This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/d6qcKW1msPvrkPap_anNs3nncIc.roa File: d6qcKW1msPvrkPap_anNs3nncIc.roa (raw, json) Hash identifier: MeURyRJbadIj4RLZ7K71M6LgbnCBWIKCvay4NBmiSn0= Subject key identifier: 77:AA:9C:29:6D:66:B0:FB:EB:90:F6:A9:FD:A9:CD:B3:79:E7:70:87 Certificate issuer: /CN=3919f2ad91584baff0467447bac8fb978d1f9dd3 Certificate serial: 019B78A36A0488B9BF26BBDC242F9F73A8AB Authority key identifier: 39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/d6qcKW1msPvrkPap_anNs3nncIc.roa Signing time: Thu 01 Jan 2026 08:18:53 +0000 ROA not before: Thu 01 Jan 2026 08:18:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 28781 IP address blocks: 213.161.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.mft rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:6a:04:88:b9:bf:26:bb:dc:24:2f:9f:73:a8:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3919f2ad91584baff0467447bac8fb978d1f9dd3 Validity Not Before: Jan 1 08:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=77aa9c296d66b0fbeb90f6a9fda9cdb379e77087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:bd:3a:59:e7:0d:39:c5:b5:89:b6:b2:8f:27: c2:7d:8f:0c:3c:b5:2a:b4:fa:76:6b:ec:52:8f:07: e1:36:6e:2e:70:14:35:dd:ee:71:62:3d:e8:92:d3: 90:f3:22:12:aa:aa:97:6e:4c:97:17:e5:73:9f:73: da:62:e5:db:e7:94:51:2c:3c:42:dd:3f:df:8c:b1: bb:df:63:5f:4d:f2:28:a5:7f:c5:3c:8b:74:4c:5e: 2a:96:b2:91:29:af:02:ee:b2:34:b6:9d:94:ec:42: 46:27:1e:df:90:1a:59:73:4b:ac:8a:a9:cc:4a:d3: ea:ee:5e:c4:66:19:e1:2a:70:6d:6a:f6:e7:7d:88: 95:6b:81:9e:40:d3:f4:5d:30:2e:40:ad:b8:0f:29: 7c:82:4c:0c:ed:3c:3f:38:c3:84:11:25:87:53:59: 53:f4:c6:2d:7c:61:a9:57:6d:23:0e:df:c9:0e:45: 01:6d:21:f3:8f:9d:50:cc:32:7c:4a:e4:8a:bf:60: e3:ef:f7:51:8b:7f:23:f4:04:d9:02:2c:d4:4b:d3: 87:c6:ae:1f:8f:e6:e3:17:56:dd:6c:82:22:74:32: 38:17:15:7c:59:ca:6c:ad:df:c9:f5:4c:a3:be:b5: ba:ad:38:8a:2c:bd:0d:70:d3:22:39:00:86:a9:92: b3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:AA:9C:29:6D:66:B0:FB:EB:90:F6:A9:FD:A9:CD:B3:79:E7:70:87 X509v3 Authority Key Identifier: keyid:39:19:F2:AD:91:58:4B:AF:F0:46:74:47:BA:C8:FB:97:8D:1F:9D:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORnyrZFYS6_wRnRHusj7l40fndM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/d6qcKW1msPvrkPap_anNs3nncIc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/9118e2-ae74-4c24-a775-32aa6731c291/1/ORnyrZFYS6_wRnRHusj7l40fndM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.161.131.0/24 Signature Algorithm: sha256WithRSAEncryption 