This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/Ip7p_hL1VXdeRgj8FVGhTum4zB0.roa File: Ip7p_hL1VXdeRgj8FVGhTum4zB0.roa (raw, json) Hash identifier: agYqlxFFSnuNhJD9cHkZJfqIOemy4XNVrJfaav2GJL4= Subject key identifier: 22:9E:E9:FE:12:F5:55:77:5E:46:08:FC:15:51:A1:4E:E9:B8:CC:1D Certificate issuer: /CN=46c98b2e4a3e060def45abc62c0e345faa80b5ec Certificate serial: 019B7A59DC4E5129F08BC1407C784328BBFA Authority key identifier: 46:C9:8B:2E:4A:3E:06:0D:EF:45:AB:C6:2C:0E:34:5F:AA:80:B5:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RsmLLko-Bg3vRavGLA40X6qAtew.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/Ip7p_hL1VXdeRgj8FVGhTum4zB0.roa Signing time: Thu 01 Jan 2026 16:17:47 +0000 ROA not before: Thu 01 Jan 2026 16:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56504 IP address blocks: 185.61.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/RsmLLko-Bg3vRavGLA40X6qAtew.crl rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/RsmLLko-Bg3vRavGLA40X6qAtew.mft rsync://rpki.ripe.net/repository/DEFAULT/RsmLLko-Bg3vRavGLA40X6qAtew.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 10:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:dc:4e:51:29:f0:8b:c1:40:7c:78:43:28:bb:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=46c98b2e4a3e060def45abc62c0e345faa80b5ec Validity Not Before: Jan 1 16:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=229ee9fe12f555775e4608fc1551a14ee9b8cc1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2c:ff:7d:06:db:50:f7:28:5c:d1:a1:ea:93: 95:c3:4a:e0:0e:6f:01:94:3c:95:e3:39:f9:c9:be: 8e:be:43:0b:98:37:7b:54:85:10:d4:62:0c:79:02: 97:26:9a:77:c5:aa:52:9e:69:8c:58:96:5f:8c:81: fb:42:e7:97:3d:8c:cf:10:ac:f5:9d:1a:25:11:e0: 52:44:f4:22:c2:8c:34:97:7e:d0:14:ad:27:42:0c: 1b:8c:a7:7d:0e:8b:3a:ee:8b:1e:87:22:49:83:88: e6:8d:fd:d4:fb:fd:76:69:7c:35:b3:3f:f6:6d:70: ed:9d:5c:97:46:5b:8f:89:a2:a0:df:97:e0:64:71: 0d:60:a2:f4:b8:01:f5:ff:00:12:56:21:1e:7f:51: d6:19:57:cf:4b:05:e6:63:25:34:7e:cf:ad:01:bf: 50:e7:6b:d5:a0:e7:a7:52:5f:75:d2:3e:8f:c6:ed: a1:22:f4:f8:96:21:ef:9a:63:85:c7:80:a5:44:bb: 4b:ad:d8:78:96:f2:c5:30:f2:51:2a:0a:d6:ea:ad: e3:31:6b:c3:1e:2e:b9:d3:34:a4:8a:59:4c:fc:60: 2b:d1:44:5f:bd:bc:cd:04:cf:54:8d:90:8f:5b:e0: 38:15:ee:8f:ba:4a:fa:a4:58:22:c4:58:9c:79:0a: b1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:9E:E9:FE:12:F5:55:77:5E:46:08:FC:15:51:A1:4E:E9:B8:CC:1D X509v3 Authority Key Identifier: keyid:46:C9:8B:2E:4A:3E:06:0D:EF:45:AB:C6:2C:0E:34:5F:AA:80:B5:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RsmLLko-Bg3vRavGLA40X6qAtew.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/Ip7p_hL1VXdeRgj8FVGhTum4zB0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/2aa8d1-cb71-4904-a591-3449522710e7/1/RsmLLko-Bg3vRavGLA40X6qAtew.