This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/ln2dN3QsZlTOM89zdF-YcCXd_DY.roa File: ln2dN3QsZlTOM89zdF-YcCXd_DY.roa (raw, json) Hash identifier: Wgrvp16Ne1fmoLkZNnTHVfSZqwERSnnUg2+iWW0Q9iY= Subject key identifier: 96:7D:9D:37:74:2C:66:54:CE:33:CF:73:74:5F:98:70:25:DD:FC:36 Certificate issuer: /CN=bbba8eccd97e96189ff6e33cf110a6c9a477459c Certificate serial: 019B7B3643245F039B615B6C95DC9373AA19 Authority key identifier: BB:BA:8E:CC:D9:7E:96:18:9F:F6:E3:3C:F1:10:A6:C9:A4:77:45:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7qOzNl-lhif9uM88RCmyaR3RZw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/ln2dN3QsZlTOM89zdF-YcCXd_DY.roa Signing time: Thu 01 Jan 2026 20:18:32 +0000 ROA not before: Thu 01 Jan 2026 20:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42421 IP address blocks: 77.72.184.0/24 maxlen: 24 77.72.185.0/24 maxlen: 24 77.72.186.0/24 maxlen: 24 77.72.187.0/24 maxlen: 24 77.72.188.0/24 maxlen: 24 77.72.189.0/24 maxlen: 24 2a03:c6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/u7qOzNl-lhif9uM88RCmyaR3RZw.crl rsync://rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/u7qOzNl-lhif9uM88RCmyaR3RZw.mft rsync://rpki.ripe.net/repository/DEFAULT/u7qOzNl-lhif9uM88RCmyaR3RZw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:43:24:5f:03:9b:61:5b:6c:95:dc:93:73:aa:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbba8eccd97e96189ff6e33cf110a6c9a477459c Validity Not Before: Jan 1 20:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=967d9d37742c6654ce33cf73745f987025ddfc36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4b:84:b0:89:44:af:43:37:c6:ce:ef:d8:f9: 06:96:1c:50:f0:15:0d:4a:37:01:41:cf:7d:48:98: 28:c2:3e:5e:2c:bf:70:6a:0d:d8:4b:d1:01:90:b1: 76:8b:ee:f2:d2:77:14:ca:b3:d6:68:c4:55:eb:bf: d8:92:aa:b0:59:7c:c6:46:4a:16:43:eb:7f:72:a8: 47:04:06:93:e0:a8:54:e7:68:bf:cf:38:03:5a:39: 93:83:46:00:5c:2a:20:0e:1d:6e:6e:72:fb:fb:dc: fe:47:c1:e0:04:f5:03:aa:bf:1b:4d:4d:09:ef:94: 76:26:9c:d0:90:d1:01:ba:d3:e0:50:19:6f:ae:19: 3f:92:5d:2c:ee:a6:a2:d8:12:92:f7:be:e3:6c:ff: e2:c3:90:45:32:1c:a5:41:09:04:8d:0d:88:72:b9: c7:ca:97:4f:35:e1:97:99:f9:9d:ec:d9:fd:46:93: b8:e7:f3:3c:e8:4b:f3:40:05:b3:39:90:09:78:4f: ff:7d:4e:ab:b0:f4:5a:64:ac:d8:78:e1:6d:0a:99: b5:9a:dc:38:c7:7b:1a:74:16:ad:0c:f0:bf:ba:3e: 5d:9e:4f:3d:7b:02:85:63:d5:d4:04:a1:41:77:48: 0a:64:2a:c1:51:55:bc:30:12:a5:0f:5b:8d:79:50: 8d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7D:9D:37:74:2C:66:54:CE:33:CF:73:74:5F:98:70:25:DD:FC:36 X509v3 Authority Key Identifier: keyid:BB:BA:8E:CC:D9:7E:96:18:9F:F6:E3:3C:F1:10:A6:C9:A4:77:45:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7qOzNl-lhif9uM88RCmyaR3RZw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/ln2dN3QsZlTOM89zdF-YcCXd_DY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b9dab8-d084-4b73-99b2-ee5b5168bf2f/1/u7qOzNl-lhif9uM88RCmyaR3RZw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.72.184.0-77.72.189.255 