This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/lW9UCsG45tltS34IVuMEF5LF0WE.roa File: lW9UCsG45tltS34IVuMEF5LF0WE.roa (raw, json) Hash identifier: Fi19lc5a6ixrrZgw07Ifrk8a8hv4r0cIBwyEqxqG64I= Subject key identifier: 95:6F:54:0A:C1:B8:E6:D9:6D:4B:7E:08:56:E3:04:17:92:C5:D1:61 Certificate issuer: /CN=d6aa3fbc78e31229157c78b6d23a65eb2e353dce Certificate serial: 019B7BA5377B650829D50E9232DC59BA8F3B Authority key identifier: D6:AA:3F:BC:78:E3:12:29:15:7C:78:B6:D2:3A:65:EB:2E:35:3D:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/lW9UCsG45tltS34IVuMEF5LF0WE.roa Signing time: Thu 01 Jan 2026 22:19:43 +0000 ROA not before: Thu 01 Jan 2026 22:19:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55285 IP address blocks: 185.244.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/1qo_vHjjEikVfHi20jpl6y41Pc4.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/1qo_vHjjEikVfHi20jpl6y41Pc4.mft rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:37:7b:65:08:29:d5:0e:92:32:dc:59:ba:8f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d6aa3fbc78e31229157c78b6d23a65eb2e353dce Validity Not Before: Jan 1 22:19:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=956f540ac1b8e6d96d4b7e0856e3041792c5d161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:9e:7f:71:5e:d9:0e:4d:ca:2c:10:d9:36:d8: 03:cf:8d:cb:31:b4:96:68:e2:83:fd:51:5a:bc:85: ff:75:7f:b9:56:b4:07:27:ab:75:af:37:c4:48:5c: d4:f3:3a:ff:59:9e:71:27:46:9b:22:8e:da:02:16: ee:a9:5b:31:96:e4:14:2a:c4:f8:4c:6d:8b:71:c5: 2a:0f:e4:fb:82:e5:38:ed:25:3b:32:9f:16:e5:86: af:dd:84:67:a1:3e:18:11:52:5a:a9:73:ff:65:61: 7e:d3:9f:b0:69:b3:79:b1:67:ad:e3:27:5c:26:b1: 0a:c0:ee:db:22:28:93:28:bd:3b:9a:0c:b2:2e:ab: cc:7b:f8:c1:e3:cb:11:2d:34:fe:c7:3e:34:1e:68: 14:40:64:a0:c8:92:10:06:21:7f:96:cf:cd:26:86: f3:4e:54:51:b4:f7:08:32:1b:54:5d:52:b6:4a:27: fc:e1:70:f1:9f:0c:01:77:a8:36:2d:45:2d:6c:de: 59:93:ff:6d:95:22:9a:c6:f3:99:2c:ba:15:5a:4b: 05:b0:17:77:24:30:62:3f:7e:2c:cb:ad:7b:38:b4: 96:f2:60:b8:10:ba:34:a7:f2:20:78:6b:84:14:95: 8d:bd:12:41:fa:f9:23:b1:66:12:cd:73:76:88:8c: 26:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:6F:54:0A:C1:B8:E6:D9:6D:4B:7E:08:56:E3:04:17:92:C5:D1:61 X509v3 Authority Key Identifier: keyid:D6:AA:3F:BC:78:E3:12:29:15:7C:78:B6:D2:3A:65:EB:2E:35:3D:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/lW9UCsG45tltS34IVuMEF5LF0WE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/1qo_vHjjEikVfHi20jpl6y41Pc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.244.1.