This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/pbc8FOs2r0cKcmP0E7zfMwoAuYY.roa File: pbc8FOs2r0cKcmP0E7zfMwoAuYY.roa (raw, json) Hash identifier: ct93H+RGleD4usNSOMWfcCTKS9VgX/zLNOdAP8LEHt8= Subject key identifier: A5:B7:3C:14:EB:36:AF:47:0A:72:63:F4:13:BC:DF:33:0A:00:B9:86 Certificate issuer: /CN=8a31f8bea33b0056446e3321eede3a170fbd7c1f Certificate serial: 019B7E376C4EC88BA081C2F77711D4E461ED Authority key identifier: 8A:31:F8:BE:A3:3B:00:56:44:6E:33:21:EE:DE:3A:17:0F:BD:7C:1F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/pbc8FOs2r0cKcmP0E7zfMwoAuYY.roa Signing time: Fri 02 Jan 2026 10:18:39 +0000 ROA not before: Fri 02 Jan 2026 10:18:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198370 IP address blocks: 37.18.184.0/24 maxlen: 24 37.18.186.0/24 maxlen: 24 37.18.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/ijH4vqM7AFZEbjMh7t46Fw-9fB8.crl rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/ijH4vqM7AFZEbjMh7t46Fw-9fB8.mft rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:6c:4e:c8:8b:a0:81:c2:f7:77:11:d4:e4:61:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a31f8bea33b0056446e3321eede3a170fbd7c1f Validity Not Before: Jan 2 10:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a5b73c14eb36af470a7263f413bcdf330a00b986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:41:3b:19:73:7d:9b:e1:0b:e2:20:80:83:da: 6c:4d:7d:c3:bb:f6:b5:d0:bc:ba:f2:68:d2:69:85: cc:c3:d1:73:6d:04:fd:95:9a:9c:08:0b:dd:db:72: 5c:8b:9e:91:f1:ca:87:a1:20:c6:87:69:79:ac:29: a4:03:c0:57:16:c3:2b:19:7b:29:cc:43:4b:09:a0: ef:3e:05:98:45:7b:fd:0c:e6:34:6e:20:24:aa:aa: ab:1e:5d:86:85:63:96:10:2a:2e:9f:80:50:8b:eb: 6c:c9:e9:5d:97:03:b0:ea:83:c0:d7:17:ab:e2:5b: 26:96:25:5a:f1:ca:94:b7:eb:3c:2d:34:84:72:d0: 51:e4:db:b9:ad:30:1c:8c:c7:8a:4f:eb:10:06:72: 43:bc:39:e9:77:33:2b:58:ab:5c:4f:af:b1:66:12: d6:aa:e8:10:cc:25:c4:c7:a9:2e:87:f2:4a:4c:ef: cc:6b:16:a3:55:da:36:f8:9a:30:4d:c1:1c:59:4b: 71:95:85:2f:bb:e6:74:23:74:eb:3b:d6:96:af:fa: 3a:38:e0:f3:d8:89:4e:36:e5:16:bc:0e:57:f3:5e: c0:25:d2:7c:d5:d3:2e:c6:a0:d1:48:18:57:32:a6: ed:91:46:ed:2a:c9:dc:db:31:78:0e:4f:f6:1e:53: e2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B7:3C:14:EB:36:AF:47:0A:72:63:F4:13:BC:DF:33:0A:00:B9:86 X509v3 Authority Key Identifier: keyid:8A:31:F8:BE:A3:3B:00:56:44:6E:33:21:EE:DE:3A:17:0F:BD:7C:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ijH4vqM7AFZEbjMh7t46Fw-9fB8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/pbc8FOs2r0cKcmP0E7zfMwoAuYY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/60fc0d-0eb9-424c-a630-9a5c73bffa23/1/ijH4vqM7AFZEbjMh7t46Fw-9fB8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.18.184.0/24 37.18.186.