This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/e25a3c-def6-4228-a10b-c45e949e9cd6/1/REbjg5M_8wpI3i_HlGLahpeL73s.roa File: REbjg5M_8wpI3i_HlGLahpeL73s.roa (raw, json) Hash identifier: Wg9GMppGq5pv2FgNgfdIsx4UTmxfeIHOeiAi7ZSNSIA= Subject key identifier: 44:46:E3:83:93:3F:F3:0A:48:DE:2F:C7:94:62:DA:86:97:8B:EF:7B Certificate issuer: /CN=29c170d98b5e35d7d51537671c6040a5151884bc Certificate serial: 019B7C11DFC1A35FB63E41D1782017A169A2 Authority key identifier: 29:C1:70:D9:8B:5E:35:D7:D5:15:37:67:1C:60:40:A5:15:18:84:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcFw2YteNdfVFTdnHGBApRUYhLw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/e25a3c-def6-4228-a10b-c45e949e9cd6/1/REbjg5M_8wpI3i_HlGLahpeL73s.roa Signing time: Fri 02 Jan 2026 00:18:24 +0000 ROA not before: Fri 02 Jan 2026 00:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12859 IP address blocks: 212.72.224.0/21 maxlen: 21 212.72.224.0/24 maxlen: 24 212.72.225.0/24 maxlen: 24 212.72.226.0/24 maxlen: 24 212.72.227.0/24 maxlen: 24 212.72.228.0/24 maxlen: 24 212.72.229.0/24 maxlen: 24 212.72.230.0/24 maxlen: 24 212.72.231.0/24 maxlen: 24 2a02:968::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/e25a3c-def6-4228-a10b-c45e949e9cd6/1/KcFw2YteNdfVFTdnHGBApRUYhLw.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/e25a3c-def6-4228-a10b-c45e949e9cd6/1/KcFw2YteNdfVFTdnHGBApRUYhLw.mft rsync://rpki.ripe.net/repository/DEFAULT/KcFw2YteNdfVFTdnHGBApRUYhLw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:df:c1:a3:5f:b6:3e:41:d1:78:20:17:a1:69:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29c170d98b5e35d7d51537671c6040a5151884bc Validity Not Before: Jan 2 00:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4446e383933ff30a48de2fc79462da86978bef7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:81:fe:9f:3e:e0:24:5a:9a:48:24:76:48:1a: c4:3d:64:5d:bf:d1:cd:0f:72:67:c4:36:9f:60:39: ad:0c:d8:a3:18:d6:97:e4:aa:37:d0:a2:08:3d:33: 14:21:29:e1:de:3f:ab:e7:65:7f:7a:1f:f9:c9:6f: 61:fb:5a:17:b4:90:bc:8d:55:ad:34:20:4d:83:cd: 87:2d:64:b0:70:8e:cd:92:85:ff:64:91:f7:d6:71: ae:48:6f:18:55:06:bd:58:89:77:4d:e7:b1:a6:05: ad:3e:e1:23:e8:15:2e:e4:ab:04:a3:04:a6:73:29: a1:0e:f8:95:a3:8b:de:ed:01:b0:f7:e5:c0:17:0b: 3a:b3:47:34:3c:cb:c1:d8:42:09:69:d6:03:c0:ad: 47:b5:3d:29:99:d6:db:3b:93:cc:75:3b:de:86:0b: 3b:8b:3e:07:a9:a3:79:30:51:65:0e:48:54:4d:e4: 0d:38:d7:bd:0b:ee:7a:97:09:de:1e:d3:f7:b0:1b: 81:54:d9:db:6b:a2:3b:2e:42:86:12:8f:16:bf:de: 90:58:34:ef:ac:a3:38:8d:2a:6f:ab:1d:ea:e9:e8: 9f:0b:80:5d:24:30:fe:5a:75:d6:6f:8e:60:fb:73: 73:4c:d2:a2:1d:fe:ea:6b:8d:34:80:0c:86:69:9e: 72:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:46:E3:83:93:3F:F3:0A:48:DE:2F:C7:94:62:DA:86:97:8B:EF:7B X509v3 Authority Key Identifier: keyid:29:C1:70:D9:8B:5E:35:D7:D5:15:37:67:1C:60:40:A5:15:18:84:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcFw2YteNdfVFTdnHGBApRUYhLw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/e25a3c-def6-4228-a10b-c45e949e9cd6/1/REbjg5M_8wpI3i_HlGLahpeL73s.