This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/6nfKLOxto_YJYq2hDB97wz66l7E.roa File: 6nfKLOxto_YJYq2hDB97wz66l7E.roa (raw, json) Hash identifier: nCd4ej6s8SzPKiU6agc04bISSI9GsH2UwtiXrQMxtRs= Subject key identifier: EA:77:CA:2C:EC:6D:A3:F6:09:62:AD:A1:0C:1F:7B:C3:3E:BA:97:B1 Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Certificate serial: 019B7F836FB23F8C9534808DE8FBC8B4EB5E Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/6nfKLOxto_YJYq2hDB97wz66l7E.roa Signing time: Fri 02 Jan 2026 16:21:18 +0000 ROA not before: Fri 02 Jan 2026 16:21:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216033 IP address blocks: 31.40.133.0/24 maxlen: 24 31.40.136.0/24 maxlen: 24 31.40.145.0/24 maxlen: 24 31.40.146.0/24 maxlen: 24 31.40.150.0/24 maxlen: 24 31.40.152.0/24 maxlen: 24 31.40.154.0/24 maxlen: 24 31.40.160.0/23 maxlen: 23 31.40.164.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.mft rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:6f:b2:3f:8c:95:34:80:8d:e8:fb:c8:b4:eb:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7 Validity Not Before: Jan 2 16:21:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ea77ca2cec6da3f60962ada10c1f7bc33eba97b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:32:96:8b:e1:36:22:0d:15:dc:d4:2a:62:9d: e6:2c:46:0b:19:90:8c:7f:a4:65:1c:dd:50:02:ca: b7:2b:1c:b5:e7:37:b3:1b:b1:70:0c:56:86:f1:56: 0c:44:d8:11:03:74:3c:dc:cd:e0:c8:ee:c4:ee:b3: 83:cb:31:0b:00:60:52:dc:5b:cc:a9:9f:3f:22:f7: 4e:ef:d8:cc:ca:33:f8:0e:c9:77:27:72:98:a5:17: 7c:53:23:a8:da:fa:4f:ae:9a:18:b4:bf:34:21:e9: de:5f:12:42:3a:e5:4b:a3:67:d7:ea:b0:fd:43:96: 88:04:2b:19:03:af:95:bb:6d:b2:49:9f:4d:72:d6: e7:1f:83:be:a3:d3:e5:d3:45:3f:c5:e2:15:2e:06: de:9e:9b:77:d5:f3:bb:9e:07:e1:a4:4e:f2:2f:2b: 4b:9c:3a:c5:fa:c7:03:a3:55:23:37:97:b4:63:21: d8:ff:c1:08:e8:92:12:9b:37:a7:be:ee:87:78:d4: 82:f9:39:9b:8f:df:3f:dd:81:bf:31:3d:af:98:7a: 62:4f:c2:2e:c7:2b:97:5b:77:00:f7:ab:e7:0b:88: b8:24:67:53:e9:18:ad:9c:11:ea:d1:1f:e7:89:7b: 0b:3c:8a:7c:95:5a:68:10:bc:6c:01:74:f4:b3:fe: a7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:77:CA:2C:EC:6D:A3:F6:09:62:AD:A1:0C:1F:7B:C3:3E:BA:97:B1 X509v3 Authority Key Identifier: keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/6nfKLOxto_YJYq2hDB97wz66l7E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.40.133.0/24 31.40.136.0/24 31.40.145.0-31.40.146.255 31.40.150.0/24 31.40.152.0/24 31.40.154.0/24 31.40.160.0/23 31.40.164.