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:8b:08:52:d9:0a:8a:6f:50:4a:e8:48:57:e6:3e:6c:36:8b: b7:92:9f:00:3a:0c:a0:52:fa:b2:31:90:63:86:bb:e1:63:e5: d6:70:9b:3d:7b:b2:8c:7d:5c:a4:8c:0f:44:27:97:d6:f8:17: 15:62:3f:a1:b5:22:00:18:ca:81:46:ad:a7:27:e9:6d:71:1f: c7:04:a7:ea:86:28:85:1a:17:44:17:cc:75:0f:02:5a:84:7f: 8c:81:06:b3:e0:f7:9e:71:84:49:46:34:84:6d:5d:0a:23:f7: 5b:bd:7c:71:df:db:fe:db:23:34:68:bd:3a:a1:82:ac:0f:fa: 79:a1:6d:76:4d:9a:46:62:67:0f:ac:f5:99:15:13:dc:9b:5f: 34:7a:6d:e9:1c:b9:8f:da:f0:5d:5f:33:8a:c8:f7:48:eb:68: 55:a7:c4:ed:58:04:f6:d2:12:86:78:85:f3:4d:0c:48:54:4b: 9d:e3:9f:b0:ea:81:f2:62:8f:e7:dd:69:49:a3:bd:28:2f:5d: 85:a2:f6:31:ac:f8:fd:df:c4:15:eb:c9:a8:bb:e7:c7:92:2f: db:b0:d2:27:5f:23:3c:a9:78:74:23:51:7f:7e:63:0b:a3:6a: 16:62:f1:5b:4e:dc:9a:09:25:9d:a7:85:05:6b:ac:45:24:b5: 55:a0:a5:e9 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt+N2xOyIuggcL3dxHU5GHtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMzFmOGJlYTMzYjAwNTY0NDZlMzMyMWVlZGUzYTE3MGZi ZDdjMWYwHhcNMjYwMTAyMTAxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNWI3M2MxNGViMzZhZjQ3MGE3MjYzZjQxM2JjZGYzMzBhMDBiOTg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqUE7GXN9m+EL4iCAg9psTX3Du/a1 0Ly68mjSaYXMw9FzbQT9lZqcCAvd23Jci56R8cqHoSDGh2l5rCmkA8BXFsMrGXsp zENLCaDvPgWYRXv9DOY0biAkqqqrHl2GhWOWECoun4BQi+tsyeldlwOw6oPA1xer 4lsmliVa8cqUt+s8LTSEctBR5Nu5rTAcjMeKT+sQBnJDvDnpdzMrWKtcT6+xZhLW qugQzCXEx6kuh/JKTO/MaxajVdo2+JowTcEcWUtxlYUvu+Z0I3TrO9aWr/o6OODz 2IlONuUWvA5X817AJdJ81dMuxqDRSBhXMqbtkUbtKsnc2zF4Dk/2HlPigQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFKW3PBTrNq9HCnJj9BO83zMKALmGMB8GA1UdIwQY MBaAFIox+L6jOwBWRG4zIe7eOhcPvXwfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWpINHZxTTdBRlpFYmpNaDd0NDZGdy05ZkI4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC82MGZjMGQtMGViOS00MjRjLWE2MzAt OWE1YzczYmZmYTIzLzEvcGJjOEZPczJyMGNLY21QMEU3emZNd29BdVlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMC82MGZjMGQtMGViOS00MjRjLWE2MzAtOWE1YzczYmZmYTIz LzEvaWpINHZxTTdBRlpFYmpNaDd0NDZGdy05ZkI4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAJRK4AwQB JRK6MA0GCSqGSIb3DQEBCwUAA4IBAQCMiwhS2QqKb1BK6EhX5j5sNou3kp8AOgyg UvqyMZBjhrvhY+XWcJs9e7KMfVykjA9EJ5fW+BcVYj+htSIAGMqBRq2nJ+ltcR/H BKfqhiiFGhdEF8x1DwJahH+MgQaz4PeecYRJRjSEbV0KI/dbvXxx39v+2yM0aL06 oYKsD/p5oW12TZpGYmcPrPWZFRPcm180em3pHLmP2vBdXzOKyPdI62hVp8TtWAT2 0hKGeIXzTQxIVEud45+w6oHyYo/n3WlJo70oL12FovYxrPj938QV68mou+fHki/b sNInXyM8qXh0I1F/fmMLo2oWYvFbTtyaCSWdp4UFa6xFJLVVoKXp -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:50 2026 by rpki-client