This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/8HofXb8C3Ef7Atp6Ezn1h0QIP9Y.roa File: 8HofXb8C3Ef7Atp6Ezn1h0QIP9Y.roa (raw, json) Hash identifier: lkGKwqlCZTFno799svHwhDXRjrBujMrNLPvs2ZrZ4Ho= Subject key identifier: F0:7A:1F:5D:BF:02:DC:47:FB:02:DA:7A:13:39:F5:87:44:08:3F:D6 Certificate issuer: /CN=4050bca29c1813ae3b11f381f0442aa2a8a931bf Certificate serial: 019B7E38EC35FC90C82C8FF04C2352024AF7 Authority key identifier: 40:50:BC:A2:9C:18:13:AE:3B:11:F3:81:F0:44:2A:A2:A8:A9:31:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QFC8opwYE647EfOB8EQqoqipMb8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/8HofXb8C3Ef7Atp6Ezn1h0QIP9Y.roa Signing time: Fri 02 Jan 2026 10:20:18 +0000 ROA not before: Fri 02 Jan 2026 10:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61136 IP address blocks: 185.17.240.0/22 maxlen: 24 185.253.132.0/22 maxlen: 24 2a14:4300::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/QFC8opwYE647EfOB8EQqoqipMb8.crl rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/QFC8opwYE647EfOB8EQqoqipMb8.mft rsync://rpki.ripe.net/repository/DEFAULT/QFC8opwYE647EfOB8EQqoqipMb8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:ec:35:fc:90:c8:2c:8f:f0:4c:23:52:02:4a:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4050bca29c1813ae3b11f381f0442aa2a8a931bf Validity Not Before: Jan 2 10:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f07a1f5dbf02dc47fb02da7a1339f58744083fd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:eb:ed:e5:4a:71:7e:4f:3b:19:9f:04:69:bf: f9:39:5d:f0:3c:9c:ea:ce:de:fb:2c:c5:b4:d6:fb: 32:7d:76:01:ff:4c:ef:3f:48:fa:c4:c3:35:66:ad: 1a:c7:e2:d7:29:63:98:f2:c2:46:bc:a2:fb:55:cb: 1a:62:d3:a3:b5:96:da:b9:41:99:29:65:92:df:28: f7:46:41:f2:b7:86:ba:3f:a1:00:bd:a7:c3:4b:f0: 81:d4:b4:19:e0:7c:47:54:a1:3e:11:b4:39:4b:2b: 4a:64:7d:70:d7:83:97:d0:9f:e7:25:0b:c2:de:ce: 82:e0:69:ed:b4:d8:c7:c8:ea:c5:49:91:66:57:64: 2c:df:c4:ba:cd:86:d4:92:aa:f0:21:5e:ee:94:e9: 92:54:3e:be:52:c0:06:f7:82:c9:a0:7d:6d:58:9f: e2:57:57:0b:b1:1f:9a:67:b1:b8:19:3c:c5:d5:49: 6a:a7:98:9b:e3:6f:48:92:28:7c:a7:16:b0:99:75: ac:56:6c:9d:07:56:fb:3d:31:14:ab:ef:52:ea:d8: 21:9c:6f:11:50:6b:0e:9b:1d:7d:45:ec:99:08:1d: 96:2a:76:aa:34:0a:05:89:44:fd:94:ba:34:33:ba: ec:33:50:bc:33:c5:82:30:ef:89:67:80:b0:a0:c1: a8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7A:1F:5D:BF:02:DC:47:FB:02:DA:7A:13:39:F5:87:44:08:3F:D6 X509v3 Authority Key Identifier: keyid:40:50:BC:A2:9C:18:13:AE:3B:11:F3:81:F0:44:2A:A2:A8:A9:31:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QFC8opwYE647EfOB8EQqoqipMb8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/8HofXb8C3Ef7Atp6Ezn1h0QIP9Y.