This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/eh5f2bSFFBPtD-itI_yMFOKVNl8.roa File: eh5f2bSFFBPtD-itI_yMFOKVNl8.roa (raw, json) Hash identifier: 1eTnOvtuGR3xM5v0Vi+oWqoLUpmMh/7COfXsHBvYGt0= Subject key identifier: 7A:1E:5F:D9:B4:85:14:13:ED:0F:E8:AD:23:FC:8C:14:E2:95:36:5F Certificate issuer: /CN=d09a7f7fdd54a17ce5e12a4182eb652479f9d758 Certificate serial: 019B7F15E9E4A594E52C45324E494739CA31 Authority key identifier: D0:9A:7F:7F:DD:54:A1:7C:E5:E1:2A:41:82:EB:65:24:79:F9:D7:58 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/eh5f2bSFFBPtD-itI_yMFOKVNl8.roa Signing time: Fri 02 Jan 2026 14:21:40 +0000 ROA not before: Fri 02 Jan 2026 14:21:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15830 IP address blocks: 185.69.248.0/24 maxlen: 24 185.69.249.0/24 maxlen: 24 185.69.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/0Jp_f91UoXzl4SpBgutlJHn511g.crl rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/0Jp_f91UoXzl4SpBgutlJHn511g.mft rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:e9:e4:a5:94:e5:2c:45:32:4e:49:47:39:ca:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d09a7f7fdd54a17ce5e12a4182eb652479f9d758 Validity Not Before: Jan 2 14:21:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7a1e5fd9b4851413ed0fe8ad23fc8c14e295365f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:b3:c3:6a:8f:3b:50:0c:ba:a1:5f:ee:34: 37:c7:f3:49:f1:ac:c6:db:e6:e8:15:35:39:02:cb: 69:2f:c1:8e:07:1e:90:f0:24:04:e8:9f:d6:55:5a: 57:5d:10:10:54:3e:6b:81:57:79:bc:65:d2:cc:56: 83:69:bd:7f:ee:a2:03:75:cf:bb:9c:11:99:bf:ed: 05:ac:28:f7:e1:5a:31:1a:bf:f3:42:f3:93:10:c5: fe:30:7d:8b:e4:7f:1f:db:60:39:22:6e:ea:5d:9a: 0f:df:a0:b8:b9:e3:25:bc:b7:1e:2e:bb:cc:d0:40: 38:0f:b9:e9:4b:6a:17:72:aa:76:59:c7:af:39:48: 5d:c4:32:b3:1c:66:f8:61:81:06:3c:a3:9d:0e:d2: ea:36:97:56:19:de:f0:6a:f7:11:d0:47:c2:b6:d5: 6c:cf:03:ca:8b:e2:77:cf:df:45:3b:8f:82:e2:86: a2:31:66:02:5b:6f:38:5d:65:94:4e:e0:6c:5e:44: 4c:29:0f:c1:1f:af:8b:91:ec:cd:8e:9e:dd:82:db: 74:0a:4d:8a:26:6e:71:df:4d:c1:0e:c1:66:62:3b: 3b:5a:61:d4:bb:54:5b:7b:7b:08:e3:27:e6:d8:66: 62:51:7f:91:a8:7f:02:f0:67:93:f2:65:e5:69:c3: 87:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1E:5F:D9:B4:85:14:13:ED:0F:E8:AD:23:FC:8C:14:E2:95:36:5F X509v3 Authority Key Identifier: keyid:D0:9A:7F:7F:DD:54:A1:7C:E5:E1:2A:41:82:EB:65:24:79:F9:D7:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Jp_f91UoXzl4SpBgutlJHn511g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/eh5f2bSFFBPtD-itI_yMFOKVNl8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/b3d97e-5cc2-4669-b378-5875a4489dba/1/0Jp_f91UoXzl4SpBgutlJHn511g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.69.248.0-185.69.250.255 