This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/tXnfWz7VMfwZOSPF7inq-w70juw.roa File: tXnfWz7VMfwZOSPF7inq-w70juw.roa (raw, json) Hash identifier: ePCWD8yh8cWuxvKCZtyBgR8sHHIl7oNaYZfYBxcOMkA= Subject key identifier: B5:79:DF:5B:3E:D5:31:FC:19:39:23:C5:EE:29:EA:FB:0E:F4:8E:EC Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Certificate serial: 019B7A5AC9B8D1BAF1689930FC8F46EE7C41 Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/tXnfWz7VMfwZOSPF7inq-w70juw.roa Signing time: Thu 01 Jan 2026 16:18:48 +0000 ROA not before: Thu 01 Jan 2026 16:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212238 IP address blocks: 79.99.150.0/23 maxlen: 24 82.152.55.0/24 maxlen: 24 82.153.145.0/24 maxlen: 24 82.163.10.0/23 maxlen: 24 89.213.226.0/24 maxlen: 24 109.176.30.0/24 maxlen: 24 109.176.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:c9:b8:d1:ba:f1:68:99:30:fc:8f:46:ee:7c:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Validity Not Before: Jan 1 16:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b579df5b3ed531fc193923c5ee29eafb0ef48eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:22:e7:4a:b7:eb:1a:3b:15:2c:a7:d4:5d:a5: 11:66:77:5d:8e:00:2c:06:73:34:ce:05:ab:2a:65: 21:5b:f6:f2:7a:35:08:f3:f3:23:cf:ae:7f:57:02: 18:e4:aa:94:32:d5:cd:c8:e0:9c:23:d8:67:53:9d: 62:f7:9e:71:08:8c:a7:79:40:d0:0d:88:20:78:86: eb:2a:0c:c4:14:9b:7b:4a:0f:99:d1:4d:48:fd:21: 7c:64:ec:c7:45:cb:c4:5d:85:8b:36:28:ea:0f:9f: a6:93:f5:59:d7:4e:74:2b:f6:7c:e4:25:55:63:39: 9a:10:33:fd:b9:48:10:c2:6b:06:2e:d8:22:b7:85: f1:a9:1a:62:4b:c7:4c:dc:04:12:3a:8f:2f:9f:ec: b9:40:fa:e0:9b:86:ae:8c:28:73:8a:62:cf:44:8f: e1:e5:c2:6f:bb:05:05:f5:8f:cf:c5:90:f2:9d:51: 20:99:a0:57:9e:ee:a5:6d:e5:d5:32:7d:b7:28:2e: 0b:11:90:6e:33:fc:df:15:2f:02:9d:6a:fd:23:9c: 14:97:41:0a:52:9d:1f:74:01:78:52:fb:20:49:20: 71:7a:4f:2f:42:fe:42:9a:22:76:9c:3f:cb:70:95: 19:e0:75:d4:1b:2d:e0:42:f9:46:9f:d4:74:36:99: 64:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:79:DF:5B:3E:D5:31:FC:19:39:23:C5:EE:29:EA:FB:0E:F4:8E:EC X509v3 Authority Key Identifier: keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/tXnfWz7VMfwZOSPF7inq-w70juw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.99.150.0/23 82.152.55.0/24 82.153.145.0/24 82.163.10.0/23 89.213.226.0/24 109.176.30.0/24 109.176.208.0/24 Signature Algorithm: sha256WithRSAEncryption 85:cc:fb:1b:61:8e:32:00:a9:16:07:c4:e5:5e:9e:b9:78:1b: e0:6c:3f:14:b6:3e:1d:36:2f:f8:38:eb:a4:86:2b:62:57:67: 5f:93:c2:ef:e4:6d:78:bf:5b:d5:1a:60:e6:53:4e:10:50:2e: a9:a1:2e:27:92:56:2c:9b:5f:ed:c3:a8:e8:6a:5a:7b:16:91: 02:4b:a8:38:70:c8:54:8a:5e:b3:2d:c2:a3:50:2b:b4:ef:fe: 8d:a9:73:c5:04:21:75:cb:8d:4d:fe:c4:70:79:97:75:cc:d5: e9:e2:8e:da:c9:6c:09:d9:6e:1e:7f:37:9a:9d:e6:43:d9:68: 37:31:44:29:d2:58:ea:d5:8b:66:ea:33:cf:2e:f7:d6:b0:a5: 33:80:7e:3b:a2:e5:2b:42:76:13:71:99:d6:09:f5:c2:ea:02: 1d:7f:97:31:cb:35:d5:df:91:aa:fc:67:0c:83:4e:cd:72:a1: fa:26:f5:af:77:e8:a8:97:72:9b:e3:c9:7b:33:99:f2:51:ca: 07:48:01:c1:d1:20:2a:f5:46:b6:be:63:a5:25:ce:15:18:66: 25:14:b3:cd:a4:77:78:f7:95:2c:da:9e:b5:da:e2:18:f1:82: 28:fe:ac:27:99:27:ff:39:d2:8c:41:f1:50:fe:75:cb:ec:d3: b6:0d:9a:67 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt6Wsm40brxaJkw/I9G7nxBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh NTNiOWIwHhcNMjYwMTAxMTYxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTc5ZGY1YjNlZDUzMWZjMTkzOTIzYzVlZTI5ZWFmYjBlZjQ4ZWVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyiLnSrfrGjsVLKfUXaURZnddjgAs BnM0zgWrKmUhW/byejUI8/Mjz65/VwIY5KqUMtXNyOCcI9hnU51i955xCIyneUDQ DYggeIbrKgzEFJt7Sg+Z0U1I/SF8ZOzHRcvEXYWLNijqD5+mk/VZ1050K/Z85CVV YzmaEDP9uUgQwmsGLtgit4XxqRpiS8dM3AQSOo8vn+y5QPrgm4aujChzimLPRI/h 5cJvuwUF9Y/PxZDynVEgmaBXnu6lbeXVMn23KC4LEZBuM/zfFS8CnWr9I5wUl0EK Up0fdAF4UvsgSSBxek8vQv5CmiJ2nD/LcJUZ4HXUGy3gQvlGn9R0NplkMwIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFLV531s+1TH8GTkjxe4p6vsO9I7sMB8GA1UdIwQY MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt NDEyMjhlMzlmZjdjLzEvdFhuZld6N1ZNZndaT1NQRjdpbnEtdzcwanV3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQBT2OWAwQA Upg3AwQAUpmRAwQBUqMKAwQAWdXiAwQAbbAeAwQAbbDQMA0GCSqGSIb3DQEBCwUA A4IBAQCFzPsbYY4yAKkWB8TlXp65eBvgbD8Utj4dNi/4OOukhitiV2dfk8Lv5G14 v1vVGmDmU04QUC6poS4nklYsm1/tw6joalp7FpECS6g4cMhUil6zLcKjUCu07/6N qXPFBCF1y41N/sRweZd1zNXp4o7ayWwJ2W4efzeaneZD2Wg3MUQp0ljq1Ytm6jPP LvfWsKUzgH47ouUrQnYTcZnWCfXC6gIdf5cxyzXV35Gq/GcMg07NcqH6JvWvd+io l3Kb48l7M5nyUcoHSAHB0SAq9Ua2vmOlJc4VGGYlFLPNpHd495Us2p612uIY8YIo /qwnmSf/OdKMQfFQ/nXL7NO2DZpn -----END CERTIFICATE-----Generated at Sun Jan 25 07:16:20 2026 by rpki-client