This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/1LtQ8yyQTy0Z9FcFRr_CRKY4wmA.roa File: 1LtQ8yyQTy0Z9FcFRr_CRKY4wmA.roa (raw, json) Hash identifier: ZIqC9QiveD2lOUDRGF1cl6cKWZLfSdgfnE3L9iB+Xuw= Subject key identifier: D4:BB:50:F3:2C:90:4F:2D:19:F4:57:05:46:BF:C2:44:A6:38:C2:60 Certificate issuer: /CN=ec97b72d5d4f750f1b138c2a901dd6510921be41 Certificate serial: 019B76EB52F6C245CDADE75688C8D0DF3FFC Authority key identifier: EC:97:B7:2D:5D:4F:75:0F:1B:13:8C:2A:90:1D:D6:51:09:21:BE:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/1LtQ8yyQTy0Z9FcFRr_CRKY4wmA.roa Signing time: Thu 01 Jan 2026 00:18:12 +0000 ROA not before: Thu 01 Jan 2026 00:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21080 IP address blocks: 185.76.160.0/22 maxlen: 22 195.85.237.0/24 maxlen: 24 2001:67c:253c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.crl rsync://rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.mft rsync://rpki.ripe.net/repository/DEFAULT/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:52:f6:c2:45:cd:ad:e7:56:88:c8:d0:df:3f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ec97b72d5d4f750f1b138c2a901dd6510921be41 Validity Not Before: Jan 1 00:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d4bb50f32c904f2d19f4570546bfc244a638c260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e2:24:4a:f2:d8:80:a5:a2:07:13:ab:57:57: bd:52:a0:be:37:32:72:11:7e:98:a4:e1:90:e9:9a: 1f:8b:80:d2:40:d2:33:08:24:2d:d4:6c:d3:9c:f2: bc:8d:93:bd:7d:8a:90:4f:c6:8f:72:62:cc:02:c3: 29:ba:4a:c9:47:d6:5f:9a:f6:e7:ab:cd:36:8e:2e: 82:d9:7e:be:39:af:cb:91:19:9f:b5:4c:b8:42:1e: 9a:e2:12:77:03:30:7c:6c:6b:d7:f7:41:1e:c2:cf: 3c:50:60:3b:ef:b9:68:42:92:1b:2d:12:d4:b2:09: 39:90:13:64:d1:f7:f5:8a:8a:45:41:94:bb:cb:7a: 52:c5:80:4c:85:26:de:b1:46:23:ff:9e:b8:20:f4: d1:28:bf:1e:c7:73:3a:38:89:89:5f:a7:05:3a:36: 07:93:9a:ec:a3:7d:77:23:76:ae:ab:09:a0:d2:e9: 5c:d5:9a:0f:d6:68:a6:d1:17:d3:fd:13:30:32:08: 50:d5:e7:42:a8:72:49:1b:7e:d0:84:e0:17:ce:3e: 41:96:5e:f2:ff:3a:7c:6e:27:10:82:4c:fd:fb:d4: 84:9a:d2:39:3f:f8:47:1d:1f:67:1a:e4:be:b2:3f: 55:e0:57:88:96:ec:7b:76:3a:08:8f:65:b7:73:93: c5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:BB:50:F3:2C:90:4F:2D:19:F4:57:05:46:BF:C2:44:A6:38:C2:60 X509v3 Authority Key Identifier: keyid:EC:97:B7:2D:5D:4F:75:0F:1B:13:8C:2A:90:1D:D6:51:09:21:BE:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/1LtQ8yyQTy0Z9FcFRr_CRKY4wmA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ef9860-2658-44df-b172-8066fa21241a/1/7Je3LV1PdQ8bE4wqkB3WUQkhvkE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.76.160.0/22 195.85.237.0/24 IPv6: 