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/46d891-249b-4a4c-a35d-7fe9ed7d647d/1/QFC8opwYE647EfOB8EQqoqipMb8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.17.240.0/22 185.253.132.0/22 IPv6: 2a14:4300::/29 Signature Algorithm: sha256WithRSAEncryption 3d:30:c7:f2:93:d8:fa:78:b7:8d:c8:e3:6f:d0:87:09:0c:52: e4:a4:94:e0:3e:f7:5e:e2:31:63:5d:e8:ac:89:6c:23:78:a4: 1b:60:70:a5:b3:f9:8d:32:40:6a:d4:d0:97:f4:df:2b:c7:0d: 14:d5:75:36:2f:c7:ba:a9:05:07:e0:db:78:f8:a7:77:c3:b4: 6b:4a:72:cf:3b:38:5a:27:9d:61:05:5c:d2:d4:80:6d:1c:1f: 47:9f:4b:4f:55:37:04:cb:65:e2:4b:38:7f:e9:19:df:99:36: ee:3a:3d:5a:3a:bf:c4:40:f3:88:57:a1:c2:0a:eb:43:d1:b0: b3:73:1c:3c:8d:09:9c:da:34:d5:bc:2e:94:04:14:4f:7d:66: 7a:37:e2:90:45:e5:fc:32:83:a8:d4:17:4e:cc:d6:3a:7c:32: 24:44:ac:d8:fc:db:0d:48:07:73:39:1b:ea:8a:f6:43:8a:bb: 02:27:a3:a6:42:4c:1d:d8:f9:60:d1:aa:90:18:1b:3e:80:32: aa:42:5a:f4:3f:b1:19:a5:72:8b:46:af:06:40:75:aa:52:ea: 18:90:6c:13:84:01:0b:b9:62:ed:1a:45:81:d3:b9:39:ba:9f: 09:a6:34:09:20:cf:20:9b:4e:fe:7e:2d:4c:ff:de:0d:fa:3d: cf:bd:d3:64 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt+OOw1/JDILI/wTCNSAkr3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQwNTBiY2EyOWMxODEzYWUzYjExZjM4MWYwNDQyYWEyYThh OTMxYmYwHhcNMjYwMTAyMTAyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDdhMWY1ZGJmMDJkYzQ3ZmIwMmRhN2ExMzM5ZjU4NzQ0MDgzZmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqevt5Upxfk87GZ8Eab/5OV3wPJzq zt77LMW01vsyfXYB/0zvP0j6xMM1Zq0ax+LXKWOY8sJGvKL7VcsaYtOjtZbauUGZ KWWS3yj3RkHyt4a6P6EAvafDS/CB1LQZ4HxHVKE+EbQ5SytKZH1w14OX0J/nJQvC 3s6C4GnttNjHyOrFSZFmV2Qs38S6zYbUkqrwIV7ulOmSVD6+UsAG94LJoH1tWJ/i V1cLsR+aZ7G4GTzF1Ulqp5ib429Ikih8pxawmXWsVmydB1b7PTEUq+9S6tghnG8R UGsOmx19ReyZCB2WKnaqNAoFiUT9lLo0M7rsM1C8M8WCMO+JZ4CwoMGoxwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFPB6H12/AtxH+wLaehM59YdECD/WMB8GA1UdIwQY MBaAFEBQvKKcGBOuOxHzgfBEKqKoqTG/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUUZDOG9wd1lFNjQ3RWZPQjhFUXFvcWlwTWI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy80NmQ4OTEtMjQ5Yi00YTRjLWEzNWQt N2ZlOWVkN2Q2NDdkLzEvOEhvZlhiOEMzRWY3QXRwNkV6bjFoMFFJUDlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yy80NmQ4OTEtMjQ5Yi00YTRjLWEzNWQtN2ZlOWVkN2Q2NDdk LzEvUUZDOG9wd1lFNjQ3RWZPQjhFUXFvcWlwTWI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuRHwAwQC uf2EMA0EAgACMAcDBQMqFEMAMA0GCSqGSIb3DQEBCwUAA4IBAQA9MMfyk9j6eLeN yONv0IcJDFLkpJTgPvde4jFjXeisiWwjeKQbYHCls/mNMkBq1NCX9N8rxw0U1XU2 L8e6qQUH4Nt4+Kd3w7RrSnLPOzhaJ51hBVzS1IBtHB9Hn0tPVTcEy2XiSzh/6Rnf mTbuOj1aOr/EQPOIV6HCCutD0bCzcxw8jQmc2jTVvC6UBBRPfWZ6N+KQReX8MoOo 1BdOzNY6fDIkRKzY/NsNSAdzORvqivZDirsCJ6OmQkwd2Plg0aqQGBs+gDKqQlr0 P7EZpXKLRq8GQHWqUuoYkGwThAELuWLtGkWB07k5up8JpjQJIM8gm07+fi1M/94N +j3PvdNk -----END CERTIFICATE-----Generated at Tue Feb 10 01:14:17 2026 by rpki-client