This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/DAfU0D6FgxQd5_vEH2Qpid-IR7g.roa File: DAfU0D6FgxQd5_vEH2Qpid-IR7g.roa (raw, json) Hash identifier: fxIk5AsChzngQysfi5it8JFJ1Q8x41MNpVTTV3uuLiI= Subject key identifier: 0C:07:D4:D0:3E:85:83:14:1D:E7:FB:C4:1F:64:29:89:DF:88:47:B8 Certificate issuer: /CN=02ea25e356932875c096a0317559804155f6c99d Certificate serial: 019B7CEDA9D3073E9E334D324A37D1C0D02A Authority key identifier: 02:EA:25:E3:56:93:28:75:C0:96:A0:31:75:59:80:41:55:F6:C9:9D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Auol41aTKHXAlqAxdVmAQVX2yZ0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/DAfU0D6FgxQd5_vEH2Qpid-IR7g.roa Signing time: Fri 02 Jan 2026 04:18:28 +0000 ROA not before: Fri 02 Jan 2026 04:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200560 IP address blocks: 185.103.56.0/24 maxlen: 24 185.103.57.0/24 maxlen: 24 185.103.58.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/Auol41aTKHXAlqAxdVmAQVX2yZ0.crl rsync://rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/Auol41aTKHXAlqAxdVmAQVX2yZ0.mft rsync://rpki.ripe.net/repository/DEFAULT/Auol41aTKHXAlqAxdVmAQVX2yZ0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:a9:d3:07:3e:9e:33:4d:32:4a:37:d1:c0:d0:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=02ea25e356932875c096a0317559804155f6c99d Validity Not Before: Jan 2 04:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0c07d4d03e8583141de7fbc41f642989df8847b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8c:f3:7f:21:dd:40:bd:5b:92:3d:46:fb:99: 99:3e:c2:21:cf:97:38:7a:5d:c5:2d:eb:d3:f4:9d: 56:22:3e:8c:99:bd:0b:57:08:bd:7f:e3:ab:9f:29: e6:c4:a9:b6:28:4a:94:ee:e7:60:e2:dd:9b:dc:32: 3c:aa:75:d8:f3:b6:6c:6a:f9:a7:4d:b6:fd:5b:f3: 9f:53:e0:46:dc:2e:3d:e3:0a:c5:e0:3a:c6:a8:33: ad:2e:3a:bf:34:c5:46:60:b3:72:bd:94:12:d5:65: 67:dc:6e:3b:50:1a:16:6b:60:f8:f2:bd:6a:f7:38: 4d:54:6e:d6:36:34:95:4a:aa:95:59:01:09:2f:e0: e3:bf:74:48:01:b0:c3:19:72:5c:61:1a:7c:b0:2e: 46:98:7a:cb:79:bb:6e:b9:a8:2e:19:fe:3e:45:c8: e7:d1:ab:5c:e4:a8:4d:97:42:c0:f5:79:be:4e:04: 22:a6:96:72:41:67:bf:af:40:3a:0e:52:3e:ff:26: 8a:c8:4b:c2:92:5b:22:b1:50:ac:ed:8c:6c:a1:07: 1c:7f:f4:32:f3:38:fd:a8:8d:58:45:9c:71:c5:3b: be:39:0d:d0:fd:2d:3f:66:36:23:0f:ea:1c:1c:41: 46:81:39:e4:89:d9:d0:a4:be:59:c7:ea:f8:7a:9c: b1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:07:D4:D0:3E:85:83:14:1D:E7:FB:C4:1F:64:29:89:DF:88:47:B8 X509v3 Authority Key Identifier: keyid:02:EA:25:E3:56:93:28:75:C0:96:A0:31:75:59:80:41:55:F6:C9:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Auol41aTKHXAlqAxdVmAQVX2yZ0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/DAfU0D6FgxQd5_vEH2Qpid-IR7g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/9b6be2-da44-42fc-81e1-d814fdca5bed/1/Auol41aTKHXAlqAxdVmAQVX2yZ0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.103.56.