This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/0Pq36fP0rC1fzqyjIorKezwT3Ks.roa File: 0Pq36fP0rC1fzqyjIorKezwT3Ks.roa (raw, json) Hash identifier: dllDxW7EawsRJQisja+Kp8vtMJG3Yv6zQpQ2IHmwM8c= Subject key identifier: D0:FA:B7:E9:F3:F4:AC:2D:5F:CE:AC:A3:22:8A:CA:7B:3C:13:DC:AB Certificate issuer: /CN=d922d8d45f985dc3896c9176a7d48d7658cb4f68 Certificate serial: 019B7CEDEB2150C803DBF102411F6A05AC2B Authority key identifier: D9:22:D8:D4:5F:98:5D:C3:89:6C:91:76:A7:D4:8D:76:58:CB:4F:68 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2SLY1F-YXcOJbJF2p9SNdljLT2g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/0Pq36fP0rC1fzqyjIorKezwT3Ks.roa Signing time: Fri 02 Jan 2026 04:18:45 +0000 ROA not before: Fri 02 Jan 2026 04:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39500 IP address blocks: 185.154.68.0/24 maxlen: 24 185.154.69.0/24 maxlen: 24 185.154.70.0/24 maxlen: 24 193.47.191.0/24 maxlen: 24 2001:67c:1f4::/48 maxlen: 48 2a07:7f40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/2SLY1F-YXcOJbJF2p9SNdljLT2g.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/2SLY1F-YXcOJbJF2p9SNdljLT2g.mft rsync://rpki.ripe.net/repository/DEFAULT/2SLY1F-YXcOJbJF2p9SNdljLT2g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:eb:21:50:c8:03:db:f1:02:41:1f:6a:05:ac:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d922d8d45f985dc3896c9176a7d48d7658cb4f68 Validity Not Before: Jan 2 04:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0fab7e9f3f4ac2d5fceaca3228aca7b3c13dcab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:24:c6:f6:79:1c:f7:93:ec:66:3b:0b:3a:67: 2c:af:fc:2f:cf:76:94:1a:5b:90:6b:44:74:1b:18: 3a:16:8e:d9:19:57:e0:7e:af:e4:ab:aa:39:00:e9: 45:22:f9:ae:56:75:55:d8:b7:79:49:37:d4:de:0f: 52:d1:55:8e:98:5c:4e:0e:99:ef:7d:28:36:6b:88: cf:f7:19:2d:d1:27:a9:77:c8:d4:36:e9:71:01:84: 69:2c:07:4c:23:28:2e:90:75:88:23:4b:27:fa:9a: 9a:43:3e:f3:86:4f:fe:18:27:f9:a6:26:38:e3:f0: c1:fb:47:46:f7:d7:8c:c1:cf:e8:7c:f7:33:47:de: b5:a9:4d:37:53:61:eb:82:4c:61:a6:57:37:c5:02: 9f:66:e8:4b:aa:e5:8a:32:cf:73:4f:9d:39:a6:aa: c1:f3:89:62:98:55:ed:40:56:dd:26:ea:a3:94:26: 02:33:4d:82:55:e5:aa:c8:62:f9:4e:9f:a9:30:52: 87:8f:fa:33:b4:15:b6:2f:36:36:8e:c8:7e:46:2d: 41:9d:52:8f:55:1b:c2:29:38:86:2b:fb:41:61:67: e0:97:1f:50:5f:d2:95:c1:94:4d:2a:ae:ee:ef:df: d4:43:15:0a:c6:d2:95:f3:d5:e6:1e:d4:72:a4:f7: b7:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FA:B7:E9:F3:F4:AC:2D:5F:CE:AC:A3:22:8A:CA:7B:3C:13:DC:AB X509v3 Authority Key Identifier: keyid:D9:22:D8:D4:5F:98:5D:C3:89:6C:91:76:A7:D4:8D:76:58:CB:4F:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2SLY1F-YXcOJbJF2p9SNdljLT2g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/0Pq36fP0rC1fzqyjIorKezwT3Ks.