This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/prfgmqMFHnW62WKp6J_BckD1oEc.roa File: prfgmqMFHnW62WKp6J_BckD1oEc.roa (raw, json) Hash identifier: YLXt0Gsx9HK21O0rf9LP2UXtt3mRDQb0nzBoaQJS4FQ= Subject key identifier: A6:B7:E0:9A:A3:05:1E:75:BA:D9:62:A9:E8:9F:C1:72:40:F5:A0:47 Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9 Certificate serial: 019B7F847378E996A6D3FEBDCF8A5D740A88 Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/prfgmqMFHnW62WKp6J_BckD1oEc.roa Signing time: Fri 02 Jan 2026 16:22:25 +0000 ROA not before: Fri 02 Jan 2026 16:22:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206192 IP address blocks: 85.153.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.mft rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:73:78:e9:96:a6:d3:fe:bd:cf:8a:5d:74:0a:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9 Validity Not Before: Jan 2 16:22:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a6b7e09aa3051e75bad962a9e89fc17240f5a047 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fc:32:7e:0f:7b:91:bb:ab:46:63:81:6b:52: 50:3f:df:4f:b8:10:c7:a8:a9:41:af:3f:d1:07:c2: 22:87:22:9c:9f:58:ae:b0:a8:53:79:43:ee:ab:e7: 18:77:7c:9a:f8:f5:4c:e9:05:7d:27:51:a8:70:06: 4a:e8:db:89:66:2b:a0:ee:cd:15:68:ab:09:83:35: f2:46:5d:4c:00:3d:7b:65:97:3f:2b:85:1e:7e:11: a8:28:72:cf:28:5f:1f:b5:32:fc:41:98:5e:21:59: 43:98:d3:d2:2f:c4:06:66:ec:0b:aa:45:e6:b3:dc: bd:dd:b0:28:ef:5b:47:f0:f1:83:c1:31:88:be:4f: f4:8c:8a:54:b8:5e:16:bd:e1:6b:fa:7d:5d:ce:26: 15:30:0e:14:99:d4:a1:eb:6b:3c:19:aa:62:ad:9b: cf:05:cb:22:22:ff:1c:62:8c:98:a6:e9:f5:4b:7c: 50:11:28:73:7e:77:75:77:5e:38:4d:65:e0:e4:ea: 5c:c8:1e:f3:3d:74:eb:cd:24:9e:6e:a3:48:2a:b4: 33:b8:86:2f:42:18:ea:d7:eb:85:88:0b:e3:bd:6f: f5:04:0f:99:16:ef:4d:ea:b2:ba:3a:1d:08:92:5d: 62:50:35:36:e4:63:eb:fe:42:11:7f:08:30:c8:fe: 1a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B7:E0:9A:A3:05:1E:75:BA:D9:62:A9:E8:9F:C1:72:40:F5:A0:47 X509v3 Authority Key Identifier: keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/prfgmqMFHnW62WKp6J_BckD1oEc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.153.155.0/24 Signature Algorithm: sha256WithRSAEncryption 88:d7:e4:da:aa:76:f5:d3:c1:77:49:ab:0d:5d:d1:59:96:f7: 1d:bd:86:e4:b9:f7:46:6d:8a:a5:ea:fb:ab:b5:32:1d:fc:dc: 46:d5:d8:03:99:bf:25:41:1d:eb:51:34:a2:57:5a:e0:54:aa: f5:a5:bd:74:22:9c:e1:9d:76:05:72:53:53:f6:4e:bb:00:b0: 49:92:07:8a:06:5f:76:96:f2:6b:21:69:55:98:3e:d0:f0:e5: ce:a9:df:ab:b1:25:30:32:04:5c:0a:70:75:83:90:64:6c:79: ae:80:09:83:be:1b:c6:1d:08:83:fe:33:a6:60:58:70:33:6f: ed:b9:8b:c2:42:5e:6f:80:e0:52:3d:b3:f6:bd:4e:55:a5:9c: c4:44:1f:ff:fa:ff:34:02:f8:34:f8:05:70:fb:b9:1b:be:ff: a7:56:95:a9:49:b0:2d:fc:c1:97:0f:e1:74:c7:10:98:eb:b7: b3:18:03:74:93:53:66:bd:13:68:95:79:06:ce:a3:f8:5e:85: 1c:df:db:2a:1e:a4:67:34:b5:fe:24:4d:3d:54:c4:b6:1b:d1: 03:54:1f:57:10:5b:1a:f2:6b:68:7e:7f:89:cf:39:f3:2c:13: b6:85:3c:47:ed:d6:44:6e:61:cc:d1:26:22:15:21:e3:26:e1: 8a:56:e6:4b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hHN46Zam0/69z4pddAqIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkNTljNDMyM2Y3NjdjZTRmZmM4NWRhYWQyMDhiOTBjMDRm YmQzZTkwHhcNMjYwMTAyMTYyMjI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNmI3ZTA5YWEzMDUxZTc1YmFkOTYyYTllODlmYzE3MjQwZjVhMDQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvPwyfg97kburRmOBa1JQP99PuBDH qKlBrz/RB8IihyKcn1iusKhTeUPuq+cYd3ya+PVM6QV9J1GocAZK6NuJZiug7s0V aKsJgzXyRl1MAD17ZZc/K4UefhGoKHLPKF8ftTL8QZheIVlDmNPSL8QGZuwLqkXm s9y93bAo71tH8PGDwTGIvk/0jIpUuF4WveFr+n1dziYVMA4UmdSh62s8GapirZvP BcsiIv8cYoyYpun1S3xQEShzfnd1d144TWXg5OpcyB7zPXTrzSSebqNIKrQzuIYv Qhjq1+uFiAvjvW/1BA+ZFu9N6rK6Oh0Ikl1iUDU25GPr/kIRfwgwyP4alQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKa34JqjBR51utliqeifwXJA9aBHMB8GA1UdIwQY MBaAFI1ZxDI/dnzk/8hdqtIIuQwE+9PpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUt ZjJiZTlmNmM2NjRjLzEvcHJmZ21xTUZIblc2MldLcDZKX0Jja0Qxb0VjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUtZjJiZTlmNmM2NjRj LzEvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVZmbMA0G CSqGSIb3DQEBCwUAA4IBAQCI1+Taqnb108F3SasNXdFZlvcdvYbkufdGbYql6vur tTId/NxG1dgDmb8lQR3rUTSiV1rgVKr1pb10IpzhnXYFclNT9k67ALBJkgeKBl92 lvJrIWlVmD7Q8OXOqd+rsSUwMgRcCnB1g5BkbHmugAmDvhvGHQiD/jOmYFhwM2/t uYvCQl5vgOBSPbP2vU5VpZzERB//+v80Avg0+AVw+7kbvv+nVpWpSbAt/MGXD+F0 xxCY67ezGAN0k1NmvRNolXkGzqP4XoUc39sqHqRnNLX+JE09VMS2G9EDVB9XEFsa 8mtofn+JzznzLBO2hTxH7dZEbmHM0SYiFSHjJuGKVuZL -----END CERTIFICATE-----Generated at Mon Jan 26 11:34:32 2026 by rpki-client