This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/0da8f7-fe22-42fb-a329-7d45a9fc4ffc/1/8XBb8f006dAeg3l4fnfnzsnEQsA.roa File: 8XBb8f006dAeg3l4fnfnzsnEQsA.roa (raw, json) Hash identifier: N8WQzeOeKm6GPZPjDggc/GsTVLgLPn7sKtNoO/OiHAw= Subject key identifier: F1:70:5B:F1:FD:34:E9:D0:1E:83:79:78:7E:77:E7:CE:C9:C4:42:C0 Certificate issuer: /CN=05c8a3faa18b6d717aa2f7622181bad8be5b55a3 Certificate serial: 019B77C6E7F5B2880F3D12EDA211A5C76EF3 Authority key identifier: 05:C8:A3:FA:A1:8B:6D:71:7A:A2:F7:62:21:81:BA:D8:BE:5B:55:A3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bcij-qGLbXF6ovdiIYG62L5bVaM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/0da8f7-fe22-42fb-a329-7d45a9fc4ffc/1/8XBb8f006dAeg3l4fnfnzsnEQsA.roa Signing time: Thu 01 Jan 2026 04:18:02 +0000 ROA not before: Thu 01 Jan 2026 04:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47381 IP address blocks: 185.51.64.0/22 maxlen: 24 2a01:ae20::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/0da8f7-fe22-42fb-a329-7d45a9fc4ffc/1/Bcij-qGLbXF6ovdiIYG62L5bVaM.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/0da8f7-fe22-42fb-a329-7d45a9fc4ffc/1/Bcij-qGLbXF6ovdiIYG62L5bVaM.mft rsync://rpki.ripe.net/repository/DEFAULT/Bcij-qGLbXF6ovdiIYG62L5bVaM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:e7:f5:b2:88:0f:3d:12:ed:a2:11:a5:c7:6e:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05c8a3faa18b6d717aa2f7622181bad8be5b55a3 Validity Not Before: Jan 1 04:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f1705bf1fd34e9d01e8379787e77e7cec9c442c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:9a:69:57:34:8c:c5:ed:08:2f:6b:4f:15:50: 24:ac:3a:2d:6c:ea:29:3d:8e:62:ba:de:98:ec:ab: 98:b4:53:50:7a:c5:cf:cb:4d:7f:8e:80:b9:97:97: 29:6c:82:08:5f:55:75:b9:08:e0:da:e4:69:91:4c: 53:02:94:23:e3:3f:c1:10:f5:ac:06:37:bb:11:96: a8:93:76:c4:88:58:bc:41:36:7d:3c:a9:a1:bf:62: 29:30:b3:e9:c1:ef:46:e7:a4:61:9b:8a:21:a5:fe: 36:31:fd:f1:ec:df:19:ef:54:12:60:63:dc:b8:f0: 5d:76:ac:ea:23:ac:22:15:72:d8:35:ea:1e:90:fa: 50:5b:80:1e:11:41:85:52:db:2d:1b:3a:7a:71:d3: ee:b8:a1:2e:d9:a7:de:04:e1:29:cf:f2:39:9f:29: 55:6c:dd:be:58:6b:90:f3:a4:ed:52:03:49:c7:c8: 89:03:57:21:ef:c5:3e:ae:9e:c7:65:a9:3c:10:37: 8e:9e:43:66:f6:7f:24:26:d5:5a:21:f5:df:9b:9b: 69:81:02:db:44:a0:77:be:2b:d0:b8:b8:1e:2b:48: 3e:77:90:b8:d9:8a:40:10:d3:b6:cb:5d:90:a5:63: d2:ea:7d:9a:95:2e:e7:7f:db:d8:ea:b9:cb:16:83: 9e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:70:5B:F1:FD:34:E9:D0:1E:83:79:78:7E:77:E7:CE:C9:C4:42:C0 X509v3 Authority Key Identifier: keyid:05:C8:A3:FA:A1:8B:6D:71:7A:A2:F7:62:21:81:BA:D8:BE:5B:55:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bcij-qGLbXF6ovdiIYG62L5bVaM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/0da8f7-fe22-42fb-a329-7d45a9fc4ffc/1/8XBb8f006dAeg3l4fnfnzsnEQsA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/0da8f7-fe22-42fb-a329-7d45a9fc4ffc/1/Bcij-qGLbXF6ovdiIYG62L5bVaM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.51.64.0/22 