This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/4e897f-e435-4715-a3c5-85be425d3199/1/m0XHnqLimHCaVdrwyhH4qvYB5k4.roa File: m0XHnqLimHCaVdrwyhH4qvYB5k4.roa (raw, json) Hash identifier: AyXTFUEVIX6Aa2cN5D+zF56YX+NxzZvMWIw5F0uYaGI= Subject key identifier: 9B:45:C7:9E:A2:E2:98:70:9A:55:DA:F0:CA:11:F8:AA:F6:01:E6:4E Certificate issuer: /CN=b6cf4e57cbc15ce4ecef44f50e5b8592fbeeeea0 Certificate serial: 019B797EDEE8C74F6715797AFD0E7180026B Authority key identifier: B6:CF:4E:57:CB:C1:5C:E4:EC:EF:44:F5:0E:5B:85:92:FB:EE:EE:A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ts9OV8vBXOTs70T1DluFkvvu7qA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/4e897f-e435-4715-a3c5-85be425d3199/1/m0XHnqLimHCaVdrwyhH4qvYB5k4.roa Signing time: Thu 01 Jan 2026 12:18:36 +0000 ROA not before: Thu 01 Jan 2026 12:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35019 IP address blocks: 85.158.128.0/21 maxlen: 21 85.158.128.0/24 maxlen: 24 85.158.129.0/24 maxlen: 24 85.158.130.0/24 maxlen: 24 85.158.131.0/24 maxlen: 24 85.158.132.0/24 maxlen: 24 85.158.133.0/24 maxlen: 24 85.158.134.0/24 maxlen: 24 85.158.135.0/24 maxlen: 24 185.156.236.0/22 maxlen: 22 185.156.236.0/24 maxlen: 24 185.156.237.0/24 maxlen: 24 185.156.238.0/24 maxlen: 24 185.156.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/4e897f-e435-4715-a3c5-85be425d3199/1/ts9OV8vBXOTs70T1DluFkvvu7qA.crl rsync://rpki.ripe.net/repository/DEFAULT/07/4e897f-e435-4715-a3c5-85be425d3199/1/ts9OV8vBXOTs70T1DluFkvvu7qA.mft rsync://rpki.ripe.net/repository/DEFAULT/ts9OV8vBXOTs70T1DluFkvvu7qA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:de:e8:c7:4f:67:15:79:7a:fd:0e:71:80:02:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b6cf4e57cbc15ce4ecef44f50e5b8592fbeeeea0 Validity Not Before: Jan 1 12:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9b45c79ea2e298709a55daf0ca11f8aaf601e64e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:01:4f:62:fc:fb:0f:f7:31:c0:f8:26:bd:dc: 5c:70:bb:19:9f:44:76:38:91:9d:05:61:fa:5f:ab: 58:06:6f:48:b2:1e:81:a7:0f:78:1c:01:e4:e8:6e: 88:84:25:c3:04:c7:7d:a8:6a:6a:f0:61:96:2d:a1: 5a:7b:75:cb:92:33:06:00:32:af:2d:0e:d8:a5:7c: ca:29:cf:02:85:81:f4:76:90:43:25:2d:b1:de:66: 01:c1:a8:f5:41:99:2c:74:e3:27:c9:1d:e7:4f:d5: ed:90:0b:c5:b4:8b:d1:a6:b7:6d:bf:21:ee:41:4a: 6e:91:ce:bf:08:f5:1a:7b:2f:ef:bc:cb:33:11:3c: c1:ea:2e:7b:e2:46:32:be:6e:89:0f:cf:77:a2:e0: 74:e9:59:88:d0:ae:d5:51:49:e0:23:71:d8:7f:ae: cd:a4:2d:77:6d:de:bf:a1:dd:d2:23:c7:3d:5c:19: 59:78:a3:fb:19:4d:e4:80:d4:3b:bf:1c:e6:36:fd: 08:1b:cc:24:0c:3f:73:38:9f:c5:d8:c7:6e:f3:fa: 83:82:61:60:d8:2f:66:1c:41:e2:7e:91:9f:a9:bd: 04:ed:e3:e1:83:90:33:29:18:97:d0:b2:68:5a:ad: 57:6c:f0:9d:db:95:57:35:21:4b:1d:5c:29:91:45: 28:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:45:C7:9E:A2:E2:98:70:9A:55:DA:F0:CA:11:F8:AA:F6:01:E6:4E X509v3 Authority Key Identifier: keyid:B6:CF:4E:57:CB:C1:5C:E4:EC:EF:44:F5:0E:5B:85:92:FB:EE:EE:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ts9OV8vBXOTs70T1DluFkvvu7qA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/4e897f-e435-4715-a3c5-85be425d3199/1/m0XHnqLimHCaVdrwyhH4qvYB5k4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/07/4e897f-e435-4715-a3c5-85be425d3199/1/ts9OV8vBXOTs70T1DluFkvvu7qA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.158.128.0/21 185.156.236.