This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/1dYhzWKh39b-0GLPb-ct32MCxhk.roa File: 1dYhzWKh39b-0GLPb-ct32MCxhk.roa (raw, json) Hash identifier: HvZcxTszijTpa0P8i88U2ahY8WNXyPEFJPNOW2Ie54g= Subject key identifier: D5:D6:21:CD:62:A1:DF:D6:FE:D0:62:CF:6F:E7:2D:DF:63:02:C6:19 Certificate issuer: /CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9 Certificate serial: 019B7F821495408AF37B5027F4665C88BD93 Authority key identifier: 04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/1dYhzWKh39b-0GLPb-ct32MCxhk.roa Signing time: Fri 02 Jan 2026 16:19:49 +0000 ROA not before: Fri 02 Jan 2026 16:19:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207356 IP address blocks: 185.16.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.mft rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:14:95:40:8a:f3:7b:50:27:f4:66:5c:88:bd:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04f0f75caed3f26885ac65630ffaaee77a70ebd9 Validity Not Before: Jan 2 16:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d5d621cd62a1dfd6fed062cf6fe72ddf6302c619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3f:d0:7b:15:f5:bf:35:ad:98:6f:80:98:18: b6:a0:76:e3:5f:4a:e7:2c:43:dd:65:3a:25:f0:7a: 0f:6c:3d:a1:9a:0b:aa:b1:69:3b:63:94:1b:e0:47: 40:3d:a7:67:52:c4:89:b0:42:fa:3d:2f:44:46:45: b7:a7:37:85:10:c0:b0:56:55:6a:20:49:44:5c:e7: a7:ca:3a:f9:0c:79:a4:1f:44:a9:cf:cc:12:39:2d: c4:e9:6d:18:2f:48:6e:ee:3a:2e:71:56:8c:fc:da: 17:64:b0:78:4c:c7:35:46:7a:d6:9d:f1:c1:8a:94: be:e6:69:ea:86:d1:d3:ff:7d:37:01:b1:a9:0e:44: 81:6d:e0:eb:5f:f4:e6:af:dd:8a:eb:1d:bb:4e:1c: 7a:de:17:f1:56:01:14:ec:ba:99:ff:ba:8a:90:ad: 18:55:99:a3:cb:6f:0e:d6:3a:85:39:69:9b:6c:31: 42:02:3b:0c:67:d9:52:82:b5:8b:52:eb:d5:7d:97: ed:ca:b7:b9:e8:aa:dc:3b:f0:94:b0:bf:a1:12:79: c4:fd:ed:4e:53:5f:c6:3f:72:f3:b7:11:6f:38:c3: ee:db:1d:17:91:03:23:9d:63:22:16:f0:10:1f:12: 39:2d:bb:4d:8b:45:82:61:e9:e4:4f:ea:50:02:63: 80:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:D6:21:CD:62:A1:DF:D6:FE:D0:62:CF:6F:E7:2D:DF:63:02:C6:19 X509v3 Authority Key Identifier: keyid:04:F0:F7:5C:AE:D3:F2:68:85:AC:65:63:0F:FA:AE:E7:7A:70:EB:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BPD3XK7T8miFrGVjD_qu53pw69k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/1dYhzWKh39b-0GLPb-ct32MCxhk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/ac8587-db0d-4fe1-a39d-452ef6abe00f/1/BPD3XK7T8miFrGVjD_qu53pw69k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.16.248.