This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/84e4lkfZOutDULFYsIM8wwB3Glg.roa File: 84e4lkfZOutDULFYsIM8wwB3Glg.roa (raw, json) Hash identifier: FCfhr9MstNYrMgB1wgVUKQ9ZIzyw82rQSTNUR4f1YZ8= Subject key identifier: F3:87:B8:96:47:D9:3A:EB:43:50:B1:58:B0:83:3C:C3:00:77:1A:58 Certificate issuer: /CN=7d2ea3ecad5a402b8fe5a2a6138af66aac257ff9 Certificate serial: 019B7A5B460C3A83F237DBF6F83DED7F5F57 Authority key identifier: 7D:2E:A3:EC:AD:5A:40:2B:8F:E5:A2:A6:13:8A:F6:6A:AC:25:7F:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fS6j7K1aQCuP5aKmE4r2aqwlf_k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/84e4lkfZOutDULFYsIM8wwB3Glg.roa Signing time: Thu 01 Jan 2026 16:19:20 +0000 ROA not before: Thu 01 Jan 2026 16:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57043 IP address blocks: 5.42.199.0/24 maxlen: 24 5.253.63.0/24 maxlen: 24 45.129.78.0/24 maxlen: 24 45.159.181.0/24 maxlen: 24 77.83.85.0/24 maxlen: 24 77.83.86.0/24 maxlen: 24 77.83.87.0/24 maxlen: 24 79.133.180.0/24 maxlen: 24 89.191.234.0/24 maxlen: 24 176.119.141.0/24 maxlen: 24 194.113.153.0/24 maxlen: 24 194.147.215.0/24 maxlen: 24 195.226.194.0/24 maxlen: 24 195.245.239.0/24 maxlen: 24 217.11.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/fS6j7K1aQCuP5aKmE4r2aqwlf_k.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/fS6j7K1aQCuP5aKmE4r2aqwlf_k.mft rsync://rpki.ripe.net/repository/DEFAULT/fS6j7K1aQCuP5aKmE4r2aqwlf_k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:46:0c:3a:83:f2:37:db:f6:f8:3d:ed:7f:5f:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d2ea3ecad5a402b8fe5a2a6138af66aac257ff9 Validity Not Before: Jan 1 16:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f387b89647d93aeb4350b158b0833cc300771a58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a8:3d:42:bc:a6:52:98:06:fb:65:56:41:a0: 08:88:3b:1f:88:9b:9d:67:a8:08:7e:92:25:60:4f: 3c:de:db:61:d3:c3:6d:f9:ff:78:f5:18:58:96:1e: e4:4c:14:d2:5e:52:25:d9:ca:24:92:66:ac:17:5e: 08:97:11:8c:53:f2:f2:67:c6:31:ff:11:ff:f8:56: b0:6b:4a:e7:f7:da:9b:79:fa:1d:4d:94:21:35:09: e3:36:49:1d:93:a1:80:3f:d1:31:e4:36:ce:bd:f9: 99:49:98:73:06:88:d7:41:5a:e5:16:8d:4b:ce:aa: d1:2d:4f:fa:1c:7d:c0:6b:9c:b7:61:6c:71:8a:59: c1:3f:34:a4:d4:b8:28:b3:0c:0a:6e:69:9c:b5:99: 53:d0:27:cf:89:87:d3:07:08:38:df:cb:92:f2:5f: 25:07:1c:85:7f:8f:49:75:6d:72:0a:c0:8e:99:cb: c2:35:34:5a:d4:c6:4d:43:f8:f3:08:b2:2d:f2:e5: 3d:ba:f9:7e:c2:f9:c9:28:8a:27:e5:99:41:50:e5: 41:a2:62:73:01:de:cd:6d:7f:e5:60:8b:e3:93:fe: 19:77:bb:83:43:ea:67:75:34:69:e8:d2:3c:92:c5: 4c:87:27:e6:1b:ce:51:9e:69:65:8d:90:6e:6b:7e: 14:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:87:B8:96:47:D9:3A:EB:43:50:B1:58:B0:83:3C:C3:00:77:1A:58 X509v3 Authority Key Identifier: keyid:7D:2E:A3:EC:AD:5A:40:2B:8F:E5:A2:A6:13:8A:F6:6A:AC:25:7F:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fS6j7K1aQCuP5aKmE4r2aqwlf_k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/84e4lkfZOutDULFYsIM8wwB3Glg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/447677-9972-4df8-b508-b91b92d4d801/1/fS6j7K1aQCuP5aKmE4r2aqwlf_k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.42.199.0/24 5.253.63.0/24 45.129.78.0/24 45.159.181.0/24 77.83.85.0-77.83.87.255 79.133.180.0/24 89.191.234.0/24 176.119.141.0/24 194.113.153.0/24 194.147.215.0/24 195.226.194.0/24 195.245.239.0/24 217.11.166.