This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/3e59c9-9f01-4562-921d-513ca8e6cece/1/tg4JcBcc72nsYKViVZxUUBgVXQQ.roa File: tg4JcBcc72nsYKViVZxUUBgVXQQ.roa (raw, json) Hash identifier: f2eYldA7z0hzEnVdnyZLBMrCbNOlEuq0KoeSWyn4Dig= Subject key identifier: B6:0E:09:70:17:1C:EF:69:EC:60:A5:62:55:9C:54:50:18:15:5D:04 Certificate issuer: /CN=f81fc8c82986310c5f6a9b56fb76b6bd9877fcc0 Certificate serial: 019B783523DC60F61CB7852B0B21315A8F84 Authority key identifier: F8:1F:C8:C8:29:86:31:0C:5F:6A:9B:56:FB:76:B6:BD:98:77:FC:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-B_IyCmGMQxfaptW-3a2vZh3_MA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/3e59c9-9f01-4562-921d-513ca8e6cece/1/tg4JcBcc72nsYKViVZxUUBgVXQQ.roa Signing time: Thu 01 Jan 2026 06:18:27 +0000 ROA not before: Thu 01 Jan 2026 06:18:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60011 IP address blocks: 185.101.97.0/24 maxlen: 24 185.101.98.0/24 maxlen: 24 185.101.99.0/24 maxlen: 24 2a04:ad80:2::/48 maxlen: 48 2a06:1c80::/31 maxlen: 32 2a06:1c80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/3e59c9-9f01-4562-921d-513ca8e6cece/1/1-B_IyCmGMQxfaptW-3a2vZh3_MA.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/3e59c9-9f01-4562-921d-513ca8e6cece/1/1-B_IyCmGMQxfaptW-3a2vZh3_MA.mft rsync://rpki.ripe.net/repository/DEFAULT/1-B_IyCmGMQxfaptW-3a2vZh3_MA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:23:dc:60:f6:1c:b7:85:2b:0b:21:31:5a:8f:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f81fc8c82986310c5f6a9b56fb76b6bd9877fcc0 Validity Not Before: Jan 1 06:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b60e0970171cef69ec60a562559c545018155d04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:bb:f7:c4:7b:9d:e0:ac:30:19:6d:09:66:76: b2:0b:60:3e:e5:d5:49:18:19:c7:c0:fe:2d:0c:b6: b2:4c:4b:06:43:03:1a:10:6b:1f:7a:3e:bc:09:b4: 45:6f:07:f3:eb:37:0a:70:37:52:76:ec:b6:6f:f1: 95:63:a0:b8:fa:3f:fb:26:b2:50:a9:3f:3f:65:10: a9:d9:e2:0d:ed:4a:47:59:58:a1:08:0c:e0:04:00: 2e:0d:05:5d:e1:4f:15:45:b6:41:34:0f:61:06:f8: 1e:d6:b2:26:3d:f0:21:13:b6:de:b4:5b:3c:38:6e: a3:88:9f:cb:9f:97:87:0d:da:6c:8b:98:53:a0:39: 6f:36:44:d0:c1:d4:e8:ad:c7:f9:60:4a:db:ba:3b: c2:23:63:1c:2a:5b:40:5f:31:07:25:50:04:18:98: 98:b1:5b:66:1b:0a:0b:84:3a:42:a0:5f:32:a2:41: 91:95:34:e1:c8:21:dc:76:88:3f:00:8b:c7:e5:4e: 56:11:1e:4b:81:00:12:2e:50:bd:53:6f:8a:82:65: 79:18:ba:7b:40:bd:c0:21:6e:49:b0:e4:d1:3a:34: 96:4c:4d:26:dc:84:32:4b:95:53:81:2a:eb:ec:0a: 8a:e6:de:53:35:0c:e3:75:ff:3a:92:c6:e7:da:36: 81:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:0E:09:70:17:1C:EF:69:EC:60:A5:62:55:9C:54:50:18:15:5D:04 X509v3 Authority Key Identifier: keyid:F8:1F:C8:C8:29:86:31:0C:5F:6A:9B:56:FB:76:B6:BD:98:77:FC:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-B_IyCmGMQxfaptW-3a2vZh3_MA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3e59c9-9f01-4562-921d-513ca8e6cece/1/tg4JcBcc72nsYKViVZxUUBgVXQQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/3e59c9-9f01-4562-921d-513ca8e6cece/1/1-B_IyCmGMQxfaptW-3a2vZh3_MA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.101.97.0-185.101.99.255 