This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/e5ea19-0b7b-431f-91bf-abcc905d9ffe/1/h8307773aGTVcHuejCRSQfYZeP4.roa File: h8307773aGTVcHuejCRSQfYZeP4.roa (raw, json) Hash identifier: 2K29Y+KA5ZX1LE8dgEvQhQ3+PK0Gls5txAa/7wvymRw= Subject key identifier: 87:CD:F4:EF:BE:F7:68:64:D5:70:7B:9E:8C:24:52:41:F6:19:78:FE Certificate issuer: /CN=6547443e620d63c8e4f54a67178474d1f909af68 Certificate serial: 019B7D5BBA6F5D3C5E5327493D13390F8141 Authority key identifier: 65:47:44:3E:62:0D:63:C8:E4:F5:4A:67:17:84:74:D1:F9:09:AF:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZUdEPmINY8jk9UpnF4R00fkJr2g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/e5ea19-0b7b-431f-91bf-abcc905d9ffe/1/h8307773aGTVcHuejCRSQfYZeP4.roa Signing time: Fri 02 Jan 2026 06:18:42 +0000 ROA not before: Fri 02 Jan 2026 06:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21466 IP address blocks: 185.166.80.0/22 maxlen: 24 213.202.32.0/19 maxlen: 24 213.202.32.0/21 maxlen: 24 213.202.40.0/21 maxlen: 24 213.202.48.0/20 maxlen: 24 213.230.32.0/20 maxlen: 24 213.230.40.0/21 maxlen: 24 2a06:3f40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/e5ea19-0b7b-431f-91bf-abcc905d9ffe/1/ZUdEPmINY8jk9UpnF4R00fkJr2g.crl rsync://rpki.ripe.net/repository/DEFAULT/01/e5ea19-0b7b-431f-91bf-abcc905d9ffe/1/ZUdEPmINY8jk9UpnF4R00fkJr2g.mft rsync://rpki.ripe.net/repository/DEFAULT/ZUdEPmINY8jk9UpnF4R00fkJr2g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:ba:6f:5d:3c:5e:53:27:49:3d:13:39:0f:81:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6547443e620d63c8e4f54a67178474d1f909af68 Validity Not Before: Jan 2 06:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=87cdf4efbef76864d5707b9e8c245241f61978fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:64:4e:14:18:11:a7:63:48:ea:a3:5c:a3:be: 5b:33:38:ed:c5:8b:be:0d:b1:48:86:bc:39:f8:5a: ea:64:f9:13:87:81:44:fc:ba:63:9a:3f:1b:5c:73: 75:91:4a:a6:08:96:a4:e8:72:42:d0:fb:7f:3e:75: a6:e0:ef:f5:98:74:f7:43:a1:39:60:f0:8d:b1:2f: dd:0f:49:d6:87:f6:0f:99:62:53:d4:92:51:6b:a2: ce:d2:ac:51:19:24:24:e2:7f:5a:01:fc:28:6c:0f: a1:18:d2:b9:44:71:a8:45:1b:ed:3c:7a:b6:0b:7b: 79:88:fb:ce:63:4c:2e:3f:08:34:4c:ab:fe:fb:dc: cf:df:e8:11:3a:25:a4:24:3d:46:28:0c:cf:d4:c8: 4c:3e:23:ef:87:1a:0e:92:6f:d6:8c:89:cd:6b:b2: b7:e2:f4:33:ad:f6:28:d6:86:ae:e1:18:a9:e3:b8: d7:5f:d3:e6:5f:a6:6c:3e:06:2e:62:11:c4:cd:db: 1b:69:b6:00:44:94:a6:58:24:a1:e1:69:e6:7d:e1: ed:4f:d1:3b:ee:55:89:41:ed:19:c6:02:47:01:f9: d6:d0:48:cb:7a:fb:8e:c4:95:6e:10:9d:08:22:30: 1d:cf:75:0a:b9:e4:52:54:00:fe:a3:ff:15:ec:0e: be:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:CD:F4:EF:BE:F7:68:64:D5:70:7B:9E:8C:24:52:41:F6:19:78:FE X509v3 Authority Key Identifier: keyid:65:47:44:3E:62:0D:63:C8:E4:F5:4A:67:17:84:74:D1:F9:09:AF:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZUdEPmINY8jk9UpnF4R00fkJr2g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e5ea19-0b7b-431f-91bf-abcc905d9ffe/1/h8307773aGTVcHuejCRSQfYZeP4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/e5ea19-0b7b-431f-91bf-abcc905d9ffe/1/ZUdEPmINY8jk9UpnF4R00fkJr2g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.80.0/22 213.202.32.0/19 213.230.32.0/20 IPv6: 2a06:3f40::/29 Signature Algorithm: sha256WithRSAEncryption 3a:3f:19:f5:43:2c:12:b7:fb:f0:ca:74:ed:e8:d8:af:a4:55: 85:be:d8:5a:13:7b:22:c4:48:a6:96:d4:7b:0c:78:e5:d9:b9: 29:91:e5:d3:2a:00:db:63:96:90:d5:d4:ee:ee:e1:8e:c1:4c: 02:67:78:a1:9a:1f:89:22:b8:1b:45:3a:13:43:1e:ad:e9:e9: 7b:fd:0c:d3:7b:c1:d0:bc:b9:69:7c:8a:e0:4c:1b:c2:e1:5f: 00:5e:98:f4:59:71:84:bd:7e:e8:c5:31:3f:46:4e:e3:1a:aa: da:d1:62:60:c5:ab:41:c6:ac:d9:71:73:29:eb:a3:cd:76:e2: 8c:e5:e7:b7:b7:a6:24:41:f0:6a:46:b8:3b:a3:41:52:8f:b2: 34:5d:ec:51:36:22:c5:59:8a:04:20:43:f7:79:4b:de:d8:f6: e9:47:37:c6:a5:c1:68:df:aa:58:0d:8d:07:86:23:5c:3d:ed: 3d:6c:a1:2f:6f:ed:7c:5f:31:eb:db:f0:1f:15:73:cd:60:e8: a5:7b:05:59:f5:fd:3b:bc:a0:cb:0b:89:9f:db:99:11:eb:16: 95:79:bb:6b:0d:40:4e:85:04:eb:91:94:16:4c:0f:f9:b3:2f: 24:a7:c2:3b:3f:79:21:ff:4d:0f:c0:d7:a4:ee:d0:fb:84:4c: a9:05:6a:8c -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt9W7pvXTxeUydJPRM5D4FBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1NDc0NDNlNjIwZDYzYzhlNGY1NGE2NzE3ODQ3NGQxZjkw OWFmNjgwHhcNMjYwMTAyMDYxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4N2NkZjRlZmJlZjc2ODY0ZDU3MDdiOWU4YzI0NTI0MWY2MTk3OGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmROFBgRp2NI6qNco75bMzjtxYu+ DbFIhrw5+FrqZPkTh4FE/Lpjmj8bXHN1kUqmCJak6HJC0Pt/PnWm4O/1mHT3Q6E5 YPCNsS/dD0nWh/YPmWJT1JJRa6LO0qxRGSQk4n9aAfwobA+hGNK5RHGoRRvtPHq2 C3t5iPvOY0wuPwg0TKv++9zP3+gROiWkJD1GKAzP1MhMPiPvhxoOkm/WjInNa7K3 4vQzrfYo1oau4Rip47jXX9PmX6ZsPgYuYhHEzdsbabYARJSmWCSh4WnmfeHtT9E7 7lWJQe0ZxgJHAfnW0EjLevuOxJVuEJ0IIjAdz3UKueRSVAD+o/8V7A6+/wIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFIfN9O++92hk1XB7nowkUkH2GXj+MB8GA1UdIwQY MBaAFGVHRD5iDWPI5PVKZxeEdNH5Ca9oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlVkRVBtSU5ZOGprOVVwbkY0UjAwZmtKcjJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9lNWVhMTktMGI3Yi00MzFmLTkxYmYt YWJjYzkwNWQ5ZmZlLzEvaDgzMDc3NzNhR1RWY0h1ZWpDUlNRZllaZVA0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9lNWVhMTktMGI3Yi00MzFmLTkxYmYtYWJjYzkwNWQ5ZmZl LzEvWlVkRVBtSU5ZOGprOVVwbkY0UjAwZmtKcjJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCuaZQAwQF 1cogAwQE1eYgMA0EAgACMAcDBQMqBj9AMA0GCSqGSIb3DQEBCwUAA4IBAQA6Pxn1 QywSt/vwynTt6NivpFWFvthaE3sixEimltR7DHjl2bkpkeXTKgDbY5aQ1dTu7uGO wUwCZ3ihmh+JIrgbRToTQx6t6el7/QzTe8HQvLlpfIrgTBvC4V8AXpj0WXGEvX7o xTE/Rk7jGqra0WJgxatBxqzZcXMp66PNduKM5ee3t6YkQfBqRrg7o0FSj7I0XexR NiLFWYoEIEP3eUve2PbpRzfGpcFo36pYDY0HhiNcPe09bKEvb+18XzHr2/AfFXPN YOilewVZ9f07vKDLC4mf25kR6xaVebtrDUBOhQTrkZQWTA/5sy8kp8I7P3kh/00P wNek7tD7hEypBWqM -----END CERTIFICATE-----Generated at Mon Feb 9 23:46:22 2026 by rpki-client