This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/U7Tc0OMn99OVh4UaH8Gir63iiJs.roa File: U7Tc0OMn99OVh4UaH8Gir63iiJs.roa (raw, json) Hash identifier: VeiRvPbD+gYEQvLB86zuV+IwSFIqcHPYDQqYvNeKjps= Subject key identifier: 53:B4:DC:D0:E3:27:F7:D3:95:87:85:1A:1F:C1:A2:AF:AD:E2:88:9B Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a Certificate serial: 019B7FF26E9B627BD7983902E3C577394740 Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/U7Tc0OMn99OVh4UaH8Gir63iiJs.roa Signing time: Fri 02 Jan 2026 18:22:33 +0000 ROA not before: Fri 02 Jan 2026 18:22:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25206 IP address blocks: 89.252.216.0/22 maxlen: 22 89.252.216.0/24 maxlen: 24 89.252.217.0/24 maxlen: 24 89.252.218.0/24 maxlen: 24 89.252.219.0/24 maxlen: 24 89.252.232.0/21 maxlen: 21 89.252.232.0/22 maxlen: 22 89.252.232.0/24 maxlen: 24 89.252.233.0/24 maxlen: 24 89.252.234.0/24 maxlen: 24 89.252.235.0/24 maxlen: 24 89.252.236.0/24 maxlen: 24 89.252.237.0/24 maxlen: 24 89.252.238.0/24 maxlen: 24 89.252.239.0/24 maxlen: 24 89.252.248.0/22 maxlen: 22 89.252.248.0/24 maxlen: 24 89.252.249.0/24 maxlen: 24 89.252.250.0/24 maxlen: 24 89.252.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.mft rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:6e:9b:62:7b:d7:98:39:02:e3:c5:77:39:47:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a Validity Not Before: Jan 2 18:22:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=53b4dcd0e327f7d39587851a1fc1a2afade2889b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:52:68:86:4b:b9:79:18:99:6b:e6:af:e1:4f: b5:98:62:ec:59:6f:87:14:e3:05:9d:5e:24:a5:4c: b3:32:3e:9e:94:a0:76:d8:a7:72:af:05:13:89:3c: b4:8a:45:58:41:d2:5b:1a:79:84:70:e1:a3:75:24: 96:cd:f0:18:45:20:8f:dd:59:fe:59:26:b4:a2:ef: c7:5b:d3:4e:1a:a3:68:82:a8:32:07:be:fe:fd:12: f3:98:ef:20:e5:de:b1:eb:48:9c:9c:3e:cb:46:c2: e0:a3:1a:1f:6f:7d:1d:20:fe:8f:9f:cd:d1:eb:2b: 11:b0:b7:fa:23:83:71:ca:d9:8b:c7:24:d0:3a:6e: c9:a7:9e:fa:25:14:8a:1e:47:e4:0f:a6:7d:0c:11: 9b:ef:30:1f:d5:ab:32:70:99:38:e9:5c:d5:2e:ba: 57:a4:d7:b0:bd:f8:e8:80:db:89:74:2f:04:35:32: 51:a3:5c:94:89:5a:ca:49:51:0e:91:dc:0c:12:5b: 99:26:07:4c:45:c8:8f:54:17:d8:1e:99:f6:b9:3a: 6f:8d:74:04:68:40:d8:a7:f5:37:f7:68:33:cc:24: 30:f3:93:c2:24:55:bc:fd:fd:41:de:84:73:59:18: 43:ed:07:56:5a:30:62:98:07:3b:78:cd:dd:58:de: 91:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:B4:DC:D0:E3:27:F7:D3:95:87:85:1A:1F:C1:A2:AF:AD:E2:88:9B X509v3 Authority Key Identifier: keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/U7Tc0OMn99OVh4UaH8Gir63iiJs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.252.216.0/22 89.252.232.0/21 89.252.248.0/22 Signature Algorithm: sha256WithRSAEncryption 00:00:6e:0b:bb:1b:20:c0:1d:cc:36:1e:19:85:a5:11:38:13: 1e:54:50:9b:28:f3:6a:28:16:45:94:25:95:1e:2c:38:99:84: 20:fa:57:64:0e:97:ff:c5:ef:cd:f9:07:d4:a7:e3:4b:2e:5d: 1e:f7:e3:6a:2a:42:74:c0:0c:c4:89:e1:cb:38:a1:57:5f:f1: ef:e2:fa:a2:8d:4a:63:76:36:0d:2f:e4:0c:76:2c:4e:29:e9: f2:14:15:b9:a7:83:3d:56:5c:b2:31:74:6e:c6:06:92:55:d5: bb:e9:db:3d:7b:93:bb:11:c6:d8:3c:25:33:4f:dc:92:ae:b6: 8e:1a:48:d5:5a:06:92:1d:a3:45:81:97:dd:78:07:14:0e:fa: 56:71:19:49:72:2b:86:4b:21:39:c6:63:18:67:c3:fb:5a:b4: 9d:9e:78:c0:03:fc:6f:d1:c4:82:f8:66:10:9f:1f:4c:c6:f6: 97:5a:80:17:c2:8c:de:bf:9f:1d:42:4d:9a:a7:91:61:ca:5d: e4:4e:84:c8:18:13:c4:9e:af:cd:87:62:3e:f3:13:69:bf:fb: b6:a7:e1:b3:b6:8e:35:44:99:6f:b9:d6:8b:5b:8e:39:05:4f: a2:0f:bd:c0:e9:60:c9:4c:8c:3b:63:dd:e7:70:34:d7:fb:ce: c4:0d:ff:88 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt/8m6bYnvXmDkC48V3OUdAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxMDRhNDA4MjFjNDE3NmNjNDJlMjU1ZWY2YzE3Mjc0NzNj M2YwMGEwHhcNMjYwMTAyMTgyMjMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1M2I0ZGNkMGUzMjdmN2QzOTU4Nzg1MWExZmMxYTJhZmFkZTI4ODliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1Johku5eRiZa+av4U+1mGLsWW+H FOMFnV4kpUyzMj6elKB22KdyrwUTiTy0ikVYQdJbGnmEcOGjdSSWzfAYRSCP3Vn+ WSa0ou/HW9NOGqNogqgyB77+/RLzmO8g5d6x60icnD7LRsLgoxofb30dIP6Pn83R 6ysRsLf6I4NxytmLxyTQOm7Jp576JRSKHkfkD6Z9DBGb7zAf1asycJk46VzVLrpX pNewvfjogNuJdC8ENTJRo1yUiVrKSVEOkdwMEluZJgdMRciPVBfYHpn2uTpvjXQE aEDYp/U392gzzCQw85PCJFW8/f1B3oRzWRhD7QdWWjBimAc7eM3dWN6RWwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFFO03NDjJ/fTlYeFGh/Boq+t4oibMB8GA1UdIwQY MBaAFEEEpAghxBdsxC4lXvbBcnRzw/AKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMt YjI3ZDZlMjc4ZTE4LzEvVTdUYzBPTW45OU9WaDRVYUg4R2lyNjNpaUpzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS85Njk5NjItMTJkMy00MWIyLWFiNDMtYjI3ZDZlMjc4ZTE4 LzEvUVFTa0NDSEVGMnpFTGlWZTlzRnlkSFBEOEFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCWfzYAwQD WfzoAwQCWfz4MA0GCSqGSIb3DQEBCwUAA4IBAQAAAG4LuxsgwB3MNh4ZhaUROBMe VFCbKPNqKBZFlCWVHiw4mYQg+ldkDpf/xe/N+QfUp+NLLl0e9+NqKkJ0wAzEieHL OKFXX/Hv4vqijUpjdjYNL+QMdixOKenyFBW5p4M9VlyyMXRuxgaSVdW76ds9e5O7 EcbYPCUzT9ySrraOGkjVWgaSHaNFgZfdeAcUDvpWcRlJciuGSyE5xmMYZ8P7WrSd nnjAA/xv0cSC+GYQnx9MxvaXWoAXwozev58dQk2ap5Fhyl3kToTIGBPEnq/Nh2I+ 8xNpv/u2p+Gzto41RJlvudaLW445BU+iD73A6WDJTIw7Y93ncDTX+87EDf+I -----END CERTIFICATE-----Generated at Sun Jan 25 23:16:32 2026 by rpki-client