This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/6hmaFV9jZHUcH1iQEHoAEka2t_A.roa File: 6hmaFV9jZHUcH1iQEHoAEka2t_A.roa (raw, json) Hash identifier: UL9Iu2DQB97jVnXQQoV3u5Hmjd8xH9DJ3iagfVBUVSg= Subject key identifier: EA:19:9A:15:5F:63:64:75:1C:1F:58:90:10:7A:00:12:46:B6:B7:F0 Certificate issuer: /CN=7df132df13e4be53d8250c8c48420264eef6c14c Certificate serial: 019B7B36054EAC0561FFE45B62570B5FDF95 Authority key identifier: 7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/6hmaFV9jZHUcH1iQEHoAEka2t_A.roa Signing time: Thu 01 Jan 2026 20:18:16 +0000 ROA not before: Thu 01 Jan 2026 20:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39277 IP address blocks: 89.32.216.0/21 maxlen: 21 188.210.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.mft rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:05:4e:ac:05:61:ff:e4:5b:62:57:0b:5f:df:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7df132df13e4be53d8250c8c48420264eef6c14c Validity Not Before: Jan 1 20:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ea199a155f6364751c1f5890107a001246b6b7f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ec:1d:39:c7:33:43:05:99:0f:4c:e6:0e:0f: 33:ba:77:3d:1f:bf:ab:fb:6c:39:b8:86:f6:72:e3: d0:ee:0c:84:55:86:72:74:5c:bf:f3:e5:06:d1:3d: 08:09:c1:d5:83:e7:56:ed:c8:9e:c1:66:b4:1a:c2: e0:8e:c5:00:cf:ec:52:f4:a6:1d:36:37:1b:42:71: e7:24:c6:02:24:bf:78:1f:47:42:c3:1d:8e:f9:42: aa:1d:6e:46:c0:81:08:98:37:d7:34:75:3c:7b:9c: 95:f5:f0:9e:d4:80:f2:11:e8:65:3c:75:2a:36:a0: 57:a9:99:e0:04:d9:1f:ed:35:13:b8:57:30:04:30: fd:1c:45:40:4a:9c:1c:88:03:14:54:90:57:fe:e9: 65:ec:0a:c7:cf:a4:23:7e:9c:8d:76:46:da:40:af: a6:30:ac:e2:cd:85:db:99:62:e3:fb:1d:0d:68:75: 02:69:1d:b1:84:bb:69:a9:d3:49:1b:5a:6c:08:4b: 05:4b:4c:9f:fd:9e:d7:4d:0b:15:50:e6:2f:ef:26: 5f:72:a6:60:a6:2a:1d:c2:71:c7:3f:4a:4e:8b:53: e5:71:03:1d:8c:7e:53:72:d4:ab:f1:cf:c3:9c:6a: 34:de:f6:d8:bb:82:e3:30:95:3f:aa:b3:35:50:45: b1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:19:9A:15:5F:63:64:75:1C:1F:58:90:10:7A:00:12:46:B6:B7:F0 X509v3 Authority Key Identifier: keyid:7D:F1:32:DF:13:E4:BE:53:D8:25:0C:8C:48:42:02:64:EE:F6:C1:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ffEy3xPkvlPYJQyMSEICZO72wUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/6hmaFV9jZHUcH1iQEHoAEka2t_A.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/c37497-6376-461e-93c6-9778674edc97/1/ffEy3xPkvlPYJQyMSEICZO72wUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.32.216.0/21 188.210.224.