This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/d10813-fe61-4033-a433-5ee9b62246db/1/__aKgcBqV6i_mXN76rfxria8AHQ.roa File: __aKgcBqV6i_mXN76rfxria8AHQ.roa (raw, json) Hash identifier: zwh2UkhbJc0t+pZ8vBFFopuCCkIr7SkveCVxpby2P9g= Subject key identifier: FF:F6:8A:81:C0:6A:57:A8:BF:99:73:7B:EA:B7:F1:AE:26:BC:00:74 Certificate issuer: /CN=fbf380b6675b9ccd5f812e069fff175478fb38a4 Certificate serial: 019B7758821B34A74320129C06CD21B6A067 Authority key identifier: FB:F3:80:B6:67:5B:9C:CD:5F:81:2E:06:9F:FF:17:54:78:FB:38:A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_OAtmdbnM1fgS4Gn_8XVHj7OKQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/d10813-fe61-4033-a433-5ee9b62246db/1/__aKgcBqV6i_mXN76rfxria8AHQ.roa Signing time: Thu 01 Jan 2026 02:17:27 +0000 ROA not before: Thu 01 Jan 2026 02:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57696 IP address blocks: 193.107.64.0/24 maxlen: 24 2a07:1780::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/d10813-fe61-4033-a433-5ee9b62246db/1/1-_OAtmdbnM1fgS4Gn_8XVHj7OKQ.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/d10813-fe61-4033-a433-5ee9b62246db/1/1-_OAtmdbnM1fgS4Gn_8XVHj7OKQ.mft rsync://rpki.ripe.net/repository/DEFAULT/1-_OAtmdbnM1fgS4Gn_8XVHj7OKQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:82:1b:34:a7:43:20:12:9c:06:cd:21:b6:a0:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fbf380b6675b9ccd5f812e069fff175478fb38a4 Validity Not Before: Jan 1 02:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fff68a81c06a57a8bf99737beab7f1ae26bc0074 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:9d:87:13:c9:1d:8e:63:da:f6:54:cb:1e:57: 56:56:06:99:c4:da:74:a8:97:ea:86:c7:15:61:76: 2c:5c:71:e1:36:7b:89:ab:12:55:18:59:f2:25:a1: ab:c6:c0:12:65:0d:a7:42:a4:5b:05:3f:0b:4e:3b: 65:86:55:60:36:39:9d:07:fb:d5:02:eb:7f:7a:57: b9:10:91:f7:02:4f:52:ee:57:7e:f4:6a:d3:ae:e9: e2:4a:e6:ba:ba:29:fd:36:f6:a9:65:eb:56:53:eb: 31:b7:5f:99:8f:98:7d:45:94:fc:f9:4d:6c:52:5d: 54:77:90:24:01:28:de:fc:0d:7b:f4:8b:ef:d3:30: ff:c3:44:f2:c2:d0:e3:1b:74:07:f0:20:5d:b9:04: 57:25:64:74:8e:b9:6a:5b:c3:e0:c8:8f:40:74:87: 95:b6:14:08:bc:fa:37:9a:8b:a1:b6:ea:86:dd:28: 07:e9:7d:fb:67:6a:79:0c:b7:53:61:a4:68:2b:88: 2b:f7:bd:31:60:c3:21:6a:a8:d5:10:75:e7:7f:9b: 48:9e:9a:72:3d:81:a9:9e:5f:56:16:d1:7f:76:c0: ce:77:08:71:ab:00:ea:8b:5d:c9:a9:b5:d7:ad:ef: c2:33:14:55:13:71:5c:ce:de:48:3e:64:f7:cd:4b: 1a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F6:8A:81:C0:6A:57:A8:BF:99:73:7B:EA:B7:F1:AE:26:BC:00:74 X509v3 Authority Key Identifier: keyid:FB:F3:80:B6:67:5B:9C:CD:5F:81:2E:06:9F:FF:17:54:78:FB:38:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_OAtmdbnM1fgS4Gn_8XVHj7OKQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d10813-fe61-4033-a433-5ee9b62246db/1/__aKgcBqV6i_mXN76rfxria8AHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/d10813-fe61-4033-a433-5ee9b62246db/1/1-_OAtmdbnM1fgS4Gn_8XVHj7OKQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.107.64.0/24 