This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/8Ae2bQe1uFjZZo0F1tnzO2BTYdM.roa File: 8Ae2bQe1uFjZZo0F1tnzO2BTYdM.roa (raw, json) Hash identifier: 5M5PrQ6jblQ4c8/6XrFcJktYLAM5nwbgehPaHFmA10E= Subject key identifier: F0:07:B6:6D:07:B5:B8:58:D9:66:8D:05:D6:D9:F3:3B:60:53:61:D3 Certificate issuer: /CN=b48f41afdc609568fb2338fdb20b2d0c422b723b Certificate serial: 019B797F4083155FFE264DC981BB036117DE Authority key identifier: B4:8F:41:AF:DC:60:95:68:FB:23:38:FD:B2:0B:2D:0C:42:2B:72:3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tI9Br9xglWj7Izj9sgstDEIrcjs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/8Ae2bQe1uFjZZo0F1tnzO2BTYdM.roa Signing time: Thu 01 Jan 2026 12:19:01 +0000 ROA not before: Thu 01 Jan 2026 12:19:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8075 IP address blocks: 185.90.154.0/24 maxlen: 24 2a05:e100:1::/48 maxlen: 48 2a05:e100:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/tI9Br9xglWj7Izj9sgstDEIrcjs.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/tI9Br9xglWj7Izj9sgstDEIrcjs.mft rsync://rpki.ripe.net/repository/DEFAULT/tI9Br9xglWj7Izj9sgstDEIrcjs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:40:83:15:5f:fe:26:4d:c9:81:bb:03:61:17:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b48f41afdc609568fb2338fdb20b2d0c422b723b Validity Not Before: Jan 1 12:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f007b66d07b5b858d9668d05d6d9f33b605361d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:66:fc:b8:0a:0a:fa:65:e3:f0:b2:62:5c: cf:c3:29:9b:54:05:89:79:b3:f5:c9:a9:4c:70:44: 0f:34:3d:7c:be:70:88:be:18:a0:42:c7:ba:16:9f: 70:03:1b:0d:6c:94:9a:00:53:dd:4b:81:62:68:15: 18:79:af:84:20:73:ac:54:20:c4:81:5e:0e:6d:f7: 09:24:a5:6f:21:8c:26:fa:94:32:4c:e6:5d:5f:2e: b5:40:32:2b:de:e5:63:4b:f0:03:3e:7b:e0:2e:71: 7a:81:21:64:77:08:08:b7:5a:1c:4c:69:1a:0b:78: 57:33:85:a7:d5:10:13:41:65:7c:e3:4c:a2:00:b3: d2:55:99:e3:10:ea:20:ec:6d:4c:ed:38:88:69:1c: 46:c1:ca:a2:e5:a3:05:f9:0a:11:4d:7d:d2:2a:ec: 24:89:77:43:33:07:45:dc:b4:d3:f4:14:a6:eb:5e: 1e:31:29:b8:2e:b2:19:ae:43:ad:f6:d5:b9:45:2c: 30:34:22:cb:0c:5e:90:ed:c2:5c:0a:a4:54:32:82: d3:aa:0e:f4:71:cd:91:9b:a3:8b:3c:f3:aa:9b:37: 98:a9:b6:e0:f9:f1:36:55:af:38:cc:b4:74:17:82: 44:0a:af:03:fd:4b:0a:59:fe:47:5a:b3:86:14:b7: f9:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:07:B6:6D:07:B5:B8:58:D9:66:8D:05:D6:D9:F3:3B:60:53:61:D3 X509v3 Authority Key Identifier: keyid:B4:8F:41:AF:DC:60:95:68:FB:23:38:FD:B2:0B:2D:0C:42:2B:72:3B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tI9Br9xglWj7Izj9sgstDEIrcjs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/8Ae2bQe1uFjZZo0F1tnzO2BTYdM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/tI9Br9xglWj7Izj9sgstDEIrcjs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.90.154.0/24 