This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/jZ_PcWcN6a-O2Z-3tx9t6lTT23M.roa File: jZ_PcWcN6a-O2Z-3tx9t6lTT23M.roa (raw, json) Hash identifier: EYrD0BtGRs4bNIFPrVTFK250phWOgkEv3oi3twZMLNA= Subject key identifier: 8D:9F:CF:71:67:0D:E9:AF:8E:D9:9F:B7:B7:1F:6D:EA:54:D3:DB:73 Certificate issuer: /CN=d8e9e40ff9fbb6280da36e972f20d312500c185c Certificate serial: 019B7F8164DD18C5E55CA6B2C97204FB2E05 Authority key identifier: D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/jZ_PcWcN6a-O2Z-3tx9t6lTT23M.roa Signing time: Fri 02 Jan 2026 16:19:04 +0000 ROA not before: Fri 02 Jan 2026 16:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212367 IP address blocks: 194.8.58.0/24 maxlen: 24 2a0b:cfc0::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.mft rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:81:64:dd:18:c5:e5:5c:a6:b2:c9:72:04:fb:2e:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8e9e40ff9fbb6280da36e972f20d312500c185c Validity Not Before: Jan 2 16:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8d9fcf71670de9af8ed99fb7b71f6dea54d3db73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7b:69:39:e2:01:df:ec:ce:24:9b:cb:b5:87: c6:d9:b8:7e:6f:70:be:cf:8c:6a:58:01:77:62:37: 36:04:b7:9d:0e:36:23:b7:9c:6c:ac:3d:d5:a4:b2: 7c:8b:4a:90:3a:b5:d1:7f:53:8e:f2:1b:d3:29:d4: 3b:23:33:79:b8:fc:3f:6a:00:20:a9:a6:b2:ed:b9: b4:ad:df:7e:87:1e:14:55:6a:8c:2f:e8:44:0d:84: d9:23:63:c3:4e:11:65:bc:dc:1d:45:1c:e3:99:5f: d2:b7:62:0e:2e:a3:21:94:71:23:0e:8b:a6:4e:bf: 41:40:d4:f1:37:20:9b:6e:24:88:f1:a5:da:d9:c4: b3:12:7d:0f:30:70:88:1f:c1:55:f4:40:32:38:43: 08:e2:0b:14:09:92:0f:6f:87:b5:ce:0c:33:16:75: dd:55:f5:78:fd:e8:cd:7c:66:1f:31:30:1f:c8:49: bb:49:4f:b8:f5:4a:78:c0:fc:66:0f:f3:5c:4b:39: 6a:2f:89:c5:d3:5f:e0:13:e6:e0:26:7b:7e:52:fb: 07:ad:a7:0c:50:f2:f2:61:2e:8c:ad:06:4e:a5:ea: 0d:13:d4:2a:60:df:50:aa:30:37:8f:6e:3c:f5:1c: fd:9c:06:d6:69:c3:01:05:5d:f7:8e:ae:3e:eb:55: aa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:9F:CF:71:67:0D:E9:AF:8E:D9:9F:B7:B7:1F:6D:EA:54:D3:DB:73 X509v3 Authority Key Identifier: keyid:D8:E9:E4:0F:F9:FB:B6:28:0D:A3:6E:97:2F:20:D3:12:50:0C:18:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2OnkD_n7tigNo26XLyDTElAMGFw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/jZ_PcWcN6a-O2Z-3tx9t6lTT23M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8738b9-2d0a-4ef6-afad-1ae506ea1760/1/2OnkD_n7tigNo26XLyDTElAMGFw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.8.58.0/24 IPv6: 