2001:67c:253c::/48 Signature Algorithm: sha256WithRSAEncryption 59:7a:5c:0d:5b:f8:83:07:ac:11:04:e7:7c:d1:bb:ef:ae:09: 29:ee:a5:6b:6e:8c:2f:dd:57:6d:6e:49:72:c6:7b:95:85:94: 99:57:8a:87:41:49:a7:63:55:2e:c0:7c:15:ae:89:f5:ea:9b: 14:14:6e:e4:0e:be:69:df:6a:02:71:39:f7:5a:5d:9f:8d:84: e1:52:08:a3:b9:73:26:71:f3:9b:93:3e:5c:03:b5:f9:93:8a: 63:69:bb:80:a7:9c:8f:14:fd:fa:ff:e3:62:00:a3:23:23:1f: 22:67:77:f4:df:65:78:81:57:8b:81:2e:41:13:be:19:09:67: 61:01:69:9e:f5:4a:bf:c6:fc:81:93:78:8d:c1:92:0c:e8:15: 7d:46:4e:68:23:89:39:bb:d3:75:bc:6d:dd:bb:7c:fe:78:63: de:de:6b:4f:93:c4:e7:88:8d:f4:10:de:b0:a1:b3:f5:a9:3e: 02:f7:c0:73:cb:23:53:dd:66:8c:4f:6a:60:19:9b:7a:58:68: 2f:8e:c6:c2:a1:57:ab:22:07:92:b3:32:19:e1:47:c3:90:df: 16:05:ed:21:03:3e:ce:5e:da:ad:10:66:a1:75:06:cb:2a:ce: cb:c6:92:be:af:20:c7:6f:4d:c3:1a:0b:84:b1:50:62:a5:80: 52:e8:ec:f3 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt261L2wkXNredWiMjQ3z/8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVjOTdiNzJkNWQ0Zjc1MGYxYjEzOGMyYTkwMWRkNjUxMDky MWJlNDEwHhcNMjYwMTAxMDAxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNGJiNTBmMzJjOTA0ZjJkMTlmNDU3MDU0NmJmYzI0NGE2MzhjMjYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6+IkSvLYgKWiBxOrV1e9UqC+NzJy EX6YpOGQ6Zofi4DSQNIzCCQt1GzTnPK8jZO9fYqQT8aPcmLMAsMpukrJR9Zfmvbn q802ji6C2X6+Oa/LkRmftUy4Qh6a4hJ3AzB8bGvX90Eews88UGA777loQpIbLRLU sgk5kBNk0ff1iopFQZS7y3pSxYBMhSbesUYj/564IPTRKL8ex3M6OImJX6cFOjYH k5rso313I3auqwmg0ulc1ZoP1mim0RfT/RMwMghQ1edCqHJJG37QhOAXzj5Bll7y /zp8bicQgkz9+9SEmtI5P/hHHR9nGuS+sj9V4FeIlux7djoIj2W3c5PFEwIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFNS7UPMskE8tGfRXBUa/wkSmOMJgMB8GA1UdIwQY MBaAFOyXty1dT3UPGxOMKpAd1lEJIb5BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN0plM0xWMVBkUThiRTR3cWtCM1dVUWtodmtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9lZjk4NjAtMjY1OC00NGRmLWIxNzIt ODA2NmZhMjEyNDFhLzEvMUx0UTh5eVFUeTBaOUZjRlJyX0NSS1k0d21BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9lZjk4NjAtMjY1OC00NGRmLWIxNzItODA2NmZhMjEyNDFh LzEvN0plM0xWMVBkUThiRTR3cWtCM1dVUWtodmtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTASBAIAATAMAwQCuUygAwQA w1XtMA8EAgACMAkDBwAgAQZ8JTwwDQYJKoZIhvcNAQELBQADggEBAFl6XA1b+IMH rBEE53zRu++uCSnupWtujC/dV21uSXLGe5WFlJlXiodBSadjVS7AfBWuifXqmxQU buQOvmnfagJxOfdaXZ+NhOFSCKO5cyZx85uTPlwDtfmTimNpu4CnnI8U/fr/42IA oyMjHyJnd/TfZXiBV4uBLkETvhkJZ2EBaZ71Sr/G/IGTeI3BkgzoFX1GTmgjiTm7 03W8bd27fP54Y97ea0+TxOeIjfQQ3rChs/WpPgL3wHPLI1PdZoxPamAZm3pYaC+O xsKhV6siB5KzMhnhR8OQ3xYF7SEDPs5e2q0QZqF1BssqzsvGkr6vIMdvTcMaC4Sx UGKlgFLo7PM= -----END CERTIFICATE-----Generated at Sun Jan 11 23:38:21 2026 by rpki-client