This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/abI-CtWCRebzyOLyUaEn0-e6TwU.roa File: abI-CtWCRebzyOLyUaEn0-e6TwU.roa (raw, json) Hash identifier: L0A0kZevsrDZAJ7HVJnBmP3E5ETyTmhjlqZotXcXVI8= Subject key identifier: 69:B2:3E:0A:D5:82:45:E6:F3:C8:E2:F2:51:A1:27:D3:E7:BA:4F:05 Certificate issuer: /CN=c8f258ce203e04a33f4e90651153b259cffa3e88 Certificate serial: 019B7CED3A3DB19F01E6D45C6626816C0F38 Authority key identifier: C8:F2:58:CE:20:3E:04:A3:3F:4E:90:65:11:53:B2:59:CF:FA:3E:88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/abI-CtWCRebzyOLyUaEn0-e6TwU.roa Signing time: Fri 02 Jan 2026 04:18:00 +0000 ROA not before: Fri 02 Jan 2026 04:18:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 202701 IP address blocks: 185.156.204.0/22 maxlen: 24 194.5.100.0/22 maxlen: 24 2a07:a100::/29 maxlen: 29 2a07:a104::/32 maxlen: 32 2a07:a105::/32 maxlen: 32 2a07:a106::/32 maxlen: 32 2a07:a107::/32 maxlen: 32 2a0c:e840::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/yPJYziA-BKM_TpBlEVOyWc_6Pog.crl rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/yPJYziA-BKM_TpBlEVOyWc_6Pog.mft rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:3a:3d:b1:9f:01:e6:d4:5c:66:26:81:6c:0f:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c8f258ce203e04a33f4e90651153b259cffa3e88 Validity Not Before: Jan 2 04:18:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69b23e0ad58245e6f3c8e2f251a127d3e7ba4f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:37:e5:35:a1:7d:24:72:21:8e:1c:c5:97:29: 4c:f5:d8:ec:c1:4a:de:c2:02:49:12:ec:77:91:50: a0:7a:bb:42:7f:03:a8:ad:6a:bc:48:83:83:9c:c2: ce:db:17:53:c3:77:af:31:8e:44:99:c8:7b:9f:fc: cf:2c:14:4c:d7:0c:73:b3:dd:1f:74:58:76:50:42: 96:49:b5:84:1d:50:5d:60:d5:11:6c:6f:89:17:81: dd:cf:36:ed:3b:b1:65:ea:13:4d:eb:a0:01:71:46: 58:26:67:a6:c4:5d:c9:d6:d0:02:eb:f8:02:af:d6: f3:12:6e:01:70:65:5a:55:d9:ea:23:a5:a9:1c:05: f7:3a:99:9d:73:de:f0:12:6f:2a:88:3e:f4:39:08: 27:49:ae:9b:07:14:a1:0d:eb:63:f3:8d:c3:22:18: a6:ff:78:ed:fe:d8:4c:20:89:e9:08:17:8f:ef:71: 84:3c:bb:66:7b:c4:c1:fd:3a:05:cc:95:93:b6:12: b2:d6:be:0b:0a:45:fc:50:f8:ad:d8:e3:28:1a:d5: 8b:ec:5b:c3:64:2f:ac:08:a2:54:c1:c9:1e:91:0a: 72:dd:c3:26:5d:b0:89:93:94:2b:ea:8d:35:7c:3e: 19:27:93:e3:c3:27:4d:3f:cb:93:c6:37:37:cc:8a: 9d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B2:3E:0A:D5:82:45:E6:F3:C8:E2:F2:51:A1:27:D3:E7:BA:4F:05 X509v3 Authority Key Identifier: keyid:C8:F2:58:CE:20:3E:04:A3:3F:4E:90:65:11:53:B2:59:CF:FA:3E:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPJYziA-BKM_TpBlEVOyWc_6Pog.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/abI-CtWCRebzyOLyUaEn0-e6TwU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/1f3c4d-59e4-4937-bc14-6c88bfa7b55c/1/yPJYziA-BKM_TpBlEVOyWc_6Pog.