This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/sTa2ruH12AN1447UXDyFG4sK58o.roa File: sTa2ruH12AN1447UXDyFG4sK58o.roa (raw, json) Hash identifier: QQfIB8V26GpvkAguN7nqO2FkvauGQGA+m32WWNo/GsE= Subject key identifier: B1:36:B6:AE:E1:F5:D8:03:75:E3:8E:D4:5C:3C:85:1B:8B:0A:E7:CA Certificate issuer: /CN=b59909ed171b38c1fdc4362229e78d69851de11c Certificate serial: 019B7B36E56DF7974E32D8105839E49D14A8 Authority key identifier: B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/sTa2ruH12AN1447UXDyFG4sK58o.roa Signing time: Thu 01 Jan 2026 20:19:13 +0000 ROA not before: Thu 01 Jan 2026 20:19:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60447 IP address blocks: 77.246.216.0/22 maxlen: 22 77.246.216.0/24 maxlen: 24 77.246.217.0/24 maxlen: 24 77.246.218.0/24 maxlen: 24 77.246.219.0/24 maxlen: 24 95.214.104.0/22 maxlen: 22 95.214.104.0/23 maxlen: 23 95.214.106.0/23 maxlen: 23 185.97.72.0/22 maxlen: 22 185.97.72.0/24 maxlen: 24 185.97.73.0/24 maxlen: 24 185.97.74.0/24 maxlen: 24 185.97.75.0/24 maxlen: 24 195.170.166.0/24 maxlen: 24 2a06:4c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.mft rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:e5:6d:f7:97:4e:32:d8:10:58:39:e4:9d:14:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b59909ed171b38c1fdc4362229e78d69851de11c Validity Not Before: Jan 1 20:19:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b136b6aee1f5d80375e38ed45c3c851b8b0ae7ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:e5:1d:8e:9e:6d:05:c4:f1:65:4e:f0:25:73: 0b:3b:e6:c3:f2:0f:bb:76:9d:0c:78:48:ea:62:52: 4a:38:89:4f:be:80:1b:d3:b6:48:02:56:51:3e:07: 92:41:7a:17:85:7a:c0:1e:44:5d:d3:25:de:47:4c: 44:94:a5:78:0e:d6:7e:f9:6d:d4:4d:e2:92:b3:0e: 66:04:e0:85:af:cf:89:e4:be:2e:e8:cb:33:2e:d1: 48:97:2f:27:47:1a:f0:a9:cf:51:e2:07:e5:88:22: fa:ab:e4:52:e2:75:41:57:9b:e1:cb:f1:f0:18:e0: 45:33:a0:7f:d0:54:8b:c6:27:f7:95:cd:94:02:0c: d7:f3:c1:34:14:6e:45:8d:b4:6f:5b:78:b2:19:35: 11:da:c8:11:e5:28:0d:d4:6c:88:75:df:f0:bf:88: ca:4a:c4:4b:3c:72:91:05:f6:42:ca:58:d8:d1:e1: 35:97:c6:23:7c:bd:df:64:c3:58:a8:f0:3a:e1:51: 49:71:fd:52:eb:d8:5d:a0:41:a2:d7:9a:b4:0a:16: c5:5a:03:9e:be:00:18:51:5e:3d:ba:9d:74:3d:5d: 0c:d4:02:82:93:89:ac:64:5e:ff:91:04:bc:22:27: 07:2a:98:16:61:10:2e:0a:4c:7f:3f:57:1c:42:aa: 89:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:36:B6:AE:E1:F5:D8:03:75:E3:8E:D4:5C:3C:85:1B:8B:0A:E7:CA X509v3 Authority Key Identifier: keyid:B5:99:09:ED:17:1B:38:C1:FD:C4:36:22:29:E7:8D:69:85:1D:E1:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/sTa2ruH12AN1447UXDyFG4sK58o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9ee980-67a2-4d3c-b6ca-fde073588f0f/1/tZkJ7RcbOMH9xDYiKeeNaYUd4Rw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.246.216.0/22 