This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/536e54-d8fd-45ef-be60-f52306eeb722/1/18OuO3YLBaVeqqlU-R18PjcKR2o.roa File: 18OuO3YLBaVeqqlU-R18PjcKR2o.roa (raw, json) Hash identifier: NlnhsswwnMpwMkpGryqI6bDof76aAgmGxVw0Adxc50I= Subject key identifier: D7:C3:AE:3B:76:0B:05:A5:5E:AA:A9:54:F9:1D:7C:3E:37:0A:47:6A Certificate issuer: /CN=82cd5fd3cef3e1caa20bba61fa2d51b6b94eb54d Certificate serial: 019B7EA4CDD83E1CC436126F446170439EA1 Authority key identifier: 82:CD:5F:D3:CE:F3:E1:CA:A2:0B:BA:61:FA:2D:51:B6:B9:4E:B5:4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gs1f087z4cqiC7ph-i1RtrlOtU0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/536e54-d8fd-45ef-be60-f52306eeb722/1/18OuO3YLBaVeqqlU-R18PjcKR2o.roa Signing time: Fri 02 Jan 2026 12:18:08 +0000 ROA not before: Fri 02 Jan 2026 12:18:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203495 IP address blocks: 185.133.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6e/536e54-d8fd-45ef-be60-f52306eeb722/1/gs1f087z4cqiC7ph-i1RtrlOtU0.crl rsync://rpki.ripe.net/repository/DEFAULT/6e/536e54-d8fd-45ef-be60-f52306eeb722/1/gs1f087z4cqiC7ph-i1RtrlOtU0.mft rsync://rpki.ripe.net/repository/DEFAULT/gs1f087z4cqiC7ph-i1RtrlOtU0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:cd:d8:3e:1c:c4:36:12:6f:44:61:70:43:9e:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=82cd5fd3cef3e1caa20bba61fa2d51b6b94eb54d Validity Not Before: Jan 2 12:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d7c3ae3b760b05a55eaaa954f91d7c3e370a476a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a6:eb:b8:86:68:a1:ae:8c:64:3e:6a:63:ce: 24:8e:86:2f:53:f4:d0:fb:71:e0:4e:2d:9e:f0:0c: bd:40:71:0c:cf:45:9f:6a:8c:81:52:4e:f4:1a:10: 83:c4:f5:4a:f5:22:ac:fd:83:4c:2c:95:43:ae:6a: d2:28:06:52:e6:42:59:fc:84:c6:c1:b9:02:67:b3: 6a:0b:e7:b8:c1:55:91:f4:e2:99:84:bb:a5:da:57: e9:18:48:1d:b5:64:a1:ed:0a:df:3b:d4:18:80:4b: d8:8a:fe:13:6f:bd:a2:a7:a0:74:78:77:ea:88:ba: 04:01:9a:38:21:6a:7e:34:d7:cd:32:cb:bb:2f:9a: a0:11:73:e1:35:ac:c9:51:8b:4e:a1:a7:0e:4a:58: 0b:b2:bf:b2:33:84:9f:ec:63:ee:79:b1:1c:be:32: be:de:24:06:5a:fd:70:e3:44:83:85:cd:cb:e2:72: c5:49:c3:b4:70:4f:fe:fc:b2:cc:8b:31:6b:4e:7c: 69:2b:03:ab:f9:16:fe:bc:2e:85:b2:0e:9e:5f:08: cc:5e:4a:90:54:e5:3a:27:5d:99:82:d9:0c:97:37: 49:ef:b0:cf:bd:95:47:21:6f:32:c6:d6:33:61:17: 71:dd:2b:b2:9c:63:f1:19:f9:5d:02:bb:e4:44:dd: eb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:C3:AE:3B:76:0B:05:A5:5E:AA:A9:54:F9:1D:7C:3E:37:0A:47:6A X509v3 Authority Key Identifier: keyid:82:CD:5F:D3:CE:F3:E1:CA:A2:0B:BA:61:FA:2D:51:B6:B9:4E:B5:4D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gs1f087z4cqiC7ph-i1RtrlOtU0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/536e54-d8fd-45ef-be60-f52306eeb722/1/18OuO3YLBaVeqqlU-R18PjcKR2o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/536e54-d8fd-45ef-be60-f52306eeb722/1/gs1f087z4cqiC7ph-i1RtrlOtU0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.133.52.0/22 