This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/cTGgRzk_RKVn0xmEHDQk3am_Jfs.roa File: cTGgRzk_RKVn0xmEHDQk3am_Jfs.roa (raw, json) Hash identifier: niTQ1t5DUjZDeYplpF0Vh/Zvy5056ac7nt5HvxEbHYs= Subject key identifier: 71:31:A0:47:39:3F:44:A5:67:D3:19:84:1C:34:24:DD:A9:BF:25:FB Certificate issuer: /CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Certificate serial: 019B7F83B0DD304A3990D99AC395223C9E85 Authority key identifier: 58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/cTGgRzk_RKVn0xmEHDQk3am_Jfs.roa Signing time: Fri 02 Jan 2026 16:21:35 +0000 ROA not before: Fri 02 Jan 2026 16:21:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202795 IP address blocks: 46.243.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.mft rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 01:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:b0:dd:30:4a:39:90:d9:9a:c3:95:22:3c:9e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5885e884c2fc7a75d12dd1dea49ce2349c47067e Validity Not Before: Jan 2 16:21:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7131a047393f44a567d319841c3424dda9bf25fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fe:f4:13:4a:07:dd:98:9a:b5:d4:82:4f:4e: 54:c8:6e:67:ae:02:dd:b1:a6:a3:87:8d:e4:de:19: 16:92:07:56:7f:d9:84:a2:0f:c3:05:eb:02:f1:8a: 78:ad:80:c5:0a:a2:91:29:6b:ac:9f:98:77:a4:9e: 00:c7:2a:94:ce:bf:4a:b5:e6:13:62:db:45:fd:6e: 42:63:37:67:7a:14:79:9c:7e:02:8c:ee:83:9e:9b: 9b:5c:ea:41:a4:b0:60:c7:ed:ac:26:35:84:f1:4a: 80:f3:04:af:e0:8d:5d:ff:3a:00:ae:6e:93:3a:71: 45:70:52:3b:88:8f:84:ca:b9:79:02:eb:a9:67:ea: 58:93:6b:6b:45:eb:50:f1:7f:76:50:f0:54:f0:84: 22:97:8f:d5:5e:53:0f:1c:2b:84:6d:c5:6a:8e:59: b5:e4:ab:30:f0:a9:90:11:2c:c1:d6:6a:d4:ef:ca: 75:15:5c:84:e3:cf:0c:87:3f:18:27:20:bf:06:2a: 3d:79:31:6e:ec:65:ae:dd:2a:e9:f4:8d:70:13:2c: 06:90:8a:15:72:6b:54:5b:28:09:dc:a5:18:4f:b5: 65:0a:d6:2b:db:83:f2:1f:f5:b7:90:f5:74:8f:3e: 99:7a:7c:61:c8:ff:95:32:cf:18:7e:a7:ad:fa:ba: 14:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:31:A0:47:39:3F:44:A5:67:D3:19:84:1C:34:24:DD:A9:BF:25:FB X509v3 Authority Key Identifier: keyid:58:85:E8:84:C2:FC:7A:75:D1:2D:D1:DE:A4:9C:E2:34:9C:47:06:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIXohML8enXRLdHepJziNJxHBn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/cTGgRzk_RKVn0xmEHDQk3am_Jfs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/6c0bf7-5f13-44a2-9989-8c9581d96d8f/1/WIXohML8enXRLdHepJziNJxHBn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.243.168.0/24 