24:ce:69:13:ec:81:85:0e:22:f7:75:4a:f6:da:e5:e0:cd:d8: 89:2d:f3:e0:35:b9:d1:31:8c:b5:2c:02:28:40:e5:9a:fd:c7: 78:3a:50:9b:1e:98:97:51:9f:14:f8:d9:43:b7:c0:73:2b:3d: 2d:42:ae:ee:d4:18:69:48:08:32:e3:3b:ac:31:c5:7d:4e:f7: a2:43:3b:d5:b2:fc:58:6e:df:da:80:a4:5f:2f:8d:8b:18:ca: 33:7c:0b:7a:c1:c0:a1:d4:a6:9e:f6:88:0b:78:11:e0:af:5d: 4c:23:7b:93:2a:6b:b2:31:f0:f4:df:16:c0:9b:41:18:0d:f5: 19:1a:aa:33:75:8d:f4:ee:79:5f:40:3e:9c:33:ff:aa:5d:0c: 17:1f:a2:da:97:91:b5:22:c8:3d:f3:8a:2a:0d:13:16:67:68: 12:1e:e4:ee:6f:63:ca:c0:c9:70:4b:f4:3e:fa:60:38:51:f0: 3d:17:60:ac:13:6b:50:bb:f3:f8:6f:57:f9:79:9f:3e:f1:be: 18:86:b1:80:63:24:a5:e1:ba:d3:dc:86:ce:c0:6e:d6:9b:d6: 87:02:35:42:33:a4:84:d5:70:66:75:65:99:fa:08:98:34:5b: ba:6a:9a:dd:86:14:04:2c:3a:0d:18:6d:21:6c:07:a5:1b:25: 57:49:3b:f6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4o2oEiLm/JrvcJC+fc6irMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM5MTlmMmFkOTE1ODRiYWZmMDQ2NzQ0N2JhYzhmYjk3OGQx ZjlkZDMwHhcNMjYwMTAxMDgxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3N2FhOWMyOTZkNjZiMGZiZWI5MGY2YTlmZGE5Y2RiMzc5ZTc3MDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlb06WecNOcW1ibayjyfCfY8MPLUq tPp2a+xSjwfhNm4ucBQ13e5xYj3oktOQ8yISqqqXbkyXF+Vzn3PaYuXb55RRLDxC 3T/fjLG732NfTfIopX/FPIt0TF4qlrKRKa8C7rI0tp2U7EJGJx7fkBpZc0usiqnM StPq7l7EZhnhKnBtavbnfYiVa4GeQNP0XTAuQK24Dyl8gkwM7Tw/OMOEESWHU1lT 9MYtfGGpV20jDt/JDkUBbSHzj51QzDJ8SuSKv2Dj7/dRi38j9ATZAizUS9OHxq4f j+bjF1bdbIIidDI4FxV8Wcpsrd/J9UyjvrW6rTiKLL0NcNMiOQCGqZKzEQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHeqnCltZrD765D2qf2pzbN553CHMB8GA1UdIwQY MBaAFDkZ8q2RWEuv8EZ0R7rI+5eNH53TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT1JueXJaRllTNl93Um5SSHVzajdsNDBmbmRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85MTE4ZTItYWU3NC00YzI0LWE3NzUt MzJhYTY3MzFjMjkxLzEvZDZxY0tXMW1zUHZya1BhcF9hbk5zM25uY0ljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS85MTE4ZTItYWU3NC00YzI0LWE3NzUtMzJhYTY3MzFjMjkx LzEvT1JueXJaRllTNl93Um5SSHVzajdsNDBmbmRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1aGDMA0G CSqGSIb3DQEBCwUAA4IBAQAkzmkT7IGFDiL3dUr22uXgzdiJLfPgNbnRMYy1LAIo QOWa/cd4OlCbHpiXUZ8U+NlDt8BzKz0tQq7u1BhpSAgy4zusMcV9TveiQzvVsvxY bt/agKRfL42LGMozfAt6wcCh1Kae9ogLeBHgr11MI3uTKmuyMfD03xbAm0EYDfUZ GqozdY307nlfQD6cM/+qXQwXH6Lal5G1Isg984oqDRMWZ2gSHuTub2PKwMlwS/Q+ +mA4UfA9F2CsE2tQu/P4b1f5eZ8+8b4YhrGAYySl4brT3IbOwG7Wm9aHAjVCM6SE 1XBmdWWZ+giYNFu6aprdhhQELDoNGG0hbAelGyVXSTv2 -----END CERTIFICATE-----Generated at Sun Jan 25 20:29:56 2026 by rpki-client