This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/01ebc2-84d0-4ae3-a2c2-a3b6be4a9e9b/1/c8rdVYuNpflJD29KauvVYvS5wQA.roa File: c8rdVYuNpflJD29KauvVYvS5wQA.roa (raw, json) Hash identifier: bC9GRMHN9BrtnveTDOEwyMbzEqZzFN4CkCTMBFjErAc= Subject key identifier: 73:CA:DD:55:8B:8D:A5:F9:49:0F:6F:4A:6A:EB:D5:62:F4:B9:C1:00 Certificate issuer: /CN=c0fbd5876613edc56e0f5de468cce5eb2885ff29 Certificate serial: 019B7F1549316ACC1A0692EBF393982152A6 Authority key identifier: C0:FB:D5:87:66:13:ED:C5:6E:0F:5D:E4:68:CC:E5:EB:28:85:FF:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wPvVh2YT7cVuD13kaMzl6yiF_yk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/01ebc2-84d0-4ae3-a2c2-a3b6be4a9e9b/1/c8rdVYuNpflJD29KauvVYvS5wQA.roa Signing time: Fri 02 Jan 2026 14:21:00 +0000 ROA not before: Fri 02 Jan 2026 14:21:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 46484 IP address blocks: 185.212.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/01ebc2-84d0-4ae3-a2c2-a3b6be4a9e9b/1/wPvVh2YT7cVuD13kaMzl6yiF_yk.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/01ebc2-84d0-4ae3-a2c2-a3b6be4a9e9b/1/wPvVh2YT7cVuD13kaMzl6yiF_yk.mft rsync://rpki.ripe.net/repository/DEFAULT/wPvVh2YT7cVuD13kaMzl6yiF_yk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:49:31:6a:cc:1a:06:92:eb:f3:93:98:21:52:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c0fbd5876613edc56e0f5de468cce5eb2885ff29 Validity Not Before: Jan 2 14:21:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=73cadd558b8da5f9490f6f4a6aebd562f4b9c100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:b4:64:c2:60:ab:a0:a8:d6:58:3d:25:53: 11:df:20:4b:e5:6d:d1:9c:ce:2d:30:2a:7a:6f:bd: 7b:38:e1:b7:85:b0:5b:a3:13:82:65:51:cf:1d:f8: 87:4c:24:12:3f:01:77:9b:c0:e5:23:e3:d7:ba:f9: 44:0d:59:1d:d1:b3:4c:69:c3:4b:b2:83:37:83:08: 84:4d:a8:da:fa:f8:77:63:09:a5:38:39:e0:c3:d3: 42:6b:90:bc:df:75:df:c4:cc:cc:20:81:13:6a:cb: 4a:1d:7b:5f:68:cf:83:af:7d:f1:f7:a8:1e:a0:2a: f5:7b:83:39:d3:10:75:07:87:ae:d2:0d:42:d1:9a: 37:ea:6b:c9:4e:28:9b:35:d3:d5:53:6c:4a:67:86: 5a:0a:2d:2d:19:1f:47:cf:c1:8c:70:19:b9:b4:99: 1f:31:38:8e:e1:ad:06:20:77:0d:46:a7:55:59:d8: 74:cc:37:ef:11:c7:24:fe:8f:97:c1:a9:4c:45:e6: 86:64:46:f9:60:8c:f8:f9:5b:93:3c:ba:42:b8:59: 80:78:5a:7b:38:e0:ac:2e:b6:05:20:f5:24:1b:02: 0b:6e:d3:ce:69:21:e8:9a:0c:83:e1:23:17:b4:d4: 8a:fa:1d:a9:ed:1f:87:76:4f:8d:75:9d:15:c3:aa: 5b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:CA:DD:55:8B:8D:A5:F9:49:0F:6F:4A:6A:EB:D5:62:F4:B9:C1:00 X509v3 Authority Key Identifier: keyid:C0:FB:D5:87:66:13:ED:C5:6E:0F:5D:E4:68:CC:E5:EB:28:85:FF:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wPvVh2YT7cVuD13kaMzl6yiF_yk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/01ebc2-84d0-4ae3-a2c2-a3b6be4a9e9b/1/c8rdVYuNpflJD29KauvVYvS5wQA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/01ebc2-84d0-4ae3-a2c2-a3b6be4a9e9b/1/wPvVh2YT7cVuD13kaMzl6yiF_yk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.212.104.0/24 