This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/85hHBUSy8Y2Mc7vYU29WfYNmQrs.roa File: 85hHBUSy8Y2Mc7vYU29WfYNmQrs.roa (raw, json) Hash identifier: hECfZ/fS6sGLnY/Td9cShCJ8J6B4XtgL9wvigKz0Uo8= Subject key identifier: F3:98:47:05:44:B2:F1:8D:8C:73:BB:D8:53:6F:56:7D:83:66:42:BB Certificate issuer: /CN=ec2e821d88de7a011341704202346f7c2bb9ebcf Certificate serial: 019B7F828FC2CCC2DE6B7B0A0EFBB1A33629 Authority key identifier: EC:2E:82:1D:88:DE:7A:01:13:41:70:42:02:34:6F:7C:2B:B9:EB:CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7C6CHYjeegETQXBCAjRvfCu5688.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/85hHBUSy8Y2Mc7vYU29WfYNmQrs.roa Signing time: Fri 02 Jan 2026 16:20:21 +0000 ROA not before: Fri 02 Jan 2026 16:20:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35720 IP address blocks: 194.79.24.0/22 maxlen: 22 194.79.24.0/23 maxlen: 23 194.79.26.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/7C6CHYjeegETQXBCAjRvfCu5688.crl rsync://rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/7C6CHYjeegETQXBCAjRvfCu5688.mft rsync://rpki.ripe.net/repository/DEFAULT/7C6CHYjeegETQXBCAjRvfCu5688.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:8f:c2:cc:c2:de:6b:7b:0a:0e:fb:b1:a3:36:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ec2e821d88de7a011341704202346f7c2bb9ebcf Validity Not Before: Jan 2 16:20:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f398470544b2f18d8c73bbd8536f567d836642bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0a:80:b0:4a:c0:b2:e5:69:11:bf:25:f4:be: 66:d7:4f:21:98:8b:ce:cf:f2:92:b3:4a:11:cd:15: b2:f5:67:6f:d3:fe:c1:92:28:5c:ef:54:cc:a6:eb: a6:aa:1f:94:5b:f3:49:57:5f:ed:83:03:d8:99:b6: e3:54:bd:85:78:a8:b2:fc:6c:40:ac:e5:9d:d6:5c: 44:69:fd:09:e7:c1:da:de:4b:68:7d:b1:0d:6e:c4: c6:8d:53:f6:d2:76:4e:09:45:31:12:8f:6f:b1:49: 1f:48:49:ae:32:ed:d6:68:8d:28:12:d7:91:97:8e: 55:cb:f0:df:0b:77:16:73:e9:73:87:d9:0d:48:96: c8:87:aa:90:42:1d:09:61:0e:e2:ae:f6:1a:3a:27: df:19:d3:31:69:0f:ec:43:da:ab:30:b9:48:80:f1: 40:10:05:3b:0e:e4:1b:2c:98:a4:78:20:62:a8:f0: f1:b9:cd:cb:3c:3c:9f:ad:77:d1:d2:80:5e:3f:80: c2:e8:8b:8f:cd:37:5b:c5:ca:cf:8b:27:55:53:d3: c1:d4:4f:03:d3:12:74:2f:d3:16:f1:e6:21:0a:7a: 17:46:59:4c:b6:cf:f9:5c:e3:85:ae:5e:50:ca:94: 22:5a:66:a3:40:fd:a8:90:b4:2f:a8:8a:91:ba:ef: e5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:98:47:05:44:B2:F1:8D:8C:73:BB:D8:53:6F:56:7D:83:66:42:BB X509v3 Authority Key Identifier: keyid:EC:2E:82:1D:88:DE:7A:01:13:41:70:42:02:34:6F:7C:2B:B9:EB:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7C6CHYjeegETQXBCAjRvfCu5688.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/85hHBUSy8Y2Mc7vYU29WfYNmQrs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/7dda4f-f0c7-4008-9ab9-dfa0b8052614/1/7C6CHYjeegETQXBCAjRvfCu5688.