This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/1-aH8x_etPHb7N5lZxH2EJ06tejk.roa File: 1-aH8x_etPHb7N5lZxH2EJ06tejk.roa (raw, json) Hash identifier: 4D8bZL+jOKZy7BZQ0lGHl4mnZyTD+EOB54zTxO+almE= Subject key identifier: F9:A1:FC:C7:F7:AD:3C:76:FB:37:99:59:C4:7D:84:27:4E:AD:7A:39 Certificate issuer: /CN=962bd76a5cac283ece0a0f8eab2c97021401fb89 Certificate serial: 019B7B3699D7041ED3D3DE228475D93AB9FD Authority key identifier: 96:2B:D7:6A:5C:AC:28:3E:CE:0A:0F:8E:AB:2C:97:02:14:01:FB:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/1-aH8x_etPHb7N5lZxH2EJ06tejk.roa Signing time: Thu 01 Jan 2026 20:18:54 +0000 ROA not before: Thu 01 Jan 2026 20:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 32727 IP address blocks: 85.203.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.crl rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.mft rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:99:d7:04:1e:d3:d3:de:22:84:75:d9:3a:b9:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=962bd76a5cac283ece0a0f8eab2c97021401fb89 Validity Not Before: Jan 1 20:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9a1fcc7f7ad3c76fb379959c47d84274ead7a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b6:8b:83:31:a3:f3:29:cd:40:a9:eb:77:50: 02:98:c0:11:54:d4:59:23:38:1d:74:ed:3e:85:21: e3:f6:e1:57:b5:f3:09:b4:45:bf:00:0b:7a:4d:66: 2e:3f:95:fe:af:66:5e:0e:35:f9:9d:d6:18:7c:2e: d3:fd:1f:69:1e:89:77:b7:cb:60:e6:e5:e6:3c:1f: 4d:08:ee:63:c6:f0:93:5e:58:f0:55:52:92:82:10: 30:98:c6:5d:7e:b9:1d:3d:26:c8:8d:da:32:3f:a8: df:29:8f:f3:d1:6c:8f:5d:63:30:51:37:4b:ef:19: 02:24:ee:e4:60:6d:3c:9c:11:75:6e:a7:b3:9e:69: 6f:05:ba:ed:76:39:00:39:91:48:23:ef:b6:ab:bf: 9a:26:28:65:79:1a:16:43:d2:2f:57:21:af:47:5b: 4e:3c:55:32:a0:bd:0e:5f:4f:11:01:1a:72:ee:7f: 31:19:89:09:84:17:4d:01:31:37:7d:47:ad:45:c2: 52:dc:66:72:14:ca:b4:78:2f:89:78:b8:77:7c:bd: 6a:c9:1c:d5:b2:9e:8c:f2:69:e6:12:8f:4f:de:96: 82:c1:4c:d8:de:70:9d:48:75:9c:ca:92:c4:63:b6: a5:7d:fe:58:d3:09:96:de:cf:10:1d:8f:f8:c6:6f: c2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:A1:FC:C7:F7:AD:3C:76:FB:37:99:59:C4:7D:84:27:4E:AD:7A:39 X509v3 Authority Key Identifier: keyid:96:2B:D7:6A:5C:AC:28:3E:CE:0A:0F:8E:AB:2C:97:02:14:01:FB:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/livXalysKD7OCg-OqyyXAhQB-4k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/1-aH8x_etPHb7N5lZxH2EJ06tejk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/046460-102c-4930-842c-6ab11155f6fb/1/livXalysKD7OCg-OqyyXAhQB-4k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.203.54.0/24 