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:aa:3e:f7:c1:d3:30:ec:09:07:ee:39:ae:8a:f0:ee:38:70: 79:e2:a7:61:68:0c:5d:ba:e5:d7:07:27:fa:3d:0f:f3:30:56: e3:29:66:64:a9:af:9b:a2:2f:e1:3e:4c:7c:52:2b:6a:e1:24: dd:cb:90:45:90:0c:5c:a1:e9:17:df:9c:ff:da:f0:31:b1:b1: c8:89:23:2b:25:46:03:1b:06:08:ca:2d:66:6c:a6:14:18:ac: ec:c9:2d:66:37:77:e9:66:c4:b2:cd:49:82:74:e6:a6:bf:7a: 5c:49:36:50:50:7f:b6:20:62:59:86:ba:ba:5e:f8:c1:b7:34: 81:2c:62:cf:fd:c4:b1:66:5c:ed:36:3d:df:df:09:a8:6d:e3: 28:ec:6b:34:b0:36:5a:bc:d7:fb:79:8d:93:98:67:26:ad:36: eb:d5:c5:7b:95:44:62:66:f8:e6:e9:b9:cf:f9:a8:24:23:3e: 22:e9:1d:86:76:f3:28:1a:32:de:e0:c3:7e:da:d1:ee:26:94: ff:f5:a7:89:76:26:5f:d1:e6:e5:9b:2f:18:d0:58:cf:f2:95: 72:22:96:47:32:cf:b7:d1:4b:be:36:61:f7:3f:3f:07:e6:05: aa:5f:70:3a:ed:15:b7:62:43:ef:27:a2:a4:d9:b0:d8:fd:ab: 6a:23:fd:74 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgISAZt6W0YMOoPyN9v2+D3tf19XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkMmVhM2VjYWQ1YTQwMmI4ZmU1YTJhNjEzOGFmNjZhYWMy NTdmZjkwHhcNMjYwMTAxMTYxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMzg3Yjg5NjQ3ZDkzYWViNDM1MGIxNThiMDgzM2NjMzAwNzcxYTU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo6g9QrymUpgG+2VWQaAIiDsfiJud Z6gIfpIlYE883tth08Nt+f949RhYlh7kTBTSXlIl2cokkmasF14IlxGMU/LyZ8Yx /xH/+Fawa0rn99qbefodTZQhNQnjNkkdk6GAP9Ex5DbOvfmZSZhzBojXQVrlFo1L zqrRLU/6HH3Aa5y3YWxxilnBPzSk1LgoswwKbmmctZlT0CfPiYfTBwg438uS8l8l BxyFf49JdW1yCsCOmcvCNTRa1MZNQ/jzCLIt8uU9uvl+wvnJKIon5ZlBUOVBomJz Ad7NbX/lYIvjk/4Zd7uDQ+pndTRp6NI8ksVMhyfmG85RnmlljZBua34UdQIDAQAB o4ICWTCCAlUwHQYDVR0OBBYEFPOHuJZH2TrrQ1CxWLCDPMMAdxpYMB8GA1UdIwQY MBaAFH0uo+ytWkArj+WiphOK9mqsJX/5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlM2ajdLMWFRQ3VQNWFLbUU0cjJhcXdsZl9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy80NDc2NzctOTk3Mi00ZGY4LWI1MDgt YjkxYjkyZDRkODAxLzEvODRlNGxrZlpPdXREVUxGWXNJTTh3d0IzR2xnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy80NDc2NzctOTk3Mi00ZGY4LWI1MDgtYjkxYjkyZDRkODAx LzEvZlM2ajdLMWFRQ3VQNWFLbUU0cjJhcXdsZl9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBcBAIAATBWAwQABSrHAwQA Bf0/AwQALYFOAwQALZ+1MAwDBABNU1UDBANNU1ADBABPhbQDBABZv+oDBACwd40D BADCcZkDBADCk9cDBADD4sIDBADD9e8DBADZC6YwDQYJKoZIhvcNAQELBQADggEB AA6qPvfB0zDsCQfuOa6K8O44cHnip2FoDF265dcHJ/o9D/MwVuMpZmSpr5uiL+E+ THxSK2rhJN3LkEWQDFyh6RffnP/a8DGxsciJIyslRgMbBgjKLWZsphQYrOzJLWY3 d+lmxLLNSYJ05qa/elxJNlBQf7YgYlmGurpe+MG3NIEsYs/9xLFmXO02Pd/fCaht 4yjsazSwNlq81/t5jZOYZyatNuvVxXuVRGJm+Obpuc/5qCQjPiLpHYZ28ygaMt7g w37a0e4mlP/1p4l2Jl/R5uWbLxjQWM/ylXIilkcyz7fRS742Yfc/PwfmBapfcDrt FbdiQ+8noqTZsNj9q2oj/XQ= -----END CERTIFICATE-----Generated at Sun Jan 25 14:36:32 2026 by rpki-client