This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/gnfK8SBpVOdVbxYnE0YvG_aCqwQ.roa File: gnfK8SBpVOdVbxYnE0YvG_aCqwQ.roa (raw, json) Hash identifier: 4HCQGxp9LRlzVGgeY9uvcPRB+giBsSJBc0o5g6+TINI= Subject key identifier: 82:77:CA:F1:20:69:54:E7:55:6F:16:27:13:46:2F:1B:F6:82:AB:04 Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714 Certificate serial: 019B7D5B8D6545D4DA30473FF80AAD151025 Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/gnfK8SBpVOdVbxYnE0YvG_aCqwQ.roa Signing time: Fri 02 Jan 2026 06:18:30 +0000 ROA not before: Fri 02 Jan 2026 06:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 33900 IP address blocks: 194.6.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:8d:65:45:d4:da:30:47:3f:f8:0a:ad:15:10:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714 Validity Not Before: Jan 2 06:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8277caf1206954e7556f162713462f1bf682ab04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:17:04:29:bd:7d:54:d7:22:34:ea:c2:b0:36: 00:7d:2f:83:a1:99:65:b1:ab:9c:bb:00:f5:d6:10: f0:c1:4a:15:76:63:2e:fc:bb:8b:7d:aa:de:8b:88: 60:d4:f6:9f:4b:5c:f2:eb:c0:ee:67:b5:2b:10:78: 82:04:fc:f5:49:98:3f:29:c1:a9:63:8b:26:46:2d: d8:34:9a:ca:57:47:da:27:ec:e8:7a:2d:8f:17:1e: 33:5e:0d:0c:54:ce:2e:03:9e:e1:f1:6e:bf:d0:81: 75:d5:04:8c:b1:98:c3:eb:2d:95:8e:5f:88:73:f7: 16:b3:75:ae:91:60:24:7e:70:97:51:28:ab:57:93: 73:a9:26:27:4b:09:54:a0:22:33:ac:65:72:18:2f: fa:d3:48:f5:49:ec:5d:6e:bb:d8:22:db:a9:f4:7e: 49:18:7d:4f:fc:e4:e5:e6:da:f2:31:03:8a:12:ae: 9c:2b:11:39:81:ce:9d:15:26:06:c7:28:11:26:21: 8d:ef:20:12:0c:95:b3:cb:10:8d:ec:e1:6d:38:e4: 08:15:17:f4:bb:f4:53:01:27:5d:15:c2:e3:17:b1: 65:4a:10:fd:72:1d:b6:88:0c:ac:99:30:ef:e9:37: 43:ac:36:6d:6e:c4:79:ff:d2:20:12:2f:5c:5f:04: e6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:77:CA:F1:20:69:54:E7:55:6F:16:27:13:46:2F:1B:F6:82:AB:04 X509v3 Authority Key Identifier: keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/gnfK8SBpVOdVbxYnE0YvG_aCqwQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.6.245.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:8b:df:32:b7:65:42:85:05:93:95:04:0f:b8:11:c7:13:2a: d0:35:03:2f:9e:33:d2:3e:00:5c:98:ee:ce:fc:27:26:87:c3: b6:49:10:19:3f:db:8f:f1:8d:2b:e9:a4:cf:68:98:84:7a:29: d9:46:52:4a:23:9e:fe:6e:f1:7d:99:f1:63:99:ae:0b:99:03: 5f:f6:14:1d:4d:76:5c:d5:f4:06:f6:14:b8:22:09:62:02:39: c7:83:ec:6f:12:4b:b8:55:94:5b:a4:0c:c6:69:3d:06:85:27: 3e:df:96:f3:d9:b2:05:28:17:b8:94:d9:1f:fc:95:74:47:5c: 49:3d:50:b7:5e:bc:da:b2:ba:cc:be:ce:22:72:c3:a3:c2:66: a1:12:2f:5f:61:c7:e3:e2:10:5a:e7:c1:90:b5:df:20:f2:f8: 64:bd:68:c1:ed:5b:13:78:a9:92:9c:bb:02:25:ac:a9:64:0a: 97:75:9d:f6:8e:95:01:2e:a9:ab:72:90:05:b5:ce:a1:e4:1c: 3b:f8:e8:41:80:9c:d5:76:22:1f:e6:c3:75:44:27:97:da:fb: bb:e1:fb:36:45:2d:09:2a:94:a9:73:f2:0d:9c:cf:f0:5b:90: c9:a1:03:75:37:30:b7:1c:58:6f:56:af:84:bf:91:56:56:28: 9e:99:1d:2f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9W41lRdTaMEc/+AqtFRAlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlY2Y1MzAwN2M3OWNjNWUyZjJkNzM1NmJhOTEyMWE3OGMw Yzc3MTQwHhcNMjYwMTAyMDYxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Mjc3Y2FmMTIwNjk1NGU3NTU2ZjE2MjcxMzQ2MmYxYmY2ODJhYjA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtRcEKb19VNciNOrCsDYAfS+DoZll saucuwD11hDwwUoVdmMu/LuLfarei4hg1PafS1zy68DuZ7UrEHiCBPz1SZg/KcGp Y4smRi3YNJrKV0faJ+zoei2PFx4zXg0MVM4uA57h8W6/0IF11QSMsZjD6y2Vjl+I c/cWs3WukWAkfnCXUSirV5NzqSYnSwlUoCIzrGVyGC/600j1SexdbrvYItup9H5J GH1P/OTl5tryMQOKEq6cKxE5gc6dFSYGxygRJiGN7yASDJWzyxCN7OFtOOQIFRf0 u/RTASddFcLjF7FlShD9ch22iAysmTDv6TdDrDZtbsR5/9IgEi9cXwTmnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIJ3yvEgaVTnVW8WJxNGLxv2gqsEMB8GA1UdIwQY MBaAFE7PUwB8ecxeLy1zVrqRIaeMDHcUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHM5VEFIeDV6RjR2TFhOV3VwRWhwNHdNZHhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi82NDhjNzUtMmJlOC00YmZkLWExYjEt Y2I4YjNhMDk0MjA5LzEvZ25mSzhTQnBWT2RWYnhZbkUwWXZHX2FDcXdRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi82NDhjNzUtMmJlOC00YmZkLWExYjEtY2I4YjNhMDk0MjA5 LzEvVHM5VEFIeDV6RjR2TFhOV3VwRWhwNHdNZHhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgb1MA0G CSqGSIb3DQEBCwUAA4IBAQAei98yt2VChQWTlQQPuBHHEyrQNQMvnjPSPgBcmO7O /Ccmh8O2SRAZP9uP8Y0r6aTPaJiEeinZRlJKI57+bvF9mfFjma4LmQNf9hQdTXZc 1fQG9hS4IgliAjnHg+xvEku4VZRbpAzGaT0GhSc+35bz2bIFKBe4lNkf/JV0R1xJ PVC3XrzasrrMvs4icsOjwmahEi9fYcfj4hBa58GQtd8g8vhkvWjB7VsTeKmSnLsC JaypZAqXdZ32jpUBLqmrcpAFtc6h5Bw7+OhBgJzVdiIf5sN1RCeX2vu74fs2RS0J KpSpc/INnM/wW5DJoQN1NzC3HFhvVq+Ev5FWViiemR0v -----END CERTIFICATE-----Generated at Mon Jan 26 01:01:59 2026 by rpki-client