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:af:1a:39:3f:74:6c:2f:4a:a2:6c:62:f1:c4:99:59:70:75: 9c:54:2a:8b:2e:27:20:98:e9:a2:ca:11:b1:3d:35:1f:7a:0a: 0b:86:a3:ab:bb:24:07:e5:15:6b:c4:7c:5a:fd:06:fa:65:e0: 2f:5e:89:44:31:4e:a4:9c:83:b5:7c:fa:77:eb:68:7f:bb:27: 07:23:9b:ca:8e:dc:ee:7a:c8:05:14:fa:2f:43:96:b7:15:58: 08:70:d6:e8:b4:90:f1:32:c8:c5:c7:42:b3:d1:aa:ca:de:f1: c7:e7:a3:2d:49:a0:00:fb:86:d0:f7:2b:ba:27:42:9e:0b:a2: b1:52:5e:85:82:f3:c5:0f:24:c9:ab:4b:a7:57:97:96:b0:ec: 94:77:9d:ef:c4:f9:1d:d5:f4:27:b0:b3:27:00:07:62:19:8d: 95:38:20:7b:ee:fe:3a:94:80:65:00:a0:6f:ac:7f:73:9b:2e: 26:1f:6b:be:24:bb:fb:dd:0a:c3:c5:74:4d:55:4c:83:d1:05: 39:aa:98:d2:51:6f:25:cb:55:7b:f0:cc:35:6d:07:e8:5e:ed: f7:cd:9b:1b:79:27:dd:1d:ab:c1:aa:73:40:96:4c:e2:15:0c: 5f:9b:32:36:8f:eb:7f:d8:b4:b2:6b:d7:fa:b2:cc:e2:dc:a1: ae:2e:ee:a3 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/ghSVQIrze1An9GZciL2TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZjBmNzVjYWVkM2YyNjg4NWFjNjU2MzBmZmFhZWU3N2E3 MGViZDkwHhcNMjYwMTAyMTYxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNWQ2MjFjZDYyYTFkZmQ2ZmVkMDYyY2Y2ZmU3MmRkZjYzMDJjNjE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvj/QexX1vzWtmG+AmBi2oHbjX0rn LEPdZTol8HoPbD2hmguqsWk7Y5Qb4EdAPadnUsSJsEL6PS9ERkW3pzeFEMCwVlVq IElEXOenyjr5DHmkH0Spz8wSOS3E6W0YL0hu7joucVaM/NoXZLB4TMc1RnrWnfHB ipS+5mnqhtHT/303AbGpDkSBbeDrX/Tmr92K6x27Thx63hfxVgEU7LqZ/7qKkK0Y VZmjy28O1jqFOWmbbDFCAjsMZ9lSgrWLUuvVfZftyre56KrcO/CUsL+hEnnE/e1O U1/GP3LztxFvOMPu2x0XkQMjnWMiFvAQHxI5LbtNi0WCYenkT+pQAmOAJwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNXWIc1iod/W/tBiz2/nLd9jAsYZMB8GA1UdIwQY MBaAFATw91yu0/JohaxlYw/6rud6cOvZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlBEM1hLN1Q4bWlGckdWakRfcXU1M3B3NjlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9hYzg1ODctZGIwZC00ZmUxLWEzOWQt NDUyZWY2YWJlMDBmLzEvMWRZaHpXS2gzOWItMEdMUGItY3QzMk1DeGhrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9hYzg1ODctZGIwZC00ZmUxLWEzOWQtNDUyZWY2YWJlMDBm LzEvQlBEM1hLN1Q4bWlGckdWakRfcXU1M3B3NjlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRD4MA0G CSqGSIb3DQEBCwUAA4IBAQAurxo5P3RsL0qibGLxxJlZcHWcVCqLLicgmOmiyhGx PTUfegoLhqOruyQH5RVrxHxa/Qb6ZeAvXolEMU6knIO1fPp362h/uycHI5vKjtzu esgFFPovQ5a3FVgIcNbotJDxMsjFx0Kz0arK3vHH56MtSaAA+4bQ9yu6J0KeC6Kx Ul6FgvPFDyTJq0unV5eWsOyUd53vxPkd1fQnsLMnAAdiGY2VOCB77v46lIBlAKBv rH9zmy4mH2u+JLv73QrDxXRNVUyD0QU5qpjSUW8ly1V78Mw1bQfoXu33zZsbeSfd HavBqnNAlkziFQxfmzI2j+t/2LSya9f6sszi3KGuLu6j -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:41 2026 by rpki-client