This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8jdwfYg5esykkaRVD28gkLkcIZc.roa File: 8jdwfYg5esykkaRVD28gkLkcIZc.roa (raw, json) Hash identifier: KESW5Sa3ZbAPvEogZDNdmaawbythAxszKOlfrYUXHpU= Subject key identifier: F2:37:70:7D:88:39:7A:CC:A4:91:A4:55:0F:6F:20:90:B9:1C:21:97 Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5 Certificate serial: 019B7C809F155DBA3EF00C7C64308195832D Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8jdwfYg5esykkaRVD28gkLkcIZc.roa Signing time: Fri 02 Jan 2026 02:19:22 +0000 ROA not before: Fri 02 Jan 2026 02:19:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 22516 IP address blocks: 88.216.20.0/24 maxlen: 24 88.216.21.0/24 maxlen: 24 88.216.103.0/24 maxlen: 24 88.216.185.0/24 maxlen: 24 88.216.212.0/24 maxlen: 24 88.216.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.mft rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:9f:15:5d:ba:3e:f0:0c:7c:64:30:81:95:83:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5 Validity Not Before: Jan 2 02:19:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f237707d88397acca491a4550f6f2090b91c2197 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:3c:2e:40:5a:e4:34:6c:6d:b8:ad:c8:8d:88: 59:db:63:c7:44:6d:e4:63:6e:ad:fa:81:1d:fb:47: 59:bc:00:12:15:4f:0e:4d:41:20:54:7b:e3:53:a4: 9d:d3:39:78:75:88:34:94:84:3d:3c:55:e0:45:b8: ba:8d:be:45:49:ff:db:97:01:60:dd:05:22:85:cb: 0c:db:31:55:ef:fe:26:97:ae:03:2b:07:d8:ce:3d: cf:a0:71:03:d9:7b:ea:1c:ed:ce:15:12:d9:6f:91: 26:bd:00:19:1c:a2:01:63:af:2c:91:3e:a9:c0:e1: f8:ec:85:fd:b1:d1:1a:f6:d7:f3:18:ec:c8:b4:ac: 5f:84:a9:90:d8:77:27:d4:59:19:12:d4:7c:bf:b6: 93:c4:d2:d8:ee:cc:52:3a:34:66:f7:0e:f1:81:ae: 24:17:cc:83:e3:c3:58:e9:58:0e:03:d0:36:24:74: cb:68:31:f3:af:31:fd:65:59:f2:4a:9e:1b:f6:30: f9:f2:fe:18:34:79:e6:cb:e4:2a:c0:94:1e:53:99: bf:81:93:c9:90:1d:c9:63:a6:51:e9:d0:67:7f:31: 9c:f2:e8:c6:b9:e5:c3:17:b7:c9:08:3d:fb:3f:b9: 8d:75:d3:d0:50:3d:9d:df:da:28:f7:b0:70:b9:f5: 9b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:37:70:7D:88:39:7A:CC:A4:91:A4:55:0F:6F:20:90:B9:1C:21:97 X509v3 Authority Key Identifier: keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8jdwfYg5esykkaRVD28gkLkcIZc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.216.20.0/23 88.216.103.0/24 88.216.185.0/24 88.216.212.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:5d:48:41:ea:8e:7b:97:67:1f:1e:e9:86:ed:b0:7e:f0:ca: e9:83:e7:b3:9f:14:eb:23:73:3b:2e:17:65:2f:b2:a0:45:41: e0:e7:04:ff:0a:df:d9:ce:9e:cc:45:c2:ae:44:4e:28:03:46: 8a:fa:6d:61:f8:85:c7:9d:30:5d:68:a6:1f:62:3e:b0:a9:cc: 5e:ce:e5:2a:3f:15:fd:7a:7b:c9:d9:db:e1:c0:22:3b:d6:b5: ae:40:25:e0:e1:77:f3:99:88:34:82:e9:ba:72:40:14:32:33: 96:a5:fc:81:ad:b0:23:e6:70:75:76:85:b8:a5:33:54:72:69: 70:02:5d:81:74:7e:2a:d1:eb:05:9d:a0:b4:5a:9b:92:f8:83: 5f:2c:7b:2c:3e:f2:03:60:1e:bc:08:e2:90:ae:e5:74:fd:5d: 00:b2:09:c2:2c:c8:f2:00:de:86:c0:b3:d4:7d:ca:4f:ba:ee: 02:8a:5f:36:d3:35:13:3d:26:95:f4:88:3b:51:58:35:f1:5f: 54:e3:fb:99:ac:9d:61:63:26:17:09:90:ea:74:a1:9d:dd:44: 34:20:e1:e6:99:81:d3:78:b4:92:df:74:8c:c8:f2:d4:a0:29: b7:ff:ea:36:a6:24:23:60:da:db:c4:1d:62:84:8e:97:07:69: 7f:9b:37:b7 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt8gJ8VXbo+8Ax8ZDCBlYMtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi ZGEzYzUwHhcNMjYwMTAyMDIxOTIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMjM3NzA3ZDg4Mzk3YWNjYTQ5MWE0NTUwZjZmMjA5MGI5MWMyMTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTwuQFrkNGxtuK3IjYhZ22PHRG3k Y26t+oEd+0dZvAASFU8OTUEgVHvjU6Sd0zl4dYg0lIQ9PFXgRbi6jb5FSf/blwFg 3QUihcsM2zFV7/4ml64DKwfYzj3PoHED2XvqHO3OFRLZb5EmvQAZHKIBY68skT6p wOH47IX9sdEa9tfzGOzItKxfhKmQ2Hcn1FkZEtR8v7aTxNLY7sxSOjRm9w7xga4k F8yD48NY6VgOA9A2JHTLaDHzrzH9ZVnySp4b9jD58v4YNHnmy+QqwJQeU5m/gZPJ kB3JY6ZR6dBnfzGc8ujGueXDF7fJCD37P7mNddPQUD2d39oo97BwufWbNQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFPI3cH2IOXrMpJGkVQ9vIJC5HCGXMB8GA1UdIwQY MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt MjM0ODFiZjA5MWMzLzEvOGpkd2ZZZzVlc3lra2FSVkQyOGdrTGtjSVpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBWNgUAwQA WNhnAwQAWNi5AwQBWNjUMA0GCSqGSIb3DQEBCwUAA4IBAQA+XUhB6o57l2cfHumG 7bB+8Mrpg+eznxTrI3M7LhdlL7KgRUHg5wT/Ct/Zzp7MRcKuRE4oA0aK+m1h+IXH nTBdaKYfYj6wqcxezuUqPxX9envJ2dvhwCI71rWuQCXg4XfzmYg0gum6ckAUMjOW pfyBrbAj5nB1doW4pTNUcmlwAl2BdH4q0esFnaC0WpuS+INfLHssPvIDYB68COKQ ruV0/V0AsgnCLMjyAN6GwLPUfcpPuu4Cil820zUTPSaV9Ig7UVg18V9U4/uZrJ1h YyYXCZDqdKGd3UQ0IOHmmYHTeLSS33SMyPLUoCm3/+o2piQjYNrbxB1ihI6XB2l/ mze3 -----END CERTIFICATE-----Generated at Mon Jan 19 13:54:04 2026 by rpki-client