This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/24fbfc-d902-49db-978a-35a20ff8923e/1/RRSohk2nwrUzuw9Rw-D24vHj4iw.roa File: RRSohk2nwrUzuw9Rw-D24vHj4iw.roa (raw, json) Hash identifier: cMUbM2/hxrn9h126Zdm7DYzjZuRiajCmosfkit3vk8Y= Subject key identifier: 45:14:A8:86:4D:A7:C2:B5:33:BB:0F:51:C3:E0:F6:E2:F1:E3:E2:2C Certificate issuer: /CN=d05ed7a58147aa514c8e6dafbcc5d8757c7d3272 Certificate serial: 019B7EA6A2040C719369BD284612421DE373 Authority key identifier: D0:5E:D7:A5:81:47:AA:51:4C:8E:6D:AF:BC:C5:D8:75:7C:7D:32:72 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0F7XpYFHqlFMjm2vvMXYdXx9MnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/24fbfc-d902-49db-978a-35a20ff8923e/1/RRSohk2nwrUzuw9Rw-D24vHj4iw.roa Signing time: Fri 02 Jan 2026 12:20:08 +0000 ROA not before: Fri 02 Jan 2026 12:20:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 44901 IP address blocks: 185.177.56.0/24 maxlen: 24 185.177.57.0/24 maxlen: 24 185.177.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/24fbfc-d902-49db-978a-35a20ff8923e/1/0F7XpYFHqlFMjm2vvMXYdXx9MnI.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/24fbfc-d902-49db-978a-35a20ff8923e/1/0F7XpYFHqlFMjm2vvMXYdXx9MnI.mft rsync://rpki.ripe.net/repository/DEFAULT/0F7XpYFHqlFMjm2vvMXYdXx9MnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a2:04:0c:71:93:69:bd:28:46:12:42:1d:e3:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d05ed7a58147aa514c8e6dafbcc5d8757c7d3272 Validity Not Before: Jan 2 12:20:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4514a8864da7c2b533bb0f51c3e0f6e2f1e3e22c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fb:0b:dd:0d:7f:83:6b:4f:a3:67:6d:05:f4: 7f:85:71:4b:8b:66:cf:b7:0b:57:c0:a7:a9:97:a4: 3f:b3:5e:f5:42:96:98:01:d8:64:48:06:26:b1:ee: 96:8f:d7:56:c2:cb:63:ac:d3:9d:64:b1:c7:00:fa: be:ab:09:eb:d2:45:ec:29:ee:d3:d9:eb:ec:cd:2b: a7:f3:0b:d9:f2:89:3e:ab:a4:b2:53:65:7a:ba:9b: 0d:d8:26:1a:9c:5e:0f:f9:28:33:00:53:57:0f:6a: 25:7a:d0:c8:e6:e2:5f:0f:eb:78:8a:eb:3e:2b:05: 7a:a8:f8:24:e9:8f:29:ef:3a:ed:87:20:43:40:6b: 6e:f6:b7:d3:18:a6:d5:58:59:df:b7:4e:61:4c:b3: de:66:c2:68:a9:76:9a:5d:25:93:b6:fc:8b:6b:ff: c4:8b:b6:27:28:38:fc:f4:80:86:8c:bd:48:ec:cf: 36:fb:24:3a:0b:76:9f:78:82:88:28:c1:ea:af:f0: a8:0b:4b:31:ce:66:4d:d0:79:60:55:70:fd:e4:36: d3:d2:6a:26:19:87:54:ba:61:0f:07:76:3d:8b:7b: e9:83:b2:3f:40:4b:6a:e5:53:7b:4a:1b:0c:18:73: 7d:b6:76:8d:8e:39:e3:7c:3b:61:5a:da:a1:63:ac: 33:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:14:A8:86:4D:A7:C2:B5:33:BB:0F:51:C3:E0:F6:E2:F1:E3:E2:2C X509v3 Authority Key Identifier: keyid:D0:5E:D7:A5:81:47:AA:51:4C:8E:6D:AF:BC:C5:D8:75:7C:7D:32:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0F7XpYFHqlFMjm2vvMXYdXx9MnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/24fbfc-d902-49db-978a-35a20ff8923e/1/RRSohk2nwrUzuw9Rw-D24vHj4iw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/24fbfc-d902-49db-978a-35a20ff8923e/1/0F7XpYFHqlFMjm2vvMXYdXx9MnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.177.56.0/23 185.177.59.0/24 Signature Algorithm: sha256WithRSAEncryption 96:48:36:01:dd:6b:f5:61:73:b3:e1:48:df:d0:8b:b7:14:28: c1:64:47:d7:d5:ff:95:f3:4d:c2:a2:6c:b8:21:37:e8:62:c6: e9:f8:2e:71:bb:14:67:f9:ea:f7:63:ca:69:19:31:4b:0e:f2: 43:ea:e1:de:52:42:90:4a:45:ad:f7:d4:87:67:95:8a:81:e2: 70:17:e2:1d:04:8d:27:10:8c:45:85:8e:08:40:ee:b5:e3:c8: 6c:4a:26:8b:44:43:8a:e9:43:4c:a3:9e:95:3a:18:73:97:61: 36:de:c9:25:aa:f8:62:68:67:48:9c:be:85:c1:ab:4f:63:1e: 41:e1:23:3f:b1:0e:92:87:6a:ff:7b:04:ef:c1:80:7b:7a:e8: d1:03:7e:cd:32:3d:5d:d8:93:93:35:ca:ee:b7:b1:6e:ac:70: cd:d8:60:f0:45:02:b9:05:1c:7f:0f:9a:5f:b9:a5:e9:2c:77: bf:98:a2:75:c8:45:8d:e0:0b:34:cc:d3:ba:f7:09:5b:72:da: 8c:9a:33:c6:98:7a:47:d5:dc:fe:b6:4e:65:ef:f2:89:07:28: 5c:c0:7e:3e:38:be:fc:24:27:7f:d0:54:b1:66:9d:54:98:85: 03:24:5c:51:c2:d5:d1:3e:9d:71:64:74:80:0d:cd:38:36:47: 34:3d:fc:5e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+pqIEDHGTab0oRhJCHeNzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNWVkN2E1ODE0N2FhNTE0YzhlNmRhZmJjYzVkODc1N2M3 ZDMyNzIwHhcNMjYwMTAyMTIyMDA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NTE0YTg4NjRkYTdjMmI1MzNiYjBmNTFjM2UwZjZlMmYxZTNlMjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPsL3Q1/g2tPo2dtBfR/hXFLi2bP twtXwKepl6Q/s171QpaYAdhkSAYmse6Wj9dWwstjrNOdZLHHAPq+qwnr0kXsKe7T 2evszSun8wvZ8ok+q6SyU2V6upsN2CYanF4P+SgzAFNXD2oletDI5uJfD+t4ius+ KwV6qPgk6Y8p7zrthyBDQGtu9rfTGKbVWFnft05hTLPeZsJoqXaaXSWTtvyLa//E i7YnKDj89ICGjL1I7M82+yQ6C3afeIKIKMHqr/CoC0sxzmZN0HlgVXD95DbT0mom GYdUumEPB3Y9i3vpg7I/QEtq5VN7ShsMGHN9tnaNjjnjfDthWtqhY6wzPQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEUUqIZNp8K1M7sPUcPg9uLx4+IsMB8GA1UdIwQY MBaAFNBe16WBR6pRTI5tr7zF2HV8fTJyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEY3WHBZRkhxbEZNam0ydnZNWFlkWHg5TW5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8yNGZiZmMtZDkwMi00OWRiLTk3OGEt MzVhMjBmZjg5MjNlLzEvUlJTb2hrMm53clV6dXc5UnctRDI0dkhqNGl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS8yNGZiZmMtZDkwMi00OWRiLTk3OGEtMzVhMjBmZjg5MjNl LzEvMEY3WHBZRkhxbEZNam0ydnZNWFlkWHg5TW5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBubE4AwQA ubE7MA0GCSqGSIb3DQEBCwUAA4IBAQCWSDYB3Wv1YXOz4Ujf0Iu3FCjBZEfX1f+V 803Comy4ITfoYsbp+C5xuxRn+er3Y8ppGTFLDvJD6uHeUkKQSkWt99SHZ5WKgeJw F+IdBI0nEIxFhY4IQO6148hsSiaLREOK6UNMo56VOhhzl2E23sklqvhiaGdInL6F watPYx5B4SM/sQ6Sh2r/ewTvwYB7eujRA37NMj1d2JOTNcrut7FurHDN2GDwRQK5 BRx/D5pfuaXpLHe/mKJ1yEWN4As0zNO69wlbctqMmjPGmHpH1dz+tk5l7/KJByhc wH4+OL78JCd/0FSxZp1UmIUDJFxRwtXRPp1xZHSADc04Nkc0Pfxe -----END CERTIFICATE-----Generated at Sun Jan 25 18:08:11 2026 by rpki-client