This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/8GUY2bzbxntWIs2gvb760Bh7nsg.roa File: 8GUY2bzbxntWIs2gvb760Bh7nsg.roa (raw, json) Hash identifier: ftayi7tK38WsXcZESosrVmgYiCztmc+rh9ioLz8P+sg= Subject key identifier: F0:65:18:D9:BC:DB:C6:7B:56:22:CD:A0:BD:BE:FA:D0:18:7B:9E:C8 Certificate issuer: /CN=dbd7fc50548287deaea7ce92099e47a04a70d451 Certificate serial: 019B7F15C17C5D60213AC9B608E8F9E5A82C Authority key identifier: DB:D7:FC:50:54:82:87:DE:AE:A7:CE:92:09:9E:47:A0:4A:70:D4:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/8GUY2bzbxntWIs2gvb760Bh7nsg.roa Signing time: Fri 02 Jan 2026 14:21:30 +0000 ROA not before: Fri 02 Jan 2026 14:21:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 185.73.224.0/24 maxlen: 24 2a10:f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.mft rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c1:7c:5d:60:21:3a:c9:b6:08:e8:f9:e5:a8:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dbd7fc50548287deaea7ce92099e47a04a70d451 Validity Not Before: Jan 2 14:21:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f06518d9bcdbc67b5622cda0bdbefad0187b9ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:3a:d4:56:bd:14:b1:4c:56:51:96:1a:c0:03: 5d:c9:02:2f:08:09:57:e8:ca:29:5a:2a:06:f3:00: c2:f1:3a:2d:2f:fb:2f:f5:7b:2e:23:ed:f3:e7:71: 07:7c:07:7e:b8:d3:95:46:e5:e5:94:92:0b:d7:1a: dc:24:49:9f:a8:3c:8a:c3:5d:e6:ad:01:89:a6:e0: 64:1f:97:85:f6:b0:64:54:27:fa:a0:67:69:ea:cf: 44:7f:a6:c7:08:80:ff:91:d4:bb:42:7d:2a:6d:2e: 6e:c7:58:39:33:9d:2a:b9:20:44:6c:1f:8b:16:5b: ed:26:f6:92:2f:ed:a6:ec:76:36:9f:3b:62:eb:39: 0e:42:62:c8:7c:64:6f:b5:f0:c9:7d:e8:d4:a1:c6: 29:61:e9:be:d1:21:76:4b:98:71:6b:ab:9c:e0:ea: 03:51:9e:b2:2d:7b:28:aa:7c:be:0b:d8:cb:ac:f5: fc:c8:e4:81:f5:37:1f:5b:75:c4:7e:95:26:3a:7f: 21:b6:b3:6e:fe:a9:01:dc:65:96:d5:ff:59:c0:d1: 90:b3:c8:30:3b:2a:a4:77:2c:5b:55:8c:f7:6f:5c: 81:2e:69:3f:bc:c0:67:13:ae:68:4e:7e:fa:ce:63: 82:cc:fa:4c:0d:9d:cf:29:e8:b8:3b:d9:01:22:1d: 93:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:65:18:D9:BC:DB:C6:7B:56:22:CD:A0:BD:BE:FA:D0:18:7B:9E:C8 X509v3 Authority Key Identifier: keyid:DB:D7:FC:50:54:82:87:DE:AE:A7:CE:92:09:9E:47:A0:4A:70:D4:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29f8UFSCh96up86SCZ5HoEpw1FE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/8GUY2bzbxntWIs2gvb760Bh7nsg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/606ea9-4834-4b63-9e0a-f25604c4be82/1/29f8UFSCh96up86SCZ5HoEpw1FE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.73.224.0/24 IPv6: 2a10:f80::/32 Signature