This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/sZ98wzbaCbcgCl57ynzA9q3aONU.roa File: sZ98wzbaCbcgCl57ynzA9q3aONU.roa (raw, json) Hash identifier: fn9gWlz+VvCaVIUVntul6QXxN7d9tjP7+yKVdYb3aLg= Subject key identifier: B1:9F:7C:C3:36:DA:09:B7:20:0A:5E:7B:CA:7C:C0:F6:AD:DA:38:D5 Certificate issuer: /CN=10f1d0dbe093c722350618f4045c25ba94317f87 Certificate serial: 019B7E3925B5C0347858AAFBF0EB06B9C473 Authority key identifier: 10:F1:D0:DB:E0:93:C7:22:35:06:18:F4:04:5C:25:BA:94:31:7F:87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/sZ98wzbaCbcgCl57ynzA9q3aONU.roa Signing time: Fri 02 Jan 2026 10:20:32 +0000 ROA not before: Fri 02 Jan 2026 10:20:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211633 IP address blocks: 185.221.245.0/24 maxlen: 24 2a04:3f83:49::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.mft rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:25:b5:c0:34:78:58:aa:fb:f0:eb:06:b9:c4:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10f1d0dbe093c722350618f4045c25ba94317f87 Validity Not Before: Jan 2 10:20:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b19f7cc336da09b7200a5e7bca7cc0f6adda38d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e9:91:db:1f:1d:a1:eb:bf:0b:f5:25:d9:a3: 5c:b3:b1:75:4f:b1:b4:38:1a:ee:0b:e7:ec:ee:61: 05:fe:0e:c9:e5:a3:ca:bd:b2:32:5f:96:14:14:0c: 4c:15:29:f3:bb:e0:4f:cb:4d:8b:19:38:da:10:21: e2:99:4b:f0:c7:cc:c5:d0:09:e8:f1:f4:5c:22:f5: ff:88:b7:34:f3:09:90:93:a2:d4:5d:17:eb:e3:6b: e2:76:4b:a6:9c:4a:ef:17:7e:08:fc:8e:2a:97:cf: e4:f2:33:8b:93:78:d9:61:49:38:45:4e:72:f7:8e: 92:f4:c2:ed:8a:87:6f:18:56:14:31:ec:41:e5:1a: a6:90:53:56:52:31:c7:9a:12:01:41:41:27:71:2a: f6:dc:bc:32:7f:22:d5:67:d8:b3:7a:58:e2:96:11: e3:0b:51:73:5c:56:2a:00:d0:e3:cb:a1:67:50:01: a8:b8:02:04:24:12:a2:21:22:ad:11:2f:f9:03:06: 6b:a0:45:42:5a:7f:76:b5:41:30:5a:91:39:72:7c: 8c:c3:23:13:f9:9f:7b:8a:50:4d:7e:10:ad:da:26: 55:cc:4b:63:f5:2d:2c:7d:24:39:ef:24:6a:82:ad: 8c:ca:e3:54:ef:37:6b:88:0d:b4:0d:e5:53:ee:ca: 14:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:9F:7C:C3:36:DA:09:B7:20:0A:5E:7B:CA:7C:C0:F6:AD:DA:38:D5 X509v3 Authority Key Identifier: keyid:10:F1:D0:DB:E0:93:C7:22:35:06:18:F4:04:5C:25:BA:94:31:7F:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/sZ98wzbaCbcgCl57ynzA9q3aONU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/605f1c-0d7a-4bd3-88b6-2f0a6bdbbe51/1/EPHQ2-CTxyI1Bhj0BFwlupQxf4c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.221.245.0/24 IPv6: 2a04:3f83:49::/48 Signature Algorithm: sha256WithRSAEncryption 