IPv6: 2a04:ad80:2::/48 2a06:1c80::/31 Signature Algorithm: sha256WithRSAEncryption a0:05:72:ac:71:ed:e0:53:29:aa:48:d5:84:ea:67:6f:95:f0: 14:f5:ae:12:64:72:70:55:3f:5d:b2:f4:0e:8b:8f:35:ee:bd: 71:9f:bf:20:e7:ad:66:fc:fa:f7:75:40:ef:e1:e1:94:dd:16: b0:f1:3e:7b:32:82:30:56:cc:b2:5b:e0:30:9a:7f:35:b5:90: 83:0f:b1:42:1f:84:67:eb:43:c8:6b:9c:e8:36:21:e4:29:88: 95:7f:0c:d8:86:07:7e:34:d9:a1:f6:05:11:8a:51:ce:57:6e: a7:9f:11:b5:99:d7:71:e2:a9:f3:4b:9e:b6:83:6c:28:77:6b: 5d:cc:d4:06:c9:cf:3e:cf:a6:f3:8e:d8:f6:31:0d:19:11:3b: 7b:2d:ab:4e:c3:6e:43:f5:95:93:ff:b1:1f:12:51:42:39:f5: 86:d6:5e:66:e5:52:8b:cd:80:f4:38:9d:2b:f2:1e:71:f8:9b: 6a:bf:4b:42:60:53:e8:48:5d:45:21:e9:76:b9:7e:83:8f:81: 49:99:d7:7b:80:73:34:cb:4c:82:c5:e4:ed:2d:56:fe:24:0c: c9:f1:df:a1:29:5e:ac:38:bc:57:88:52:52:1e:0d:ef:8d:98: a2:b5:c8:c2:47:4f:a8:08:22:2d:d6:f2:9d:73:9a:af:c0:30: 96:0f:b5:59 -----BEGIN CERTIFICATE----- MIIFHzCCBAegAwIBAgISAZt4NSPcYPYct4UrCyExWo+EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY4MWZjOGM4Mjk4NjMxMGM1ZjZhOWI1NmZiNzZiNmJkOTg3 N2ZjYzAwHhcNMjYwMTAxMDYxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNjBlMDk3MDE3MWNlZjY5ZWM2MGE1NjI1NTljNTQ1MDE4MTU1ZDA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm7v3xHud4KwwGW0JZnayC2A+5dVJ GBnHwP4tDLayTEsGQwMaEGsfej68CbRFbwfz6zcKcDdSduy2b/GVY6C4+j/7JrJQ qT8/ZRCp2eIN7UpHWVihCAzgBAAuDQVd4U8VRbZBNA9hBvge1rImPfAhE7betFs8 OG6jiJ/Ln5eHDdpsi5hToDlvNkTQwdTorcf5YErbujvCI2McKltAXzEHJVAEGJiY sVtmGwoLhDpCoF8yokGRlTThyCHcdog/AIvH5U5WER5LgQASLlC9U2+KgmV5GLp7 QL3AIW5JsOTROjSWTE0m3IQyS5VTgSrr7AqK5t5TNQzjdf86ksbn2jaBewIDAQAB o4ICKzCCAicwHQYDVR0OBBYEFLYOCXAXHO9p7GClYlWcVFAYFV0EMB8GA1UdIwQY MBaAFPgfyMgphjEMX2qbVvt2tr2Yd/zAMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1CX0l5Q21HTVF4ZmFwdFctM2EydlpoM19NQS5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGYvM2U1OWM5LTlmMDEtNDU2Mi05MjFk LTUxM2NhOGU2Y2VjZS8xL3RnNEpjQmNjNzJuc1lLVmlWWnhVVUJnVlhRUS5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvOGYvM2U1OWM5LTlmMDEtNDU2Mi05MjFkLTUxM2NhOGU2Y2Vj ZS8xLzEtQl9JeUNtR01ReGZhcHRXLTNhMnZaaDNfTUEuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwPwYIKwYBBQUHAQcBAf8EMDAuMBQEAgABMA4wDAMEALll YQMEArllYDAWBAIAAjAQAwcAKgStgAACAwUBKgYcgDANBgkqhkiG9w0BAQsFAAOC AQEAoAVyrHHt4FMpqkjVhOpnb5XwFPWuEmRycFU/XbL0DouPNe69cZ+/IOetZvz6 93VA7+HhlN0WsPE+ezKCMFbMslvgMJp/NbWQgw+xQh+EZ+tDyGuc6DYh5CmIlX8M 2IYHfjTZofYFEYpRzldup58RtZnXceKp80uetoNsKHdrXczUBsnPPs+m847Y9jEN GRE7ey2rTsNuQ/WVk/+xHxJRQjn1htZeZuVSi82A9DidK/Iecfibar9LQmBT6Ehd RSHpdrl+g4+BSZnXe4BzNMtMgsXk7S1W/iQMyfHfoSlerDi8V4hSUh4N742YorXI wkdPqAgiLdbynXOar8Awlg+1WQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:13:10 2026 by rpki-client