This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/pnn2LDubyB-s2_PbTNDUNt7JA_8.roa File: pnn2LDubyB-s2_PbTNDUNt7JA_8.roa (raw, json) Hash identifier: vW3hxl2FPzWH44KmHJKXNpZV557F5Hczl/NZRDVCKlg= Subject key identifier: A6:79:F6:2C:3B:9B:C8:1F:AC:DB:F3:DB:4C:D0:D4:36:DE:C9:03:FF Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019B78345D737A2EC3F75CDC3434DAA600ED Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/pnn2LDubyB-s2_PbTNDUNt7JA_8.roa Signing time: Thu 01 Jan 2026 06:17:36 +0000 ROA not before: Thu 01 Jan 2026 06:17:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204004 IP address blocks: 77.241.58.0/24 maxlen: 24 176.222.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:5d:73:7a:2e:c3:f7:5c:dc:34:34:da:a6:00:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Jan 1 06:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a679f62c3b9bc81facdbf3db4cd0d436dec903ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0e:39:2b:6d:9d:85:6d:e1:30:26:a3:9a:35: 54:cd:5c:82:0a:fb:86:5d:b2:88:bd:77:7b:ef:bf: 78:7f:90:e7:34:84:48:c8:d5:2c:bb:37:30:71:8d: 98:c2:12:91:45:20:99:2f:ff:19:ee:53:98:d1:1c: 9d:bb:9d:61:d2:b5:1d:3a:58:24:df:dd:1a:35:21: 6c:8a:5e:0f:b0:98:48:ed:e7:fd:95:a0:7f:02:af: 5a:1d:97:68:63:c2:8e:eb:b8:ad:80:3e:87:b1:e6: 1a:56:4f:40:23:f2:c3:24:11:89:e7:72:83:b0:3b: 0d:c9:f3:10:d1:cf:83:20:38:c4:3f:87:37:02:01: a0:ba:c6:d5:36:13:2d:85:25:ec:6e:7d:6e:1d:e4: 5f:07:d0:7d:09:ad:e0:4e:e0:79:24:52:55:0a:55: 1a:8b:9f:1b:37:cc:09:53:ca:58:28:21:9c:ff:54: fc:eb:00:94:55:1c:6b:7f:78:0b:03:22:ff:1f:2a: 14:45:9e:38:22:46:31:2d:76:eb:82:ba:86:f6:51: bf:d4:38:17:c9:bd:7b:33:cf:f0:20:38:6d:ec:2e: 16:18:eb:7b:3b:4f:03:5b:e1:8b:7d:00:03:98:c1: 12:1e:08:48:e1:38:f3:8c:b3:6b:06:a3:2f:d9:2c: 97:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:79:F6:2C:3B:9B:C8:1F:AC:DB:F3:DB:4C:D0:D4:36:DE:C9:03:FF X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/pnn2LDubyB-s2_PbTNDUNt7JA_8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.241.58.0/24 176.222.69.0/24 Signature Algorithm: sha256WithRSAEncryption 53:e8:1f:13:01:ed:9f:45:bc:7c:01:e7:cb:d8:f3:ee:7d:ef: 1f:23:80:9b:90:a7:ef:b3:f2:db:1f:88:d0:3a:30:09:c7:e3: 75:08:e2:7f:fa:71:1f:25:04:56:30:fc:3a:ec:9e:43:95:9d: 26:c1:6d:be:d2:67:3a:13:10:c5:78:73:c0:d5:24:2e:39:eb: 0a:48:31:57:c1:a0:2c:a9:16:84:90:f6:99:28:cd:55:dc:98: 53:67:31:60:8c:ea:15:20:ec:a2:a0:88:e5:56:8d:30:5e:f9: e2:18:89:35:e1:3c:7b:42:4a:43:a2:c4:4b:4a:1d:42:4f:fb: aa:c5:c9:ec:ce:d9:51:84:65:b2:a2:3c:0c:61:63:1f:4a:4f: 48:d9:69:ed:58:cb:b6:53:db:ec:3a:74:57:05:2b:6e:14:05: 7d:8c:4a:04:b8:a7:72:10:fe:1e:02:9d:68:a0:dc:b5:2d:74: af:4d:5f:c0:c6:fa:5d:aa:40:13:d8:19:a8:40:3b:e2:a8:b4: f7:60:bd:93:9e:4f:74:42:59:55:1d:51:1a:f5:fd:21:04:22: 7d:ce:5f:94:1c:ad:0b:fb:89:07:e2:d0:78:24:15:ea:74:d1: 35:eb:95:3a:a9:dc:af:f1:44:47:41:78:54:97:50:cf:d1:53: c2:cd:bd:55 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4NF1zei7D91zcNDTapgDtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjYwMTAxMDYxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNjc5ZjYyYzNiOWJjODFmYWNkYmYzZGI0Y2QwZDQzNmRlYzkwM2ZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAww45K22dhW3hMCajmjVUzVyCCvuG XbKIvXd77794f5DnNIRIyNUsuzcwcY2YwhKRRSCZL/8Z7lOY0Rydu51h0rUdOlgk 390aNSFsil4PsJhI7ef9laB/Aq9aHZdoY8KO67itgD6HseYaVk9AI/LDJBGJ53KD sDsNyfMQ0c+DIDjEP4c3AgGgusbVNhMthSXsbn1uHeRfB9B9Ca3gTuB5JFJVClUa i58bN8wJU8pYKCGc/1T86wCUVRxrf3gLAyL/HyoURZ44IkYxLXbrgrqG9lG/1DgX yb17M8/wIDht7C4WGOt7O08DW+GLfQADmMESHghI4TjzjLNrBqMv2SyXxwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKZ59iw7m8gfrNvz20zQ1DbeyQP/MB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvcG5uMkxEdWJ5Qi1zMl9QYlRORFVOdDdKQV84LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATfE6AwQA sN5FMA0GCSqGSIb3DQEBCwUAA4IBAQBT6B8TAe2fRbx8AefL2PPufe8fI4CbkKfv s/LbH4jQOjAJx+N1COJ/+nEfJQRWMPw67J5DlZ0mwW2+0mc6ExDFeHPA1SQuOesK SDFXwaAsqRaEkPaZKM1V3JhTZzFgjOoVIOyioIjlVo0wXvniGIk14Tx7QkpDosRL Sh1CT/uqxcnsztlRhGWyojwMYWMfSk9I2WntWMu2U9vsOnRXBStuFAV9jEoEuKdy EP4eAp1ooNy1LXSvTV/AxvpdqkAT2BmoQDviqLT3YL2Tnk90QllVHVEa9f0hBCJ9 zl+UHK0L+4kH4tB4JBXqdNE165U6qdyv8URHQXhUl1DP0VPCzb1V -----END CERTIFICATE-----Generated at Sun Jan 25 16:27:30 2026 by rpki-client