Algorithm: sha256WithRSAEncryption 43:7d:01:45:57:e4:20:2c:68:26:70:dd:d4:87:69:e1:55:d4: 2d:88:46:b3:8f:5e:3b:82:c0:99:b6:c4:fa:99:06:b9:cd:4d: 4a:20:fe:24:88:fe:fe:2f:d5:db:70:3f:c5:9a:ce:2d:23:4b: 06:00:b5:70:82:ce:1d:57:d4:a4:31:66:d1:b2:63:b4:f1:c3: 52:3e:11:53:ee:6c:f6:cd:d2:69:27:8d:39:05:6b:e4:4b:2c: 1e:b5:ad:ce:9e:8f:10:e2:6a:7d:9b:1b:c4:d7:0d:80:a7:ef: 1a:28:73:89:bb:e6:19:c6:6e:d5:e9:21:22:56:44:96:7e:5f: ed:48:12:17:c4:d7:5f:a3:ac:50:fb:0f:69:91:f0:14:07:48: 11:c3:23:5e:3e:bb:5a:2e:e6:e8:f2:af:3b:e2:f8:1b:2d:3f: ff:1d:e7:65:ea:1b:2c:af:63:ea:c4:fc:02:6b:67:ab:cb:d5: d1:7f:6f:55:18:73:4b:d3:f1:5c:f3:9d:55:61:93:03:16:b6: eb:9c:05:8f:72:ac:51:40:45:91:58:4f:3b:c6:4d:f9:3b:73: 3b:ce:42:74:f6:9a:23:69:8d:1b:6a:7f:07:a4:65:ec:a4:51: 37:03:2a:2e:99:5c:91:76:1a:f3:d9:7d:a9:de:b6:f8:12:20: 59:da:a5:1c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/FcF8XWAhOsm2COj55agsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRiZDdmYzUwNTQ4Mjg3ZGVhZWE3Y2U5MjA5OWU0N2EwNGE3 MGQ0NTEwHhcNMjYwMTAyMTQyMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDY1MThkOWJjZGJjNjdiNTYyMmNkYTBiZGJlZmFkMDE4N2I5ZWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjrUVr0UsUxWUZYawANdyQIvCAlX 6MopWioG8wDC8TotL/sv9XsuI+3z53EHfAd+uNOVRuXllJIL1xrcJEmfqDyKw13m rQGJpuBkH5eF9rBkVCf6oGdp6s9Ef6bHCID/kdS7Qn0qbS5ux1g5M50quSBEbB+L FlvtJvaSL+2m7HY2nzti6zkOQmLIfGRvtfDJfejUocYpYem+0SF2S5hxa6uc4OoD UZ6yLXsoqny+C9jLrPX8yOSB9TcfW3XEfpUmOn8htrNu/qkB3GWW1f9ZwNGQs8gw OyqkdyxbVYz3b1yBLmk/vMBnE65oTn76zmOCzPpMDZ3PKei4O9kBIh2TjQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFPBlGNm828Z7ViLNoL2++tAYe57IMB8GA1UdIwQY MBaAFNvX/FBUgoferqfOkgmeR6BKcNRRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMjlmOFVGU0NoOTZ1cDg2U0NaNUhvRXB3MUZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS82MDZlYTktNDgzNC00YjYzLTllMGEt ZjI1NjA0YzRiZTgyLzEvOEdVWTJiemJ4bnRXSXMyZ3ZiNzYwQmg3bnNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS82MDZlYTktNDgzNC00YjYzLTllMGEtZjI1NjA0YzRiZTgy LzEvMjlmOFVGU0NoOTZ1cDg2U0NaNUhvRXB3MUZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuUngMA0E AgACMAcDBQAqEA+AMA0GCSqGSIb3DQEBCwUAA4IBAQBDfQFFV+QgLGgmcN3Uh2nh VdQtiEazj147gsCZtsT6mQa5zU1KIP4kiP7+L9XbcD/Fms4tI0sGALVwgs4dV9Sk MWbRsmO08cNSPhFT7mz2zdJpJ405BWvkSyweta3Ono8Q4mp9mxvE1w2Ap+8aKHOJ u+YZxm7V6SEiVkSWfl/tSBIXxNdfo6xQ+w9pkfAUB0gRwyNePrtaLubo8q874vgb LT//Hedl6hssr2PqxPwCa2ery9XRf29VGHNL0/Fc851VYZMDFrbrnAWPcqxRQEWR WE87xk35O3M7zkJ09pojaY0ban8HpGXspFE3AyoumVyRdhrz2X2p3rb4EiBZ2qUc -----END CERTIFICATE-----Generated at Fri Jan 9 06:21:16 2026 by rpki-client