This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/3052de-558b-4334-8a70-9ad33ae653ad/1/8MxTJlqau9S1ZV5fA_n_hiU2OjQ.roa File: 8MxTJlqau9S1ZV5fA_n_hiU2OjQ.roa (raw, json) Hash identifier: ZFi66z5+x2HZHjEf8Mnf2qe4zKNsSEknPsHvSK6VhIc= Subject key identifier: F0:CC:53:26:5A:9A:BB:D4:B5:65:5E:5F:03:F9:FF:86:25:36:3A:34 Certificate issuer: /CN=cbc83c392c5421c595cd5fb79428e8275bdb594c Certificate serial: 019B7EA4660326B15674DB7DDE48F3C93087 Authority key identifier: CB:C8:3C:39:2C:54:21:C5:95:CD:5F:B7:94:28:E8:27:5B:DB:59:4C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y8g8OSxUIcWVzV-3lCjoJ1vbWUw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/3052de-558b-4334-8a70-9ad33ae653ad/1/8MxTJlqau9S1ZV5fA_n_hiU2OjQ.roa Signing time: Fri 02 Jan 2026 12:17:41 +0000 ROA not before: Fri 02 Jan 2026 12:17:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198233 IP address blocks: 146.19.177.0/24 maxlen: 24 2a13:88c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/3052de-558b-4334-8a70-9ad33ae653ad/1/y8g8OSxUIcWVzV-3lCjoJ1vbWUw.crl rsync://rpki.ripe.net/repository/DEFAULT/10/3052de-558b-4334-8a70-9ad33ae653ad/1/y8g8OSxUIcWVzV-3lCjoJ1vbWUw.mft rsync://rpki.ripe.net/repository/DEFAULT/y8g8OSxUIcWVzV-3lCjoJ1vbWUw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 03:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:66:03:26:b1:56:74:db:7d:de:48:f3:c9:30:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cbc83c392c5421c595cd5fb79428e8275bdb594c Validity Not Before: Jan 2 12:17:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f0cc53265a9abbd4b5655e5f03f9ff8625363a34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:62:62:6f:e4:ca:6c:8c:26:0b:44:21:32:74: 8a:b4:eb:6c:5f:93:f7:c2:f3:35:dc:c6:71:23:1b: d4:b1:0e:2e:65:e2:e5:2f:9d:ba:84:c7:60:36:23: e3:02:ab:f5:6b:30:f8:83:db:fc:a4:09:0e:de:28: f6:fa:98:20:55:75:18:47:bf:e4:3c:c4:68:81:43: c5:cf:5e:30:99:2c:9a:55:11:79:3a:42:1e:e2:50: 12:b4:ef:ef:f8:8e:5b:c8:a2:15:d7:58:cd:3c:3b: 8c:b9:2f:cc:c3:0b:03:eb:da:6f:57:71:aa:ca:24: aa:1a:d8:a0:00:85:38:10:18:1b:2a:74:28:32:1d: 8c:1c:c3:f0:c2:49:ab:95:f5:33:a9:f2:39:6e:9d: ee:26:12:f7:8d:7d:b4:e6:ba:5e:b9:c7:23:f9:cb: ba:bf:80:83:9a:ea:23:17:c9:7e:a2:13:ec:30:42: e5:82:4c:6c:8a:b0:1f:22:a0:23:4a:97:50:5b:1c: 0c:86:63:2c:ca:4c:cd:35:96:53:57:71:6a:eb:fb: db:3e:15:d3:6c:ab:87:7d:07:db:cd:2b:2d:b7:9a: 8b:33:b9:51:ba:1e:7d:2d:d7:bc:08:1a:62:a6:aa: 1f:2d:ad:57:c4:2d:ba:25:27:09:92:56:08:42:9b: 92:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:CC:53:26:5A:9A:BB:D4:B5:65:5E:5F:03:F9:FF:86:25:36:3A:34 X509v3 Authority Key Identifier: