This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/sKXRq8aEnFIgbr4b51dpoMmQO8Y.roa File: sKXRq8aEnFIgbr4b51dpoMmQO8Y.roa (raw, json) Hash identifier: c2iR1V9JRLqe/KQCQ1Fbh3FmzQaok+nemeB5OzyBRRk= Subject key identifier: B0:A5:D1:AB:C6:84:9C:52:20:6E:BE:1B:E7:57:69:A0:C9:90:3B:C6 Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7 Certificate serial: 019B7E375F5DE730E5FA19042FC52A40D8E4 Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/sKXRq8aEnFIgbr4b51dpoMmQO8Y.roa Signing time: Fri 02 Jan 2026 10:18:36 +0000 ROA not before: Fri 02 Jan 2026 10:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201416 IP address blocks: 178.211.152.0/24 maxlen: 24 2a0d:2540::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:5f:5d:e7:30:e5:fa:19:04:2f:c5:2a:40:d8:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7 Validity Not Before: Jan 2 10:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b0a5d1abc6849c52206ebe1be75769a0c9903bc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d9:e5:b3:23:75:3e:f8:52:06:5b:f2:f6:ee: 11:5f:6c:cf:42:ba:7f:36:ed:63:50:ef:4a:86:a1: 96:9a:94:37:01:68:b3:d0:e5:ea:9e:df:5e:06:8e: 55:a1:95:7b:66:e3:86:ad:2b:3a:bb:2d:f5:53:9f: 23:76:f6:7e:57:5e:7c:10:3b:c6:cf:d4:0b:8e:03: 04:7c:91:ca:af:18:56:d0:e9:91:2b:fe:38:14:35: 4e:6f:98:b4:7d:69:11:2c:64:d2:ad:41:a1:5b:59: 02:4d:44:55:1a:35:15:c0:01:c1:91:2b:5e:76:06: 8d:fc:22:61:52:62:ac:48:b1:f9:b6:8f:44:6a:fa: 76:fc:69:c5:fd:22:81:7b:e0:64:a9:63:ed:b4:48: d3:78:d2:b6:63:dd:da:a1:4d:07:e2:3a:62:bb:2d: 61:33:06:76:ae:31:ac:fd:41:75:56:3c:a1:bc:9b: cf:59:20:a5:e9:fd:a5:dd:1f:5a:d9:0b:45:ad:90: 73:1e:02:28:9e:c4:07:1d:a7:2e:96:ed:d6:ad:a0: e7:33:d7:2c:b5:90:57:d2:9f:0b:ff:64:37:13:3f: c2:85:d9:d5:4c:5c:24:89:05:5a:4b:f5:96:d2:8f: a8:d4:e8:60:78:87:4f:12:01:b4:0f:59:61:7f:34: ca:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A5:D1:AB:C6:84:9C:52:20:6E:BE:1B:E7:57:69:A0:C9:90:3B:C6 X509v3 Authority Key Identifier: keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/sKXRq8aEnFIgbr4b51dpoMmQO8Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.211.152.0/24 IPv6: 2a0d:2540::/29 Signature Algorithm: sha256WithRSAEncryption 71:7b:b2:9a:1b:21:77:96:06:8a:25:30:b7:96:0e:0e:ab:c4: e3:ea:85:0b:fb:05:4d:71:36:2f:89:26:7d:65:c8:4d:b3:fd: 35:94:ca:1b:c8:54:cb:f5:88:d6:e8:ea:dc:e7:95:78:b9:12: 3c:ce:46:3f:7e:37:02:81:94:b5:31:3c:af:67:84:2d:82:9c: 03:f5:aa:8f:16:28:d5:27:75:cf:14:b1:9c:4a:f4:cd:f0:87: 1e:4d:16:2f:2b:18:ba:24:ca:6f:3c:3a:23:fa:25:de:4b:3e: a7:cc:7e:f0:21:92:5c:f0:57:95:11:5c:c3:07:e6:05:cc:57: 6c:b3:96:35:ab:c6:1d:f6:bb:69:ea:3f:c9:3d:50:54:20:ee: ad:6e:4e:c8:89:40:2d:fa:c9:57:90:9f:f0:8b:0d:53:29:18: 94:f7:21:dc:ed:5f:aa:e7:5d:fa:c1:0c:60:1e:8a:29:1c:4d: bb:db:bd:e9:8a:8b:ca:3d:5e:32:2f:2b:86:d1:90:ce:cc:25: 17:69:b1:ed:b4:f6:83:ca:96:d3:d4:2b:77:8d:84:61:e7:6f: 1f:5c:0f:5f:b0:4c:62:fa:af:8d:aa:3e:cd:a9:d2:61:3c:61: bf:b3:cc:f2:22:0e:64:b3:14:27:3f:92:b4:f2:a3:44:69:28: 6e:d7:27:17 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+N19d5zDl+hkEL8UqQNjkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4NWQwMWI0NDI5NDZlMTkyNDMxM2Q1NjRmMzFiN2U0MmUy NDU1ZTcwHhcNMjYwMTAyMTAxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMGE1ZDFhYmM2ODQ5YzUyMjA2ZWJlMWJlNzU3NjlhMGM5OTAzYmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnNnlsyN1PvhSBlvy9u4RX2zPQrp/ Nu1jUO9KhqGWmpQ3AWiz0OXqnt9eBo5VoZV7ZuOGrSs6uy31U58jdvZ+V158EDvG z9QLjgMEfJHKrxhW0OmRK/44FDVOb5i0fWkRLGTSrUGhW1kCTURVGjUVwAHBkSte dgaN/CJhUmKsSLH5to9Eavp2/GnF/SKBe+BkqWPttEjTeNK2Y93aoU0H4jpiuy1h MwZ2rjGs/UF1VjyhvJvPWSCl6f2l3R9a2QtFrZBzHgIonsQHHaculu3WraDnM9cs tZBX0p8L/2Q3Ez/ChdnVTFwkiQVaS/WW0o+o1OhgeIdPEgG0D1lhfzTKBQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLCl0avGhJxSIG6+G+dXaaDJkDvGMB8GA1UdIwQY MBaAFMhdAbRClG4ZJDE9Vk8xt+QuJFXnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEt MTZiOTdiOWE4ODVlLzEvc0tYUnE4YUVuRklnYnI0YjUxZHBvTW1RTzhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC81NTA4NzMtZDA2My00MjBkLWEwNTEtMTZiOTdiOWE4ODVl LzEveUYwQnRFS1ViaGtrTVQxV1R6RzM1QzRrVmVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAstOYMA0E AgACMAcDBQMqDSVAMA0GCSqGSIb3DQEBCwUAA4IBAQBxe7KaGyF3lgaKJTC3lg4O q8Tj6oUL+wVNcTYviSZ9ZchNs/01lMobyFTL9YjW6Orc55V4uRI8zkY/fjcCgZS1 MTyvZ4QtgpwD9aqPFijVJ3XPFLGcSvTN8IceTRYvKxi6JMpvPDoj+iXeSz6nzH7w IZJc8FeVEVzDB+YFzFdss5Y1q8Yd9rtp6j/JPVBUIO6tbk7IiUAt+slXkJ/wiw1T KRiU9yHc7V+q5136wQxgHoopHE27273piovKPV4yLyuG0ZDOzCUXabHttPaDypbT 1Ct3jYRh528fXA9fsExi+q+Nqj7NqdJhPGG/s8zyIg5ksxQnP5K08qNEaShu1ycX -----END CERTIFICATE-----Generated at Mon Feb 9 21:26:07 2026 by rpki-client