0d:82:23:47:44:8f:56:f5:a0:4b:b4:94:57:72:56:87:ee:0a: 81:ba:0a:ef:78:db:08:2b:a3:41:2b:a5:c1:26:53:0c:b0:f5: 44:c1:98:dd:62:21:af:96:c8:ce:0e:2d:02:69:d1:45:71:9a: a9:9c:e5:26:f9:f0:73:33:e7:cd:68:fa:16:89:c4:3e:70:05: ea:ec:32:65:ae:7b:bd:36:06:72:87:d4:f5:42:6f:30:f9:17: 10:4e:62:9f:78:cb:ae:cb:2f:97:b1:74:ac:54:0c:5d:aa:f9: 89:f1:ad:04:0a:6c:fe:10:37:e3:03:88:5d:f8:d9:17:7f:45: fc:de:d0:74:9e:37:b6:3b:74:91:91:7c:1c:52:60:8b:04:32: 74:44:f7:32:04:b0:5b:ce:ad:f6:40:64:60:62:da:cf:8d:1a: e8:a6:3f:0b:9b:9f:3e:33:cf:f7:71:c9:8a:ce:5e:a9:b5:52: 0d:2d:b4:e9:ca:f5:d5:af:8c:83:5a:11:37:84:bd:68:f6:f5: 30:d4:83:8a:8e:83:79:2d:ea:a1:81:78:76:fd:c8:64:7b:7d: 23:24:5c:a7:d0:12:cd:3c:f8:5c:f6:3d:8a:bf:ca:b8:a6:e3: 6f:7a:e6:45:7c:d0:59:d6:4d:55:35:91:e9:fb:d2:68:78:62: fa:3b:af:1f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+OSW1wDR4WKr78OsGucRzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwZjFkMGRiZTA5M2M3MjIzNTA2MThmNDA0NWMyNWJhOTQz MTdmODcwHhcNMjYwMTAyMTAyMDMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMTlmN2NjMzM2ZGEwOWI3MjAwYTVlN2JjYTdjYzBmNmFkZGEzOGQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+mR2x8doeu/C/Ul2aNcs7F1T7G0 OBruC+fs7mEF/g7J5aPKvbIyX5YUFAxMFSnzu+BPy02LGTjaECHimUvwx8zF0Ano 8fRcIvX/iLc08wmQk6LUXRfr42vidkumnErvF34I/I4ql8/k8jOLk3jZYUk4RU5y 946S9MLtiodvGFYUMexB5RqmkFNWUjHHmhIBQUEncSr23LwyfyLVZ9izeljilhHj C1FzXFYqANDjy6FnUAGouAIEJBKiISKtES/5AwZroEVCWn92tUEwWpE5cnyMwyMT +Z97ilBNfhCt2iZVzEtj9S0sfSQ57yRqgq2MyuNU7zdriA20DeVT7soU4QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFLGffMM22gm3IApee8p8wPat2jjVMB8GA1UdIwQY MBaAFBDx0Nvgk8ciNQYY9ARcJbqUMX+HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVBIUTItQ1R4eUkxQmhqMEJGd2x1cFF4ZjRjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC82MDVmMWMtMGQ3YS00YmQzLTg4YjYt MmYwYTZiZGJiZTUxLzEvc1o5OHd6YmFDYmNnQ2w1N3luekE5cTNhT05VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC82MDVmMWMtMGQ3YS00YmQzLTg4YjYtMmYwYTZiZGJiZTUx LzEvRVBIUTItQ1R4eUkxQmhqMEJGd2x1cFF4ZjRjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAud31MA8E AgACMAkDBwAqBD+DAEkwDQYJKoZIhvcNAQELBQADggEBAA2CI0dEj1b1oEu0lFdy VofuCoG6Cu942wgro0ErpcEmUwyw9UTBmN1iIa+WyM4OLQJp0UVxmqmc5Sb58HMz 581o+haJxD5wBersMmWue702BnKH1PVCbzD5FxBOYp94y67LL5exdKxUDF2q+Ynx rQQKbP4QN+MDiF342Rd/Rfze0HSeN7Y7dJGRfBxSYIsEMnRE9zIEsFvOrfZAZGBi 2s+NGuimPwubnz4zz/dxyYrOXqm1Ug0ttOnK9dWvjINaETeEvWj29TDUg4qOg3kt 6qGBeHb9yGR7fSMkXKfQEs08+Fz2PYq/yrim42965kV80FnWTVU1ken70mh4Yvo7 rx8= -----END CERTIFICATE-----Generated at Mon Feb 2 08:07:55 2026 by rpki-client