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:b4:08:b6:51:56:4e:7d:a6:0e:ba:9d:ba:7f:42:67:1e:f4: e7:93:b6:94:17:07:8b:c6:8d:dd:18:80:34:ee:da:c5:8c:24: e4:44:34:ac:4b:d1:c9:4e:86:61:f0:a8:b0:79:83:16:68:08: 02:e3:ce:84:d0:4f:c3:ab:87:7a:1c:26:b1:f1:7b:61:46:0f: 90:00:bb:2f:ea:d0:40:e7:88:3d:1a:21:9e:f6:e4:84:14:e4: 60:31:fe:73:3e:ea:8e:a7:2a:9b:56:2e:8a:94:09:fa:00:79: 2d:bf:6c:e9:9b:43:a9:d2:3b:b5:2e:a4:dc:8e:63:62:8e:46: bc:bd:09:48:a8:a0:76:4d:ef:52:7a:c5:20:6f:8e:f3:ac:95: 27:be:96:bf:05:fd:2f:7a:e6:c7:c7:bf:42:ed:da:9e:e2:05: 11:85:64:84:09:b0:16:82:1c:13:d5:6d:58:84:9b:56:cc:f4: c4:8f:7d:93:b4:51:b9:20:47:c8:f4:f0:1d:03:20:4b:a8:ad: 3c:3e:e9:bc:84:bc:7c:e5:92:2a:3b:0f:ab:7a:66:69:12:b2: 22:f8:9c:af:82:cc:a7:8a:63:27:d0:27:27:1d:1d:a4:42:12: 4f:9d:eb:a5:4f:bf:c8:b2:e9:bd:c4:e9:d2:46:11:a4:ef:48: 0f:29:6b:3a -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt/g2+yP4yVNICN6PvItOteMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYWY1YzJlNWVkYzE5NzgzNGQwN2YzNDU5NjJiMDc0NWJl ZTY2ZDcwHhcNMjYwMTAyMTYyMTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYTc3Y2EyY2VjNmRhM2Y2MDk2MmFkYTEwYzFmN2JjMzNlYmE5N2IxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0TKWi+E2Ig0V3NQqYp3mLEYLGZCM f6RlHN1QAsq3Kxy15zezG7FwDFaG8VYMRNgRA3Q83M3gyO7E7rODyzELAGBS3FvM qZ8/IvdO79jMyjP4Dsl3J3KYpRd8UyOo2vpPrpoYtL80IeneXxJCOuVLo2fX6rD9 Q5aIBCsZA6+Vu22ySZ9NctbnH4O+o9Pl00U/xeIVLgbenpt31fO7ngfhpE7yLytL nDrF+scDo1UjN5e0YyHY/8EI6JISmzenvu6HeNSC+Tmbj98/3YG/MT2vmHpiT8Iu xyuXW3cA96vnC4i4JGdT6RitnBHq0R/niXsLPIp8lVpoELxsAXT0s/6nxQIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFOp3yizsbaP2CWKtoQwfe8M+upexMB8GA1UdIwQY MBaAFB6vXC5e3Bl4NNB/NFlisHRb7mbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODIt NGEzNGMxYmJhYjJiLzEvNm5mS0xPeHRvX1lKWXEyaERCOTd3ejY2bDdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODItNGEzNGMxYmJhYjJi LzEvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDA+BAIAATA4AwQAHyiFAwQA HyiIMAwDBAAfKJEDBAAfKJIDBAAfKJYDBAAfKJgDBAAfKJoDBAEfKKADBAEfKKQw DQYJKoZIhvcNAQELBQADggEBACq0CLZRVk59pg66nbp/Qmce9OeTtpQXB4vGjd0Y gDTu2sWMJORENKxL0clOhmHwqLB5gxZoCALjzoTQT8Orh3ocJrHxe2FGD5AAuy/q 0EDniD0aIZ725IQU5GAx/nM+6o6nKptWLoqUCfoAeS2/bOmbQ6nSO7UupNyOY2KO Rry9CUiooHZN71J6xSBvjvOslSe+lr8F/S965sfHv0Lt2p7iBRGFZIQJsBaCHBPV bViEm1bM9MSPfZO0UbkgR8j08B0DIEuorTw+6byEvHzlkio7D6t6ZmkSsiL4nK+C zKeKYyfQJycdHaRCEk+d66VPv8iy6b3E6dJGEaTvSA8pazo= -----END CERTIFICATE-----Generated at Mon Jan 26 03:07:55 2026 by rpki-client