This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/66tOe78SbNGG7nIBJLTOvrt29-I.roa File: 66tOe78SbNGG7nIBJLTOvrt29-I.roa (raw, json) Hash identifier: jszSMqa4xvb83jOxyoA/DxhZOhAu+kktYYx6bB2A8aU= Subject key identifier: EB:AB:4E:7B:BF:12:6C:D1:86:EE:72:01:24:B4:CE:BE:BB:76:F7:E2 Certificate issuer: /CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718 Certificate serial: 019B7F1503B0E1B79970A348C49C4E1CBB04 Authority key identifier: 6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/66tOe78SbNGG7nIBJLTOvrt29-I.roa Signing time: Fri 02 Jan 2026 14:20:42 +0000 ROA not before: Fri 02 Jan 2026 14:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21100 IP address blocks: 91.90.192.0/24 maxlen: 24 91.90.194.0/24 maxlen: 24 91.223.123.0/24 maxlen: 24 185.198.164.0/22 maxlen: 22 195.245.112.0/23 maxlen: 23 2001:67c:2f5c::/48 maxlen: 48 2a06:fcc0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.mft rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:03:b0:e1:b7:99:70:a3:48:c4:9c:4e:1c:bb:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6fccdffda6a4c48914b5e8cde7da5d820b9c9718 Validity Not Before: Jan 2 14:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ebab4e7bbf126cd186ee720124b4cebebb76f7e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9d:b1:b7:66:0b:4a:15:7b:76:ab:1b:62:b6: 2f:af:eb:e5:bc:f2:7f:0d:16:4e:77:31:17:6a:17: 6d:3d:68:8e:c8:61:e6:ab:ca:6b:c8:e7:bc:fe:78: 11:8a:58:a2:c8:91:62:61:73:f1:f8:5b:83:2a:38: 92:38:a4:9f:30:8f:e7:15:27:a4:c1:1a:ee:ff:e8: e4:ab:1a:53:3e:c4:5f:8d:79:96:a0:6a:05:91:d9: 2f:19:ec:a6:30:87:01:d1:d7:42:cc:51:a2:93:1b: 42:f9:37:5e:73:e7:a9:fe:ba:9d:a2:3b:eb:83:d7: c1:72:b2:a4:d2:46:29:2b:6c:8f:1f:43:f3:ba:a7: 25:19:3b:72:d6:ff:b1:cd:d8:0f:eb:cf:e4:32:37: 51:79:16:0c:b7:27:3a:36:02:9c:b5:01:22:4a:f1: fd:fb:07:f3:df:5c:c2:0a:fa:6e:db:da:db:16:f5: a0:9f:6a:26:09:c7:77:70:f6:19:9e:28:09:a2:43: 26:ab:23:35:34:e0:41:31:9a:44:67:2b:40:35:94: 67:e8:36:84:54:03:29:09:91:76:cf:1e:6f:84:79: 75:43:36:2b:4f:d7:0d:84:b7:6f:02:44:48:27:e0: 31:bc:d6:a2:ee:eb:9c:fb:59:3b:e0:54:f0:aa:0d: 63:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:AB:4E:7B:BF:12:6C:D1:86:EE:72:01:24:B4:CE:BE:BB:76:F7:E2 X509v3 Authority Key Identifier: keyid:6F:CC:DF:FD:A6:A4:C4:89:14:B5:E8:CD:E7:DA:5D:82:0B:9C:97:18 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8zf_aakxIkUtejN59pdgguclxg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/66tOe78SbNGG7nIBJLTOvrt29-I.