This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/u7gow9KmygGFJud8Kbx8Q5bXl10.roa File: u7gow9KmygGFJud8Kbx8Q5bXl10.roa (raw, json) Hash identifier: zOMjeXXBLvQlEvulfQkHinq9NE+I+uXsiNr8CDWlugI= Subject key identifier: BB:B8:28:C3:D2:A6:CA:01:85:26:E7:7C:29:BC:7C:43:96:D7:97:5D Certificate issuer: /CN=2cf6136315a52d5247124b7cf369aafb8312227e Certificate serial: 019B7C12A1393CCE038742837823FC266C18 Authority key identifier: 2C:F6:13:63:15:A5:2D:52:47:12:4B:7C:F3:69:AA:FB:83:12:22:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LPYTYxWlLVJHEkt882mq-4MSIn4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/u7gow9KmygGFJud8Kbx8Q5bXl10.roa Signing time: Fri 02 Jan 2026 00:19:14 +0000 ROA not before: Fri 02 Jan 2026 00:19:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200735 IP address blocks: 85.208.236.0/24 maxlen: 24 85.208.237.0/24 maxlen: 24 2a09:8e40::/36 maxlen: 36 2a09:8e40:1000::/36 maxlen: 36 2a09:8e40:2000::/36 maxlen: 36 2a09:8e40:3000::/36 maxlen: 36 2a09:8e40:4000::/36 maxlen: 36 2a09:8e40:5000::/36 maxlen: 36 2a09:8e40:6000::/36 maxlen: 36 2a09:8e40:7000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/LPYTYxWlLVJHEkt882mq-4MSIn4.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/LPYTYxWlLVJHEkt882mq-4MSIn4.mft rsync://rpki.ripe.net/repository/DEFAULT/LPYTYxWlLVJHEkt882mq-4MSIn4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 15:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:a1:39:3c:ce:03:87:42:83:78:23:fc:26:6c:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2cf6136315a52d5247124b7cf369aafb8312227e Validity Not Before: Jan 2 00:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bbb828c3d2a6ca018526e77c29bc7c4396d7975d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:83:bc:e1:f2:c4:b8:cc:29:9b:27:0b:12:70: fa:81:e6:50:3b:3e:0d:dc:a8:65:e6:eb:78:f5:1e: aa:22:c7:e7:97:15:ff:56:00:e1:16:4d:ca:c5:c4: 2d:74:eb:cd:4e:b1:e8:3c:9d:9a:7d:fe:df:ea:6f: a5:24:3a:b9:20:6b:8e:af:e4:84:3f:e0:db:55:3b: 89:8a:d0:d4:77:65:f8:04:8a:dc:b2:25:f7:d2:33: bb:c8:2c:b3:a7:a2:a3:7a:69:cb:d1:66:76:0b:cb: b3:54:43:50:e4:78:4f:3a:2e:13:fb:8c:fa:1d:90: 25:6c:0b:07:30:0d:64:e5:66:7a:18:9d:fc:d1:95: 8c:e4:87:c6:d6:e2:7b:20:e1:48:8b:56:a9:8d:92: ac:80:ac:17:17:94:1b:2d:b1:e3:91:5e:ac:55:1d: 1a:92:87:60:05:03:5c:35:00:ea:cf:13:04:29:80: d4:62:88:c5:6d:5f:13:2c:c8:c5:32:a7:97:c6:ec: 69:c1:84:33:7e:8b:7b:57:07:c9:0b:1b:c1:e0:15: bf:85:b1:e6:9e:44:21:74:b1:a2:f6:ce:36:14:42: 6e:a7:c2:f6:f2:f8:2b:59:db:2e:80:d7:a4:5d:85: a2:7c:99:af:e0:0e:19:62:43:f0:d9:dc:f4:6a:5a: 84:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B8:28:C3:D2:A6:CA:01:85:26:E7:7C:29:BC:7C:43:96:D7:97:5D X509v3 Authority Key Identifier: keyid:2C:F6:13:63:15:A5:2D:52:47:12:4B:7C:F3:69:AA:FB:83:12:22:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LPYTYxWlLVJHEkt882mq-4MSIn4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/u7gow9KmygGFJud8Kbx8Q5bXl10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ca2213-e5a1-4ad2-8a22-768d3fb08e70/1/LPYTYxWlLVJHEkt882mq-4MSIn4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.208.236.0/23 IPv6: 2a09:8e40::/33 Signature Algorithm: sha256WithRSAEncryption 1b:2c:a3:bf:3a:17:a6:df:53:3b:04:f3:3f:2c:ce:2a:2d:33: 0b:24:f4:ca:f2:9e:f9:0f:34:5f:f2:71:ef:a6:07:29:c7:d5: dd:68:2d:54:39:fd:eb:72:51:69:e9:09:af:53:07:55:c8:a4: 25:c3:29:c8:d4:a5:ac:ab:7a:89:6c:9e:bc:17:6d:b0:9a:de: b3:40:b7:9f:8d:89:d8:b8:2f:0a:33:56:b4:9e:11:81:1a:eb: 28:66:ea:06:62:2e:2a:a3:4e:7f:54:8b:29:bf:99:4a:23:44: b2:59:05:38:a8:dc:8c:2e:b6:5e:72:5d:17:62:8c:3c:75:08: 97:5f:a2:f3:0f:ee:d3:73:f8:ae:b8:c1:a3:a2:72:96:17:d4: 87:59:fd:1f:cd:c3:b6:68:df:3b:49:53:90:63:e6:5e:b4:97: 63:96:f3:22:41:b6:5c:e4:67:bd:4c:e9:ee:85:47:5c:0b:9d: 58:ee:f8:07:97:99:b1:f0:5f:8e:2d:1c:15:0c:a7:b1:03:e3: 1c:72:b2:0a:fa:33:33:66:63:47:30:bd:4c:1f:09:2b:d3:d0: 4d:26:f5:30:ae:72:7c:1b:13:b5:1c:b4:e5:2e:15:c8:3b:59: cf:4a:3b:a8:22:bc:fa:13:37:f8:df:f4:2f:9e:fb:2b:08:4c: 07:80:3a:a5 -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt8EqE5PM4Dh0KDeCP8JmwYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJjZjYxMzYzMTVhNTJkNTI0NzEyNGI3Y2YzNjlhYWZiODMx MjIyN2UwHhcNMjYwMTAyMDAxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYmI4MjhjM2QyYTZjYTAxODUyNmU3N2MyOWJjN2M0Mzk2ZDc5NzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYO84fLEuMwpmycLEnD6geZQOz4N 3Khl5ut49R6qIsfnlxX/VgDhFk3KxcQtdOvNTrHoPJ2aff7f6m+lJDq5IGuOr+SE P+DbVTuJitDUd2X4BIrcsiX30jO7yCyzp6KjemnL0WZ2C8uzVENQ5HhPOi4T+4z6 HZAlbAsHMA1k5WZ6GJ380ZWM5IfG1uJ7IOFIi1apjZKsgKwXF5QbLbHjkV6sVR0a kodgBQNcNQDqzxMEKYDUYojFbV8TLMjFMqeXxuxpwYQzfot7VwfJCxvB4BW/hbHm nkQhdLGi9s42FEJup8L28vgrWdsugNekXYWifJmv4A4ZYkPw2dz0alqEbQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFLu4KMPSpsoBhSbnfCm8fEOW15ddMB8GA1UdIwQY MBaAFCz2E2MVpS1SRxJLfPNpqvuDEiJ+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTFBZVFl4V2xMVkpIRWt0ODgybXEtNE1TSW40LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9jYTIyMTMtZTVhMS00YWQyLThhMjIt NzY4ZDNmYjA4ZTcwLzEvdTdnb3c5S215Z0dGSnVkOEtieDhRNWJYbDEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9jYTIyMTMtZTVhMS00YWQyLThhMjItNzY4ZDNmYjA4ZTcw LzEvTFBZVFl4V2xMVkpIRWt0ODgybXEtNE1TSW40LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQBVdDsMA4E AgACMAgDBgcqCY5AADANBgkqhkiG9w0BAQsFAAOCAQEAGyyjvzoXpt9TOwTzPyzO Ki0zCyT0yvKe+Q80X/Jx76YHKcfV3WgtVDn963JRaekJr1MHVcikJcMpyNSlrKt6 iWyevBdtsJres0C3n42J2LgvCjNWtJ4RgRrrKGbqBmIuKqNOf1SLKb+ZSiNEslkF OKjcjC62XnJdF2KMPHUIl1+i8w/u03P4rrjBo6JylhfUh1n9H83DtmjfO0lTkGPm XrSXY5bzIkG2XORnvUzp7oVHXAudWO74B5eZsfBfji0cFQynsQPjHHKyCvozM2Zj RzC9TB8JK9PQTSb1MK5yfBsTtRy05S4VyDtZz0o7qCK8+hM3+N/0L577KwhMB4A6 pQ== -----END CERTIFICATE-----Generated at Wed Jan 28 19:55:53 2026 by rpki-client