IPv6: 2a05:e100:1::/48 2a05:e100:a::/48 Signature Algorithm: sha256WithRSAEncryption 18:b8:e7:74:b9:bc:31:8e:07:5d:67:92:42:e3:77:78:e2:42: 3f:8c:bb:48:0b:ee:dd:28:88:c6:f5:70:5a:ff:7e:07:1d:23: 54:79:d4:12:dc:17:65:5e:e0:06:89:20:a5:c6:78:66:73:48: 89:73:d4:09:cf:ec:bc:fc:5d:c2:12:4d:fe:e9:26:7e:cc:61: 52:ae:76:ad:fb:8d:48:66:71:48:c2:de:9d:a6:7c:83:4b:9f: 02:05:fd:62:6f:00:67:df:ec:bf:e8:3e:37:ac:46:9b:f6:6c: e1:1c:c6:b4:2c:31:45:9c:2e:3d:72:1e:3e:ef:59:08:21:1f: 4d:ef:45:f4:32:91:8d:bb:fd:fc:53:2a:6a:68:69:40:df:86: ae:e3:f7:3a:9f:66:56:87:fa:5b:59:84:d9:33:3c:b4:c6:6c: e2:6b:ea:42:8c:bb:e5:89:08:6f:bb:15:d4:f5:44:db:3d:2b: eb:4f:d6:14:02:ea:83:1f:24:c5:5e:21:fc:04:8c:ff:37:b9: f4:88:f3:be:ea:0d:2f:68:a7:b4:33:67:7d:98:71:63:39:a1: 48:ba:b1:96:ce:41:54:a3:86:cc:11:db:09:27:92:f6:5e:56: 4b:20:4b:7f:36:8b:f2:f2:86:1f:75:e8:9e:c7:2b:e0:6b:63: 0c:cb:13:ec -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt5f0CDFV/+Jk3JgbsDYRfeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0OGY0MWFmZGM2MDk1NjhmYjIzMzhmZGIyMGIyZDBjNDIy YjcyM2IwHhcNMjYwMTAxMTIxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDA3YjY2ZDA3YjViODU4ZDk2NjhkMDVkNmQ5ZjMzYjYwNTM2MWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0RZm/LgKCvpl4/CyYlzPwymbVAWJ ebP1yalMcEQPND18vnCIvhigQse6Fp9wAxsNbJSaAFPdS4FiaBUYea+EIHOsVCDE gV4ObfcJJKVvIYwm+pQyTOZdXy61QDIr3uVjS/ADPnvgLnF6gSFkdwgIt1ocTGka C3hXM4Wn1RATQWV840yiALPSVZnjEOog7G1M7TiIaRxGwcqi5aMF+QoRTX3SKuwk iXdDMwdF3LTT9BSm614eMSm4LrIZrkOt9tW5RSwwNCLLDF6Q7cJcCqRUMoLTqg70 cc2Rm6OLPPOqmzeYqbbg+fE2Va84zLR0F4JECq8D/UsKWf5HWrOGFLf5UwIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFPAHtm0HtbhY2WaNBdbZ8ztgU2HTMB8GA1UdIwQY MBaAFLSPQa/cYJVo+yM4/bILLQxCK3I7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdEk5QnI5eGdsV2o3SXpqOXNnc3RERUlyY2pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS80ODU3NjktNTgzNS00N2Y0LWE5ZmYt OGVjNjhlNzg4NmUyLzEvOEFlMmJRZTF1RmpaWm8wRjF0bnpPMkJUWWRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS80ODU3NjktNTgzNS00N2Y0LWE5ZmYtOGVjNjhlNzg4NmUy LzEvdEk5QnI5eGdsV2o3SXpqOXNnc3RERUlyY2pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAMBAIAATAGAwQAuVqaMBgE AgACMBIDBwAqBeEAAAEDBwAqBeEAAAowDQYJKoZIhvcNAQELBQADggEBABi453S5 vDGOB11nkkLjd3jiQj+Mu0gL7t0oiMb1cFr/fgcdI1R51BLcF2Ve4AaJIKXGeGZz SIlz1AnP7Lz8XcISTf7pJn7MYVKudq37jUhmcUjC3p2mfINLnwIF/WJvAGff7L/o PjesRpv2bOEcxrQsMUWcLj1yHj7vWQghH03vRfQykY27/fxTKmpoaUDfhq7j9zqf ZlaH+ltZhNkzPLTGbOJr6kKMu+WJCG+7FdT1RNs9K+tP1hQC6oMfJMVeIfwEjP83 ufSI877qDS9op7QzZ32YcWM5oUi6sZbOQVSjhswR2wknkvZeVksgS382i/Lyhh91 6J7HK+BrYwzLE+w= -----END CERTIFICATE-----Generated at Sun Jan 18 16:37:28 2026 by rpki-client