This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/u02qpN14w4yhn2ctE44FwFlaayw.roa File: u02qpN14w4yhn2ctE44FwFlaayw.roa (raw, json) Hash identifier: Y86Ae8inVsAjiKn8VpEwH1tTqB45gvur7i/GdDAq5IM= Subject key identifier: BB:4D:AA:A4:DD:78:C3:8C:A1:9F:67:2D:13:8E:05:C0:59:5A:6B:2C Certificate issuer: /CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930 Certificate serial: 019B7EA6CCB556D06C6D393A39FBD48FF2EB Authority key identifier: DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/u02qpN14w4yhn2ctE44FwFlaayw.roa Signing time: Fri 02 Jan 2026 12:20:19 +0000 ROA not before: Fri 02 Jan 2026 12:20:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211381 IP address blocks: 45.14.14.0/24 maxlen: 24 80.89.224.0/22 maxlen: 24 80.89.237.0/24 maxlen: 24 80.89.238.0/24 maxlen: 24 85.208.186.0/24 maxlen: 24 89.105.213.0/24 maxlen: 24 89.105.217.0/24 maxlen: 24 185.224.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.crl rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.mft rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:cc:b5:56:d0:6c:6d:39:3a:39:fb:d4:8f:f2:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc90e0aee1ecc31066cb744f8a7feedefb3f7930 Validity Not Before: Jan 2 12:20:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb4daaa4dd78c38ca19f672d138e05c0595a6b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c4:3d:b5:02:a2:5a:1a:54:e0:03:b5:00:6a: fd:8a:3d:b2:ab:8b:12:b5:94:ce:de:cd:83:96:37: 9b:c9:78:36:ae:ed:04:a6:67:7b:36:64:68:6f:90: 1a:71:8e:d4:1c:f9:86:c3:78:70:4d:81:92:a0:a2: 1b:c4:e9:d0:5b:7a:a9:4c:70:26:2e:8f:6f:f9:29: ec:ef:a5:72:c3:21:3d:e8:a5:90:6f:a1:ca:ab:57: 44:06:8c:e5:94:67:ba:ff:85:bd:c9:25:02:0e:4e: ad:8a:c0:a3:7b:67:80:99:31:89:fd:32:d0:7d:06: aa:a2:b5:ef:b3:d9:02:cb:81:7c:ee:ed:24:ae:81: 7c:60:98:ab:06:19:24:1c:00:28:c5:af:c9:d1:f0: 5f:88:ba:c7:a7:5a:35:39:3e:27:e4:5f:5e:17:25: 39:88:99:bb:c6:93:d7:4e:9d:61:66:ac:48:63:2f: db:9b:21:e0:7b:9b:f9:41:6b:32:8d:de:ae:9a:8f: 12:24:f8:2b:53:0e:f1:a2:a0:b4:28:ff:fb:c4:c0: 87:27:05:f2:bc:22:75:2b:d5:c8:76:98:a8:9f:6e: 95:30:49:8b:ba:c8:b2:4f:25:cf:62:34:ce:50:ba: 96:87:78:92:4d:2c:a5:98:b5:bb:2d:85:62:2a:ca: 8d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4D:AA:A4:DD:78:C3:8C:A1:9F:67:2D:13:8E:05:C0:59:5A:6B:2C X509v3 Authority Key Identifier: keyid:DC:90:E0:AE:E1:EC:C3:10:66:CB:74:4F:8A:7F:EE:DE:FB:3F:79:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JDgruHswxBmy3RPin_u3vs_eTA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/u02qpN14w4yhn2ctE44FwFlaayw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/87b267-49c2-4269-9f66-00bcd9b91c1b/1/3JDgruHswxBmy3RPin_u3vs_eTA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.14.14.0/24 80.89.224.0/22 80.89.237.0-80.89.238.255 85.208.186.0/24 89.105.213.0/24 89.105.217.0/24 185.224.215.