This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/StLIAV2fKuLDhmrrQu_tKgGgqlA.roa File: StLIAV2fKuLDhmrrQu_tKgGgqlA.roa (raw, json) Hash identifier: CfI+yrU63zMNqBnPUTG7mb2lLWstmThXlNWZLD3ofjM= Subject key identifier: 4A:D2:C8:01:5D:9F:2A:E2:C3:86:6A:EB:42:EF:ED:2A:01:A0:AA:50 Certificate issuer: /CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6 Certificate serial: 019B7C7FC75C5D6E68C1455859DAF80ED00E Authority key identifier: D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/StLIAV2fKuLDhmrrQu_tKgGgqlA.roa Signing time: Fri 02 Jan 2026 02:18:27 +0000 ROA not before: Fri 02 Jan 2026 02:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12779 IP address blocks: 185.128.76.0/23 maxlen: 24 185.128.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 20:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:c7:5c:5d:6e:68:c1:45:58:59:da:f8:0e:d0:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d04687a3ee6322b757de81e7f53c5d32eebe33a6 Validity Not Before: Jan 2 02:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4ad2c8015d9f2ae2c3866aeb42efed2a01a0aa50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:14:74:4a:cb:6a:87:ee:d6:67:6d:e6:22:70: 2b:5a:1d:ca:34:d6:2c:33:bb:d8:5d:da:ad:51:19: 57:0c:e2:62:c4:9f:a6:67:5e:d9:7b:53:00:d5:e2: a9:0a:df:6b:27:60:d7:c5:d7:86:e0:ca:d3:0f:47: 32:c7:1f:74:98:d0:a1:b2:46:8d:b8:40:55:b2:87: 12:63:11:84:13:24:74:49:f9:b3:04:51:ae:35:90: 91:ef:96:45:23:cc:bb:a7:d2:a0:d7:29:7f:13:d8: f7:6d:0c:7e:43:73:be:07:6b:c9:d6:ce:c7:f1:f0: 22:95:df:b4:03:aa:15:d8:33:11:57:f9:37:31:e4: d7:0a:c3:88:9e:03:87:aa:37:13:37:00:0c:ed:42: 98:44:9d:1d:89:fc:ff:36:f7:95:3c:de:a9:c5:35: 6a:db:b6:af:b1:86:9f:06:92:7d:54:c9:26:15:fb: a3:0e:f6:85:7f:35:71:8c:6e:1c:61:36:d7:f0:45: 9d:e5:7b:83:3d:fc:8c:c2:b1:9b:a7:40:e3:d7:b7: f4:19:b6:0c:72:37:87:a5:2b:1d:78:18:48:a8:72: 95:ce:16:d6:73:0b:de:db:8d:7d:3b:9d:83:cf:10: c1:d1:f0:b4:20:ba:46:d3:29:cb:a6:a8:a7:c5:d3: 4b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D2:C8:01:5D:9F:2A:E2:C3:86:6A:EB:42:EF:ED:2A:01:A0:AA:50 X509v3 Authority Key Identifier: keyid:D0:46:87:A3:EE:63:22:B7:57:DE:81:E7:F5:3C:5D:32:EE:BE:33:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/StLIAV2fKuLDhmrrQu_tKgGgqlA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/bfdd19-6bba-4dc9-afc6-97be426a2334/1/0EaHo-5jIrdX3oHn9TxdMu6-M6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.128.76.0/23 Signature Algorithm: sha256WithRSAEncryption ab:35:04:1d:31:f2:c5:1e:26:3c:9b:62:db:f9:f9:9b:30:df: 03:81:8e:06:43:70:93:ce:53:f8:e3:75:33:df:19:df:db:49: d9:64:1e:ea:b9:c9:af:86:cd:f4:92:93:35:5b:38:7e:bd:5c: 95:17:88:53:e0:86:b6:87:5b:86:5b:99:4c:a3:50:e2:46:e8: c8:c7:d6:b5:49:27:36:c6:6b:b5:e1:0d:17:f6:27:5f:90:bf: 92:bb:b2:0e:cf:2f:17:83:40:45:d4:74:c5:93:8c:f3:e8:1b: b3:a0:d5:3f:81:1b:6a:4d:bc:53:6e:7a:e6:6f:e7:70:17:4d: d5:88:55:2b:02:6a:6b:19:09:be:98:30:ab:06:2e:81:13:61: fb:88:55:8b:6b:ec:c2:dd:29:41:e1:21:e6:e9:d6:36:8c:3e: c7:35:c2:5a:b4:cd:a3:df:66:1e:60:7a:ac:4a:f3:0d:21:12: 5a:5f:fe:dd:27:97:a2:10:73:04:75:f1:ab:62:9f:33:07:ec: 72:a9:21:a7:b3:15:bf:27:f9:1a:0a:b7:a5:5d:ce:8d:a9:75: 07:0f:78:8b:4d:0e:55:b7:d5:f0:d5:58:b0:64:f6:c1:0a:86: df:0a:a2:12:66:40:20:29:22:c8:d9:f3:20:6f:4a:7c:3a:79: 99:d4:69:b8 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8f8dcXW5owUVYWdr4DtAOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwNDY4N2EzZWU2MzIyYjc1N2RlODFlN2Y1M2M1ZDMyZWVi ZTMzYTYwHhcNMjYwMTAyMDIxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YWQyYzgwMTVkOWYyYWUyYzM4NjZhZWI0MmVmZWQyYTAxYTBhYTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RR0Sstqh+7WZ23mInArWh3KNNYs M7vYXdqtURlXDOJixJ+mZ17Ze1MA1eKpCt9rJ2DXxdeG4MrTD0cyxx90mNChskaN uEBVsocSYxGEEyR0SfmzBFGuNZCR75ZFI8y7p9Kg1yl/E9j3bQx+Q3O+B2vJ1s7H 8fAild+0A6oV2DMRV/k3MeTXCsOIngOHqjcTNwAM7UKYRJ0difz/NveVPN6pxTVq 27avsYafBpJ9VMkmFfujDvaFfzVxjG4cYTbX8EWd5XuDPfyMwrGbp0Dj17f0GbYM cjeHpSsdeBhIqHKVzhbWcwve2419O52DzxDB0fC0ILpG0ynLpqinxdNLeQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFErSyAFdnyriw4Zq60Lv7SoBoKpQMB8GA1UdIwQY MBaAFNBGh6PuYyK3V96B5/U8XTLuvjOmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9iZmRkMTktNmJiYS00ZGM5LWFmYzYt OTdiZTQyNmEyMzM0LzEvU3RMSUFWMmZLdUxEaG1yclF1X3RLZ0dncWxBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS9iZmRkMTktNmJiYS00ZGM5LWFmYzYtOTdiZTQyNmEyMzM0 LzEvMEVhSG8tNWpJcmRYM29IbjlUeGRNdTYtTTZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuYBMMA0G CSqGSIb3DQEBCwUAA4IBAQCrNQQdMfLFHiY8m2Lb+fmbMN8DgY4GQ3CTzlP443Uz 3xnf20nZZB7qucmvhs30kpM1Wzh+vVyVF4hT4Ia2h1uGW5lMo1DiRujIx9a1SSc2 xmu14Q0X9idfkL+Su7IOzy8Xg0BF1HTFk4zz6BuzoNU/gRtqTbxTbnrmb+dwF03V iFUrAmprGQm+mDCrBi6BE2H7iFWLa+zC3SlB4SHm6dY2jD7HNcJatM2j32YeYHqs SvMNIRJaX/7dJ5eiEHMEdfGrYp8zB+xyqSGnsxW/J/kaCrelXc6NqXUHD3iLTQ5V t9Xw1ViwZPbBCobfCqISZkAgKSLI2fMgb0p8OnmZ1Gm4 -----END CERTIFICATE-----Generated at Mon Feb 2 07:58:57 2026 by rpki-client