This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/24cab4-0125-4383-85fa-3d388606da12/1/8AM52ao9n7ZIIGEzs-8YgbfhwPQ.roa File: 8AM52ao9n7ZIIGEzs-8YgbfhwPQ.roa (raw, json) Hash identifier: lYKzKODJEnnDJ+KgMuq1pi/8YZEFtPtdvl7coiYrhQE= Subject key identifier: F0:03:39:D9:AA:3D:9F:B6:48:20:61:33:B3:EF:18:81:B7:E1:C0:F4 Certificate issuer: /CN=e5a83b40b3f4d7d31fb3368dafaca1199a449892 Certificate serial: 019B7F836E65B00EEBD0F384914A697748D9 Authority key identifier: E5:A8:3B:40:B3:F4:D7:D3:1F:B3:36:8D:AF:AC:A1:19:9A:44:98:92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ag7QLP019MfszaNr6yhGZpEmJI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/24cab4-0125-4383-85fa-3d388606da12/1/8AM52ao9n7ZIIGEzs-8YgbfhwPQ.roa Signing time: Fri 02 Jan 2026 16:21:18 +0000 ROA not before: Fri 02 Jan 2026 16:21:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47857 IP address blocks: 185.25.8.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/24cab4-0125-4383-85fa-3d388606da12/1/5ag7QLP019MfszaNr6yhGZpEmJI.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/24cab4-0125-4383-85fa-3d388606da12/1/5ag7QLP019MfszaNr6yhGZpEmJI.mft rsync://rpki.ripe.net/repository/DEFAULT/5ag7QLP019MfszaNr6yhGZpEmJI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:6e:65:b0:0e:eb:d0:f3:84:91:4a:69:77:48:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5a83b40b3f4d7d31fb3368dafaca1199a449892 Validity Not Before: Jan 2 16:21:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f00339d9aa3d9fb648206133b3ef1881b7e1c0f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:88:ba:87:e2:af:61:40:a4:d5:7d:02:c8:a6: 9e:c5:f9:54:07:a7:d2:5d:b1:74:5e:6b:56:7f:12: 14:eb:84:af:5d:0e:3a:9c:26:0f:14:93:1d:17:b4: 9b:8f:fd:1d:a4:07:b9:76:ba:34:54:ce:b4:de:61: b6:47:af:74:b7:53:6c:28:69:86:1a:26:53:ac:e8: bb:48:35:cb:ef:31:ac:a9:45:ef:6a:94:19:c6:be: 4c:cc:9b:73:0c:3d:d9:f5:dd:bb:dc:da:01:ea:57: 61:53:16:c7:5a:62:23:72:a9:fc:ff:45:aa:bd:c5: 28:d3:6a:67:96:af:3b:2c:29:ec:fb:7b:c0:42:9e: 4d:06:9f:5c:5b:f4:28:d9:41:97:dd:41:23:a9:c5: fb:f1:c8:21:f8:21:d4:b1:f0:40:5b:29:e7:a9:e0: 13:18:10:23:94:fd:de:4a:cf:a5:d1:6f:d3:a1:69: ef:27:71:11:68:d2:20:aa:9f:44:92:59:5d:d8:1f: ae:df:b2:bc:a5:ce:f8:38:82:6f:fd:40:56:89:0c: 14:d2:a0:46:e8:80:bc:c2:cc:29:e4:2f:94:98:04: 53:d3:ae:af:c3:6a:bf:fe:91:57:b1:59:80:0f:0f: f8:31:3f:78:11:ee:22:70:a0:fc:4b:b1:aa:fe:d7: b1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:03:39:D9:AA:3D:9F:B6:48:20:61:33:B3:EF:18:81:B7:E1:C0:F4 X509v3 Authority Key Identifier: keyid:E5:A8:3B:40:B3:F4:D7:D3:1F:B3:36:8D:AF:AC:A1:19:9A:44:98:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ag7QLP019MfszaNr6yhGZpEmJI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/24cab4-0125-4383-85fa-3d388606da12/1/8AM52ao9n7ZIIGEzs-8YgbfhwPQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/24cab4-0125-4383-85fa-3d388606da12/1/5ag7QLP019MfszaNr6yhGZpEmJI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.25.8.0/24 