IPv6: 2a07:1780::/29 Signature Algorithm: sha256WithRSAEncryption 29:ad:92:e1:80:5f:8d:ba:86:05:8c:ee:1d:56:63:dd:d7:b9: a3:de:90:a9:88:1b:3c:ef:69:4f:58:12:b6:b4:8b:c7:ba:f3: bf:76:69:a3:54:a6:87:45:8c:5a:77:8b:ee:ca:46:58:c8:5a: 96:77:20:2b:f3:b5:99:6c:92:3b:89:d5:20:ce:68:d5:b1:12: be:7d:eb:f1:57:b5:47:bf:b6:70:3d:c3:ed:dd:ce:98:87:14: 84:3e:ae:65:8a:bf:54:da:7b:30:97:3b:8d:74:8a:5b:1a:49: 68:18:0c:3d:57:0a:1d:52:9b:b6:a1:e9:50:99:8b:97:83:23: a9:73:41:fa:83:25:ff:6d:5b:6d:74:49:e2:8d:07:c0:bb:79: 75:89:7f:43:0f:32:80:4c:59:32:88:1e:b1:a1:1e:c2:c3:54: 63:6b:0a:eb:99:cb:cf:f3:b0:35:d0:ea:c1:f0:37:c0:05:8e: da:30:75:72:53:78:69:0b:b9:9a:8b:1f:1b:9b:ab:20:d2:59: 61:d6:7c:53:39:ae:33:29:e3:51:0f:1e:53:d0:ef:a2:95:3c: 55:ea:7b:48:2d:c7:b7:77:68:4f:33:78:ce:fa:d0:13:2f:9e: a4:02:59:b1:b3:f5:44:65:fc:17:7d:eb:8a:bc:e0:55:db:f2: 56:cf:db:94 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3WIIbNKdDIBKcBs0htqBnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZiZjM4MGI2Njc1YjljY2Q1ZjgxMmUwNjlmZmYxNzU0Nzhm YjM4YTQwHhcNMjYwMTAxMDIxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZmY2OGE4MWMwNmE1N2E4YmY5OTczN2JlYWI3ZjFhZTI2YmMwMDc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi52HE8kdjmPa9lTLHldWVgaZxNp0 qJfqhscVYXYsXHHhNnuJqxJVGFnyJaGrxsASZQ2nQqRbBT8LTjtlhlVgNjmdB/vV Aut/ele5EJH3Ak9S7ld+9GrTruniSua6uin9NvapZetWU+sxt1+Zj5h9RZT8+U1s Ul1Ud5AkASje/A179Ivv0zD/w0TywtDjG3QH8CBduQRXJWR0jrlqW8PgyI9AdIeV thQIvPo3mouhtuqG3SgH6X37Z2p5DLdTYaRoK4gr970xYMMhaqjVEHXnf5tInppy PYGpnl9WFtF/dsDOdwhxqwDqi13JqbXXre/CMxRVE3Fczt5IPmT3zUsaZwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFP/2ioHAaleov5lze+q38a4mvAB0MB8GA1UdIwQY MBaAFPvzgLZnW5zNX4EuBp//F1R4+zikMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1fT0F0bWRibk0xZmdTNEduXzhYVkhqN09LUS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmMvZDEwODEzLWZlNjEtNDAzMy1hNDMz LTVlZTliNjIyNDZkYi8xL19fYUtnY0JxVjZpX21YTjc2cmZ4cmlhOEFIUS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvNmMvZDEwODEzLWZlNjEtNDAzMy1hNDMzLTVlZTliNjIyNDZk Yi8xLzEtX09BdG1kYm5NMWZnUzRHbl84WFZIajdPS1EuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBADBa0Aw DQQCAAIwBwMFAyoHF4AwDQYJKoZIhvcNAQELBQADggEBACmtkuGAX426hgWM7h1W Y93XuaPekKmIGzzvaU9YEra0i8e68792aaNUpodFjFp3i+7KRljIWpZ3ICvztZls kjuJ1SDOaNWxEr596/FXtUe/tnA9w+3dzpiHFIQ+rmWKv1TaezCXO410ilsaSWgY DD1XCh1Sm7ah6VCZi5eDI6lzQfqDJf9tW210SeKNB8C7eXWJf0MPMoBMWTKIHrGh HsLDVGNrCuuZy8/zsDXQ6sHwN8AFjtowdXJTeGkLuZqLHxubqyDSWWHWfFM5rjMp 41EPHlPQ76KVPFXqe0gtx7d3aE8zeM760BMvnqQCWbGz9URl/Bd964q84FXb8lbP 25Q= -----END CERTIFICATE-----Generated at Mon Jan 26 03:58:04 2026 by rpki-client