This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/p8AQxyNR8nBVLYkz7FBkK4j0I2U.roa File: p8AQxyNR8nBVLYkz7FBkK4j0I2U.roa (raw, json) Hash identifier: +Weoe1wjLZlER3uzL/qeXZKi4Mx1xgBcnOBbv/qCT8k= Subject key identifier: A7:C0:10:C7:23:51:F2:70:55:2D:89:33:EC:50:64:2B:88:F4:23:65 Certificate issuer: /CN=4b8d822165e7f01f722c973967f7554605240802 Certificate serial: 019B76EB5BB9537123B87C6A0A9DC90B2C56 Authority key identifier: 4B:8D:82:21:65:E7:F0:1F:72:2C:97:39:67:F7:55:46:05:24:08:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/p8AQxyNR8nBVLYkz7FBkK4j0I2U.roa Signing time: Thu 01 Jan 2026 00:18:14 +0000 ROA not before: Thu 01 Jan 2026 00:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 397423 IP address blocks: 185.251.144.0/22 maxlen: 22 190.102.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/S42CIWXn8B9yLJc5Z_dVRgUkCAI.crl rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/S42CIWXn8B9yLJc5Z_dVRgUkCAI.mft rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:5b:b9:53:71:23:b8:7c:6a:0a:9d:c9:0b:2c:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4b8d822165e7f01f722c973967f7554605240802 Validity Not Before: Jan 1 00:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7c010c72351f270552d8933ec50642b88f42365 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d0:64:48:2f:59:90:3a:fc:1f:f9:ab:1c:5c: 4d:6b:b5:b6:38:dc:25:60:0f:42:d3:e2:59:d6:ef: 85:a9:3b:9b:a5:61:73:27:d9:8f:64:fb:11:0c:3a: 15:fb:08:8e:7f:fc:97:44:96:82:d9:df:90:4a:e2: b6:52:95:68:47:86:9c:0b:56:a7:8e:66:6a:e0:58: 75:78:ad:64:74:e7:c6:5c:fe:8b:96:06:f0:a3:c2: 46:b9:6d:c4:d6:a4:21:d0:ee:40:f8:84:11:de:f5: c5:35:af:51:dd:18:45:47:d3:27:b4:07:c8:dd:ad: d8:4d:65:dc:de:38:83:e3:9e:cc:aa:28:74:6d:6d: c9:da:05:16:35:37:fd:38:c5:90:23:ca:d2:65:7b: 8c:c2:09:74:30:5a:7c:eb:b9:5d:d3:8c:dc:34:21: 90:5e:11:4d:54:00:21:d8:ab:67:ef:7c:2b:5b:fe: 78:c7:75:a6:03:7a:68:1f:de:ad:a3:e8:b4:64:70: c7:b6:a1:c9:88:01:d3:e6:78:d8:3f:b5:32:2e:b9: fc:59:1c:35:f4:2a:3a:57:76:f8:e8:99:ea:6e:33: dc:06:1b:09:ca:94:25:85:83:70:03:df:e5:c5:30: b9:59:de:3d:22:c2:bf:0f:e3:c7:8a:0a:4a:9c:b5: a7:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C0:10:C7:23:51:F2:70:55:2D:89:33:EC:50:64:2B:88:F4:23:65 X509v3 Authority Key Identifier: keyid:4B:8D:82:21:65:E7:F0:1F:72:2C:97:39:67:F7:55:46:05:24:08:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S42CIWXn8B9yLJc5Z_dVRgUkCAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/p8AQxyNR8nBVLYkz7FBkK4j0I2U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/32e776-8f36-4d16-956a-5af958ceaf6e/1/S42CIWXn8B9yLJc5Z_dVRgUkCAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.251.144.0/22 