2:93:3d:c6:96:e3:d4: b0:cc:3d:49:ea:25:a0:33:24:a6:5f:76:d9:08:d3: db:d7:0f:6f:34:06:79:ae:6a:02:40:a9:2b:f7:3b: b0:97:65:6f:ce:b5:a2:43:64:bd:e4:f5:25:61:2b: 2e:e3:94:c0:ff:5c:b3:3b:0a:21:e0:06:54:91:76: 10:1f:28:ba:8e:d7:75:9e:08:9f:1c:7c:0f:0a:b7: 0d:ad:8b:4f:02:f0:82:58:d9:6d:13:e6:de:cf:ef: d7:cb:a5:b0:a0:11:65:68:99:d0:f2:b2:9b:d4:d6: 89:c6:4e:17:5a:04:30:05:8a:e8:55:fc:0e:32:cc: d7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:DB:6F:09:67:F5:26:17:CD:AF:12:E5:45:48:98:74:17:4F:E0:88 X509v3 Authority Key Identifier: keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/pNtvCWf1JhfNrxLlRUiYdBdP4Ig.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.136.247.0/24 Signature Algorithm: sha256WithRSAEncryption 61:ac:11:34:11:9d:67:51:54:cc:d7:5a:5c:00:f6:eb:52:55: 85:8e:74:d9:7b:cf:a7:83:46:dc:a6:c2:1c:dc:1a:a5:78:ac: 82:a5:bb:63:7b:28:f3:ba:c1:2c:f5:b9:35:7e:da:71:c5:50: 31:23:19:9b:53:2c:b6:4d:08:40:59:66:45:41:4e:73:d7:d3: 42:4b:cd:6e:91:61:9f:00:86:b1:db:b2:34:04:47:34:71:47: 48:4d:10:6d:ba:2f:12:b1:5b:26:38:88:25:30:53:e6:27:37: 0a:4f:03:bc:07:bf:10:f6:8d:74:94:44:91:96:08:96:e1:a5: f7:93:30:ee:b3:11:59:83:80:35:06:4c:e3:4e:d3:67:28:83: 75:56:f9:4a:e9:f3:8a:9b:87:2c:4d:de:c4:44:0c:43:ea:d5: b6:9b:f3:aa:da:48:60:c2:c3:8d:32:86:2c:77:e0:72:f5:09: 35:09:54:d9:92:d2:25:29:18:8b:0d:85:c9:30:1d:da:b7:0c: 43:66:1d:51:12:77:c7:af:c8:01:b2:85:c6:86:38:0f:82:5d: 2b:31:60:0f:5f:f0:7b:ec:86:e9:8a:3c:8a:74:98:b0:45:a9: 26:83:55:24:ea:17:aa:b5:69:f0:c4:a0:18:39:6f:8f:45:27: eb:b2:cc:f7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x5t8eahv27nza8papcwTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU0NjgzNGU2ODg5MGYzOTg2YTFiMDQ1N2NlMGY1NGFlMDNj MmQ3NmIwHhcNMjYwMTAxMDQxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNGRiNmYwOTY3ZjUyNjE3Y2RhZjEyZTU0NTQ4OTg3NDE3NGZlMDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgHdj/wUZq3Zdy7wLgnR24M8NU9v zSiD0//QVr0VFL2shV3fJrSaUUm5j0m/jtV+/oOHbLlySA5VFXNoTVi+gNLh5ZR5 HCHMOKfiU78RXrm6Eo7nOmoT0Xl8uX2MfDUbtF0asYWN8itJ817sa6EoApSYRL74 7qCdHr3egSCCqaKTPcaW49SwzD1J6iWgMySmX3bZCNPb1w9vNAZ5rmoCQKkr9zuw l2VvzrWiQ2S95PUlYSsu45TA/1yzOwoh4AZUkXYQHyi6jtd1ngifHHwPCrcNrYtP AvCCWNltE+bez+/Xy6WwoBFlaJnQ8rKb1NaJxk4XWgQwBYroVfwOMszXvQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKTbbwln9SYXza8S5UVImHQXT+CIMB8GA1UdIwQY MBaAFFRoNOaIkPOYahsEV84PVK4DwtdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQt NTI3NjZiMjRiYWE0LzEvcE50dkNXZjFKaGZOcnhMbFJVaVlkQmRQNElnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS81ZjJmMGItZmQ4Mi00NGZhLWI2MzQtNTI3NjZiMjRiYWE0 LzEvVkdnMDVvaVE4NWhxR3dSWHpnOVVyZ1BDMTJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4j3MA0G CSqGSIb3DQEBCwUAA4IBAQBhrBE0EZ1nUVTM11pcAPbrUlWFjnTZe8+ng0bcpsIc 3BqleKyCpbtjeyjzusEs9bk1ftpxxVAxIxmbUyy2TQhAWWZFQU5z19NCS81ukWGf AIax27I0BEc0cUdITRBtui8SsVsmOIglMFPmJzcKTwO8B78Q9o10lESRlgiW4aX3 kzDusxFZg4A1BkzjTtNnKIN1VvlK6fOKm4csTd7ERAxD6tW2m/Oq2khgwsONMoYs d+By9Qk1CVTZktIlKRiLDYXJMB3atwxDZh1REnfHr8gBsoXGhjgPgl0rMWAPX/B7 7IbpijyKdJiwRakmg1Uk6heqtWnwxKAYOW+PRSfrssz3 -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:08 2026 by rpki-client