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:6d:91:60:5a:eb:cb:f1:25:12:74:7f:13:fd:1d:a8:a1:be: ba:6a:93:3a:30:55:df:b3:e3:70:2e:df:45:61:61:0e:70:41: 88:f9:3e:f1:bc:3c:d8:8a:12:21:8a:3d:08:82:35:b8:46:81: ed:00:17:5e:09:16:0d:b8:91:20:25:e4:80:df:6e:06:97:ae: 4a:29:4f:d6:74:04:dd:64:8b:6d:23:aa:a2:c1:96:17:05:9c: 08:41:7d:17:63:ad:d2:a1:31:2b:86:3e:2e:26:cf:ac:85:59: 5b:87:80:ae:c4:04:f3:b5:1e:f9:b5:e8:4b:c3:de:52:60:c2: 59:ea:e2:d8:b5:95:d3:ed:ba:c8:24:82:27:6a:17:bb:ec:f9: 5c:62:05:3e:da:b4:f6:bb:8c:97:6e:16:7d:9c:50:85:61:89: 8f:2d:13:97:4d:78:93:52:d9:64:ce:81:75:38:96:5c:20:b2: 48:1c:ce:d2:01:65:4a:64:37:5c:8f:50:6a:ee:69:07:aa:25: 36:75:38:0f:37:57:5e:7a:43:67:d1:f8:91:d4:0f:98:73:c8: 5a:bf:6e:dd:d8:40:9b:51:ea:d9:cb:a8:44:11:6b:56:3d:59: 1e:14:4e:cb:7a:7d:85:55:ba:4f:c8:c4:49:bd:b4:7a:5e:6a: 41:91:e4:5e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5ft7ox09nFXl6/Q5xgAJrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2Y2Y0ZTU3Y2JjMTVjZTRlY2VmNDRmNTBlNWI4NTkyZmJl ZWVlYTAwHhcNMjYwMTAxMTIxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YjQ1Yzc5ZWEyZTI5ODcwOWE1NWRhZjBjYTExZjhhYWY2MDFlNjRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxgFPYvz7D/cxwPgmvdxccLsZn0R2 OJGdBWH6X6tYBm9Ish6Bpw94HAHk6G6IhCXDBMd9qGpq8GGWLaFae3XLkjMGADKv LQ7YpXzKKc8ChYH0dpBDJS2x3mYBwaj1QZksdOMnyR3nT9XtkAvFtIvRprdtvyHu QUpukc6/CPUaey/vvMszETzB6i574kYyvm6JD893ouB06VmI0K7VUUngI3HYf67N pC13bd6/od3SI8c9XBlZeKP7GU3kgNQ7vxzmNv0IG8wkDD9zOJ/F2Mdu8/qDgmFg 2C9mHEHifpGfqb0E7ePhg5AzKRiX0LJoWq1XbPCd25VXNSFLHVwpkUUo3QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJtFx56i4phwmlXa8MoR+Kr2AeZOMB8GA1UdIwQY MBaAFLbPTlfLwVzk7O9E9Q5bhZL77u6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHM5T1Y4dkJYT1RzNzBUMURsdUZrdnZ1N3FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy80ZTg5N2YtZTQzNS00NzE1LWEzYzUt ODViZTQyNWQzMTk5LzEvbTBYSG5xTGltSENhVmRyd3loSDRxdllCNWs0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNy80ZTg5N2YtZTQzNS00NzE1LWEzYzUtODViZTQyNWQzMTk5 LzEvdHM5T1Y4dkJYT1RzNzBUMURsdUZrdnZ1N3FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDVZ6AAwQC uZzsMA0GCSqGSIb3DQEBCwUAA4IBAQAdbZFgWuvL8SUSdH8T/R2oob66apM6MFXf s+NwLt9FYWEOcEGI+T7xvDzYihIhij0IgjW4RoHtABdeCRYNuJEgJeSA324Gl65K KU/WdATdZIttI6qiwZYXBZwIQX0XY63SoTErhj4uJs+shVlbh4CuxATztR75tehL w95SYMJZ6uLYtZXT7brIJIInahe77PlcYgU+2rT2u4yXbhZ9nFCFYYmPLROXTXiT UtlkzoF1OJZcILJIHM7SAWVKZDdcj1Bq7mkHqiU2dTgPN1deekNn0fiR1A+Yc8ha v27d2ECbUerZy6hEEWtWPVkeFE7Len2FVbpPyMRJvbR6XmpBkeRe -----END CERTIFICATE-----Generated at Wed Jan 21 17:16:55 2026 by rpki-client