190.102.100.0/22 Signature Algorithm: sha256WithRSAEncryption 11:ac:10:83:d8:da:1c:03:57:ed:79:29:0d:9b:58:cb:8d:13: b4:64:a2:0f:5f:51:af:c3:75:db:2e:58:24:a4:3e:51:21:1f: b8:fa:ab:ff:ae:d1:09:8c:42:85:ec:14:a9:c2:ac:21:83:8c: 87:cc:85:95:d1:69:1b:d6:74:fc:40:19:51:b2:9e:54:65:8b: a0:f5:80:a2:e0:c6:9b:42:1a:f6:8f:37:8c:51:77:8c:61:69: 1c:f5:83:6b:de:99:2f:40:30:f5:c8:ca:89:d1:66:09:92:e3: cf:b1:28:65:1c:9a:96:2e:e1:2a:7a:e0:10:b8:f8:ad:d8:18: 94:fe:95:67:6e:64:80:a7:f6:42:c3:2c:c7:1a:14:41:8e:af: 7b:39:1a:b7:f9:ba:95:0b:7f:2d:d6:43:c8:b2:b1:74:af:c2: 68:50:65:b9:e8:bd:b0:1b:a6:e1:b8:30:23:72:37:f3:31:19: 71:11:fa:90:69:3b:2e:6c:85:7f:22:82:51:32:8b:a3:d4:7d: 8b:ef:31:94:9d:e1:13:39:66:5f:98:17:fb:08:cc:b1:6c:e6: f1:6e:65:cb:31:66:00:fa:78:05:21:61:fd:e4:25:1e:52:6b: 5e:0e:72:ee:a3:ac:c8:f7:2a:db:83:d7:58:fc:0e:a2:2c:78: 82:3d:04:bd -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt261u5U3EjuHxqCp3JCyxWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRiOGQ4MjIxNjVlN2YwMWY3MjJjOTczOTY3Zjc1NTQ2MDUy NDA4MDIwHhcNMjYwMTAxMDAxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhN2MwMTBjNzIzNTFmMjcwNTUyZDg5MzNlYzUwNjQyYjg4ZjQyMzY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29BkSC9ZkDr8H/mrHFxNa7W2ONwl YA9C0+JZ1u+FqTubpWFzJ9mPZPsRDDoV+wiOf/yXRJaC2d+QSuK2UpVoR4acC1an jmZq4Fh1eK1kdOfGXP6Llgbwo8JGuW3E1qQh0O5A+IQR3vXFNa9R3RhFR9MntAfI 3a3YTWXc3jiD457Mqih0bW3J2gUWNTf9OMWQI8rSZXuMwgl0MFp867ld04zcNCGQ XhFNVAAh2Ktn73wrW/54x3WmA3poH96to+i0ZHDHtqHJiAHT5njYP7UyLrn8WRw1 9Co6V3b46JnqbjPcBhsJypQlhYNwA9/lxTC5Wd49IsK/D+PHigpKnLWnMwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKfAEMcjUfJwVS2JM+xQZCuI9CNlMB8GA1UdIwQY MBaAFEuNgiFl5/AfciyXOWf3VUYFJAgCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUzQyQ0lXWG44Qjl5TEpjNVpfZFZSZ1VrQ0FJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zMmU3NzYtOGYzNi00ZDE2LTk1NmEt NWFmOTU4Y2VhZjZlLzEvcDhBUXh5TlI4bkJWTFlrejdGQmtLNGowSTJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8zMmU3NzYtOGYzNi00ZDE2LTk1NmEtNWFmOTU4Y2VhZjZl LzEvUzQyQ0lXWG44Qjl5TEpjNVpfZFZSZ1VrQ0FJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCufuQAwQC vmZkMA0GCSqGSIb3DQEBCwUAA4IBAQARrBCD2NocA1fteSkNm1jLjRO0ZKIPX1Gv w3XbLlgkpD5RIR+4+qv/rtEJjEKF7BSpwqwhg4yHzIWV0Wkb1nT8QBlRsp5UZYug 9YCi4MabQhr2jzeMUXeMYWkc9YNr3pkvQDD1yMqJ0WYJkuPPsShlHJqWLuEqeuAQ uPit2BiU/pVnbmSAp/ZCwyzHGhRBjq97ORq3+bqVC38t1kPIsrF0r8JoUGW56L2w G6bhuDAjcjfzMRlxEfqQaTsubIV/IoJRMouj1H2L7zGUneETOWZfmBf7CMyxbObx bmXLMWYA+ngFIWH95CUeUmteDnLuo6zI9yrbg9dY/A6iLHiCPQS9 -----END CERTIFICATE-----Generated at Fri Jan 9 18:02:06 2026 by rpki-client