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.61.136.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:f7:95:df:e1:8a:7b:64:71:97:cd:ce:74:b6:b0:0f:ba:80: 8f:6f:d3:5f:23:b6:75:49:e7:e7:e0:41:7c:ab:f4:c9:c0:f6: 99:19:b0:ce:be:1f:93:10:90:83:31:98:3c:e6:f4:b3:75:d0: 66:59:d5:e7:ae:ae:4d:99:fe:8f:7e:6a:3e:e5:81:2b:ba:b0: cc:43:cb:7e:a2:cc:b3:26:cd:8f:9b:67:81:aa:ff:0f:8d:0e: 56:91:b3:60:8e:94:fc:31:ac:0d:81:d7:6a:b8:bc:fa:68:97: ab:4a:44:8e:b5:12:51:13:d6:98:dc:06:9a:51:65:37:e4:6e: 1d:4e:64:3e:39:9e:cd:01:2d:d8:d2:69:3a:df:5a:8d:9d:6d: 09:bb:eb:b9:85:65:93:76:09:03:9a:f0:53:81:54:a3:c1:a0: 65:ba:52:34:b8:54:65:ef:1a:3c:d1:ff:55:17:d4:bf:d4:8b: 33:fb:40:49:06:f9:35:99:4a:fd:6f:64:24:a4:e2:fc:8c:07: 2f:79:8c:4c:af:ca:a6:be:91:c7:bb:14:7c:8d:1e:8d:d4:7a: 2f:0f:7c:db:2e:d8:ce:5e:5c:f5:3d:24:f8:0e:64:c7:5d:3d: 3d:39:37:9d:80:16:d3:cc:19:e3:44:d5:51:01:98:8c:ef:5d: 29:49:f5:79 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WdxOUSnwi8FAfHhDKLv6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ2Yzk4YjJlNGEzZTA2MGRlZjQ1YWJjNjJjMGUzNDVmYWE4 MGI1ZWMwHhcNMjYwMTAxMTYxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjllZTlmZTEyZjU1NTc3NWU0NjA4ZmMxNTUxYTE0ZWU5YjhjYzFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSz/fQbbUPcoXNGh6pOVw0rgDm8B lDyV4zn5yb6OvkMLmDd7VIUQ1GIMeQKXJpp3xapSnmmMWJZfjIH7QueXPYzPEKz1 nRolEeBSRPQiwow0l37QFK0nQgwbjKd9Dos67osehyJJg4jmjf3U+/12aXw1sz/2 bXDtnVyXRluPiaKg35fgZHENYKL0uAH1/wASViEef1HWGVfPSwXmYyU0fs+tAb9Q 52vVoOenUl910j6Pxu2hIvT4liHvmmOFx4ClRLtLrdh4lvLFMPJRKgrW6q3jMWvD Hi650zSkillM/GAr0URfvbzNBM9UjZCPW+A4Fe6Pukr6pFgixFiceQqxzwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCKe6f4S9VV3XkYI/BVRoU7puMwdMB8GA1UdIwQY MBaAFEbJiy5KPgYN70WrxiwONF+qgLXsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUnNtTExrby1CZzN2UmF2R0xBNDBYNnFBdGV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8yYWE4ZDEtY2I3MS00OTA0LWE1OTEt MzQ0OTUyMjcxMGU3LzEvSXA3cF9oTDFWWGRlUmdqOEZWR2hUdW00ekIwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC8yYWE4ZDEtY2I3MS00OTA0LWE1OTEtMzQ0OTUyMjcxMGU3 LzEvUnNtTExrby1CZzN2UmF2R0xBNDBYNnFBdGV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuT2IMA0G CSqGSIb3DQEBCwUAA4IBAQAP95Xf4Yp7ZHGXzc50trAPuoCPb9NfI7Z1Sefn4EF8 q/TJwPaZGbDOvh+TEJCDMZg85vSzddBmWdXnrq5Nmf6Pfmo+5YErurDMQ8t+osyz Js2Pm2eBqv8PjQ5WkbNgjpT8MawNgddquLz6aJerSkSOtRJRE9aY3AaaUWU35G4d TmQ+OZ7NAS3Y0mk631qNnW0Ju+u5hWWTdgkDmvBTgVSjwaBlulI0uFRl7xo80f9V F9S/1Isz+0BJBvk1mUr9b2QkpOL8jAcveYxMr8qmvpHHuxR8jR6N1HovD3zbLtjO Xlz1PST4DmTHXT09OTedgBbTzBnjRNVRAZiM710pSfV5 -----END CERTIFICATE-----Generated at Fri Jan 9 13:30:58 2026 by rpki-client