This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/g8srjClL_WgGHUbPNnBUFgTpuTk.roa File: g8srjClL_WgGHUbPNnBUFgTpuTk.roa (raw, json) Hash identifier: gDJAvf7gVoC2n87omYhiXK7E56pj3nGGaW/bXZGo4II= Subject key identifier: 83:CB:2B:8C:29:4B:FD:68:06:1D:46:CF:36:70:54:16:04:E9:B9:39 Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386 Certificate serial: 019B78A31D422F3EFB50CFF09B5B3C0E68D5 Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/g8srjClL_WgGHUbPNnBUFgTpuTk.roa Signing time: Thu 01 Jan 2026 08:18:34 +0000 ROA not before: Thu 01 Jan 2026 08:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210924 IP address blocks: 185.210.157.0/24 maxlen: 24 2a14:c100::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.mft rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:1d:42:2f:3e:fb:50:cf:f0:9b:5b:3c:0e:68:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386 Validity Not Before: Jan 1 08:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=83cb2b8c294bfd68061d46cf3670541604e9b939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:40:c6:6a:a1:13:3b:ba:61:8d:c7:a5:22:9a: 7d:58:24:99:5c:95:9e:34:d2:66:1c:9f:63:5b:54: dd:8a:76:2c:d0:eb:1b:84:2d:2d:20:c3:a8:4b:0a: 3a:38:0b:55:0d:49:28:97:10:c8:64:e7:1e:a6:58: bd:99:24:a0:67:50:45:ea:b0:74:17:79:f2:cf:43: 08:08:68:a2:8f:f9:2e:ee:58:71:65:58:b0:c5:0c: 29:ed:9c:40:8b:9f:72:f9:4c:95:67:63:aa:cf:d3: ef:46:26:ab:a3:3b:ea:d5:4f:75:00:e8:81:a0:27: 97:53:cf:d5:b4:e9:58:cb:53:12:56:1a:e5:75:a4: 10:8a:a2:6a:8e:4f:1d:c7:ea:70:87:d0:9c:17:0a: d8:fe:17:31:2e:a0:6a:a6:c4:e6:6c:8a:e1:fb:6a: da:90:5c:c2:e8:88:bc:c0:95:a8:c7:40:c9:48:19: 36:36:99:9f:88:3a:5f:4b:1b:32:7a:65:b6:0b:05: fa:d2:01:22:37:3c:b4:a4:7f:77:6b:8b:e5:39:9f: 60:7e:a8:1f:f0:ff:a0:81:7a:f2:20:be:bd:89:85: 75:a5:3f:29:96:12:ce:6d:0f:f0:27:5f:e2:95:70: 61:50:96:80:01:cd:79:99:d5:61:5e:9d:41:04:96: b5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CB:2B:8C:29:4B:FD:68:06:1D:46:CF:36:70:54:16:04:E9:B9:39 X509v3 Authority Key Identifier: keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/g8srjClL_WgGHUbPNnBUFgTpuTk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.210.157.0/24 IPv6: 2a14:c100::/29 Signature Algorithm: sha256WithRSAEncryption 0f:d6:96:df:0c:23:8d:b4:d5:b6:fe:67:db:4b:ec:53:8d:06: a7:21:02:27:c9:c6:8b:1d:8a:27:26:98:0f:85:10:7c:e7:b6: 34:17:a0:80:46:3c:24:da:03:4e:dc:ea:58:b4:3e:19:92:1b: 0c:4a:5a:8b:12:08:c9:e8:26:d6:10:c8:98:cf:97:1e:58:79: 02:71:10:6b:31:32:fc:8c:8a:b9:07:20:32:c2:5e:af:f2:19: f2:3c:83:b7:76:58:2e:56:f9:70:19:57:c7:52:51:52:8e:69: a3:19:58:c5:5d:c7:97:8e:6b:d3:ed:d2:7e:92:5a:07:92:1d: 67:b6:13:f8:4f:f9:d7:6e:34:06:13:aa:84:4a:33:75:6a:f1: fb:b9:9f:3c:88:ad:04:11:1b:69:7f:ea:ab:17:84:03:83:fe: e4:db:c3:de:1f:9b:83:0b:be:07:eb:0e:ca:18:27:64:76:29: 9a:52:fa:7b:28:8e:3e:3e:51:f4:64:45:50:46:95:7f:b7:fc: 14:bf:bd:1f:01:b6:72:68:14:31:a4:07:ef:a9:8c:5d:af:57: aa:85:ae:4c:20:c1:40:d1:d3:15:53:84:69:2c:62:e3:c3:7c: 1c:61:97:89:92:d4:c2:c0:e4:6d:2a:a9:88:61:0d:da:98:b2: 34:5d:3f:ac -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4ox1CLz77UM/wm1s8DmjVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNiNjQ1YmMwZmRiODYyNmJjZTJjMDQyNWM0MDg3YjU0ZTE1 MGQzODYwHhcNMjYwMTAxMDgxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4M2NiMmI4YzI5NGJmZDY4MDYxZDQ2Y2YzNjcwNTQxNjA0ZTliOTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlEDGaqETO7phjcelIpp9WCSZXJWe NNJmHJ9jW1TdinYs0OsbhC0tIMOoSwo6OAtVDUkolxDIZOcepli9mSSgZ1BF6rB0 F3nyz0MICGiij/ku7lhxZViwxQwp7ZxAi59y+UyVZ2Oqz9PvRiarozvq1U91AOiB oCeXU8/VtOlYy1MSVhrldaQQiqJqjk8dx+pwh9CcFwrY/hcxLqBqpsTmbIrh+2ra kFzC6Ii8wJWox0DJSBk2NpmfiDpfSxsyemW2CwX60gEiNzy0pH93a4vlOZ9gfqgf 8P+ggXryIL69iYV1pT8plhLObQ/wJ1/ilXBhUJaAAc15mdVhXp1BBJa1jQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIPLK4wpS/1oBh1GzzZwVBYE6bk5MB8GA1UdIwQY MBaAFMtkW8D9uGJrziwEJcQIe1ThUNOGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC81N2JmODktZmUzYi00YzIxLThmZmIt ZTg3NTRkMDA1ZWJlLzEvZzhzcmpDbExfV2dHSFViUE5uQlVGZ1RwdVRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC81N2JmODktZmUzYi00YzIxLThmZmItZTg3NTRkMDA1ZWJl LzEveTJSYndQMjRZbXZPTEFRbHhBaDdWT0ZRMDRZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAudKdMA0E AgACMAcDBQMqFMEAMA0GCSqGSIb3DQEBCwUAA4IBAQAP1pbfDCONtNW2/mfbS+xT jQanIQInycaLHYonJpgPhRB857Y0F6CARjwk2gNO3OpYtD4ZkhsMSlqLEgjJ6CbW EMiYz5ceWHkCcRBrMTL8jIq5ByAywl6v8hnyPIO3dlguVvlwGVfHUlFSjmmjGVjF XceXjmvT7dJ+kloHkh1nthP4T/nXbjQGE6qESjN1avH7uZ88iK0EERtpf+qrF4QD g/7k28PeH5uDC74H6w7KGCdkdimaUvp7KI4+PlH0ZEVQRpV/t/wUv70fAbZyaBQx pAfvqYxdr1eqha5MIMFA0dMVU4RpLGLjw3wcYZeJktTCwORtKqmIYQ3amLI0XT+s -----END CERTIFICATE-----Generated at Tue Feb 10 04:14:21 2026 by rpki-client