2a0b:cfc0::/29 Signature Algorithm: sha256WithRSAEncryption 27:e2:97:74:aa:0a:b9:ff:42:f7:d6:05:2a:5f:c7:88:d8:2b: 0e:f9:34:04:93:11:00:60:3a:60:b9:84:3a:77:55:ca:ed:02: d7:d9:e4:89:e7:04:7e:6c:e8:a2:b6:57:58:c1:d7:e8:29:e7: 8e:aa:e4:44:3b:ed:78:5e:f2:7a:da:b3:e4:24:1a:e3:94:ff: 73:23:85:0f:c6:9e:f0:3e:13:1c:98:a0:59:2a:db:bd:45:ac: cf:c5:5c:21:cc:d4:fa:1c:3a:bf:d8:60:ff:3e:db:3e:d9:72: ba:ae:d8:65:38:63:c3:b2:5d:ee:fb:8a:52:a3:83:ba:3c:a7: a9:d2:e1:c3:07:de:91:17:7b:34:95:29:cc:61:94:9b:6e:a2: db:19:c3:ea:6f:e9:e0:0a:02:81:11:a0:a9:6e:86:ef:43:14: 17:ed:95:9a:81:44:67:9c:4c:85:c8:f5:d2:a2:c9:ff:01:e4: 9a:bb:be:0f:bb:58:00:7f:bf:b2:a2:52:b5:61:55:49:27:5b: 4b:7c:8f:30:b9:29:4f:6a:a7:45:f2:47:a7:11:df:ab:03:74: 8a:13:be:34:19:74:81:83:b5:0d:f9:58:db:f9:5e:b8:a5:d1: 44:c0:1d:16:2b:d0:d3:09:2a:60:a2:36:44:5f:19:43:9f:c3: c3:d0:91:81 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/gWTdGMXlXKayyXIE+y4FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4ZTllNDBmZjlmYmI2MjgwZGEzNmU5NzJmMjBkMzEyNTAw YzE4NWMwHhcNMjYwMTAyMTYxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZDlmY2Y3MTY3MGRlOWFmOGVkOTlmYjdiNzFmNmRlYTU0ZDNkYjczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuntpOeIB3+zOJJvLtYfG2bh+b3C+ z4xqWAF3Yjc2BLedDjYjt5xsrD3VpLJ8i0qQOrXRf1OO8hvTKdQ7IzN5uPw/agAg qaay7bm0rd9+hx4UVWqML+hEDYTZI2PDThFlvNwdRRzjmV/St2IOLqMhlHEjDoum Tr9BQNTxNyCbbiSI8aXa2cSzEn0PMHCIH8FV9EAyOEMI4gsUCZIPb4e1zgwzFnXd VfV4/ejNfGYfMTAfyEm7SU+49Up4wPxmD/NcSzlqL4nF01/gE+bgJnt+UvsHracM UPLyYS6MrQZOpeoNE9QqYN9QqjA3j2489Rz9nAbWacMBBV33jq4+61WqxwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFI2fz3FnDemvjtmft7cfbepU09tzMB8GA1UdIwQY MBaAFNjp5A/5+7YoDaNuly8g0xJQDBhcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84NzM4YjktMmQwYS00ZWY2LWFmYWQt MWFlNTA2ZWExNzYwLzEvalpfUGNXY042YS1PMlotM3R4OXQ2bFRUMjNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS84NzM4YjktMmQwYS00ZWY2LWFmYWQtMWFlNTA2ZWExNzYw LzEvMk9ua0Rfbjd0aWdObzI2WEx5RFRFbEFNR0Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwgg6MA0E AgACMAcDBQMqC8/AMA0GCSqGSIb3DQEBCwUAA4IBAQAn4pd0qgq5/0L31gUqX8eI 2CsO+TQEkxEAYDpguYQ6d1XK7QLX2eSJ5wR+bOiitldYwdfoKeeOquREO+14XvJ6 2rPkJBrjlP9zI4UPxp7wPhMcmKBZKtu9RazPxVwhzNT6HDq/2GD/Pts+2XK6rthl OGPDsl3u+4pSo4O6PKep0uHDB96RF3s0lSnMYZSbbqLbGcPqb+ngCgKBEaCpbobv QxQX7ZWagURnnEyFyPXSosn/AeSau74Pu1gAf7+yolK1YVVJJ1tLfI8wuSlPaqdF 8kenEd+rA3SKE740GXSBg7UN+Vjb+V64pdFEwB0WK9DTCSpgojZEXxlDn8PD0JGB -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:49 2026 by rpki-client