This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/mt8BxRlzzPaaJ7YP89nmlvEShOY.roa File: mt8BxRlzzPaaJ7YP89nmlvEShOY.roa (raw, json) Hash identifier: 5h7uCM+sM17krF3KDYCTkEInjz6mxypULE5ia4pGUZA= Subject key identifier: 9A:DF:01:C5:19:73:CC:F6:9A:27:B6:0F:F3:D9:E6:96:F1:12:84:E6 Certificate issuer: /CN=e5de0de73e73874bbc66738805d373cab833b7a5 Certificate serial: 019B783534057FD700DFD6F7B9E4531C6BBD Authority key identifier: E5:DE:0D:E7:3E:73:87:4B:BC:66:73:88:05:D3:73:CA:B8:33:B7:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/mt8BxRlzzPaaJ7YP89nmlvEShOY.roa Signing time: Thu 01 Jan 2026 06:18:31 +0000 ROA not before: Thu 01 Jan 2026 06:18:31 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 16509 IP address blocks: 185.137.156.0/24 maxlen: 24 2a10:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.crl rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.mft rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 00:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:34:05:7f:d7:00:df:d6:f7:b9:e4:53:1c:6b:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5de0de73e73874bbc66738805d373cab833b7a5 Validity Not Before: Jan 1 06:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9adf01c51973ccf69a27b60ff3d9e696f11284e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:a7:af:1c:ad:74:25:e0:6d:5f:ea:6e:3d:37: 43:3c:a1:15:e3:c7:f5:61:66:73:43:db:31:8f:15: a5:5d:bd:d6:b1:26:8b:bb:38:ce:34:a0:4a:93:7c: ae:e2:58:e0:5a:2c:79:fc:3a:30:ab:e4:c5:8a:60: 08:b1:02:ba:dd:14:5d:fd:40:b9:62:f4:90:4a:6b: 51:2a:ff:63:9d:51:9c:83:e8:29:9d:d0:cd:6e:cc: dc:0b:45:27:89:ca:32:ad:22:8e:47:27:f3:2d:db: 2a:dd:c1:bf:86:16:e4:7d:bc:8b:af:6c:71:bb:38: 15:bf:ff:d8:e1:c3:59:77:70:12:a7:ba:58:5e:32: 26:eb:f2:f7:8b:0b:64:a5:ec:59:9a:65:fd:bf:74: 98:43:fe:a6:9b:da:3c:e9:c6:5b:87:d4:55:8d:64: a5:b9:0f:1d:24:96:18:89:f7:1c:bc:a5:26:27:77: 11:72:a1:a7:da:17:07:13:de:cf:5a:ac:ec:c7:1e: f6:44:96:a3:e4:82:4b:f5:5c:8f:43:87:63:38:e1: ae:a2:d1:80:4d:91:17:b0:e8:64:16:45:95:0d:7f: cc:84:65:03:a5:4a:38:49:0d:aa:ee:67:c2:c6:60: db:22:9c:9c:a7:b9:af:a1:b8:77:e9:31:38:88:a2: 5c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:DF:01:C5:19:73:CC:F6:9A:27:B6:0F:F3:D9:E6:96:F1:12:84:E6 X509v3 Authority Key Identifier: keyid:E5:DE:0D:E7:3E:73:87:4B:BC:66:73:88:05:D3:73:CA:B8:33:B7:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/mt8BxRlzzPaaJ7YP89nmlvEShOY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/55b9d7-f703-45fe-8b63-10534c67bbb8/1/5d4N5z5zh0u8ZnOIBdNzyrgzt6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.137.156.0/24 IPv6: 