Signature Algorithm: sha256WithRSAEncryption 55:72:8f:00:2a:a8:83:f4:d2:16:45:bf:1b:57:08:a9:05:2d: b2:92:80:b6:c4:d0:7a:09:f2:22:28:c5:32:03:ea:79:94:1d: 60:bd:b8:59:3b:35:7c:6b:7a:ac:67:30:9b:43:c4:ef:ed:a3: 0f:a7:f8:e0:73:36:47:a0:22:6a:fa:86:0d:34:9f:78:86:a6: 22:d1:1b:03:ea:cb:44:a9:60:5b:04:61:14:1d:bb:fe:00:45: ff:3f:bd:93:fd:75:d7:38:2f:0a:af:1c:c6:df:b9:0f:7d:fb: 0d:a1:4a:86:15:f4:a2:9a:12:be:59:22:ab:9d:bc:16:a3:3c: 1c:c5:c4:b4:4d:91:88:5f:12:a4:f4:e1:3b:f9:50:d5:53:61: e8:a2:8d:66:68:d1:4e:f8:1f:b6:0c:e1:ba:4c:9c:9f:67:6b: c6:d3:fe:ab:56:33:ca:cd:cb:f1:46:1c:cf:8d:27:77:1a:94: 4f:78:f1:16:4e:bb:fd:87:b4:d0:fc:90:a5:82:7e:4d:8f:a5: 53:58:fd:78:90:78:0e:3c:e3:33:89:f1:c6:b8:dc:ef:d8:ea: f4:d8:a4:8c:77:34:7b:ce:2b:1f:7d:c8:20:e7:b1:c1:24:d2: 22:ed:a7:03:9e:5b:46:8e:7e:a3:93:36:41:8f:78:23:09:4e: a1:e3:6f:78 -----BEGIN CERTIFICATE----- MIIE/jCCA+agAwIBAgISAZt7NpnXBB7T094ihHXZOrn9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk2MmJkNzZhNWNhYzI4M2VjZTBhMGY4ZWFiMmM5NzAyMTQw MWZiODkwHhcNMjYwMTAxMjAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOWExZmNjN2Y3YWQzYzc2ZmIzNzk5NTljNDdkODQyNzRlYWQ3YTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlraLgzGj8ynNQKnrd1ACmMARVNRZ IzgddO0+hSHj9uFXtfMJtEW/AAt6TWYuP5X+r2ZeDjX5ndYYfC7T/R9pHol3t8tg 5uXmPB9NCO5jxvCTXljwVVKSghAwmMZdfrkdPSbIjdoyP6jfKY/z0WyPXWMwUTdL 7xkCJO7kYG08nBF1bqeznmlvBbrtdjkAOZFII++2q7+aJihleRoWQ9IvVyGvR1tO PFUyoL0OX08RARpy7n8xGYkJhBdNATE3fUetRcJS3GZyFMq0eC+JeLh3fL1qyRzV sp6M8mnmEo9P3paCwUzY3nCdSHWcypLEY7alff5Y0wmW3s8QHY/4xm/CwwIDAQAB o4ICCjCCAgYwHQYDVR0OBBYEFPmh/Mf3rTx2+zeZWcR9hCdOrXo5MB8GA1UdIwQY MBaAFJYr12pcrCg+zgoPjqsslwIUAfuJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbGl2WGFseXNLRDdPQ2ctT3F5eVhBaFFCLTRrLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8wNDY0NjAtMTAyYy00OTMwLTg0MmMt NmFiMTExNTVmNmZiLzEvMS1hSDh4X2V0UEhiN041bFp4SDJFSjA2dGVqay5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvODQvMDQ2NDYwLTEwMmMtNDkzMC04NDJjLTZhYjExMTU1ZjZm Yi8xL2xpdlhhbHlzS0Q3T0NnLU9xeXlYQWhRQi00ay5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFXLNjAN BgkqhkiG9w0BAQsFAAOCAQEAVXKPACqog/TSFkW/G1cIqQUtspKAtsTQegnyIijF MgPqeZQdYL24WTs1fGt6rGcwm0PE7+2jD6f44HM2R6AiavqGDTSfeIamItEbA+rL RKlgWwRhFB27/gBF/z+9k/111zgvCq8cxt+5D337DaFKhhX0opoSvlkiq528FqM8 HMXEtE2RiF8SpPThO/lQ1VNh6KKNZmjRTvgftgzhukycn2drxtP+q1Yzys3L8UYc z40ndxqUT3jxFk67/Ye00PyQpYJ+TY+lU1j9eJB4DjzjM4nxxrjc79jq9NikjHc0 e84rH33IIOexwSTSIu2nA55bRo5+o5M2QY94IwlOoeNveA== -----END CERTIFICATE-----Generated at Wed Jan 21 02:47:48 2026 by rpki-client