This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/8o82eGnMQ9kdXbjLZCmd88Y3NYk.roa File: 8o82eGnMQ9kdXbjLZCmd88Y3NYk.roa (raw, json) Hash identifier: lQLIuazU2M1Mw2xConB6RbtwCMEC7BRrPajBXYv168c= Subject key identifier: F2:8F:36:78:69:CC:43:D9:1D:5D:B8:CB:64:29:9D:F3:C6:37:35:89 Certificate issuer: /CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280 Certificate serial: 019B7910B3C27C2A96C0AD2132E150D8A005 Authority key identifier: C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/8o82eGnMQ9kdXbjLZCmd88Y3NYk.roa Signing time: Thu 01 Jan 2026 10:18:16 +0000 ROA not before: Thu 01 Jan 2026 10:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34748 IP address blocks: 185.10.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.mft rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 13:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:b3:c2:7c:2a:96:c0:ad:21:32:e1:50:d8:a0:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c24d5bd3ceeaab0786ce151a3178dadc107bf280 Validity Not Before: Jan 1 10:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f28f367869cc43d91d5db8cb64299df3c6373589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0e:b7:85:05:01:e0:bc:bb:9b:7d:14:a5:e9: 8b:a2:dc:35:f3:64:4d:a2:ac:c3:0b:7e:5f:8e:cf: 8e:34:43:92:89:6c:87:79:c8:db:18:cd:01:1c:57: 2e:50:58:92:21:ad:2d:c0:dc:06:f7:55:cc:2e:70: ef:67:1d:3e:88:58:fd:57:c4:6e:73:55:26:c1:2f: 9d:e2:7f:4b:4f:8c:94:5d:16:84:f4:fc:40:1d:68: 27:74:9b:6a:ac:24:c5:45:fa:8d:2f:f9:0c:8a:0d: 99:4f:e0:ee:3e:85:30:31:45:1e:d5:18:47:90:e4: 7d:57:82:04:86:da:2e:5f:2e:cb:46:d0:c6:51:72: 41:06:f7:64:51:74:75:e0:4a:ab:41:19:61:e2:5f: 6a:76:8e:69:fe:55:58:2f:f1:0d:b5:f1:dc:e4:69: 0e:34:a4:b8:9b:d9:a1:df:50:7a:6f:c1:24:2c:f6: 6b:a0:5a:08:ee:4b:86:3e:a3:4b:9f:fb:0d:59:66: 80:ea:08:60:31:d2:0f:7f:70:50:3f:52:12:3e:0b: 0d:a9:aa:d0:5e:4b:a5:ee:71:dc:89:0d:80:1a:32: 58:ec:4b:f9:13:e3:ef:0e:ed:13:b5:e7:14:e4:ad: 69:28:1c:58:6f:a1:9b:5d:cc:39:c9:50:1a:4a:e2: 28:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:8F:36:78:69:CC:43:D9:1D:5D:B8:CB:64:29:9D:F3:C6:37:35:89 X509v3 Authority Key Identifier: keyid:C2:4D:5B:D3:CE:EA:AB:07:86:CE:15:1A:31:78:DA:DC:10:7B:F2:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wk1b087qqweGzhUaMXja3BB78oA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/8o82eGnMQ9kdXbjLZCmd88Y3NYk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/9e16c1-310f-410c-b341-41d82329f26d/1/wk1b087qqweGzhUaMXja3BB78oA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.10.43.0/24 Signature