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:88:b2:89:0c:e0:f8:7e:c6:87:08:7f:95:b6:76:ea:61:02: b4:e2:0b:c0:80:91:c1:07:ad:3e:19:e0:b9:e2:c6:d8:45:9b: 44:f6:94:01:f4:36:46:41:03:37:c2:af:88:06:2e:a1:0a:d2: 33:1e:20:a1:d2:bd:15:6a:25:28:19:63:15:84:1e:18:b3:da: b2:b9:8e:cd:4b:09:57:fe:12:ca:49:84:17:c8:65:01:bb:aa: f2:c0:26:6c:a6:91:b8:34:44:1d:ab:1c:bf:78:ef:eb:cf:2a: d7:ae:f6:02:65:7f:36:0d:2b:08:a6:b9:e6:5c:38:9f:04:68: 98:4b:95:a7:54:1e:36:82:a2:9c:d8:b5:ef:98:ce:8b:7c:9b: c7:97:0a:58:ef:0e:2c:97:3a:68:03:f4:ac:70:c3:12:15:e1: 27:3a:e9:70:14:ec:6f:33:f8:6d:c3:6e:23:ae:54:42:1b:26: 5c:ce:32:0b:2d:24:27:53:67:f4:4c:5a:95:ae:02:1a:e6:3a: c8:73:5f:fd:b2:78:ec:97:c5:93:72:2d:31:16:88:f0:89:14: b8:f6:1c:9b:68:f3:6c:06:24:49:54:20:c9:fc:50:1a:3e:75: df:88:5c:bd:77:f0:d8:88:07:e0:e5:ac:7c:fb:98:54:06:23: df:e6:7f:96 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7NgVOrAVh/+RbYlcLX9+VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkZjEzMmRmMTNlNGJlNTNkODI1MGM4YzQ4NDIwMjY0ZWVm NmMxNGMwHhcNMjYwMTAxMjAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYTE5OWExNTVmNjM2NDc1MWMxZjU4OTAxMDdhMDAxMjQ2YjZiN2YwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOwdOcczQwWZD0zmDg8zunc9H7+r +2w5uIb2cuPQ7gyEVYZydFy/8+UG0T0ICcHVg+dW7ciewWa0GsLgjsUAz+xS9KYd NjcbQnHnJMYCJL94H0dCwx2O+UKqHW5GwIEImDfXNHU8e5yV9fCe1IDyEehlPHUq NqBXqZngBNkf7TUTuFcwBDD9HEVASpwciAMUVJBX/ull7ArHz6QjfpyNdkbaQK+m MKzizYXbmWLj+x0NaHUCaR2xhLtpqdNJG1psCEsFS0yf/Z7XTQsVUOYv7yZfcqZg piodwnHHP0pOi1PlcQMdjH5TctSr8c/DnGo03vbYu4LjMJU/qrM1UEWxVwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOoZmhVfY2R1HB9YkBB6ABJGtrfwMB8GA1UdIwQY MBaAFH3xMt8T5L5T2CUMjEhCAmTu9sFMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYt OTc3ODY3NGVkYzk3LzEvNmhtYUZWOWpaSFVjSDFpUUVIb0FFa2EydF9BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS9jMzc0OTctNjM3Ni00NjFlLTkzYzYtOTc3ODY3NGVkYzk3 LzEvZmZFeTN4UGt2bFBZSlF5TVNFSUNaTzcyd1V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDWSDYAwQD vNLgMA0GCSqGSIb3DQEBCwUAA4IBAQB9iLKJDOD4fsaHCH+VtnbqYQK04gvAgJHB B60+GeC54sbYRZtE9pQB9DZGQQM3wq+IBi6hCtIzHiCh0r0VaiUoGWMVhB4Ys9qy uY7NSwlX/hLKSYQXyGUBu6rywCZsppG4NEQdqxy/eO/rzyrXrvYCZX82DSsIprnm XDifBGiYS5WnVB42gqKc2LXvmM6LfJvHlwpY7w4slzpoA/SscMMSFeEnOulwFOxv M/htw24jrlRCGyZczjILLSQnU2f0TFqVrgIa5jrIc1/9snjsl8WTci0xFojwiRS4 9hybaPNsBiRJVCDJ/FAaPnXfiFy9d/DYiAfg5ax8+5hUBiPf5n+W -----END CERTIFICATE-----Generated at Sun Jan 25 16:40:46 2026 by rpki-client