This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/328fab-4ebc-4e1f-840e-bc424349a16e/1/8nXIbFghhbIgt8n2cEDxOIHgcvk.roa File: 8nXIbFghhbIgt8n2cEDxOIHgcvk.roa (raw, json) Hash identifier: OLo/fVN4422Me1580uumZYkNJ6C1/oum8x+PWUvjDZ4= Subject key identifier: F2:75:C8:6C:58:21:85:B2:20:B7:C9:F6:70:40:F1:38:81:E0:72:F9 Certificate issuer: /CN=945efd6c477806bd6b45267558d6828feec61ea6 Certificate serial: 019B7BA39A25A6204F40400A3C7BE21BD380 Authority key identifier: 94:5E:FD:6C:47:78:06:BD:6B:45:26:75:58:D6:82:8F:EE:C6:1E:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lF79bEd4Br1rRSZ1WNaCj-7GHqY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/328fab-4ebc-4e1f-840e-bc424349a16e/1/8nXIbFghhbIgt8n2cEDxOIHgcvk.roa Signing time: Thu 01 Jan 2026 22:17:57 +0000 ROA not before: Thu 01 Jan 2026 22:17:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197113 IP address blocks: 46.174.224.0/21 maxlen: 21 185.242.152.0/23 maxlen: 24 185.242.154.0/23 maxlen: 24 2a0c:ce80::/44 maxlen: 64 2a0c:ce80:10::/44 maxlen: 44 2a0c:ce80:20::/44 maxlen: 44 2a0c:ce80:30::/44 maxlen: 44 2a0c:ce80:40::/44 maxlen: 44 2a0c:ce80:50::/44 maxlen: 44 2a0c:ce80:60::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/328fab-4ebc-4e1f-840e-bc424349a16e/1/lF79bEd4Br1rRSZ1WNaCj-7GHqY.crl rsync://rpki.ripe.net/repository/DEFAULT/11/328fab-4ebc-4e1f-840e-bc424349a16e/1/lF79bEd4Br1rRSZ1WNaCj-7GHqY.mft rsync://rpki.ripe.net/repository/DEFAULT/lF79bEd4Br1rRSZ1WNaCj-7GHqY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:9a:25:a6:20:4f:40:40:0a:3c:7b:e2:1b:d3:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=945efd6c477806bd6b45267558d6828feec61ea6 Validity Not Before: Jan 1 22:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f275c86c582185b220b7c9f67040f13881e072f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:c3:11:a3:8e:27:4e:68:5d:30:0b:00:58:fc: 81:6f:49:90:4e:12:9b:c3:70:ff:e7:ec:dc:ca:10: d9:51:37:53:3b:10:39:2b:31:5f:dd:57:79:d9:77: 18:57:a7:80:47:60:7d:77:77:c9:3c:df:0c:8d:a0: 91:05:64:c5:83:3e:37:93:83:dd:00:cb:a1:7e:a5: 09:65:f1:58:48:eb:c4:30:f2:72:4b:ed:bc:c7:10: 16:4d:0c:f8:60:6c:2b:ed:f0:bd:4c:6b:73:c3:29: 9a:48:1d:af:03:fb:38:14:e8:d6:6c:7d:df:cc:11: 71:bf:48:19:8d:e3:43:35:73:1e:5c:f4:04:db:47: 08:5a:b5:bd:2a:5f:6a:45:3d:92:f9:e9:de:6c:ee: 52:7d:06:03:05:cb:a4:9b:6e:60:1c:06:8a:cd:18: 9d:ef:e5:52:7a:01:bf:19:19:7c:39:51:21:c6:78: 78:44:11:ff:f9:da:e8:4c:7a:1b:86:ef:cd:40:06: 03:ca:ca:80:a4:7f:bb:55:5a:87:ec:03:2a:8d:2d: 01:f8:51:77:52:fe:e2:5d:fc:2b:cc:5a:4e:3c:ee: 84:90:71:1e:f0:c7:db:4e:ad:68:9c:2e:41:d5:af: 6f:ca:fb:ec:84:bc:61:6d:f6:17:bc:ca:e2:fe:4d: ae:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:75:C8:6C:58:21:85:B2:20:B7:C9:F6:70:40:F1:38:81:E0:72:F9 X509v3 Authority Key Identifier: keyid:94:5E:FD:6C:47:78:06:BD:6B:45:26:75:58:D6:82:8F:EE:C6:1E:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lF79bEd4Br1rRSZ1WNaCj-7GHqY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/328fab-4ebc-4e1f-840e-bc424349a16e/1/8nXIbFghhbIgt8n2cEDxOIHgcvk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/328fab-4ebc-4e1f-840e-bc424349a16e/1/lF79bEd4Br1rRSZ1WNaCj-7GHqY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.174.224.0/21 185.242.152.0/22 IPv6: 2a0c:ce80::-2a0c:ce80:6f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8a:37:83:ef:73:70:d9:60:e5:a6:f6:8f:bb:ab:cd:b4:98:e6: ee:c6:c9:e3:bc:8a:41:73:01:92:be:25:81:c7:74:9b:2f:3b: 20:a2:d0:30:3c:dc:5f:a0:52:2d:89:a4:68:ad:04:f6:21:5b: 85:9d:80:16:5d:2e:a5:d6:57:2e:63:cc:a1:cb:8f:ab:9e:19: 2f:25:ca:64:55:4a:9b:b0:c9:e5:52:db:a6:ff:a6:36:99:be: 96:c6:45:0e:e0:c3:5d:bc:fc:5b:3f:dd:4e:26:89:29:c9:bd: 4a:9d:07:eb:68:8b:b2:cd:6c:99:eb:b0:2d:ca:7c:f6:49:d0: 66:07:44:4f:76:91:e7:01:09:0b:eb:74:bb:29:70:81:0d:f0: ed:88:8c:cf:b5:e4:f4:0f:9c:9a:3a:22:c6:5c:27:12:85:22: e1:b7:31:c9:86:e1:0b:92:32:cc:c3:b0:83:77:45:73:c9:f1: 1b:0c:47:26:62:76:2e:bf:42:15:ac:fa:c9:02:dd:d9:86:0d: 53:89:ed:6d:77:15:1b:28:db:63:d5:a1:ef:c4:bf:d9:bc:90: 97:ac:29:91:64:ec:5a:da:38:73:53:be:da:db:b2:a7:9a:c8: c7:c7:38:5a:d9:da:8f:19:33:77:db:e3:0c:23:fc:02:6f:f4: 69:d2:4a:c6 -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt7o5olpiBPQEAKPHviG9OAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk0NWVmZDZjNDc3ODA2YmQ2YjQ1MjY3NTU4ZDY4MjhmZWVj NjFlYTYwHhcNMjYwMTAxMjIxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMjc1Yzg2YzU4MjE4NWIyMjBiN2M5ZjY3MDQwZjEzODgxZTA3MmY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhsMRo44nTmhdMAsAWPyBb0mQThKb w3D/5+zcyhDZUTdTOxA5KzFf3Vd52XcYV6eAR2B9d3fJPN8MjaCRBWTFgz43k4Pd AMuhfqUJZfFYSOvEMPJyS+28xxAWTQz4YGwr7fC9TGtzwymaSB2vA/s4FOjWbH3f zBFxv0gZjeNDNXMeXPQE20cIWrW9Kl9qRT2S+enebO5SfQYDBcukm25gHAaKzRid 7+VSegG/GRl8OVEhxnh4RBH/+droTHobhu/NQAYDysqApH+7VVqH7AMqjS0B+FF3 Uv7iXfwrzFpOPO6EkHEe8MfbTq1onC5B1a9vyvvshLxhbfYXvMri/k2uRQIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFPJ1yGxYIYWyILfJ9nBA8TiB4HL5MB8GA1UdIwQY MBaAFJRe/WxHeAa9a0UmdVjWgo/uxh6mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbEY3OWJFZDRCcjFyUlNaMVdOYUNqLTdHSHFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8zMjhmYWItNGViYy00ZTFmLTg0MGUt YmM0MjQzNDlhMTZlLzEvOG5YSWJGZ2hoYklndDhuMmNFRHhPSUhnY3ZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS8zMjhmYWItNGViYy00ZTFmLTg0MGUtYmM0MjQzNDlhMTZl LzEvbEY3OWJFZDRCcjFyUlNaMVdOYUNqLTdHSHFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQDLq7gAwQC ufKYMBgEAgACMBIwEAMFByoMzoADBwQqDM6AAGAwDQYJKoZIhvcNAQELBQADggEB AIo3g+9zcNlg5ab2j7urzbSY5u7GyeO8ikFzAZK+JYHHdJsvOyCi0DA83F+gUi2J pGitBPYhW4WdgBZdLqXWVy5jzKHLj6ueGS8lymRVSpuwyeVS26b/pjaZvpbGRQ7g w128/Fs/3U4miSnJvUqdB+toi7LNbJnrsC3KfPZJ0GYHRE92kecBCQvrdLspcIEN 8O2IjM+15PQPnJo6IsZcJxKFIuG3McmG4QuSMszDsIN3RXPJ8RsMRyZidi6/QhWs +skC3dmGDVOJ7W13FRso22PVoe/Ev9m8kJesKZFk7FraOHNTvtrbsqeayMfHOFrZ 2o8ZM3fb4wwj/AJv9GnSSsY= -----END CERTIFICATE-----Generated at Mon Feb 9 22:32:14 2026 by rpki-client