Algorithm: sha256WithRSAEncryption ab:99:8c:fa:38:28:22:0e:b3:6c:b7:a5:cf:21:bd:f7:e1:65: 3a:9a:d0:08:47:78:55:87:6e:8c:00:cc:b1:59:9b:f1:6b:f5: de:0c:ff:15:b4:21:a8:e2:e6:55:13:2f:63:fc:26:8a:b9:82: c0:b0:cc:3f:d8:ed:c3:fa:32:d4:3c:91:32:57:ce:4c:ed:fa: 0d:39:35:96:47:be:b8:59:5b:6c:03:de:1f:45:2a:65:bd:16: 56:d6:ec:d4:32:94:6e:e0:b0:e5:2f:be:bc:14:fd:8e:5b:a5: 22:74:9a:f9:d8:2c:93:0d:43:1b:ec:1e:3a:51:57:f6:00:50: 31:8c:db:0c:9f:0f:e0:f7:90:de:72:e7:c1:40:03:0b:ed:17: 4d:5b:46:10:4b:40:c5:62:1a:ac:2a:b2:ca:3b:65:d2:0c:04: e1:f9:47:5e:88:d3:be:13:ad:60:45:4d:5e:df:08:77:7a:ea: 2f:ea:58:b3:07:5d:ae:f9:d3:9e:38:bc:42:c7:dc:ff:bc:b9: 78:8b:c8:97:5a:ba:18:b5:8a:d5:e2:72:3f:ad:ef:67:36:dc: d5:01:35:40:19:cc:2e:28:e7:67:21:d4:69:2e:ac:69:e0:05: 76:f2:fa:8f:3e:99:e3:43:b0:01:a7:f0:89:77:a9:fc:a2:ee: 69:ff:ff:a6 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5ELPCfCqWwK0hMuFQ2KAFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyNGQ1YmQzY2VlYWFiMDc4NmNlMTUxYTMxNzhkYWRjMTA3 YmYyODAwHhcNMjYwMTAxMTAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMjhmMzY3ODY5Y2M0M2Q5MWQ1ZGI4Y2I2NDI5OWRmM2M2MzczNTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0g63hQUB4Ly7m30UpemLotw182RN oqzDC35fjs+ONEOSiWyHecjbGM0BHFcuUFiSIa0twNwG91XMLnDvZx0+iFj9V8Ru c1UmwS+d4n9LT4yUXRaE9PxAHWgndJtqrCTFRfqNL/kMig2ZT+DuPoUwMUUe1RhH kOR9V4IEhtouXy7LRtDGUXJBBvdkUXR14EqrQRlh4l9qdo5p/lVYL/ENtfHc5GkO NKS4m9mh31B6b8EkLPZroFoI7kuGPqNLn/sNWWaA6ghgMdIPf3BQP1ISPgsNqarQ Xkul7nHciQ2AGjJY7Ev5E+PvDu0TtecU5K1pKBxYb6GbXcw5yVAaSuIogQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPKPNnhpzEPZHV24y2QpnfPGNzWJMB8GA1UdIwQY MBaAFMJNW9PO6qsHhs4VGjF42twQe/KAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2sxYjA4N3Fxd2VHemhVYU1YamEzQkI3OG9BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS85ZTE2YzEtMzEwZi00MTBjLWIzNDEt NDFkODIzMjlmMjZkLzEvOG84MmVHbk1ROWtkWGJqTFpDbWQ4OFkzTllrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS85ZTE2YzEtMzEwZi00MTBjLWIzNDEtNDFkODIzMjlmMjZk LzEvd2sxYjA4N3Fxd2VHemhVYU1YamEzQkI3OG9BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQorMA0G CSqGSIb3DQEBCwUAA4IBAQCrmYz6OCgiDrNst6XPIb334WU6mtAIR3hVh26MAMyx WZvxa/XeDP8VtCGo4uZVEy9j/CaKuYLAsMw/2O3D+jLUPJEyV85M7foNOTWWR764 WVtsA94fRSplvRZW1uzUMpRu4LDlL768FP2OW6UidJr52CyTDUMb7B46UVf2AFAx jNsMnw/g95DecufBQAML7RdNW0YQS0DFYhqsKrLKO2XSDATh+UdeiNO+E61gRU1e 3wh3euov6lizB12u+dOeOLxCx9z/vLl4i8iXWroYtYrV4nI/re9nNtzVATVAGcwu KOdnIdRpLqxp4AV28vqPPpnjQ7ABp/CJd6n8ou5p//+m -----END CERTIFICATE-----Generated at Mon Jan 26 17:25:29 2026 by rpki-client