This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/vU8wGLsdl9hwG15OClvZT-lRw7k.roa File: vU8wGLsdl9hwG15OClvZT-lRw7k.roa (raw, json) Hash identifier: IfJeWmbzTCTanQtLx6Swi85NrJu3wA9YDW9bngNXjE8= Subject key identifier: BD:4F:30:18:BB:1D:97:D8:70:1B:5E:4E:0A:5B:D9:4F:E9:51:C3:B9 Certificate issuer: /CN=d6aa3fbc78e31229157c78b6d23a65eb2e353dce Certificate serial: 019B7BA532B5085608C8C8A8F83E827E95A6 Authority key identifier: D6:AA:3F:BC:78:E3:12:29:15:7C:78:B6:D2:3A:65:EB:2E:35:3D:CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/vU8wGLsdl9hwG15OClvZT-lRw7k.roa Signing time: Thu 01 Jan 2026 22:19:42 +0000 ROA not before: Thu 01 Jan 2026 22:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 5065 IP address blocks: 185.244.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/1qo_vHjjEikVfHi20jpl6y41Pc4.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/1qo_vHjjEikVfHi20jpl6y41Pc4.mft rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 03:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:32:b5:08:56:08:c8:c8:a8:f8:3e:82:7e:95:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d6aa3fbc78e31229157c78b6d23a65eb2e353dce Validity Not Before: Jan 1 22:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd4f3018bb1d97d8701b5e4e0a5bd94fe951c3b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ca:d3:4c:5c:4a:bb:4b:99:0e:4e:db:59:90: a8:b2:02:cf:90:48:14:00:60:ee:4c:28:b1:d1:90: 2b:b9:56:7c:c8:bf:c4:46:18:c5:b3:53:f4:d6:90: 4c:54:50:cc:62:df:37:a9:ac:47:0c:0f:39:cb:f1: 9d:f9:2b:ea:4d:80:99:62:53:84:09:8a:22:2d:77: 50:1d:cb:cf:37:f0:a4:dc:2c:4c:9e:e1:63:ab:25: 65:20:bb:c9:37:e7:35:a9:27:ca:7a:11:4d:85:fe: 52:0a:d2:62:2a:42:4a:d8:f0:39:f9:80:7c:4f:8c: bc:45:47:63:0a:68:39:b9:a0:8b:da:7b:fe:9d:a4: 30:11:4a:86:e7:eb:df:e2:15:65:a3:d9:f2:de:35: 76:41:a0:e0:a7:69:1e:aa:ed:ba:ca:91:f8:37:bc: 6a:b0:02:51:dd:0e:08:8e:c9:46:0a:67:01:bb:9b: 09:03:0a:f0:81:c4:49:8b:a6:fc:77:64:0c:25:3e: 4e:df:dc:89:be:40:43:f0:66:9a:79:0d:0e:25:3b: 0a:66:88:ed:48:ec:53:ff:b9:03:49:17:ae:40:4c: ba:af:ff:25:6d:f6:49:1b:75:d6:19:50:bf:94:56: b1:98:43:f2:96:44:e8:81:9e:b4:84:d8:8c:98:d1: 38:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4F:30:18:BB:1D:97:D8:70:1B:5E:4E:0A:5B:D9:4F:E9:51:C3:B9 X509v3 Authority Key Identifier: keyid:D6:AA:3F:BC:78:E3:12:29:15:7C:78:B6:D2:3A:65:EB:2E:35:3D:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/vU8wGLsdl9hwG15OClvZT-lRw7k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/1qo_vHjjEikVfHi20jpl6y41Pc4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.244.2.0/24 