This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/85b40d-e900-4d9f-af05-316c7a9cd6b6/1/8UaUU7He9Yv29kZRYVxM02CQ6Go.roa File: 8UaUU7He9Yv29kZRYVxM02CQ6Go.roa (raw, json) Hash identifier: TPMPD8z4BbyqW0UZlFEZ6YpvhPgmje5aXLJzkHd/hwk= Subject key identifier: F1:46:94:53:B1:DE:F5:8B:F6:F6:46:51:61:5C:4C:D3:60:90:E8:6A Certificate issuer: /CN=2211f0403e97465a01dd145bc1507be565710d4e Certificate serial: 019B78A26B5984477921E35F0BC8E2D0710A Authority key identifier: 22:11:F0:40:3E:97:46:5A:01:DD:14:5B:C1:50:7B:E5:65:71:0D:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IhHwQD6XRloB3RRbwVB75WVxDU4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/85b40d-e900-4d9f-af05-316c7a9cd6b6/1/8UaUU7He9Yv29kZRYVxM02CQ6Go.roa Signing time: Thu 01 Jan 2026 08:17:48 +0000 ROA not before: Thu 01 Jan 2026 08:17:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.230.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/85b40d-e900-4d9f-af05-316c7a9cd6b6/1/IhHwQD6XRloB3RRbwVB75WVxDU4.crl rsync://rpki.ripe.net/repository/DEFAULT/79/85b40d-e900-4d9f-af05-316c7a9cd6b6/1/IhHwQD6XRloB3RRbwVB75WVxDU4.mft rsync://rpki.ripe.net/repository/DEFAULT/IhHwQD6XRloB3RRbwVB75WVxDU4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 02:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:6b:59:84:47:79:21:e3:5f:0b:c8:e2:d0:71:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2211f0403e97465a01dd145bc1507be565710d4e Validity Not Before: Jan 1 08:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f1469453b1def58bf6f64651615c4cd36090e86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:9d:06:ee:40:d5:1c:71:7f:95:26:c6:a7:1e: 9d:1d:02:15:68:24:9f:fc:e8:e6:3c:f2:e8:c0:a6: fa:d5:77:72:88:b1:1e:c6:41:d7:9f:b1:68:af:0f: f1:d9:62:07:02:e7:1f:1a:0a:f9:b1:df:18:4c:1c: d6:6d:2d:fc:a0:30:bd:c6:5d:69:77:4f:1d:1e:ad: fd:7a:50:7e:5e:9c:ec:0a:d8:c6:a5:ae:9f:ff:22: e1:dd:8c:38:06:15:7e:a0:10:50:48:40:38:ae:80: 9f:a7:99:ef:52:3c:c4:07:06:50:0f:34:37:ff:d9: 41:48:8d:09:5c:cb:0e:c8:8b:d0:af:61:ac:14:d2: 60:e9:d1:71:61:12:cd:45:6f:32:8a:f8:90:a2:ee: 76:09:90:08:34:35:48:71:90:dc:52:42:14:a5:f4: 37:97:c3:c2:51:4e:fb:21:09:49:00:70:c3:33:67: 17:b6:42:0a:01:ec:ff:11:a0:22:5c:ae:e8:3e:00: af:21:60:28:8c:24:9f:82:ba:32:7c:e5:c2:df:06: 36:31:65:da:c0:5b:ea:31:b1:72:b1:46:38:c4:ff: dc:fa:16:03:2c:48:26:31:83:a4:e8:3d:22:08:4c: 2e:6f:a9:54:84:d2:21:3d:74:b7:02:8c:79:9d:e3: d0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:46:94:53:B1:DE:F5:8B:F6:F6:46:51:61:5C:4C:D3:60:90:E8:6A X509v3 Authority Key Identifier: keyid:22:11:F0:40:3E:97:46:5A:01:DD:14:5B:C1:50:7B:E5:65:71:0D:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IhHwQD6XRloB3RRbwVB75WVxDU4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/85b40d-e900-4d9f-af05-316c7a9cd6b6/1/8UaUU7He9Yv29kZRYVxM02CQ6Go.