IPv6: 2a03:c6c0::/48 Signature Algorithm: sha256WithRSAEncryption 5d:ca:b7:3c:e1:d8:74:17:b3:75:6e:29:cf:dc:75:09:b9:3f: bc:01:c0:46:1e:56:33:9c:17:ff:df:89:98:cc:fe:45:1e:26: 61:8a:a4:fe:79:d2:e6:5f:d7:14:7f:6b:b3:27:9e:e1:5e:3d: d7:e4:93:18:34:19:0d:80:95:0e:e3:82:7d:53:65:da:c0:50: e4:54:92:8f:ba:ad:20:c7:06:a3:63:71:45:6a:1b:21:a3:99: c8:be:7d:8d:96:45:e4:f1:78:76:49:ba:36:12:f6:ca:27:bb: aa:20:e0:8c:cc:90:a2:dc:91:09:6b:14:c3:77:44:c1:5f:b9: 91:b8:c5:f7:eb:d7:43:4c:38:28:c1:5f:12:69:ae:fc:d8:67: ee:70:7a:58:d7:43:cf:7c:4b:5f:76:dc:97:2b:b8:75:c2:d3: 07:18:ff:a8:a9:47:3b:d3:93:9f:7f:6f:ed:f5:5e:08:a1:2d: a1:df:b0:70:fb:bc:07:33:db:ae:b3:2c:9d:7c:fa:87:d7:c1: 7a:84:53:c0:9d:8e:cd:d5:27:69:91:3e:3d:81:23:1a:2d:43: 4f:a3:a1:e1:46:83:9f:b7:28:20:d4:11:32:b4:f6:27:4e:a7: 9e:69:63:75:f4:57:8e:f2:d7:8f:60:6a:7a:79:51:7e:62:18: 37:f7:68:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt7NkMkXwObYVtsldyTc6oZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiYmE4ZWNjZDk3ZTk2MTg5ZmY2ZTMzY2YxMTBhNmM5YTQ3 NzQ1OWMwHhcNMjYwMTAxMjAxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjdkOWQzNzc0MmM2NjU0Y2UzM2NmNzM3NDVmOTg3MDI1ZGRmYzM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUuEsIlEr0M3xs7v2PkGlhxQ8BUN SjcBQc99SJgowj5eLL9wag3YS9EBkLF2i+7y0ncUyrPWaMRV67/YkqqwWXzGRkoW Q+t/cqhHBAaT4KhU52i/zzgDWjmTg0YAXCogDh1ubnL7+9z+R8HgBPUDqr8bTU0J 75R2JpzQkNEButPgUBlvrhk/kl0s7qai2BKS977jbP/iw5BFMhylQQkEjQ2IcrnH ypdPNeGXmfmd7Nn9RpO45/M86EvzQAWzOZAJeE//fU6rsPRaZKzYeOFtCpm1mtw4 x3sadBatDPC/uj5dnk89ewKFY9XUBKFBd0gKZCrBUVW8MBKlD1uNeVCNPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJZ9nTd0LGZUzjPPc3RfmHAl3fw2MB8GA1UdIwQY MBaAFLu6jszZfpYYn/bjPPEQpsmkd0WcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdTdxT3pObC1saGlmOXVNODhSQ215YVIzUlp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iOWRhYjgtZDA4NC00YjczLTk5YjIt ZWU1YjUxNjhiZjJmLzEvbG4yZE4zUXNabFRPTTg5emRGLVljQ1hkX0RZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iOWRhYjgtZDA4NC00YjczLTk5YjItZWU1YjUxNjhiZjJm LzEvdTdxT3pObC1saGlmOXVNODhSQ215YVIzUlp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAUBAIAATAOMAwDBANNSLgD BAFNSLwwDwQCAAIwCQMHACoDxsAAADANBgkqhkiG9w0BAQsFAAOCAQEAXcq3POHY dBezdW4pz9x1Cbk/vAHARh5WM5wX/9+JmMz+RR4mYYqk/nnS5l/XFH9rsyee4V49 1+STGDQZDYCVDuOCfVNl2sBQ5FSSj7qtIMcGo2NxRWobIaOZyL59jZZF5PF4dkm6 NhL2yie7qiDgjMyQotyRCWsUw3dEwV+5kbjF9+vXQ0w4KMFfEmmu/Nhn7nB6WNdD z3xLX3bclyu4dcLTBxj/qKlHO9OTn39v7fVeCKEtod+wcPu8BzPbrrMsnXz6h9fB eoRTwJ2OzdUnaZE+PYEjGi1DT6Oh4UaDn7coINQRMrT2J06nnmljdfRXjvLXj2Bq enlRfmIYN/dokw== -----END CERTIFICATE-----Generated at Mon Jan 26 01:52:44 2026 by rpki-client