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/e25a3c-def6-4228-a10b-c45e949e9cd6/1/KcFw2YteNdfVFTdnHGBApRUYhLw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.72.224.0/21 IPv6: 2a02:968::/32 Signature Algorithm: sha256WithRSAEncryption 9a:65:30:6e:84:b8:b7:96:a7:ad:93:91:03:0f:b9:a4:c6:b2: be:e2:66:7f:9b:a4:cd:83:6a:ab:26:45:9f:f4:07:28:99:3c: 5b:d5:4b:3b:9d:a9:0a:87:5e:15:4d:43:8a:56:bc:0a:b1:7b: c7:08:f6:fa:23:05:d0:3a:f8:a8:e3:04:d9:be:10:34:f2:3e: 8d:03:13:23:b1:63:46:d8:51:1c:55:9e:be:5b:2b:17:a5:e3: d0:74:6d:ae:68:d3:69:c0:8f:0f:02:cc:0f:33:a9:27:3a:cc: 80:00:2c:5f:55:6b:41:17:d2:ec:32:22:2d:c3:57:4d:f5:9a: 9e:4c:cd:65:88:3e:1d:5c:8b:74:81:46:4d:70:21:22:f2:83: f5:bd:e5:8a:06:32:e0:95:6d:06:8b:17:16:24:85:7b:6e:e8: 89:ee:f6:74:49:67:62:81:30:7a:25:9e:eb:0b:33:04:9e:29: 66:9c:e0:89:fd:a4:8f:fa:51:46:a4:de:7d:ab:71:66:3b:57: 89:3a:c7:1f:f1:3d:4b:2a:3b:5d:89:84:d1:03:46:f7:c7:b0: fa:d5:a5:bc:08:3c:02:a1:0d:8a:9e:ce:6a:55:b8:14:73:50: 2e:e6:d1:73:49:e3:11:ca:04:38:99:a6:f7:1e:ad:bd:b7:70: 24:25:5e:35 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8Ed/Bo1+2PkHReCAXoWmiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YzE3MGQ5OGI1ZTM1ZDdkNTE1Mzc2NzFjNjA0MGE1MTUx ODg0YmMwHhcNMjYwMTAyMDAxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NDQ2ZTM4MzkzM2ZmMzBhNDhkZTJmYzc5NDYyZGE4Njk3OGJlZjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAioH+nz7gJFqaSCR2SBrEPWRdv9HN D3JnxDafYDmtDNijGNaX5Ko30KIIPTMUISnh3j+r52V/eh/5yW9h+1oXtJC8jVWt NCBNg82HLWSwcI7NkoX/ZJH31nGuSG8YVQa9WIl3TeexpgWtPuEj6BUu5KsEowSm cymhDviVo4ve7QGw9+XAFws6s0c0PMvB2EIJadYDwK1HtT0pmdbbO5PMdTvehgs7 iz4HqaN5MFFlDkhUTeQNONe9C+56lwneHtP3sBuBVNnba6I7LkKGEo8Wv96QWDTv rKM4jSpvqx3q6eifC4BdJDD+WnXWb45g+3NzTNKiHf7qa400gAyGaZ5yqwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFERG44OTP/MKSN4vx5Ri2oaXi+97MB8GA1UdIwQY MBaAFCnBcNmLXjXX1RU3ZxxgQKUVGIS8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2NGdzJZdGVOZGZWRlRkbkhHQkFwUlVZaEx3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi9lMjVhM2MtZGVmNi00MjI4LWExMGIt YzQ1ZTk0OWU5Y2Q2LzEvUkViamc1TV84d3BJM2lfSGxHTGFocGVMNzNzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi9lMjVhM2MtZGVmNi00MjI4LWExMGItYzQ1ZTk0OWU5Y2Q2 LzEvS2NGdzJZdGVOZGZWRlRkbkhHQkFwUlVZaEx3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQD1EjgMA0E AgACMAcDBQAqAgloMA0GCSqGSIb3DQEBCwUAA4IBAQCaZTBuhLi3lqetk5EDD7mk xrK+4mZ/m6TNg2qrJkWf9AcomTxb1Us7nakKh14VTUOKVrwKsXvHCPb6IwXQOvio 4wTZvhA08j6NAxMjsWNG2FEcVZ6+WysXpePQdG2uaNNpwI8PAswPM6knOsyAACxf VWtBF9LsMiItw1dN9ZqeTM1liD4dXIt0gUZNcCEi8oP1veWKBjLglW0GixcWJIV7 buiJ7vZ0SWdigTB6JZ7rCzMEnilmnOCJ/aSP+lFGpN59q3FmO1eJOscf8T1LKjtd iYTRA0b3x7D61aW8CDwCoQ2Kns5qVbgUc1Au5tFzSeMRygQ4mab3Hq29t3AkJV41 -----END CERTIFICATE-----Generated at Sun Jan 25 18:06:10 2026 by rpki-client