95.214.104.0/22 185.97.72.0/22 195.170.166.0/24 IPv6: 2a06:4c0::/32 Signature Algorithm: sha256WithRSAEncryption 12:88:d4:3b:c1:76:3d:93:09:91:ee:d5:22:f1:69:ec:04:d2: 36:c3:bb:68:3d:c8:58:8f:c2:52:58:a4:2b:1b:46:7a:fe:69: 4f:aa:4e:3c:60:e8:bf:8b:f7:d4:d4:1e:ad:24:6b:c5:48:99: 13:6b:0d:bd:e7:1b:b9:57:5f:be:5b:98:eb:2e:f4:d4:57:42: 44:9e:11:61:2f:3c:da:03:86:11:82:47:1c:36:b4:dd:83:b5: c5:5b:72:e0:00:8e:22:0d:aa:a0:fd:c7:fb:f8:74:5c:ca:f1: cd:2e:41:11:69:5a:3f:24:ca:02:aa:e1:24:7f:d9:0e:2a:c3: 45:54:64:e9:31:68:e1:f8:e2:95:7f:09:7d:7a:71:9e:82:21: d2:1d:14:29:ba:a6:a9:04:b2:1f:d3:07:2c:19:11:6e:44:81: 0d:81:78:d4:fa:5c:2c:7b:3e:73:45:40:e5:e8:f2:2f:1b:09: 9e:6b:8f:26:4c:ad:6a:aa:c7:36:b7:c4:51:a3:bf:86:ab:76: cf:a0:10:08:56:05:0b:d8:d7:f4:56:f5:37:de:63:e4:d7:da: e3:53:1f:ce:24:70:e4:19:f7:fd:4d:c3:93:d8:ec:71:14:fa: 5d:19:7a:d7:16:1a:79:a9:de:b1:ad:de:df:62:53:3f:64:2b: 5d:ef:0a:0c -----BEGIN CERTIFICATE----- MIIFHjCCBAagAwIBAgISAZt7NuVt95dOMtgQWDnknRSoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1OTkwOWVkMTcxYjM4YzFmZGM0MzYyMjI5ZTc4ZDY5ODUx ZGUxMWMwHhcNMjYwMTAxMjAxOTEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTM2YjZhZWUxZjVkODAzNzVlMzhlZDQ1YzNjODUxYjhiMGFlN2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjOUdjp5tBcTxZU7wJXMLO+bD8g+7 dp0MeEjqYlJKOIlPvoAb07ZIAlZRPgeSQXoXhXrAHkRd0yXeR0xElKV4DtZ++W3U TeKSsw5mBOCFr8+J5L4u6MszLtFIly8nRxrwqc9R4gfliCL6q+RS4nVBV5vhy/Hw GOBFM6B/0FSLxif3lc2UAgzX88E0FG5FjbRvW3iyGTUR2sgR5SgN1GyIdd/wv4jK SsRLPHKRBfZCyljY0eE1l8YjfL3fZMNYqPA64VFJcf1S69hdoEGi15q0ChbFWgOe vgAYUV49up10PV0M1AKCk4msZF7/kQS8IicHKpgWYRAuCkx/P1ccQqqJ+wIDAQAB o4ICKjCCAiYwHQYDVR0OBBYEFLE2tq7h9dgDdeOO1Fw8hRuLCufKMB8GA1UdIwQY MBaAFLWZCe0XGzjB/cQ2IinnjWmFHeEcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFprSjdSY2JPTUg5eERZaUtlZU5hWVVkNFJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi85ZWU5ODAtNjdhMi00ZDNjLWI2Y2Et ZmRlMDczNTg4ZjBmLzEvc1RhMnJ1SDEyQU4xNDQ3VVhEeUZHNHNLNThvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi85ZWU5ODAtNjdhMi00ZDNjLWI2Y2EtZmRlMDczNTg4ZjBm LzEvdFprSjdSY2JPTUg5eERZaUtlZU5hWVVkNFJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEAGCCsGAQUFBwEHAQH/BDEwLzAeBAIAATAYAwQCTfbYAwQC X9ZoAwQCuWFIAwQAw6qmMA0EAgACMAcDBQAqBgTAMA0GCSqGSIb3DQEBCwUAA4IB AQASiNQ7wXY9kwmR7tUi8WnsBNI2w7toPchYj8JSWKQrG0Z6/mlPqk48YOi/i/fU 1B6tJGvFSJkTaw295xu5V1++W5jrLvTUV0JEnhFhLzzaA4YRgkccNrTdg7XFW3Lg AI4iDaqg/cf7+HRcyvHNLkERaVo/JMoCquEkf9kOKsNFVGTpMWjh+OKVfwl9enGe giHSHRQpuqapBLIf0wcsGRFuRIENgXjU+lwsez5zRUDl6PIvGwmea48mTK1qqsc2 t8RRo7+Gq3bPoBAIVgUL2Nf0VvU33mPk19rjUx/OJHDkGff9TcOT2OxxFPpdGXrX Fhp5qd6xrd7fYlM/ZCtd7woM -----END CERTIFICATE-----Generated at Mon Jan 26 06:19:24 2026 by rpki-client