This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/Ac2g8HVyNDYwzqmo6Q0KVIwOBDo.roa File: Ac2g8HVyNDYwzqmo6Q0KVIwOBDo.roa (raw, json) Hash identifier: Um65HfZZDJKesTmcrahWX7j2iQcfK801xXJSJGbgafE= Subject key identifier: 01:CD:A0:F0:75:72:34:36:30:CE:A9:A8:E9:0D:0A:54:8C:0E:04:3A Certificate issuer: /CN=862ba21fcfcc34c9d9b5a7c6081585e0a0ee70ae Certificate serial: 019B797E0FF3566CE79C99C496750C303420 Authority key identifier: 86:2B:A2:1F:CF:CC:34:C9:D9:B5:A7:C6:08:15:85:E0:A0:EE:70:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/Ac2g8HVyNDYwzqmo6Q0KVIwOBDo.roa Signing time: Thu 01 Jan 2026 12:17:43 +0000 ROA not before: Thu 01 Jan 2026 12:17:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39033 IP address blocks: 89.104.114.0/24 maxlen: 24 185.91.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.crl rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.mft rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:0f:f3:56:6c:e7:9c:99:c4:96:75:0c:30:34:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=862ba21fcfcc34c9d9b5a7c6081585e0a0ee70ae Validity Not Before: Jan 1 12:17:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=01cda0f07572343630cea9a8e90d0a548c0e043a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cc:cb:09:43:82:35:ac:bf:77:87:2a:7b:eb: f3:33:4c:5d:3d:98:96:8d:c3:a3:49:69:23:e4:cc: 47:8f:60:a1:5b:91:f6:00:c3:3e:99:0f:73:ff:fd: f6:04:a2:33:e6:38:b2:c5:91:86:7c:29:52:fa:7e: ce:34:1a:33:57:26:fa:6e:36:41:0c:80:4d:4f:f3: c2:59:e1:19:d3:bf:70:34:3f:8d:b5:7e:a1:27:50: 76:f0:75:0c:21:6e:a1:78:55:f2:00:43:41:4f:11: bd:62:01:54:c5:c3:70:92:53:e1:fb:c2:4e:0a:4d: 87:bc:a4:8e:27:7f:bf:9e:29:e1:f7:45:64:7f:95: 98:d3:a2:80:44:4d:8a:e8:aa:dc:f4:16:a0:19:50: 7d:15:74:ec:21:5b:2b:09:0d:a8:a7:d5:67:48:d0: de:ea:ac:0e:fc:d1:87:0a:5a:0c:23:e2:7d:1d:54: 83:8e:f1:a8:9b:a6:74:c7:82:b3:d8:5e:3c:7d:b1: 76:7f:49:59:e1:81:88:71:46:34:41:e9:ea:0a:b6: 68:2f:f5:4b:f3:29:44:8b:87:93:f4:60:46:ac:f1: 07:db:25:9c:90:ae:2a:76:80:e8:aa:db:e0:64:14: 8d:b8:f3:4c:20:74:75:0d:da:f7:8f:e5:53:2b:9c: 08:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:CD:A0:F0:75:72:34:36:30:CE:A9:A8:E9:0D:0A:54:8C:0E:04:3A X509v3 Authority Key Identifier: keyid:86:2B:A2:1F:CF:CC:34:C9:D9:B5:A7:C6:08:15:85:E0:A0:EE:70:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hiuiH8_MNMnZtafGCBWF4KDucK4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/Ac2g8HVyNDYwzqmo6Q0KVIwOBDo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/475e6f-89a5-43e8-83b9-495a959b16e7/1/hiuiH8_MNMnZtafGCBWF4KDucK4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.104.114.0/24 185.91.125.