keyid:CB:C8:3C:39:2C:54:21:C5:95:CD:5F:B7:94:28:E8:27:5B:DB:59:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y8g8OSxUIcWVzV-3lCjoJ1vbWUw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/3052de-558b-4334-8a70-9ad33ae653ad/1/8MxTJlqau9S1ZV5fA_n_hiU2OjQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/3052de-558b-4334-8a70-9ad33ae653ad/1/y8g8OSxUIcWVzV-3lCjoJ1vbWUw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.19.177.0/24 IPv6: 2a13:88c0::/29 Signature Algorithm: sha256WithRSAEncryption ba:21:6f:8f:b9:95:1b:9e:40:e4:23:71:4a:1a:a0:f1:62:22: 7d:a9:73:4c:b6:86:0f:4d:07:db:58:bd:a1:3b:23:ed:8d:5e: bb:fe:94:4d:08:4e:96:88:f7:87:8c:31:77:58:ac:06:1f:05: 8b:ca:b6:ed:dd:de:06:e9:cc:f7:b6:7b:b1:ab:59:5e:ad:f5: cc:a3:38:0f:ff:95:fc:0e:61:99:30:65:75:60:2f:e0:12:bf: 1f:62:b2:77:15:89:7e:5c:4e:d7:82:f0:0f:41:93:a5:79:c4: 19:04:44:80:d1:4d:2b:bb:75:ed:99:08:0b:1d:0f:17:79:f4: b9:9e:56:af:29:92:17:16:48:36:74:c3:37:c4:db:b2:b8:a5: dd:5d:8a:57:b9:e9:87:35:83:ef:3a:f1:e1:0c:a7:91:4f:c8: 8e:e1:c8:89:cd:20:8c:8e:8f:62:84:b2:f7:f1:b0:fe:c0:c8: 50:56:1d:f1:0e:a9:7e:f6:b9:e1:3d:fe:53:81:54:af:4f:9f: d5:c8:98:f1:af:de:0f:af:7b:20:96:7a:bc:f1:a3:f4:bb:48: 19:67:5d:e3:97:56:53:03:7b:2a:44:ce:1f:af:11:9c:40:33: 2c:03:f0:f8:54:3d:b4:a6:70:81:5a:9f:b1:22:79:cb:2b:c1: a4:89:56:52 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pGYDJrFWdNt93kjzyTCHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiYzgzYzM5MmM1NDIxYzU5NWNkNWZiNzk0MjhlODI3NWJk YjU5NGMwHhcNMjYwMTAyMTIxNzQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMGNjNTMyNjVhOWFiYmQ0YjU2NTVlNWYwM2Y5ZmY4NjI1MzYzYTM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1GJib+TKbIwmC0QhMnSKtOtsX5P3 wvM13MZxIxvUsQ4uZeLlL526hMdgNiPjAqv1azD4g9v8pAkO3ij2+pggVXUYR7/k PMRogUPFz14wmSyaVRF5OkIe4lAStO/v+I5byKIV11jNPDuMuS/MwwsD69pvV3Gq yiSqGtigAIU4EBgbKnQoMh2MHMPwwkmrlfUzqfI5bp3uJhL3jX205rpeuccj+cu6 v4CDmuojF8l+ohPsMELlgkxsirAfIqAjSpdQWxwMhmMsykzNNZZTV3Fq6/vbPhXT bKuHfQfbzSstt5qLM7lRuh59Lde8CBpipqofLa1XxC26JScJklYIQpuS2wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFPDMUyZamrvUtWVeXwP5/4YlNjo0MB8GA1UdIwQY MBaAFMvIPDksVCHFlc1ft5Qo6Cdb21lMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveThnOE9TeFVJY1dWelYtM2xDam9KMXZiV1V3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8zMDUyZGUtNTU4Yi00MzM0LThhNzAt OWFkMzNhZTY1M2FkLzEvOE14VEpscWF1OVMxWlY1ZkFfbl9oaVUyT2pRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC8zMDUyZGUtNTU4Yi00MzM0LThhNzAtOWFkMzNhZTY1M2Fk LzEveThnOE9TeFVJY1dWelYtM2xDam9KMXZiV1V3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAkhOxMA0E AgACMAcDBQMqE4jAMA0GCSqGSIb3DQEBCwUAA4IBAQC6IW+PuZUbnkDkI3FKGqDx YiJ9qXNMtoYPTQfbWL2hOyPtjV67/pRNCE6WiPeHjDF3WKwGHwWLyrbt3d4G6cz3 tnuxq1lerfXMozgP/5X8DmGZMGV1YC/gEr8fYrJ3FYl+XE7XgvAPQZOlecQZBESA 0U0ru3XtmQgLHQ8XefS5nlavKZIXFkg2dMM3xNuyuKXdXYpXuemHNYPvOvHhDKeR T8iO4ciJzSCMjo9ihLL38bD+wMhQVh3xDql+9rnhPf5TgVSvT5/VyJjxr94Pr3sg lnq88aP0u0gZZ13jl1ZTA3sqRM4frxGcQDMsA/D4VD20pnCBWp+xInnLK8GkiVZS -----END CERTIFICATE-----Generated at Sat Jan 17 11:50:59 2026 by rpki-client