Signature Algorithm: sha256WithRSAEncryption 86:17:cd:dc:ad:13:5d:b7:3a:c0:1f:5c:db:6c:8e:07:02:fa: e6:62:67:dd:d3:48:8e:92:0f:97:64:8f:d7:61:7d:90:22:bc: 1f:52:1e:0b:5f:3e:b8:26:9c:db:f5:99:d8:59:9b:5b:8f:e2: 93:a2:73:65:26:7d:43:72:68:e8:fa:d1:86:01:70:87:57:a9: dd:7a:7a:05:89:03:83:46:bd:0d:43:c3:03:39:46:68:dc:da: 37:fa:f8:33:76:3f:ed:3c:5c:f6:a8:5a:a1:15:45:d5:76:d0: e5:f3:86:eb:18:24:21:23:b3:8d:67:1b:5e:99:d2:1c:6f:6b: 21:b5:5e:7f:97:4b:63:94:63:f2:7b:49:25:a2:a1:97:59:78: 16:e1:e2:3a:63:32:2f:5b:18:70:e6:89:83:22:f9:80:b9:89: c3:18:65:5f:95:17:d5:1c:9a:50:2a:f2:e0:31:3b:73:ba:ad: 0c:3d:9c:5e:7c:05:f8:e0:44:25:b1:40:04:27:82:b1:f6:88: df:48:73:f5:ec:b4:12:1b:72:a1:41:2f:ff:1b:19:05:c1:da: ed:1e:98:13:d2:2d:98:d5:54:58:af:2c:00:50:c5:fb:cf:5e: ec:b9:02:7a:a8:3b:5a:a0:f5:5d:bc:dd:44:eb:aa:34:ab:a9: 01:3b:b1:f9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FUkxaswaBpLr85OYIVKmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwZmJkNTg3NjYxM2VkYzU2ZTBmNWRlNDY4Y2NlNWViMjg4 NWZmMjkwHhcNMjYwMTAyMTQyMTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3M2NhZGQ1NThiOGRhNWY5NDkwZjZmNGE2YWViZDU2MmY0YjljMTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7O0ZMJgq6Co1lg9JVMR3yBL5W3R nM4tMCp6b717OOG3hbBboxOCZVHPHfiHTCQSPwF3m8DlI+PXuvlEDVkd0bNMacNL soM3gwiETaja+vh3YwmlODngw9NCa5C833XfxMzMIIETastKHXtfaM+Dr33x96ge oCr1e4M50xB1B4eu0g1C0Zo36mvJTiibNdPVU2xKZ4ZaCi0tGR9Hz8GMcBm5tJkf MTiO4a0GIHcNRqdVWdh0zDfvEcck/o+XwalMReaGZEb5YIz4+VuTPLpCuFmAeFp7 OOCsLrYFIPUkGwILbtPOaSHomgyD4SMXtNSK+h2p7R+Hdk+NdZ0Vw6pbdwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHPK3VWLjaX5SQ9vSmrr1WL0ucEAMB8GA1UdIwQY MBaAFMD71YdmE+3Fbg9d5GjM5esohf8pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd1B2VmgyWVQ3Y1Z1RDEza2FNemw2eWlGX3lrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS8wMWViYzItODRkMC00YWUzLWEyYzIt YTNiNmJlNGE5ZTliLzEvYzhyZFZZdU5wZmxKRDI5S2F1dlZZdlM1d1FBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS8wMWViYzItODRkMC00YWUzLWEyYzItYTNiNmJlNGE5ZTli LzEvd1B2VmgyWVQ3Y1Z1RDEza2FNemw2eWlGX3lrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudRoMA0G CSqGSIb3DQEBCwUAA4IBAQCGF83crRNdtzrAH1zbbI4HAvrmYmfd00iOkg+XZI/X YX2QIrwfUh4LXz64Jpzb9ZnYWZtbj+KTonNlJn1Dcmjo+tGGAXCHV6ndenoFiQOD Rr0NQ8MDOUZo3No3+vgzdj/tPFz2qFqhFUXVdtDl84brGCQhI7ONZxtemdIcb2sh tV5/l0tjlGPye0kloqGXWXgW4eI6YzIvWxhw5omDIvmAuYnDGGVflRfVHJpQKvLg MTtzuq0MPZxefAX44EQlsUAEJ4Kx9ojfSHP17LQSG3KhQS//GxkFwdrtHpgT0i2Y 1VRYrywAUMX7z17suQJ6qDtaoPVdvN1E66o0q6kBO7H5 -----END CERTIFICATE-----Generated at Mon Jan 12 01:03:09 2026 by rpki-client