Signature Algorithm: sha256WithRSAEncryption 88:cb:21:d8:70:bc:04:43:83:70:af:62:0d:9a:db:81:2f:aa: cd:c1:d1:e3:8c:40:3a:a8:06:f0:32:a6:a3:3e:8c:ca:17:c3: 4b:b6:77:51:99:a5:8c:17:41:d7:83:95:50:08:21:e5:30:9e: 81:1e:cd:b3:30:53:02:34:99:f2:47:bc:a1:3c:c5:df:7a:de: 64:d2:4f:27:f9:06:ad:c5:aa:9d:9f:96:b9:cf:32:04:95:21: 93:a7:19:bc:e2:00:94:32:f2:08:fc:71:1d:dd:06:30:ec:b8: 9b:ce:42:92:53:f8:67:59:82:27:e7:0e:48:63:18:3d:94:b2: 7f:21:92:d3:ba:3a:20:24:8e:13:68:b8:05:5a:51:07:fa:9f: 6b:e3:e2:15:10:9c:c4:a9:76:97:07:19:e2:b1:bd:0f:19:1c: 87:f9:70:69:83:59:99:df:e0:00:4f:09:9c:f3:0d:6e:a9:e3: 60:83:f1:ec:fe:a3:ae:39:de:03:44:e2:c8:52:70:ce:23:1c: 1c:42:f4:e9:05:dd:9f:cc:b8:27:36:81:d3:ce:aa:1e:ff:75: 04:49:37:78:fd:f9:c0:c4:bc:61:fd:c9:5b:e7:e9:8e:eb:23: 25:ec:cc:28:64:c1:23:23:01:44:85:c5:40:7f:c6:42:50:80: e6:6e:60:8b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/g25lsA7r0POEkUppd0jZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1YTgzYjQwYjNmNGQ3ZDMxZmIzMzY4ZGFmYWNhMTE5OWE0 NDk4OTIwHhcNMjYwMTAyMTYyMTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDAzMzlkOWFhM2Q5ZmI2NDgyMDYxMzNiM2VmMTg4MWI3ZTFjMGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApoi6h+KvYUCk1X0CyKaexflUB6fS XbF0XmtWfxIU64SvXQ46nCYPFJMdF7Sbj/0dpAe5dro0VM603mG2R690t1NsKGmG GiZTrOi7SDXL7zGsqUXvapQZxr5MzJtzDD3Z9d273NoB6ldhUxbHWmIjcqn8/0Wq vcUo02pnlq87LCns+3vAQp5NBp9cW/Qo2UGX3UEjqcX78cgh+CHUsfBAWynnqeAT GBAjlP3eSs+l0W/ToWnvJ3ERaNIgqp9Eklld2B+u37K8pc74OIJv/UBWiQwU0qBG 6IC8wswp5C+UmART066vw2q//pFXsVmADw/4MT94Ee4icKD8S7Gq/texhQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPADOdmqPZ+2SCBhM7PvGIG34cD0MB8GA1UdIwQY MBaAFOWoO0Cz9NfTH7M2ja+soRmaRJiSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWFnN1FMUDAxOU1mc3phTnI2eWhHWnBFbUpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8yNGNhYjQtMDEyNS00MzgzLTg1ZmEt M2QzODg2MDZkYTEyLzEvOEFNNTJhbzluN1pJSUdFenMtOFlnYmZod1BRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8yNGNhYjQtMDEyNS00MzgzLTg1ZmEtM2QzODg2MDZkYTEy LzEvNWFnN1FMUDAxOU1mc3phTnI2eWhHWnBFbUpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuRkIMA0G CSqGSIb3DQEBCwUAA4IBAQCIyyHYcLwEQ4Nwr2INmtuBL6rNwdHjjEA6qAbwMqaj PozKF8NLtndRmaWMF0HXg5VQCCHlMJ6BHs2zMFMCNJnyR7yhPMXfet5k0k8n+Qat xaqdn5a5zzIElSGTpxm84gCUMvII/HEd3QYw7LibzkKSU/hnWYIn5w5IYxg9lLJ/ IZLTujogJI4TaLgFWlEH+p9r4+IVEJzEqXaXBxnisb0PGRyH+XBpg1mZ3+AATwmc 8w1uqeNgg/Hs/qOuOd4DROLIUnDOIxwcQvTpBd2fzLgnNoHTzqoe/3UESTd4/fnA xLxh/clb5+mO6yMl7MwoZMEjIwFEhcVAf8ZCUIDmbmCL -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:05 2026 by rpki-client