Signature Algorithm: sha256WithRSAEncryption 76:05:18:18:55:f0:ec:38:d3:60:12:03:5e:b3:80:1a:47:bf: 7a:b7:57:51:4e:6a:55:a5:ac:16:28:34:94:d6:0c:d7:a8:23: 6e:d1:30:3f:9e:21:19:18:b2:6e:b3:75:48:a7:9d:cb:90:21: c5:c7:46:20:e7:79:a3:54:15:d5:01:6b:74:29:f5:4f:e4:31: 59:e0:34:1a:52:93:52:ad:76:f0:79:59:5c:b4:49:03:ce:d1: 36:99:f1:f0:ba:6a:7f:90:ce:d2:4d:61:80:be:ed:15:92:26: e9:7d:a5:49:03:ce:0c:9e:06:41:57:4c:5d:3c:b4:de:a8:4c: ec:11:d5:df:d5:2d:74:b5:85:48:9c:3b:30:f2:ec:a0:fa:ab: 19:0c:9b:c4:c7:8a:43:2c:17:f9:02:d1:a1:d8:cf:1b:1a:9d: ba:98:62:70:8c:d8:61:e2:58:56:48:20:47:b6:96:92:66:6d: 20:89:b6:11:d5:66:92:b4:04:0d:bc:3f:70:04:cd:8b:42:04: 16:e5:6f:d2:91:6e:54:a3:58:9f:e7:24:8c:03:18:b0:9a:49: 11:f3:4f:65:86:28:5c:99:0f:d1:65:94:a6:12:d7:b0:c4:07: 04:52:82:dc:3b:e8:18:ec:c3:8b:63:c1:82:5d:bd:95:28:fd: 81:fa:4f:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+pM3YPhzENhJvRGFwQ56hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyY2Q1ZmQzY2VmM2UxY2FhMjBiYmE2MWZhMmQ1MWI2Yjk0 ZWI1NGQwHhcNMjYwMTAyMTIxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkN2MzYWUzYjc2MGIwNWE1NWVhYWE5NTRmOTFkN2MzZTM3MGE0NzZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvqbruIZooa6MZD5qY84kjoYvU/TQ +3HgTi2e8Ay9QHEMz0WfaoyBUk70GhCDxPVK9SKs/YNMLJVDrmrSKAZS5kJZ/ITG wbkCZ7NqC+e4wVWR9OKZhLul2lfpGEgdtWSh7QrfO9QYgEvYiv4Tb72ip6B0eHfq iLoEAZo4IWp+NNfNMsu7L5qgEXPhNazJUYtOoacOSlgLsr+yM4Sf7GPuebEcvjK+ 3iQGWv1w40SDhc3L4nLFScO0cE/+/LLMizFrTnxpKwOr+Rb+vC6Fsg6eXwjMXkqQ VOU6J12ZgtkMlzdJ77DPvZVHIW8yxtYzYRdx3SuynGPxGfldArvkRN3rzQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNfDrjt2CwWlXqqpVPkdfD43CkdqMB8GA1UdIwQY MBaAFILNX9PO8+HKogu6YfotUba5TrVNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ3MxZjA4N3o0Y3FpQzdwaC1pMVJ0cmxPdFUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS81MzZlNTQtZDhmZC00NWVmLWJlNjAt ZjUyMzA2ZWViNzIyLzEvMThPdU8zWUxCYVZlcXFsVS1SMThQamNLUjJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZS81MzZlNTQtZDhmZC00NWVmLWJlNjAtZjUyMzA2ZWViNzIy LzEvZ3MxZjA4N3o0Y3FpQzdwaC1pMVJ0cmxPdFUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuYU0MA0G CSqGSIb3DQEBCwUAA4IBAQB2BRgYVfDsONNgEgNes4AaR796t1dRTmpVpawWKDSU 1gzXqCNu0TA/niEZGLJus3VIp53LkCHFx0Yg53mjVBXVAWt0KfVP5DFZ4DQaUpNS rXbweVlctEkDztE2mfHwump/kM7STWGAvu0VkibpfaVJA84MngZBV0xdPLTeqEzs EdXf1S10tYVInDsw8uyg+qsZDJvEx4pDLBf5AtGh2M8bGp26mGJwjNhh4lhWSCBH tpaSZm0gibYR1WaStAQNvD9wBM2LQgQW5W/SkW5Uo1if5ySMAxiwmkkR809lhihc mQ/RZZSmEtewxAcEUoLcO+gY7MOLY8GCXb2VKP2B+k+L -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:36 2026 by rpki-client