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/85b40d-e900-4d9f-af05-316c7a9cd6b6/1/IhHwQD6XRloB3RRbwVB75WVxDU4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.230.104.0/24 Signature Algorithm: sha256WithRSAEncryption a2:f5:14:63:bf:62:25:ff:f7:43:23:a4:e4:67:3f:4f:15:1b: b6:64:b4:0c:b3:a1:b2:dc:c4:82:d2:eb:46:c1:c5:70:10:a5: 95:3d:da:35:fd:29:01:ac:8b:f8:3b:4c:b3:9f:19:ac:4b:e2: 16:e7:ef:aa:ae:77:57:78:2e:b2:f6:0f:b9:5c:95:8a:c1:2a: 06:28:32:f7:30:0d:e6:33:58:8d:03:5c:13:fa:aa:7f:17:4f: 1e:6a:83:4c:dc:08:70:8c:3a:e5:2a:53:b1:7a:fc:d0:d6:5a: 3c:3a:e4:68:7f:5b:20:04:6b:83:35:17:fa:cd:d0:fa:62:b1: 1b:3a:5a:15:07:aa:43:36:45:bc:d1:29:4f:43:5c:b5:ad:44: 4c:86:4e:24:e7:c6:5a:43:53:06:de:ec:5f:ec:64:78:cb:81: 10:de:5e:5a:8e:ef:d5:69:d3:98:4d:03:71:a8:67:1f:ed:3a: c4:5b:22:f3:3d:24:a4:13:ad:f4:85:42:6f:c7:57:3f:bc:f3: 3a:ff:9d:9c:46:d4:13:2a:6b:e7:9e:5f:bd:db:4f:56:33:08: 8a:4e:8f:9b:23:25:65:d6:98:a8:7b:b3:38:5d:52:69:b6:70: a2:73:6b:2f:19:22:dd:a3:b0:3b:8c:73:1f:4f:c7:7b:c6:a6: 12:5e:a6:a0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4omtZhEd5IeNfC8ji0HEKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyMTFmMDQwM2U5NzQ2NWEwMWRkMTQ1YmMxNTA3YmU1NjU3 MTBkNGUwHhcNMjYwMTAxMDgxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMTQ2OTQ1M2IxZGVmNThiZjZmNjQ2NTE2MTVjNGNkMzYwOTBlODZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8J0G7kDVHHF/lSbGpx6dHQIVaCSf /OjmPPLowKb61XdyiLEexkHXn7Forw/x2WIHAucfGgr5sd8YTBzWbS38oDC9xl1p d08dHq39elB+XpzsCtjGpa6f/yLh3Yw4BhV+oBBQSEA4roCfp5nvUjzEBwZQDzQ3 /9lBSI0JXMsOyIvQr2GsFNJg6dFxYRLNRW8yiviQou52CZAINDVIcZDcUkIUpfQ3 l8PCUU77IQlJAHDDM2cXtkIKAez/EaAiXK7oPgCvIWAojCSfgroyfOXC3wY2MWXa wFvqMbFysUY4xP/c+hYDLEgmMYOk6D0iCEwub6lUhNIhPXS3Aox5nePQYQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPFGlFOx3vWL9vZGUWFcTNNgkOhqMB8GA1UdIwQY MBaAFCIR8EA+l0ZaAd0UW8FQe+VlcQ1OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSWhId1FENlhSbG9CM1JSYndWQjc1V1Z4RFU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS84NWI0MGQtZTkwMC00ZDlmLWFmMDUt MzE2YzdhOWNkNmI2LzEvOFVhVVU3SGU5WXYyOWtaUllWeE0wMkNRNkdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS84NWI0MGQtZTkwMC00ZDlmLWFmMDUtMzE2YzdhOWNkNmI2 LzEvSWhId1FENlhSbG9CM1JSYndWQjc1V1Z4RFU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueZoMA0G CSqGSIb3DQEBCwUAA4IBAQCi9RRjv2Il//dDI6TkZz9PFRu2ZLQMs6Gy3MSC0utG wcVwEKWVPdo1/SkBrIv4O0yznxmsS+IW5++qrndXeC6y9g+5XJWKwSoGKDL3MA3m M1iNA1wT+qp/F08eaoNM3AhwjDrlKlOxevzQ1lo8OuRof1sgBGuDNRf6zdD6YrEb OloVB6pDNkW80SlPQ1y1rURMhk4k58ZaQ1MG3uxf7GR4y4EQ3l5aju/VadOYTQNx qGcf7TrEWyLzPSSkE630hUJvx1c/vPM6/52cRtQTKmvnnl+9209WMwiKTo+bIyVl 1pioe7M4XVJptnCic2svGSLdo7A7jHMfT8d7xqYSXqag -----END CERTIFICATE-----Generated at Fri Jan 2 09:29:49 2026 by rpki-client