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:99:20:94:4e:51:79:ec:30:fb:b8:c2:9e:0b:dc:ec:cf:d7: f4:e0:44:12:78:2c:61:12:da:1d:39:56:5d:28:a0:1c:a9:54: 97:73:ad:35:cb:19:78:82:a9:7e:21:5b:29:d4:ac:f4:04:d4: 81:65:fc:73:b1:98:b7:4a:14:69:15:58:37:4a:8c:d5:c8:4b: 02:e3:d8:2b:52:fc:3e:d4:a7:b0:bc:dd:28:34:41:88:18:c1: 95:d6:c3:82:30:2e:21:03:c2:9b:a2:9f:52:07:3f:12:bd:c4: 35:6e:6a:e9:c9:bb:8a:74:56:2d:57:dd:5b:cc:a1:c3:6f:d6: 96:d6:16:4c:88:04:fd:7d:c3:15:ae:bc:6a:23:2b:ce:cc:e7: ec:3f:8a:db:28:33:25:61:02:dd:49:d7:e2:fa:2f:a1:6f:16: c1:9b:08:7f:ac:26:fb:dc:0d:5b:b1:e3:16:8d:9a:59:ab:e0: 5c:13:dd:7c:81:90:c5:ac:0b:17:b9:fa:cf:8e:ad:18:bc:c1: 4d:21:4f:9c:61:01:83:a4:77:33:9a:a9:d5:5f:54:fd:86:07: 5d:72:b4:79:1a:82:ec:ae:5d:67:bb:9f:54:6a:57:d8:02:d5: 3c:84:03:d3:11:d3:ef:5d:bc:12:8c:47:df:5f:f7:12:67:38: 04:dd:2c:65 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87anTBz6eM00ySjfRwNAqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAyZWEyNWUzNTY5MzI4NzVjMDk2YTAzMTc1NTk4MDQxNTVm NmM5OWQwHhcNMjYwMTAyMDQxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYzA3ZDRkMDNlODU4MzE0MWRlN2ZiYzQxZjY0Mjk4OWRmODg0N2I4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14zzfyHdQL1bkj1G+5mZPsIhz5c4 el3FLevT9J1WIj6Mmb0LVwi9f+OrnynmxKm2KEqU7udg4t2b3DI8qnXY87Zsavmn Tbb9W/OfU+BG3C494wrF4DrGqDOtLjq/NMVGYLNyvZQS1WVn3G47UBoWa2D48r1q 9zhNVG7WNjSVSqqVWQEJL+Djv3RIAbDDGXJcYRp8sC5GmHrLebtuuaguGf4+Rcjn 0atc5KhNl0LA9Xm+TgQippZyQWe/r0A6DlI+/yaKyEvCklsisVCs7YxsoQccf/Qy 8zj9qI1YRZxxxTu+OQ3Q/S0/ZjYjD+ocHEFGgTnkidnQpL5Zx+r4epyxQQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAwH1NA+hYMUHef7xB9kKYnfiEe4MB8GA1UdIwQY MBaAFALqJeNWkyh1wJagMXVZgEFV9smdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQXVvbDQxYVRLSFhBbHFBeGRWbUFRVlgyeVowLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS85YjZiZTItZGE0NC00MmZjLTgxZTEt ZDgxNGZkY2E1YmVkLzEvREFmVTBENkZneFFkNV92RUgyUXBpZC1JUjdnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS85YjZiZTItZGE0NC00MmZjLTgxZTEtZDgxNGZkY2E1YmVk LzEvQXVvbDQxYVRLSFhBbHFBeGRWbUFRVlgyeVowLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuWc4MA0G CSqGSIb3DQEBCwUAA4IBAQB/mSCUTlF57DD7uMKeC9zsz9f04EQSeCxhEtodOVZd KKAcqVSXc601yxl4gql+IVsp1Kz0BNSBZfxzsZi3ShRpFVg3SozVyEsC49grUvw+ 1KewvN0oNEGIGMGV1sOCMC4hA8Kbop9SBz8SvcQ1bmrpybuKdFYtV91bzKHDb9aW 1hZMiAT9fcMVrrxqIyvOzOfsP4rbKDMlYQLdSdfi+i+hbxbBmwh/rCb73A1bseMW jZpZq+BcE918gZDFrAsXufrPjq0YvMFNIU+cYQGDpHczmqnVX1T9hgddcrR5GoLs rl1nu59UalfYAtU8hAPTEdPvXbwSjEffX/cSZzgE3Sxl -----END CERTIFICATE-----Generated at Tue Feb 10 04:49:00 2026 by rpki-client