This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/cfea9e-bee2-4bcb-8def-3e4b74dd058d/1/rx8NmZ6YvA0S3D4XNTwXbtbGvOw.roa File: rx8NmZ6YvA0S3D4XNTwXbtbGvOw.roa (raw, json) Hash identifier: 59Iwnxhuc4AJklsn5wS0w5UZ4mP5tYoRkOd1B+7qRI4= Subject key identifier: AF:1F:0D:99:9E:98:BC:0D:12:DC:3E:17:35:3C:17:6E:D6:C6:BC:EC Certificate issuer: /CN=0e298900355fdf4254c20831f2d7ee3bec429bdb Certificate serial: 019B663CAC7D47A238C5F6850C7E3552E59C Authority key identifier: 0E:29:89:00:35:5F:DF:42:54:C2:08:31:F2:D7:EE:3B:EC:42:9B:DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DimJADVf30JUwggx8tfuO-xCm9s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/cfea9e-bee2-4bcb-8def-3e4b74dd058d/1/rx8NmZ6YvA0S3D4XNTwXbtbGvOw.roa Signing time: Sun 28 Dec 2025 18:33:30 +0000 ROA not before: Sun 28 Dec 2025 18:33:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 211440 IP address blocks: 185.226.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/cfea9e-bee2-4bcb-8def-3e4b74dd058d/1/DimJADVf30JUwggx8tfuO-xCm9s.crl rsync://rpki.ripe.net/repository/DEFAULT/06/cfea9e-bee2-4bcb-8def-3e4b74dd058d/1/DimJADVf30JUwggx8tfuO-xCm9s.mft rsync://rpki.ripe.net/repository/DEFAULT/DimJADVf30JUwggx8tfuO-xCm9s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 15:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:66:3c:ac:7d:47:a2:38:c5:f6:85:0c:7e:35:52:e5:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e298900355fdf4254c20831f2d7ee3bec429bdb Validity Not Before: Dec 28 18:33:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=af1f0d999e98bc0d12dc3e17353c176ed6c6bcec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:32:d3:d4:c0:4c:bd:87:1c:55:31:56:c5:db: a5:31:ab:46:73:ec:b8:e1:bb:df:e7:7a:3a:97:ab: 08:3d:0e:d8:1f:1d:24:3b:e4:3e:c6:ce:d3:5b:5a: 4e:c4:78:83:de:71:7f:21:f6:13:67:30:bd:ad:8a: 60:5e:69:03:a0:24:76:93:7c:46:63:5e:4a:09:1a: 77:ed:dd:76:21:62:51:7d:f1:57:23:77:59:e3:a2: 13:46:9e:86:c0:89:bf:8b:20:f2:1f:32:09:e8:14: b7:63:1f:d3:bc:12:c9:cf:72:93:ef:a9:65:62:9b: fe:a6:8b:64:a6:80:8f:8b:2f:ef:8f:3c:48:e8:3f: e6:7f:ab:a6:b5:49:62:70:00:50:99:24:3d:2a:18: 5e:31:13:06:29:71:4a:b9:79:07:c6:3b:76:f2:00: 75:57:4c:bb:02:f7:75:96:d5:25:07:52:f9:9e:e7: fb:f9:5c:48:92:78:3e:fb:fc:eb:53:f5:9e:de:ea: 53:70:a4:d7:08:76:62:e5:d5:18:bd:52:02:37:39: e4:fd:f5:bd:db:88:b7:01:25:e7:cf:83:35:a9:41: 22:8e:f0:f4:dd:2c:21:93:a5:6b:dc:03:22:ba:0b: 0a:49:54:f0:9d:a8:90:9a:00:df:8e:43:fb:6b:8c: 48:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:1F:0D:99:9E:98:BC:0D:12:DC:3E:17:35:3C:17:6E:D6:C6:BC:EC X509v3 Authority Key Identifier: keyid:0E:29:89:00:35:5F:DF:42:54:C2:08:31:F2:D7:EE:3B:EC:42:9B:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DimJADVf30JUwggx8tfuO-xCm9s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cfea9e-bee2-4bcb-8def-3e4b74dd058d/1/rx8NmZ6YvA0S3D4XNTwXbtbGvOw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cfea9e-bee2-4bcb-8def-3e4b74dd058d/1/DimJADVf30JUwggx8tfuO-xCm9s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.226.153.0/24 Signature Algorithm: sha256WithRSAEncryption 90:0d:22:4f:84:26:d4:80:54:20:dc:2f:f5:81:68:22:70:45: 28:5c:94:3d:9e:1e:20:b4:e1:65:ad:eb:1f:6b:04:66:4d:47: e3:a1:7c:88:9f:0e:d7:d0:f0:11:53:61:4c:ee:4e:4f:a2:6c: e5:02:09:17:8e:e0:62:6c:0c:13:17:68:db:74:00:8d:cf:ea: 0f:f1:ff:ad:4d:7c:28:5c:b3:0b:bc:4d:b1:7f:2f:1e:8e:70: 7f:fa:67:6c:8a:3c:74:72:ad:e6:55:69:7a:7d:30:2a:38:90: 03:22:cb:2f:7b:fc:19:08:6d:09:4f:c9:c7:10:59:32:43:97: 1c:79:9e:35:5f:82:b1:8d:02:21:fc:ce:27:f7:b6:83:af:3b: f4:63:f7:70:0d:a0:c4:ca:33:57:b6:8e:24:ae:28:3e:1b:48: b3:78:26:40:9a:0e:bf:d6:09:22:be:9f:ba:9b:ed:9e:db:2f: 6d:37:48:6b:ef:05:64:94:48:1b:d5:a6:11:75:8f:6e:51:6c: 81:1c:c3:f0:63:c0:0a:e1:48:54:0b:92:9a:76:10:d9:dc:f0: 63:33:58:e5:28:1c:c1:a0:b5:4a:b9:02:57:0d:80:23:53:fa: 36:d5:70:48:d3:20:99:78:6c:7b:e4:e7:b9:7b:ed:6e:64:a0: 9c:f0:16:ac -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZtmPKx9R6I4xfaFDH41UuWcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlMjk4OTAwMzU1ZmRmNDI1NGMyMDgzMWYyZDdlZTNiZWM0 MjliZGIwHhcNMjUxMjI4MTgzMzMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjFmMGQ5OTllOThiYzBkMTJkYzNlMTczNTNjMTc2ZWQ2YzZiY2VjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jLT1MBMvYccVTFWxdulMatGc+y4 4bvf53o6l6sIPQ7YHx0kO+Q+xs7TW1pOxHiD3nF/IfYTZzC9rYpgXmkDoCR2k3xG Y15KCRp37d12IWJRffFXI3dZ46ITRp6GwIm/iyDyHzIJ6BS3Yx/TvBLJz3KT76ll Ypv+potkpoCPiy/vjzxI6D/mf6umtUlicABQmSQ9KhheMRMGKXFKuXkHxjt28gB1 V0y7Avd1ltUlB1L5nuf7+VxIkng++/zrU/We3upTcKTXCHZi5dUYvVICNznk/fW9 24i3ASXnz4M1qUEijvD03Swhk6Vr3AMiugsKSVTwnaiQmgDfjkP7a4xITwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK8fDZmemLwNEtw+FzU8F27WxrzsMB8GA1UdIwQY MBaAFA4piQA1X99CVMIIMfLX7jvsQpvbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGltSkFEVmYzMEpVd2dneDh0ZnVPLXhDbTlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9jZmVhOWUtYmVlMi00YmNiLThkZWYt M2U0Yjc0ZGQwNThkLzEvcng4Tm1aNll2QTBTM0Q0WE5Ud1hidGJHdk93LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9jZmVhOWUtYmVlMi00YmNiLThkZWYtM2U0Yjc0ZGQwNThk LzEvRGltSkFEVmYzMEpVd2dneDh0ZnVPLXhDbTlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueKZMA0G CSqGSIb3DQEBCwUAA4IBAQCQDSJPhCbUgFQg3C/1gWgicEUoXJQ9nh4gtOFlresf awRmTUfjoXyInw7X0PARU2FM7k5PomzlAgkXjuBibAwTF2jbdACNz+oP8f+tTXwo XLMLvE2xfy8ejnB/+mdsijx0cq3mVWl6fTAqOJADIssve/wZCG0JT8nHEFkyQ5cc eZ41X4KxjQIh/M4n97aDrzv0Y/dwDaDEyjNXto4krig+G0izeCZAmg6/1gkivp+6 m+2e2y9tN0hr7wVklEgb1aYRdY9uUWyBHMPwY8AK4UhUC5KadhDZ3PBjM1jlKBzB oLVKuQJXDYAjU/o21XBI0yCZeGx75Oe5e+1uZKCc8Bas -----END CERTIFICATE-----Generated at Wed Dec 31 00:57:46 2025 by rpki-client