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:71:23:a3:77:3f:a4:00:6e:48:51:88:a6:66:2a:b8:f7:3e: 32:a7:08:41:37:ae:65:5b:a2:82:33:25:a7:48:8b:83:92:70: 68:11:86:51:b4:70:89:61:6d:85:12:92:90:9f:a5:92:ea:1c: 22:e0:f8:a8:9e:09:23:3f:86:47:fd:49:9b:70:9e:14:9c:e9: bd:48:3e:a0:bf:b9:44:59:bf:b0:df:74:b8:26:4f:ed:95:9b: a9:36:3a:a9:85:83:8f:ad:f8:84:f7:60:cc:85:d8:6a:8c:85: b8:ce:b0:65:52:41:0e:6c:46:d5:15:a4:83:f3:a3:ba:65:2f: e0:e4:f6:58:cd:c1:d0:56:f0:66:7b:37:c9:08:e5:be:ef:28: ce:9d:d1:5b:5a:88:30:43:06:93:51:ff:59:70:27:ea:4a:a5: 69:40:6a:d7:bd:93:a8:85:56:76:1d:f3:18:4a:0e:97:63:98: aa:f7:99:cb:76:a8:11:9d:ee:11:66:e7:d1:ce:73:70:ee:ec: 8c:3b:36:a3:c1:44:9e:90:b8:b1:4e:76:40:01:30:76:99:27: 2f:98:bf:15:ba:fe:c5:25:b5:92:8a:f6:19:8f:27:f1:2c:8b: a7:23:26:ce:5b:0d:6f:06:69:1e:12:6e:b0:44:81:e8:6a:46: 8a:bf:32:de -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt5fg/zVmznnJnElnUMMDQgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg2MmJhMjFmY2ZjYzM0YzlkOWI1YTdjNjA4MTU4NWUwYTBl ZTcwYWUwHhcNMjYwMTAxMTIxNzQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMWNkYTBmMDc1NzIzNDM2MzBjZWE5YThlOTBkMGE1NDhjMGUwNDNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyszLCUOCNay/d4cqe+vzM0xdPZiW jcOjSWkj5MxHj2ChW5H2AMM+mQ9z//32BKIz5jiyxZGGfClS+n7ONBozVyb6bjZB DIBNT/PCWeEZ079wND+NtX6hJ1B28HUMIW6heFXyAENBTxG9YgFUxcNwklPh+8JO Ck2HvKSOJ3+/ninh90Vkf5WY06KARE2K6Krc9BagGVB9FXTsIVsrCQ2op9VnSNDe 6qwO/NGHCloMI+J9HVSDjvGom6Z0x4Kz2F48fbF2f0lZ4YGIcUY0QenqCrZoL/VL 8ylEi4eT9GBGrPEH2yWckK4qdoDoqtvgZBSNuPNMIHR1Ddr3j+VTK5wIIQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAHNoPB1cjQ2MM6pqOkNClSMDgQ6MB8GA1UdIwQY MBaAFIYroh/PzDTJ2bWnxggVheCg7nCuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGl1aUg4X01OTW5adGFmR0NCV0Y0S0R1Y0s0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni80NzVlNmYtODlhNS00M2U4LTgzYjkt NDk1YTk1OWIxNmU3LzEvQWMyZzhIVnlORFl3enFtbzZRMEtWSXdPQkRvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni80NzVlNmYtODlhNS00M2U4LTgzYjktNDk1YTk1OWIxNmU3 LzEvaGl1aUg4X01OTW5adGFmR0NCV0Y0S0R1Y0s0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWWhyAwQA uVt9MA0GCSqGSIb3DQEBCwUAA4IBAQB6cSOjdz+kAG5IUYimZiq49z4ypwhBN65l W6KCMyWnSIuDknBoEYZRtHCJYW2FEpKQn6WS6hwi4PiongkjP4ZH/UmbcJ4UnOm9 SD6gv7lEWb+w33S4Jk/tlZupNjqphYOPrfiE92DMhdhqjIW4zrBlUkEObEbVFaSD 86O6ZS/g5PZYzcHQVvBmezfJCOW+7yjOndFbWogwQwaTUf9ZcCfqSqVpQGrXvZOo hVZ2HfMYSg6XY5iq95nLdqgRne4RZufRznNw7uyMOzajwUSekLixTnZAATB2mScv mL8Vuv7FJbWSivYZjyfxLIunIybOWw1vBmkeEm6wRIHoakaKvzLe -----END CERTIFICATE-----Generated at Tue Feb 10 00:03:09 2026 by rpki-client