2a10:a100::/40 Signature Algorithm: sha256WithRSAEncryption 49:89:e9:88:fe:f2:0b:38:91:bd:17:dc:5d:01:9f:09:89:28: 4a:a0:09:e8:9c:07:ce:9d:c4:41:81:06:bc:8b:7d:9a:cd:59: d6:94:9c:27:df:11:4f:b0:3f:3c:dd:a1:38:44:66:dd:92:73: b4:07:c6:f5:5d:ee:e2:d6:e0:a8:9d:5e:e8:5b:d6:92:df:58: 01:94:21:3d:27:65:2f:40:4c:f8:80:a2:50:a1:fa:7f:d7:78: f3:b9:d3:a0:22:ae:db:97:6a:54:3a:06:de:33:b1:4b:3f:2a: 5b:04:aa:1e:b2:d6:73:77:43:ac:1c:9e:f4:72:9f:63:46:ab: 09:69:20:8a:80:ed:a1:2c:b5:e2:79:fa:ac:dc:4c:45:ce:6e: 8b:ae:e8:56:69:7b:b8:d3:46:13:3a:c7:76:b1:60:f9:68:19: 87:b5:4e:6a:67:c3:6e:b3:96:3c:f4:4b:66:62:7a:31:54:f3: 53:09:9c:59:28:e4:b3:35:74:7e:c8:86:86:58:75:64:04:88: d9:cd:b0:f0:e3:5c:ad:76:26:40:4d:b0:e0:e5:5d:0d:08:56: 63:43:e5:28:0c:df:e9:37:f3:c8:d3:bd:dc:0b:ae:c8:b7:96: c5:18:05:25:9a:33:27:1b:14:6e:7c:3b:67:b4:d2:9f:95:d4: e4:0e:7b:bd -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZt4NTQFf9cA39b3ueRTHGu9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZGUwZGU3M2U3Mzg3NGJiYzY2NzM4ODA1ZDM3M2NhYjgz M2I3YTUwHhcNMjYwMTAxMDYxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YWRmMDFjNTE5NzNjY2Y2OWEyN2I2MGZmM2Q5ZTY5NmYxMTI4NGU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqevHK10JeBtX+puPTdDPKEV48f1 YWZzQ9sxjxWlXb3WsSaLuzjONKBKk3yu4ljgWix5/Dowq+TFimAIsQK63RRd/UC5 YvSQSmtRKv9jnVGcg+gpndDNbszcC0UnicoyrSKORyfzLdsq3cG/hhbkfbyLr2xx uzgVv//Y4cNZd3ASp7pYXjIm6/L3iwtkpexZmmX9v3SYQ/6mm9o86cZbh9RVjWSl uQ8dJJYYifccvKUmJ3cRcqGn2hcHE97PWqzsxx72RJaj5IJL9VyPQ4djOOGuotGA TZEXsOhkFkWVDX/MhGUDpUo4SQ2q7mfCxmDbIpycp7mvobh36TE4iKJcMQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFJrfAcUZc8z2mie2D/PZ5pbxEoTmMB8GA1UdIwQY MBaAFOXeDec+c4dLvGZziAXTc8q4M7elMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWQ0TjV6NXpoMHU4Wm5PSUJkTnp5cmd6dDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi81NWI5ZDctZjcwMy00NWZlLThiNjMt MTA1MzRjNjdiYmI4LzEvbXQ4QnhSbHp6UGFhSjdZUDg5bm1sdkVTaE9ZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYi81NWI5ZDctZjcwMy00NWZlLThiNjMtMTA1MzRjNjdiYmI4 LzEvNWQ0TjV6NXpoMHU4Wm5PSUJkTnp5cmd6dDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAuYmcMA4E AgACMAgDBgAqEKEAADANBgkqhkiG9w0BAQsFAAOCAQEASYnpiP7yCziRvRfcXQGf CYkoSqAJ6JwHzp3EQYEGvIt9ms1Z1pScJ98RT7A/PN2hOERm3ZJztAfG9V3u4tbg qJ1e6FvWkt9YAZQhPSdlL0BM+ICiUKH6f9d487nToCKu25dqVDoG3jOxSz8qWwSq HrLWc3dDrBye9HKfY0arCWkgioDtoSy14nn6rNxMRc5ui67oVml7uNNGEzrHdrFg +WgZh7VOamfDbrOWPPRLZmJ6MVTzUwmcWSjkszV0fsiGhlh1ZASI2c2w8ONcrXYm QE2w4OVdDQhWY0PlKAzf6TfzyNO93AuuyLeWxRgFJZozJxsUbnw7Z7TSn5XU5A57 vQ== -----END CERTIFICATE-----Generated at Fri Jan 2 09:27:22 2026 by rpki-client