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:ba:a0:bc:23:79:6d:f7:73:78:1f:f1:80:8e:5d:84:16:d6: 9d:6b:f8:fd:83:71:69:9e:2e:4f:95:84:c7:7b:bb:b4:ab:77: b3:e7:1d:cc:41:09:f8:32:f4:fa:49:10:8f:ee:b9:0a:20:32: 74:43:fd:35:27:09:91:d9:f2:e2:c9:31:fd:69:e9:06:78:e2: 5c:d6:8d:b4:99:73:de:be:23:9a:19:9c:ed:96:db:80:8a:01: 8c:10:0e:1f:4f:de:ea:9e:df:f5:2c:6b:cb:3f:84:99:9d:5d: d2:20:89:fe:12:82:f0:e7:05:5c:ad:aa:c3:d2:8f:cb:ae:8b: 4a:38:e9:66:de:b0:d8:d0:7a:4a:cc:97:cf:b4:db:43:1f:b9: e9:96:5c:99:12:0f:f7:64:8d:2f:3c:2a:61:1f:00:bb:88:7c: af:1f:ab:80:d6:46:2f:56:5c:fc:b1:75:e2:43:ca:f5:b7:1f: 5a:97:f4:db:58:e3:3f:da:26:31:25:61:ee:85:13:48:fa:34: f6:6c:dc:7c:b0:06:e5:35:51:af:29:d7:cd:f8:aa:b8:72:ea: 2d:b7:1f:c1:67:01:1e:46:9f:92:6f:d4:c9:bf:55:2f:84:b1: d4:66:e6:bf:f8:18:16:5a:9b:61:3c:08:db:c0:d1:84:64:8b: 21:c8:a9:09 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pTd7ZQgp1Q6SMtxZuo87MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2YWEzZmJjNzhlMzEyMjkxNTdjNzhiNmQyM2E2NWViMmUz NTNkY2UwHhcNMjYwMTAxMjIxOTQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NTZmNTQwYWMxYjhlNmQ5NmQ0YjdlMDg1NmUzMDQxNzkyYzVkMTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+Z5/cV7ZDk3KLBDZNtgDz43LMbSW aOKD/VFavIX/dX+5VrQHJ6t1rzfESFzU8zr/WZ5xJ0abIo7aAhbuqVsxluQUKsT4 TG2LccUqD+T7guU47SU7Mp8W5Yav3YRnoT4YEVJaqXP/ZWF+05+wabN5sWet4ydc JrEKwO7bIiiTKL07mgyyLqvMe/jB48sRLTT+xz40HmgUQGSgyJIQBiF/ls/NJobz TlRRtPcIMhtUXVK2Sif84XDxnwwBd6g2LUUtbN5Zk/9tlSKaxvOZLLoVWksFsBd3 JDBiP34sy617OLSW8mC4ELo0p/IgeGuEFJWNvRJB+vkjsWYSzXN2iIwmpwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJVvVArBuObZbUt+CFbjBBeSxdFhMB8GA1UdIwQY MBaAFNaqP7x44xIpFXx4ttI6ZesuNT3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXFvX3ZIampFaWtWZkhpMjBqcGw2eTQxUGM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC82Y2Y4YmUtMjUzZC00NmQ1LWFiN2Mt ODI3NmM4YWFjNTBlLzEvbFc5VUNzRzQ1dGx0UzM0SVZ1TUVGNUxGMFdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC82Y2Y4YmUtMjUzZC00NmQ1LWFiN2MtODI3NmM4YWFjNTBl LzEvMXFvX3ZIampFaWtWZkhpMjBqcGw2eTQxUGM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufQBMA0G CSqGSIb3DQEBCwUAA4IBAQA+uqC8I3lt93N4H/GAjl2EFtada/j9g3Fpni5PlYTH e7u0q3ez5x3MQQn4MvT6SRCP7rkKIDJ0Q/01JwmR2fLiyTH9aekGeOJc1o20mXPe viOaGZztltuAigGMEA4fT97qnt/1LGvLP4SZnV3SIIn+EoLw5wVcrarD0o/LrotK OOlm3rDY0HpKzJfPtNtDH7npllyZEg/3ZI0vPCphHwC7iHyvH6uA1kYvVlz8sXXi Q8r1tx9al/TbWOM/2iYxJWHuhRNI+jT2bNx8sAblNVGvKdfN+Kq4cuottx/BZwEe Rp+Sb9TJv1UvhLHUZua/+BgWWpthPAjbwNGEZIshyKkJ -----END CERTIFICATE-----Generated at Wed Jan 21 01:07:59 2026 by rpki-client