Signature Algorithm: sha256WithRSAEncryption cc:c3:3a:5c:b6:f0:4e:bb:79:a2:ea:f2:71:67:9c:cd:55:ba: 3b:b3:f5:a2:db:37:50:c4:ee:64:fd:eb:82:3e:08:e4:14:28: 06:fd:d7:ad:61:14:ab:fb:d8:61:78:5a:70:b7:5c:49:f6:79: 14:c7:de:a6:13:3f:dc:1a:82:fa:75:7e:d6:18:b9:74:55:57: 6d:a7:64:f2:f9:41:ed:d6:03:64:6b:38:64:18:5f:16:ca:38: 8d:c3:8e:8a:00:b8:c4:f8:7c:07:42:b7:cc:64:08:c0:a7:95: 7f:b6:3e:ad:a4:c3:c0:72:d2:8c:bc:37:6b:57:e7:03:18:cd: 2a:ce:72:1f:66:57:a3:75:f6:a7:57:8c:7a:af:1f:23:31:8c: 38:6c:ca:5f:90:c8:a7:a1:e1:be:7b:ea:63:38:ad:ae:96:1a: 4c:42:4e:48:46:28:1d:57:03:c1:a6:fc:c6:a3:31:8f:a6:62: 1f:a0:51:8c:a2:a9:da:93:96:8a:14:a6:b9:bf:be:3f:80:cc: 5c:cd:35:2c:fe:7d:09:a6:f3:09:86:7f:7a:b5:19:8b:32:04: bf:b0:7e:d8:f3:6d:b8:27:48:86:03:30:22:d9:73:dc:f9:dc: 0d:c8:d3:6e:bd:3b:57:39:89:73:c3:77:aa:9a:9d:9a:9a:e5: d9:6e:e4:12 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pTK1CFYIyMio+D6CfpWmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ2YWEzZmJjNzhlMzEyMjkxNTdjNzhiNmQyM2E2NWViMmUz NTNkY2UwHhcNMjYwMTAxMjIxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDRmMzAxOGJiMWQ5N2Q4NzAxYjVlNGUwYTViZDk0ZmU5NTFjM2I5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv8rTTFxKu0uZDk7bWZCosgLPkEgU AGDuTCix0ZAruVZ8yL/ERhjFs1P01pBMVFDMYt83qaxHDA85y/Gd+SvqTYCZYlOE CYoiLXdQHcvPN/Ck3CxMnuFjqyVlILvJN+c1qSfKehFNhf5SCtJiKkJK2PA5+YB8 T4y8RUdjCmg5uaCL2nv+naQwEUqG5+vf4hVlo9ny3jV2QaDgp2kequ26ypH4N7xq sAJR3Q4IjslGCmcBu5sJAwrwgcRJi6b8d2QMJT5O39yJvkBD8GaaeQ0OJTsKZojt SOxT/7kDSReuQEy6r/8lbfZJG3XWGVC/lFaxmEPylkTogZ60hNiMmNE4AQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFL1PMBi7HZfYcBteTgpb2U/pUcO5MB8GA1UdIwQY MBaAFNaqP7x44xIpFXx4ttI6ZesuNT3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMXFvX3ZIampFaWtWZkhpMjBqcGw2eTQxUGM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC82Y2Y4YmUtMjUzZC00NmQ1LWFiN2Mt ODI3NmM4YWFjNTBlLzEvdlU4d0dMc2RsOWh3RzE1T0NsdlpULWxSdzdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC82Y2Y4YmUtMjUzZC00NmQ1LWFiN2MtODI3NmM4YWFjNTBl LzEvMXFvX3ZIampFaWtWZkhpMjBqcGw2eTQxUGM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufQCMA0G CSqGSIb3DQEBCwUAA4IBAQDMwzpctvBOu3mi6vJxZ5zNVbo7s/Wi2zdQxO5k/euC PgjkFCgG/detYRSr+9hheFpwt1xJ9nkUx96mEz/cGoL6dX7WGLl0VVdtp2Ty+UHt 1gNkazhkGF8WyjiNw46KALjE+HwHQrfMZAjAp5V/tj6tpMPActKMvDdrV+cDGM0q znIfZlejdfanV4x6rx8jMYw4bMpfkMinoeG+e+pjOK2ulhpMQk5IRigdVwPBpvzG ozGPpmIfoFGMoqnak5aKFKa5v74/gMxczTUs/n0JpvMJhn96tRmLMgS/sH7Y8224 J0iGAzAi2XPc+dwNyNNuvTtXOYlzw3eqmp2amuXZbuQS -----END CERTIFICATE-----Generated at Mon Jan 19 11:25:06 2026 by rpki-client