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.79.24.0/22 Signature Algorithm: sha256WithRSAEncryption db:9a:f1:20:7a:4b:5f:fa:91:a8:91:3f:6a:16:a2:59:77:6c: 5f:a3:13:d6:70:4c:07:9e:c1:18:d1:98:6f:ca:4b:9f:5f:f2: 15:5e:fb:e3:6e:1b:40:23:22:0c:2f:97:e8:bb:3c:cc:8e:58: 68:02:83:46:2c:dc:72:8a:52:4e:77:aa:fc:37:9d:d8:b6:1f: 67:6f:a3:29:fb:22:10:a8:f3:40:ac:5b:e5:50:74:03:2a:7f: fc:40:70:30:f5:29:f1:22:05:49:a4:97:c1:5c:53:43:d5:94: 1b:26:d0:da:12:df:b8:63:b7:e0:1c:38:1b:f1:6a:8e:dd:d8: bc:61:cd:8c:97:c2:5b:63:32:e0:48:ef:f7:a3:26:62:df:3d: b0:00:63:a9:1a:3f:36:32:a6:57:1a:8a:8a:dc:70:04:a3:5f: 2a:80:ef:7b:13:02:fe:c7:58:7f:83:59:6e:15:38:49:42:9c: ed:fd:32:8c:9a:83:bd:db:18:f0:ef:0d:73:4c:db:a4:61:67: f6:e9:50:e0:e6:49:e3:28:83:68:3b:f7:29:3b:23:76:c8:9c: 26:c0:1f:90:e6:6a:f3:64:8d:7e:e4:37:a1:3d:65:ab:5f:bd: 2e:a9:d6:c5:93:d3:33:e8:61:59:8c:6d:b2:9f:e9:56:13:4e: e3:f3:60:de -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/go/CzMLea3sKDvuxozYpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjMmU4MjFkODhkZTdhMDExMzQxNzA0MjAyMzQ2ZjdjMmJi OWViY2YwHhcNMjYwMTAyMTYyMDIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMzk4NDcwNTQ0YjJmMThkOGM3M2JiZDg1MzZmNTY3ZDgzNjY0MmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gqAsErAsuVpEb8l9L5m108hmIvO z/KSs0oRzRWy9Wdv0/7Bkihc71TMpuumqh+UW/NJV1/tgwPYmbbjVL2FeKiy/GxA rOWd1lxEaf0J58Ha3ktofbENbsTGjVP20nZOCUUxEo9vsUkfSEmuMu3WaI0oEteR l45Vy/DfC3cWc+lzh9kNSJbIh6qQQh0JYQ7irvYaOiffGdMxaQ/sQ9qrMLlIgPFA EAU7DuQbLJikeCBiqPDxuc3LPDyfrXfR0oBeP4DC6IuPzTdbxcrPiydVU9PB1E8D 0xJ0L9MW8eYhCnoXRllMts/5XOOFrl5QypQiWmajQP2okLQvqIqRuu/lgwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPOYRwVEsvGNjHO72FNvVn2DZkK7MB8GA1UdIwQY MBaAFOwugh2I3noBE0FwQgI0b3wruevPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0M2Q0hZamVlZ0VUUVhCQ0FqUnZmQ3U1Njg4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy83ZGRhNGYtZjBjNy00MDA4LTlhYjkt ZGZhMGI4MDUyNjE0LzEvODVoSEJVU3k4WTJNYzd2WVUyOVdmWU5tUXJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMy83ZGRhNGYtZjBjNy00MDA4LTlhYjktZGZhMGI4MDUyNjE0 LzEvN0M2Q0hZamVlZ0VUUVhCQ0FqUnZmQ3U1Njg4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwk8YMA0G CSqGSIb3DQEBCwUAA4IBAQDbmvEgektf+pGokT9qFqJZd2xfoxPWcEwHnsEY0Zhv ykufX/IVXvvjbhtAIyIML5fouzzMjlhoAoNGLNxyilJOd6r8N53Yth9nb6Mp+yIQ qPNArFvlUHQDKn/8QHAw9SnxIgVJpJfBXFND1ZQbJtDaEt+4Y7fgHDgb8WqO3di8 Yc2Ml8JbYzLgSO/3oyZi3z2wAGOpGj82MqZXGoqK3HAEo18qgO97EwL+x1h/g1lu FThJQpzt/TKMmoO92xjw7w1zTNukYWf26VDg5knjKINoO/cpOyN2yJwmwB+Q5mrz ZI1+5DehPWWrX70uqdbFk9Mz6GFZjG2yn+lWE07j82De -----END CERTIFICATE-----Generated at Mon Jan 26 13:46:29 2026 by rpki-client