Signature Algorithm: sha256WithRSAEncryption 42:a7:9b:11:d5:75:ca:df:88:b2:d9:b3:56:3b:e2:95:21:19: 18:01:11:18:76:24:0a:d8:94:2f:24:aa:3f:c5:7e:43:ed:ce: 22:27:a9:bf:fa:dc:ab:a0:22:31:c4:3c:5b:68:29:de:80:da: 17:21:d2:14:6b:86:42:77:39:d3:1b:0d:13:4c:ee:71:d8:b4: 20:9c:f8:93:e6:50:aa:cb:a0:e9:9d:42:31:1d:be:5a:ae:d5: f1:39:e2:44:3a:74:40:9a:23:20:d1:4f:e0:28:9b:8a:20:0d: 35:e1:16:0e:35:2d:7f:fd:91:6a:ce:d7:8c:d4:30:15:88:7b: 6c:5b:a2:47:39:84:d3:5a:38:12:d8:ba:32:3c:d6:90:75:4b: 9c:0d:f6:68:9f:53:60:cc:60:f5:d8:8f:67:b7:5e:38:a9:bc: 3a:8d:04:1a:c3:70:2b:ad:d8:10:80:95:42:a9:46:6d:b8:b4: 9e:42:23:6f:96:25:06:2d:12:7a:54:1d:66:7a:a8:41:05:4e: 5c:a4:2e:f3:6a:29:6d:56:6c:d5:6f:ce:6a:08:61:63:ac:b0: 25:a4:96:d8:a2:68:d2:72:6f:be:bb:81:cc:7c:2b:6a:e1:bd: d8:09:ac:24:dd:6c:0f:86:cb:f4:ce:e7:90:e2:6d:f3:88:95: d7:e1:fd:c5 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g7DdMEo5kNmaw5UiPJ6FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4ODVlODg0YzJmYzdhNzVkMTJkZDFkZWE0OWNlMjM0OWM0 NzA2N2UwHhcNMjYwMTAyMTYyMTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTMxYTA0NzM5M2Y0NGE1NjdkMzE5ODQxYzM0MjRkZGE5YmYyNWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnf70E0oH3ZiatdSCT05UyG5nrgLd saajh43k3hkWkgdWf9mEog/DBesC8Yp4rYDFCqKRKWusn5h3pJ4AxyqUzr9KteYT YttF/W5CYzdnehR5nH4CjO6DnpubXOpBpLBgx+2sJjWE8UqA8wSv4I1d/zoArm6T OnFFcFI7iI+Eyrl5AuupZ+pYk2trRetQ8X92UPBU8IQil4/VXlMPHCuEbcVqjlm1 5Ksw8KmQESzB1mrU78p1FVyE488Mhz8YJyC/Bio9eTFu7GWu3Srp9I1wEywGkIoV cmtUWygJ3KUYT7VlCtYr24PyH/W3kPV0jz6ZenxhyP+VMs8Yfqet+roUXwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHExoEc5P0SlZ9MZhBw0JN2pvyX7MB8GA1UdIwQY MBaAFFiF6ITC/Hp10S3R3qSc4jScRwZ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODkt OGM5NTgxZDk2ZDhmLzEvY1RHZ1J6a19SS1ZuMHhtRUhEUWszYW1fSmZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni82YzBiZjctNWYxMy00NGEyLTk5ODktOGM5NTgxZDk2ZDhm LzEvV0lYb2hNTDhlblhSTGRIZXBKemlOSnhIQm40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALvOoMA0G CSqGSIb3DQEBCwUAA4IBAQBCp5sR1XXK34iy2bNWO+KVIRkYAREYdiQK2JQvJKo/ xX5D7c4iJ6m/+tyroCIxxDxbaCnegNoXIdIUa4ZCdznTGw0TTO5x2LQgnPiT5lCq y6DpnUIxHb5artXxOeJEOnRAmiMg0U/gKJuKIA014RYONS1//ZFqzteM1DAViHts W6JHOYTTWjgS2LoyPNaQdUucDfZon1NgzGD12I9nt144qbw6jQQaw3ArrdgQgJVC qUZtuLSeQiNvliUGLRJ6VB1meqhBBU5cpC7zailtVmzVb85qCGFjrLAlpJbYomjS cm++u4HMfCtq4b3YCawk3WwPhsv0zueQ4m3ziJXX4f3F -----END CERTIFICATE-----Generated at Mon Jan 12 11:58:56 2026 by rpki-client