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/9002e2-dc04-4c39-9235-54d5d04e346d/1/2SLY1F-YXcOJbJF2p9SNdljLT2g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.154.68.0-185.154.70.255 193.47.191.0/24 IPv6: 2001:67c:1f4::/48 2a07:7f40::/29 Signature Algorithm: sha256WithRSAEncryption 50:39:d1:28:97:c1:71:0b:c2:6c:8e:0b:df:54:59:bb:c6:83: 7a:9a:5a:8f:a0:52:34:94:5f:bf:39:3b:73:31:a0:da:b9:0b: 6b:bd:f9:87:1c:98:f1:9a:cc:e4:c7:7e:53:c7:ef:34:d6:1b: cb:be:3c:ab:77:71:9b:6e:52:6e:2a:53:b0:fb:7c:27:26:54: aa:03:d0:0c:15:e9:d2:1b:51:fb:f8:8e:5f:7f:40:e7:d7:fc: 1a:77:fc:a6:c3:11:8d:38:59:93:f5:41:0a:45:a5:9e:63:01: 2c:16:f2:de:fc:a3:66:7d:ff:3a:ce:f2:6a:3b:04:6a:3b:57: 4b:0d:80:85:e7:19:21:85:15:5d:07:2a:69:06:b7:32:de:86: 25:00:de:c5:c7:cb:93:bf:61:a1:a9:82:1c:5b:49:50:64:19: 1f:c7:7c:5b:9b:6b:72:e3:1c:4d:45:2f:79:82:58:0b:66:43: c6:d0:11:f8:aa:43:59:cf:7a:97:10:f3:70:4c:55:7d:f8:3b: 1f:23:82:76:96:c5:02:c4:ce:55:24:1c:4f:43:b3:85:78:0d: e1:f2:a1:34:c7:a8:8f:11:95:52:9f:56:14:71:90:14:be:bb: d6:ed:f5:59:a9:86:f3:62:47:39:d1:02:1b:ac:b6:db:10:1a: d4:ef:16:53 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZt87eshUMgD2/ECQR9qBawrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5MjJkOGQ0NWY5ODVkYzM4OTZjOTE3NmE3ZDQ4ZDc2NThj YjRmNjgwHhcNMjYwMTAyMDQxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMGZhYjdlOWYzZjRhYzJkNWZjZWFjYTMyMjhhY2E3YjNjMTNkY2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjCTG9nkc95PsZjsLOmcsr/wvz3aU GluQa0R0Gxg6Fo7ZGVfgfq/kq6o5AOlFIvmuVnVV2Ld5STfU3g9S0VWOmFxODpnv fSg2a4jP9xkt0Sepd8jUNulxAYRpLAdMIygukHWII0sn+pqaQz7zhk/+GCf5piY4 4/DB+0dG99eMwc/ofPczR961qU03U2Hrgkxhplc3xQKfZuhLquWKMs9zT505pqrB 84limFXtQFbdJuqjlCYCM02CVeWqyGL5Tp+pMFKHj/oztBW2LzY2jsh+Ri1BnVKP VRvCKTiGK/tBYWfglx9QX9KVwZRNKq7u79/UQxUKxtKV89XmHtRypPe3mQIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFND6t+nz9KwtX86soyKKyns8E9yrMB8GA1UdIwQY MBaAFNki2NRfmF3DiWyRdqfUjXZYy09oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlNMWTFGLVlYY09KYkpGMnA5U05kbGpMVDJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC85MDAyZTItZGMwNC00YzM5LTkyMzUt NTRkNWQwNGUzNDZkLzEvMFBxMzZmUDByQzFmenF5aklvcktlendUM0tzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC85MDAyZTItZGMwNC00YzM5LTkyMzUtNTRkNWQwNGUzNDZk LzEvMlNMWTFGLVlYY09KYkpGMnA5U05kbGpMVDJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAaBAIAATAUMAwDBAK5mkQD BAC5mkYDBADBL78wFgQCAAIwEAMHACABBnwB9AMFAyoHf0AwDQYJKoZIhvcNAQEL BQADggEBAFA50SiXwXELwmyOC99UWbvGg3qaWo+gUjSUX785O3MxoNq5C2u9+Ycc mPGazOTHflPH7zTWG8u+PKt3cZtuUm4qU7D7fCcmVKoD0AwV6dIbUfv4jl9/QOfX /Bp3/KbDEY04WZP1QQpFpZ5jASwW8t78o2Z9/zrO8mo7BGo7V0sNgIXnGSGFFV0H KmkGtzLehiUA3sXHy5O/YaGpghxbSVBkGR/HfFuba3LjHE1FL3mCWAtmQ8bQEfiq Q1nPepcQ83BMVX34Ox8jgnaWxQLEzlUkHE9Ds4V4DeHyoTTHqI8RlVKfVhRxkBS+ u9bt9VmphvNiRznRAhusttsQGtTvFlM= -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:34 2026 by rpki-client