Signature Algorithm: sha256WithRSAEncryption c3:08:76:2d:13:cf:9b:a6:8d:5c:ff:2c:f2:8d:57:59:e7:26: ac:37:3e:1f:87:c8:b8:91:31:35:57:36:5c:8c:be:b8:77:3e: c5:a2:43:2a:f8:a0:99:10:d7:c2:2f:f5:cd:bb:aa:41:94:2b: 7c:a8:28:9f:23:29:08:bb:f0:e4:53:65:bd:51:0d:ea:70:0d: 86:64:f3:79:f4:f5:45:75:fc:99:77:ad:11:e4:b5:5b:3d:0b: d2:23:29:b7:ee:ff:c6:3b:1c:ce:e2:1f:a5:b9:b3:60:9d:6a: 6f:72:33:62:a6:db:dd:a6:47:6e:c6:66:e9:d3:b2:fc:47:fc: 76:ed:c4:4d:01:ca:53:d2:66:69:f6:3e:54:10:95:3f:f2:1f: bd:27:04:f4:bc:64:30:66:02:70:76:4f:5e:2c:5b:0f:1c:33: 43:a9:66:57:e3:37:4e:bc:d3:1b:05:f5:12:fe:88:2f:26:c5: c1:a4:09:a3:8d:f2:60:ae:6b:a9:19:45:ce:70:d7:6c:52:2e: f9:a0:cf:2a:3b:cf:ed:06:7c:19:ac:40:e5:ca:2a:d5:1e:75: 26:a1:de:1b:4d:88:62:b7:9e:9a:00:a6:f1:b7:a5:27:7b:71: da:cd:0f:91:99:99:09:ac:2e:81:6e:78:00:ea:78:bf:34:c8: 02:75:fa:11 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt/FenkpZTlLEUyTklHOcoxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwOWE3ZjdmZGQ1NGExN2NlNWUxMmE0MTgyZWI2NTI0Nzlm OWQ3NTgwHhcNMjYwMTAyMTQyMTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3YTFlNWZkOWI0ODUxNDEzZWQwZmU4YWQyM2ZjOGMxNGUyOTUzNjVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtzKzw2qPO1AMuqFf7jQ3x/NJ8azG 2+boFTU5AstpL8GOBx6Q8CQE6J/WVVpXXRAQVD5rgVd5vGXSzFaDab1/7qIDdc+7 nBGZv+0FrCj34VoxGr/zQvOTEMX+MH2L5H8f22A5Im7qXZoP36C4ueMlvLceLrvM 0EA4D7npS2oXcqp2WcevOUhdxDKzHGb4YYEGPKOdDtLqNpdWGd7wavcR0EfCttVs zwPKi+J3z99FO4+C4oaiMWYCW284XWWUTuBsXkRMKQ/BH6+LkezNjp7dgtt0Ck2K Jm5x303BDsFmYjs7WmHUu1Rbe3sI4yfm2GZiUX+RqH8C8GeT8mXlacOHqQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFHoeX9m0hRQT7Q/orSP8jBTilTZfMB8GA1UdIwQY MBaAFNCaf3/dVKF85eEqQYLrZSR5+ddYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEpwX2Y5MVVvWHpsNFNwQmd1dGxKSG41MTFnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9iM2Q5N2UtNWNjMi00NjY5LWIzNzgt NTg3NWE0NDg5ZGJhLzEvZWg1ZjJiU0ZGQlB0RC1pdElfeU1GT0tWTmw4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9iM2Q5N2UtNWNjMi00NjY5LWIzNzgtNTg3NWE0NDg5ZGJh LzEvMEpwX2Y5MVVvWHpsNFNwQmd1dGxKSG41MTFnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAO5RfgD BAC5RfowDQYJKoZIhvcNAQELBQADggEBAMMIdi0Tz5umjVz/LPKNV1nnJqw3Ph+H yLiRMTVXNlyMvrh3PsWiQyr4oJkQ18Iv9c27qkGUK3yoKJ8jKQi78ORTZb1RDepw DYZk83n09UV1/Jl3rRHktVs9C9IjKbfu/8Y7HM7iH6W5s2Cdam9yM2Km292mR27G ZunTsvxH/HbtxE0BylPSZmn2PlQQlT/yH70nBPS8ZDBmAnB2T14sWw8cM0OpZlfj N0680xsF9RL+iC8mxcGkCaON8mCua6kZRc5w12xSLvmgzyo7z+0GfBmsQOXKKtUe dSah3htNiGK3npoApvG3pSd7cdrND5GZmQmsLoFueADqeL80yAJ1+hE= -----END CERTIFICATE-----Generated at Sat Jan 3 04:53:27 2026 by rpki-client