IPv6: 2a01:ae20::/32 Signature Algorithm: sha256WithRSAEncryption 1e:b6:ee:a4:1d:2d:b0:6a:c1:dc:04:fc:2e:6c:8e:5b:f0:dd: b3:b0:b8:54:1a:e9:af:3c:4a:5d:28:81:2f:1f:dd:c2:19:ff: c1:b9:e0:ef:d5:e4:f4:13:a6:e1:41:2e:fd:d9:1d:21:29:93: a0:25:51:c1:34:45:f1:fd:08:f4:c1:42:f1:91:da:c4:9a:13: 02:3d:f1:7c:4e:e2:a7:64:e2:a2:79:95:49:80:ab:56:4c:a1: b8:aa:5c:78:00:fc:d1:73:24:c6:08:86:71:6d:fd:a0:37:9d: bb:5c:ca:b6:e9:84:7a:9e:79:d4:72:b2:de:3b:92:b1:e7:01: de:2f:d0:fe:68:65:72:ed:cb:2f:85:78:2a:6e:7a:8c:51:ce: 7e:c5:73:95:10:b7:09:71:9d:43:b0:5d:fd:04:f3:07:af:2c: b2:4d:22:06:d5:5a:f5:bc:7f:eb:61:63:82:ac:31:56:93:d2: 9e:d8:5f:67:60:00:9e:c3:bc:9c:4c:69:32:7c:98:c8:b2:a3: 7b:87:18:5f:66:e8:77:13:c4:05:b6:08:59:d9:6b:22:45:54: a9:aa:ec:c0:a0:3d:36:d8:c1:45:0e:57:45:b9:94:1e:60:4d: db:b8:ed:6a:f2:39:ac:5c:2f:4c:f5:22:c2:55:70:a9:71:f0: e4:5c:e1:52 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3xuf1sogPPRLtohGlx27zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1YzhhM2ZhYTE4YjZkNzE3YWEyZjc2MjIxODFiYWQ4YmU1 YjU1YTMwHhcNMjYwMTAxMDQxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMTcwNWJmMWZkMzRlOWQwMWU4Mzc5Nzg3ZTc3ZTdjZWM5YzQ0MmMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh5ppVzSMxe0IL2tPFVAkrDotbOop PY5iut6Y7KuYtFNQesXPy01/joC5l5cpbIIIX1V1uQjg2uRpkUxTApQj4z/BEPWs Bje7EZaok3bEiFi8QTZ9PKmhv2IpMLPpwe9G56Rhm4ohpf42Mf3x7N8Z71QSYGPc uPBddqzqI6wiFXLYNeoekPpQW4AeEUGFUtstGzp6cdPuuKEu2afeBOEpz/I5nylV bN2+WGuQ86TtUgNJx8iJA1ch78U+rp7HZak8EDeOnkNm9n8kJtVaIfXfm5tpgQLb RKB3vivQuLgeK0g+d5C42YpAENO2y12QpWPS6n2alS7nf9vY6rnLFoOeYwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFPFwW/H9NOnQHoN5eH53587JxELAMB8GA1UdIwQY MBaAFAXIo/qhi21xeqL3YiGButi+W1WjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmNpai1xR0xiWEY2b3ZkaUlZRzYyTDViVmFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS8wZGE4ZjctZmUyMi00MmZiLWEzMjkt N2Q0NWE5ZmM0ZmZjLzEvOFhCYjhmMDA2ZEFlZzNsNGZuZm56c25FUXNBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS8wZGE4ZjctZmUyMi00MmZiLWEzMjktN2Q0NWE5ZmM0ZmZj LzEvQmNpai1xR0xiWEY2b3ZkaUlZRzYyTDViVmFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTNAMA0E AgACMAcDBQAqAa4gMA0GCSqGSIb3DQEBCwUAA4IBAQAetu6kHS2wasHcBPwubI5b 8N2zsLhUGumvPEpdKIEvH93CGf/BueDv1eT0E6bhQS792R0hKZOgJVHBNEXx/Qj0 wULxkdrEmhMCPfF8TuKnZOKieZVJgKtWTKG4qlx4APzRcyTGCIZxbf2gN527XMq2 6YR6nnnUcrLeO5Kx5wHeL9D+aGVy7csvhXgqbnqMUc5+xXOVELcJcZ1DsF39BPMH ryyyTSIG1Vr1vH/rYWOCrDFWk9Ke2F9nYACew7ycTGkyfJjIsqN7hxhfZuh3E8QF tghZ2WsiRVSpquzAoD022MFFDldFuZQeYE3buO1q8jmsXC9M9SLCVXCpcfDkXOFS -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:24 2026 by rpki-client