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.156.204.0/22 194.5.100.0/22 IPv6: 2a07:a100::/29 2a0c:e840::/29 Signature Algorithm: sha256WithRSAEncryption 38:bb:b6:89:4f:5b:d5:61:e1:6d:92:60:4b:28:c9:6a:b2:26: eb:c7:65:99:5a:d2:25:3a:00:80:87:b2:06:fe:3e:83:8a:84: dd:f1:03:9e:25:f8:67:1c:b4:88:07:36:d5:00:8e:57:cc:de: ab:78:c4:36:52:1c:99:82:be:1c:b9:3d:45:66:b0:b1:bb:8a: 5c:78:13:a5:66:90:40:96:25:c3:91:c8:b6:57:9e:10:cb:80: 48:05:97:15:d5:40:f3:7f:c1:21:f3:2d:75:69:80:f1:c9:f2: 6e:71:32:ba:f2:5c:3b:5d:d4:e9:6a:75:be:1a:06:93:e7:63: 99:f1:22:fd:24:09:59:6a:18:7e:e2:0a:98:50:f0:d2:d2:3c: e4:cb:5c:13:38:0d:78:4e:bd:b3:3c:6b:8b:64:a5:56:73:cf: 49:91:1c:ab:4f:3d:4e:19:c6:99:5e:93:38:2a:f9:92:7e:42: 98:b6:36:7d:24:fc:6c:ab:ae:7f:22:a4:ef:ff:37:fa:0e:83: c6:bf:d1:80:99:b3:15:fa:e4:8e:55:27:db:de:bb:29:af:de: cb:dd:c2:cb:e5:ac:e6:77:ff:a1:21:d5:01:b5:a0:0e:d6:32: 47:cc:3b:43:17:79:11:24:aa:23:58:4e:e7:a7:96:be:99:19: 0d:7f:3f:9f -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt87To9sZ8B5tRcZiaBbA84MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM4ZjI1OGNlMjAzZTA0YTMzZjRlOTA2NTExNTNiMjU5Y2Zm YTNlODgwHhcNMjYwMTAyMDQxODAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OWIyM2UwYWQ1ODI0NWU2ZjNjOGUyZjI1MWExMjdkM2U3YmE0ZjA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTflNaF9JHIhjhzFlylM9djswUre wgJJEux3kVCgertCfwOorWq8SIODnMLO2xdTw3evMY5Emch7n/zPLBRM1wxzs90f dFh2UEKWSbWEHVBdYNURbG+JF4HdzzbtO7Fl6hNN66ABcUZYJmemxF3J1tAC6/gC r9bzEm4BcGVaVdnqI6WpHAX3Opmdc97wEm8qiD70OQgnSa6bBxShDetj843DIhim /3jt/thMIInpCBeP73GEPLtme8TB/ToFzJWTthKy1r4LCkX8UPit2OMoGtWL7FvD ZC+sCKJUwckekQpy3cMmXbCJk5Qr6o01fD4ZJ5PjwydNP8uTxjc3zIqdDwIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFGmyPgrVgkXm88ji8lGhJ9Pnuk8FMB8GA1UdIwQY MBaAFMjyWM4gPgSjP06QZRFTslnP+j6IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVBKWXppQS1CS01fVHBCbEVWT3lXY182UG9nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8xZjNjNGQtNTllNC00OTM3LWJjMTQt NmM4OGJmYTdiNTVjLzEvYWJJLUN0V0NSZWJ6eU9MeVVhRW4wLWU2VHdVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My8xZjNjNGQtNTllNC00OTM3LWJjMTQtNmM4OGJmYTdiNTVj LzEveVBKWXppQS1CS01fVHBCbEVWT3lXY182UG9nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjASBAIAATAMAwQCuZzMAwQC wgVkMBQEAgACMA4DBQMqB6EAAwUDKgzoQDANBgkqhkiG9w0BAQsFAAOCAQEAOLu2 iU9b1WHhbZJgSyjJarIm68dlmVrSJToAgIeyBv4+g4qE3fEDniX4Zxy0iAc21QCO V8zeq3jENlIcmYK+HLk9RWawsbuKXHgTpWaQQJYlw5HItleeEMuASAWXFdVA83/B IfMtdWmA8cnybnEyuvJcO13U6Wp1vhoGk+djmfEi/SQJWWoYfuIKmFDw0tI85Mtc EzgNeE69szxri2SlVnPPSZEcq089ThnGmV6TOCr5kn5CmLY2fST8bKuufyKk7/83 +g6Dxr/RgJmzFfrkjlUn2967Ka/ey93Cy+Ws5nf/oSHVAbWgDtYyR8w7Qxd5ESSq I1hO56eWvpkZDX8/nw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:13:44 2026 by rpki-client