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:1b:17:6b:36:87:a7:21:c3:e5:55:76:04:e4:6a:82:38:c2: 15:9e:23:8b:9e:35:b1:0f:27:96:a5:c9:d3:2c:ed:26:ea:5b: 90:b1:95:43:4d:f2:6a:55:c7:46:0d:03:0b:f9:43:c8:1d:44: ff:49:d2:3c:86:22:0c:5e:cc:88:68:53:fd:15:c6:de:50:88: 43:57:e4:58:d8:3e:40:3d:78:35:f4:3f:9e:71:6a:d2:50:82: 2b:fc:35:5b:a1:8b:7c:13:52:20:75:98:0e:40:9a:d9:88:38: db:ea:78:27:88:e0:32:4b:e3:ae:bc:13:7d:1c:f7:90:45:9d: 94:e0:2c:2b:d6:ba:2a:f6:24:55:f4:52:09:54:4f:77:b9:6e: 19:c4:2e:b8:2c:f4:b7:fd:69:5e:fc:db:f3:a3:3d:49:5c:29: 6a:9e:d3:a6:7c:a9:10:3f:bc:4d:71:cb:35:27:21:95:c0:ec: d1:b2:c2:e3:2d:a7:7c:d1:ee:5d:45:35:4e:9e:8d:35:6b:52: af:33:4e:8c:a3:e4:10:22:41:98:fe:d1:f5:be:33:8b:8f:50: 72:ff:00:2a:80:2b:f0:f0:16:f4:31:9e:0c:d6:58:c3:e7:5f: 13:a1:da:c2:bd:82:db:15:c1:f5:69:ba:6e:03:03:41:8b:6c: b3:6c:4c:fe -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZt+psy1VtBsbTk6OfvUj/LrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjOTBlMGFlZTFlY2MzMTA2NmNiNzQ0ZjhhN2ZlZWRlZmIz Zjc5MzAwHhcNMjYwMTAyMTIyMDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjRkYWFhNGRkNzhjMzhjYTE5ZjY3MmQxMzhlMDVjMDU5NWE2YjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr8Q9tQKiWhpU4AO1AGr9ij2yq4sS tZTO3s2DljebyXg2ru0Epmd7NmRob5AacY7UHPmGw3hwTYGSoKIbxOnQW3qpTHAm Lo9v+Sns76VywyE96KWQb6HKq1dEBozllGe6/4W9ySUCDk6tisCje2eAmTGJ/TLQ fQaqorXvs9kCy4F87u0kroF8YJirBhkkHAAoxa/J0fBfiLrHp1o1OT4n5F9eFyU5 iJm7xpPXTp1hZqxIYy/bmyHge5v5QWsyjd6umo8SJPgrUw7xoqC0KP/7xMCHJwXy vCJ1K9XIdpion26VMEmLusiyTyXPYjTOULqWh3iSTSylmLW7LYViKsqNdwIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFLtNqqTdeMOMoZ9nLROOBcBZWmssMB8GA1UdIwQY MBaAFNyQ4K7h7MMQZst0T4p/7t77P3kwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0pEZ3J1SHN3eEJteTNSUGluX3UzdnNfZVRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi84N2IyNjctNDljMi00MjY5LTlmNjYt MDBiY2Q5YjkxYzFiLzEvdTAycXBOMTR3NHlobjJjdEU0NEZ3RmxhYXl3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi84N2IyNjctNDljMi00MjY5LTlmNjYtMDBiY2Q5YjkxYzFi LzEvM0pEZ3J1SHN3eEJteTNSUGluX3UzdnNfZVRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQALQ4OAwQC UFngMAwDBABQWe0DBABQWe4DBABV0LoDBABZadUDBABZadkDBAC54NcwDQYJKoZI hvcNAQELBQADggEBACobF2s2h6chw+VVdgTkaoI4whWeI4ueNbEPJ5alydMs7Sbq W5CxlUNN8mpVx0YNAwv5Q8gdRP9J0jyGIgxezIhoU/0Vxt5QiENX5FjYPkA9eDX0 P55xatJQgiv8NVuhi3wTUiB1mA5AmtmIONvqeCeI4DJL4668E30c95BFnZTgLCvW uir2JFX0UglUT3e5bhnELrgs9Lf9aV782/OjPUlcKWqe06Z8qRA/vE1xyzUnIZXA 7NGywuMtp3zR7l1FNU6ejTVrUq8zToyj5BAiQZj+0fW+M4uPUHL/ACqAK/DwFvQx ngzWWMPnXxOh2sK9gtsVwfVpum4DA0GLbLNsTP4= -----END CERTIFICATE-----Generated at Mon Feb 9 18:21:27 2026 by rpki-client