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/82/cb0153-803a-4bb6-b19d-a774e41d264c/1/b8zf_aakxIkUtejN59pdgguclxg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.90.192.0/24 91.90.194.0/24 91.223.123.0/24 185.198.164.0/22 195.245.112.0/23 IPv6: 2001:67c:2f5c::/48 2a06:fcc0:3::/48 Signature Algorithm: sha256WithRSAEncryption 36:95:4c:9a:3d:f2:c8:aa:1c:cc:88:bc:f9:a5:83:90:c0:e0: 76:40:ba:ef:68:ab:77:a2:25:f6:0d:2a:6b:1a:03:0a:17:30: 46:d8:e4:92:55:81:48:aa:cc:ef:3d:f3:8f:17:02:58:ee:6a: 9f:6d:f4:9e:eb:f8:eb:89:ed:6b:d2:35:39:00:5f:e9:6e:0c: aa:e5:b2:b7:08:06:26:52:3f:fb:1a:c3:02:90:eb:47:0b:16: a1:7f:b4:9e:23:5a:ac:46:11:48:c7:59:2f:08:4e:eb:a5:a3: f7:51:10:17:8c:eb:88:74:c3:85:d1:39:ae:20:d6:f7:7e:ed: 10:f0:2b:c1:7e:08:d0:e4:a8:77:c0:36:a5:c9:51:e5:87:63: d8:dc:20:38:37:d2:b1:20:28:95:f6:89:13:77:b7:b2:53:bd: d1:50:9b:53:c0:8e:4e:9c:49:cf:ae:ba:61:ad:46:ef:87:b2: cf:14:d6:81:0c:cb:c3:45:55:f0:2b:2f:82:a2:d6:9c:98:8b: f0:ab:64:33:d4:92:09:01:96:61:2e:75:01:80:8a:20:71:75: c0:e2:1f:06:11:a2:1d:48:d5:70:53:09:5a:d1:f4:a7:e6:23: 82:b7:b7:76:6a:6b:3e:73:fb:20:02:9b:4b:b4:0f:ee:d6:d5: 28:d8:6c:48 -----BEGIN CERTIFICATE----- MIIFLzCCBBegAwIBAgISAZt/FQOw4beZcKNIxJxOHLsEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmY2NkZmZkYTZhNGM0ODkxNGI1ZThjZGU3ZGE1ZDgyMGI5 Yzk3MTgwHhcNMjYwMTAyMTQyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYmFiNGU3YmJmMTI2Y2QxODZlZTcyMDEyNGI0Y2ViZWJiNzZmN2UyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArp2xt2YLShV7dqsbYrYvr+vlvPJ/ DRZOdzEXahdtPWiOyGHmq8pryOe8/ngRiliiyJFiYXPx+FuDKjiSOKSfMI/nFSek wRru/+jkqxpTPsRfjXmWoGoFkdkvGeymMIcB0ddCzFGikxtC+Tdec+ep/rqdojvr g9fBcrKk0kYpK2yPH0PzuqclGTty1v+xzdgP68/kMjdReRYMtyc6NgKctQEiSvH9 +wfz31zCCvpu29rbFvWgn2omCcd3cPYZnigJokMmqyM1NOBBMZpEZytANZRn6DaE VAMpCZF2zx5vhHl1QzYrT9cNhLdvAkRIJ+AxvNai7uuc+1k74FTwqg1j3QIDAQAB o4ICOzCCAjcwHQYDVR0OBBYEFOurTnu/EmzRhu5yASS0zr67dvfiMB8GA1UdIwQY MBaAFG/M3/2mpMSJFLXozefaXYILnJcYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYjh6Zl9hYWt4SWtVdGVqTjU5cGRnZ3VjbHhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9jYjAxNTMtODAzYS00YmI2LWIxOWQt YTc3NGU0MWQyNjRjLzEvNjZ0T2U3OFNiTkdHN25JQkpMVE92cnQyOS1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Mi9jYjAxNTMtODAzYS00YmI2LWIxOWQtYTc3NGU0MWQyNjRj LzEvYjh6Zl9hYWt4SWtVdGVqTjU5cGRnZ3VjbHhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAkBAIAATAeAwQAW1rAAwQA W1rCAwQAW997AwQCucakAwQBw/VwMBgEAgACMBIDBwAgAQZ8L1wDBwAqBvzAAAMw DQYJKoZIhvcNAQELBQADggEBADaVTJo98siqHMyIvPmlg5DA4HZAuu9oq3eiJfYN KmsaAwoXMEbY5JJVgUiqzO89848XAljuap9t9J7r+OuJ7WvSNTkAX+luDKrlsrcI BiZSP/sawwKQ60cLFqF/tJ4jWqxGEUjHWS8ITuulo/dREBeM64h0w4XROa4g1vd+ 7RDwK8F+CNDkqHfANqXJUeWHY9jcIDg30rEgKJX2iRN3t7JTvdFQm1PAjk6cSc+u umGtRu+Hss8U1oEMy8NFVfArL4Ki1pyYi/CrZDPUkgkBlmEudQGAiiBxdcDiHwYR oh1I1XBTCVrR9KfmI4K3t3Zqaz5z+yACm0u0D+7W1SjYbEg= -----END CERTIFICATE-----Generated at Sun Jan 25 19:16:18 2026 by rpki-client