This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/256fab-de97-4679-a465-b96d6714a174/1/gHtegaN7OLgHtHHu51zbCeqQFDA.roa File: gHtegaN7OLgHtHHu51zbCeqQFDA.roa (raw, json) Hash identifier: EPs8IaltzukwrBtIywNQ/0TYt3CUA+5rJ4ySK++dqCU= Subject key identifier: 80:7B:5E:81:A3:7B:38:B8:07:B4:71:EE:E7:5C:DB:09:EA:90:14:30 Certificate issuer: /CN=c1e2464dd6d042309515f7e5b64ea65c089b4616 Certificate serial: 019B7910CDB61072DACE9EAEF4685C027C21 Authority key identifier: C1:E2:46:4D:D6:D0:42:30:95:15:F7:E5:B6:4E:A6:5C:08:9B:46:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/weJGTdbQQjCVFffltk6mXAibRhY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/256fab-de97-4679-a465-b96d6714a174/1/gHtegaN7OLgHtHHu51zbCeqQFDA.roa Signing time: Thu 01 Jan 2026 10:18:22 +0000 ROA not before: Thu 01 Jan 2026 10:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198736 IP address blocks: 77.111.236.0/24 maxlen: 24 77.111.237.0/24 maxlen: 24 77.111.238.0/23 maxlen: 23 77.232.168.0/21 maxlen: 21 82.163.128.0/22 maxlen: 22 82.163.232.0/22 maxlen: 22 95.141.160.0/20 maxlen: 20 131.117.184.0/21 maxlen: 21 149.255.120.0/21 maxlen: 21 185.7.244.0/22 maxlen: 22 2a00:c5c0:a000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/256fab-de97-4679-a465-b96d6714a174/1/weJGTdbQQjCVFffltk6mXAibRhY.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/256fab-de97-4679-a465-b96d6714a174/1/weJGTdbQQjCVFffltk6mXAibRhY.mft rsync://rpki.ripe.net/repository/DEFAULT/weJGTdbQQjCVFffltk6mXAibRhY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:cd:b6:10:72:da:ce:9e:ae:f4:68:5c:02:7c:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c1e2464dd6d042309515f7e5b64ea65c089b4616 Validity Not Before: Jan 1 10:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=807b5e81a37b38b807b471eee75cdb09ea901430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:72:16:aa:55:d5:a0:b8:9f:3b:7f:94:0c:7d: 84:34:01:44:32:8f:f4:25:e2:0c:d7:93:b4:c2:b7: 40:eb:ae:aa:c3:fc:bf:b4:92:9f:62:d0:28:b2:99: c5:fb:ed:11:38:a3:3e:b4:d7:38:eb:53:69:f4:ad: d4:b6:cd:63:21:c3:8a:d0:d5:9a:8e:9a:c5:6e:15: 33:69:1a:24:8b:31:8d:7c:0f:6d:0d:60:c5:85:5e: 8d:35:d2:31:2a:bf:0b:68:bc:14:b7:ad:f3:b6:f9: 34:fc:8f:1c:93:b6:84:a0:67:58:b5:98:cc:48:c0: d3:ce:bb:7c:c3:92:63:82:21:84:61:20:30:a0:cd: 5f:1d:f1:b3:81:2a:d8:7a:4f:0e:fd:7b:89:04:db: 74:85:eb:58:b8:d8:02:ad:59:a5:c0:eb:10:1a:09: 21:c3:33:da:7a:1d:a2:8f:df:ce:90:d0:6e:10:8a: 7d:76:8d:ad:77:8d:16:2d:99:a8:66:95:92:e2:6a: 21:1d:8b:2d:7b:23:bf:a2:4c:33:39:34:b3:1d:ea: cc:08:7b:f9:e1:f9:03:39:40:f2:96:d1:c7:fb:e7: 83:e0:e5:a4:64:80:e4:94:4f:67:da:91:da:e5:b1: c0:54:ae:55:90:00:8c:b1:9a:ba:9d:88:05:08:b6: 26:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7B:5E:81:A3:7B:38:B8:07:B4:71:EE:E7:5C:DB:09:EA:90:14:30 X509v3 Authority Key Identifier: keyid:C1:E2:46:4D:D6:D0:42:30:95:15:F7:E5:B6:4E:A6:5C:08:9B:46:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/weJGTdbQQjCVFffltk6mXAibRhY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/256fab-de97-4679-a465-b96d6714a174/1/gHtegaN7OLgHtHHu51zbCeqQFDA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/256fab-de97-4679-a465-b96d6714a174/1/weJGTdbQQjCVFffltk6mXAibRhY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.111.236.0/22 77.232.168.0/21 82.163.128.0/22 82.163.232.0/22 95.141.160.0/20 131.117.184.0/21 149.255.120.0/21 185.7.244.0/22 IPv6: 2a00:c5c0:a000::/36 Signature Algorithm: sha256WithRSAEncryption 2c:7e:c1:bb:bd:81:9d:c3:e5:61:d5:00:68:ee:e0:02:e0:9d: ad:3b:14:18:66:55:7d:34:3a:1d:6a:26:84:e8:fd:e3:f2:aa: 8d:14:48:52:49:ef:82:3b:f4:33:b2:fc:a0:8d:57:6c:e4:ad: 8e:e1:04:97:88:07:54:b3:cd:3f:53:e0:b4:db:5c:ed:90:73: d3:b4:22:a4:b2:30:22:14:36:3b:aa:f1:97:54:95:38:cc:65: f1:dd:75:27:35:a8:6a:3c:38:33:5c:2d:a8:cd:44:9b:e0:e5: 26:71:50:55:af:b8:db:ea:5d:e7:61:ea:2f:dc:4a:5d:fc:3c: 88:70:b2:1b:c7:05:63:c5:c3:df:51:99:12:82:d4:12:a3:6b: 0c:8b:63:62:65:25:ee:35:da:81:71:81:d9:89:71:ec:82:ac: 95:e1:38:1a:22:7e:f0:03:b4:3c:bb:d7:06:a3:af:d6:b7:7a: 76:05:87:41:f2:7d:00:b8:57:a9:72:36:55:c2:80:0a:bf:08: 02:2d:6a:1e:3b:ed:95:62:36:7e:0c:8a:1c:4c:0d:a6:0e:e8: f9:68:b2:dd:66:f0:75:32:11:9e:1f:fb:1b:32:b6:4f:81:12: c0:35:fd:07:1c:f8:04:2d:8d:7d:8d:4b:92:f1:e8:59:3e:d2: 7b:16:04:7e -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgISAZt5EM22EHLazp6u9GhcAnwhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxZTI0NjRkZDZkMDQyMzA5NTE1ZjdlNWI2NGVhNjVjMDg5 YjQ2MTYwHhcNMjYwMTAxMTAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MDdiNWU4MWEzN2IzOGI4MDdiNDcxZWVlNzVjZGIwOWVhOTAxNDMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0nIWqlXVoLifO3+UDH2ENAFEMo/0 JeIM15O0wrdA666qw/y/tJKfYtAospnF++0ROKM+tNc461Np9K3Uts1jIcOK0NWa jprFbhUzaRokizGNfA9tDWDFhV6NNdIxKr8LaLwUt63ztvk0/I8ck7aEoGdYtZjM SMDTzrt8w5JjgiGEYSAwoM1fHfGzgSrYek8O/XuJBNt0hetYuNgCrVmlwOsQGgkh wzPaeh2ij9/OkNBuEIp9do2td40WLZmoZpWS4mohHYsteyO/okwzOTSzHerMCHv5 4fkDOUDyltHH++eD4OWkZIDklE9n2pHa5bHAVK5VkACMsZq6nYgFCLYmrwIDAQAB o4ICQzCCAj8wHQYDVR0OBBYEFIB7XoGjezi4B7Rx7udc2wnqkBQwMB8GA1UdIwQY MBaAFMHiRk3W0EIwlRX35bZOplwIm0YWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2VKR1RkYlFRakNWRmZmbHRrNm1YQWliUmhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8yNTZmYWItZGU5Ny00Njc5LWE0NjUt Yjk2ZDY3MTRhMTc0LzEvZ0h0ZWdhTjdPTGdIdEhIdTUxemJDZXFRRkRBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8yNTZmYWItZGU5Ny00Njc5LWE0NjUtYjk2ZDY3MTRhMTc0 LzEvd2VKR1RkYlFRakNWRmZmbHRrNm1YQWliUmhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFkGCCsGAQUFBwEHAQH/BEowSDA2BAIAATAwAwQCTW/sAwQD TeioAwQCUqOAAwQCUqPoAwQEX42gAwQDg3W4AwQDlf94AwQCuQf0MA4EAgACMAgD BgQqAMXAoDANBgkqhkiG9w0BAQsFAAOCAQEALH7Bu72BncPlYdUAaO7gAuCdrTsU GGZVfTQ6HWomhOj94/KqjRRIUknvgjv0M7L8oI1XbOStjuEEl4gHVLPNP1PgtNtc 7ZBz07QipLIwIhQ2O6rxl1SVOMxl8d11JzWoajw4M1wtqM1Em+DlJnFQVa+42+pd 52HqL9xKXfw8iHCyG8cFY8XD31GZEoLUEqNrDItjYmUl7jXagXGB2Ylx7IKsleE4 GiJ+8AO0PLvXBqOv1rd6dgWHQfJ9ALhXqXI2VcKACr8IAi1qHjvtlWI2fgyKHEwN pg7o+Wiy3WbwdTIRnh/7GzK2T4ESwDX9Bxz4BC2NfY1LkvHoWT7SexYEfg== -----END CERTIFICATE-----Generated at Fri Jan 9 03:47:02 2026 by rpki-client