This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/6qxxsvFexh1pOgky5_A155P4ohQ.roa File: 6qxxsvFexh1pOgky5_A155P4ohQ.roa (raw, json) Hash identifier: /92k5rXniOK0KLVC3dVdQ/fdFf6FxcdMtLbLQy/x/1A= Subject key identifier: EA:AC:71:B2:F1:5E:C6:1D:69:3A:09:32:E7:F0:35:E7:93:F8:A2:14 Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Certificate serial: 019B7A5AD85262FE459BB902719C5FE992F9 Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/6qxxsvFexh1pOgky5_A155P4ohQ.roa Signing time: Thu 01 Jan 2026 16:18:52 +0000 ROA not before: Thu 01 Jan 2026 16:18:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214453 IP address blocks: 82.153.0.0/24 maxlen: 24 217.145.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 04:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:d8:52:62:fe:45:9b:b9:02:71:9c:5f:e9:92:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Validity Not Before: Jan 1 16:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eaac71b2f15ec61d693a0932e7f035e793f8a214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ac:bb:a7:e4:b5:d3:e9:6b:d6:fb:af:ab:c3: 4d:9a:a7:f5:b9:84:9a:53:04:04:6d:ec:83:7e:78: 37:21:63:54:9c:74:3e:c3:ab:ec:17:b1:de:41:4a: 1b:34:0c:38:c7:b2:08:3d:10:4c:a7:4b:e8:7b:4a: 5b:23:19:87:a9:a4:d1:f9:5e:a5:9d:8f:be:8e:c8: 67:49:08:ce:15:70:4a:36:60:e5:80:e9:2e:7c:7a: f0:a1:f6:d6:e0:89:6d:c1:a6:a8:fd:a1:5b:dc:7c: 77:3f:46:36:b8:bd:a7:d2:14:7c:fb:9b:92:98:32: c0:02:37:16:2e:ff:98:3d:99:7c:07:51:a1:fd:5d: 29:17:4b:d7:af:43:50:77:de:8a:8d:b0:88:b9:e4: 17:1f:11:fb:1b:db:e5:51:9f:15:35:ff:45:97:61: 18:b7:ba:43:55:70:8b:5e:c8:bb:80:5f:c1:3b:7e: 85:ed:48:ef:0d:d4:8d:3b:2f:f6:6b:0f:36:c3:89: 6f:ef:59:8b:1c:39:83:b4:be:ed:bc:00:e8:89:3e: 5d:3b:d3:f0:25:6c:84:9f:fc:5b:de:bd:74:fb:ea: 0d:3c:0e:92:b4:e8:56:2d:0d:e2:2b:9e:63:b2:c1: 35:af:40:c2:c8:a1:33:5e:f2:05:54:c3:30:5f:f4: 03:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AC:71:B2:F1:5E:C6:1D:69:3A:09:32:E7:F0:35:E7:93:F8:A2:14 X509v3 Authority Key Identifier: keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/6qxxsvFexh1pOgky5_A155P4ohQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.153.0.0/24 217.145.68.0/24 Signature Algorithm: sha256WithRSAEncryption 85:84:f1:c0:d3:28:dc:d3:fe:fe:f1:e2:04:06:ad:a5:23:60: 07:11:ec:c1:82:02:b4:81:7e:dc:a6:52:7e:21:1f:e9:23:66: 5b:a5:6d:c3:92:6a:a9:d0:35:d4:cc:9c:6d:51:07:46:11:cc: 76:89:53:37:1b:ed:db:19:ab:80:42:10:70:ed:46:9f:64:b8: 24:18:b6:4a:f0:01:16:0f:0a:ba:5c:55:d4:4a:f1:9e:7f:ff: a5:d5:2a:c6:73:5a:08:b8:ce:ce:cc:5a:4a:42:f2:d8:31:da: fb:f4:26:b4:7c:b7:c2:bd:86:ba:d7:d9:55:01:d2:c3:14:aa: 5f:66:e7:89:ae:4b:40:58:42:d1:99:55:83:3f:a9:10:c6:ff: b6:f8:b1:0c:20:ad:dd:8c:ad:5f:3f:47:5a:69:5d:96:18:18: 0e:64:8d:e1:6e:b3:b7:e8:9e:88:bb:54:26:af:6e:3a:f9:cb: f3:e3:af:32:1c:98:31:17:24:94:55:37:3a:15:af:84:1f:ad: 02:43:64:e2:0f:2f:02:e1:bc:e8:24:db:63:83:c2:88:2d:03: dc:1b:96:5c:ac:6a:23:6e:42:f6:8f:ea:df:d9:11:a4:06:f7: a4:39:01:be:a9:f6:cf:cc:5e:0c:ce:3b:87:00:fd:d1:f6:68: 9e:87:fc:e6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WthSYv5Fm7kCcZxf6ZL5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh NTNiOWIwHhcNMjYwMTAxMTYxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYWFjNzFiMmYxNWVjNjFkNjkzYTA5MzJlN2YwMzVlNzkzZjhhMjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6y7p+S10+lr1vuvq8NNmqf1uYSa UwQEbeyDfng3IWNUnHQ+w6vsF7HeQUobNAw4x7IIPRBMp0voe0pbIxmHqaTR+V6l nY++jshnSQjOFXBKNmDlgOkufHrwofbW4Iltwaao/aFb3Hx3P0Y2uL2n0hR8+5uS mDLAAjcWLv+YPZl8B1Gh/V0pF0vXr0NQd96KjbCIueQXHxH7G9vlUZ8VNf9Fl2EY t7pDVXCLXsi7gF/BO36F7UjvDdSNOy/2aw82w4lv71mLHDmDtL7tvADoiT5dO9Pw JWyEn/xb3r10++oNPA6StOhWLQ3iK55jssE1r0DCyKEzXvIFVMMwX/QDUQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOqscbLxXsYdaToJMufwNeeT+KIUMB8GA1UdIwQY MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt NDEyMjhlMzlmZjdjLzEvNnF4eHN2RmV4aDFwT2dreTVfQTE1NVA0b2hRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUpkAAwQA 2ZFEMA0GCSqGSIb3DQEBCwUAA4IBAQCFhPHA0yjc0/7+8eIEBq2lI2AHEezBggK0 gX7cplJ+IR/pI2ZbpW3Dkmqp0DXUzJxtUQdGEcx2iVM3G+3bGauAQhBw7UafZLgk GLZK8AEWDwq6XFXUSvGef/+l1SrGc1oIuM7OzFpKQvLYMdr79Ca0fLfCvYa619lV AdLDFKpfZueJrktAWELRmVWDP6kQxv+2+LEMIK3djK1fP0daaV2WGBgOZI3hbrO3 6J6Iu1Qmr246+cvz468yHJgxFySUVTc6Fa+EH60CQ2TiDy8C4bzoJNtjg8KILQPc G5ZcrGojbkL2j+rf2RGkBvekOQG+qfbPzF4MzjuHAP3R9mieh/zm -----END CERTIFICATE-----Generated at Sun Jan 11 12:01:22 2026 by rpki-client