This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/43DpV7xrZKIPgR3LXQiPDkxuS6g.roa File: 43DpV7xrZKIPgR3LXQiPDkxuS6g.roa (raw, json) Hash identifier: Pz+pBSh7qLUtOCsg2X6KXkUs5v6TAPEm46EKWek5QPQ= Subject key identifier: E3:70:E9:57:BC:6B:64:A2:0F:81:1D:CB:5D:08:8F:0E:4C:6E:4B:A8 Certificate issuer: /CN=95151fbb71e41b2d1063d3b11141ada1a844c7f7 Certificate serial: 019B7F82E06F71DB58B1F3F2E0960F615218 Authority key identifier: 95:15:1F:BB:71:E4:1B:2D:10:63:D3:B1:11:41:AD:A1:A8:44:C7:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRUfu3HkGy0QY9OxEUGtoahEx_c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/43DpV7xrZKIPgR3LXQiPDkxuS6g.roa Signing time: Fri 02 Jan 2026 16:20:42 +0000 ROA not before: Fri 02 Jan 2026 16:20:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 38965 IP address blocks: 185.231.57.0/24 maxlen: 24 2a10:b880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/lRUfu3HkGy0QY9OxEUGtoahEx_c.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/lRUfu3HkGy0QY9OxEUGtoahEx_c.mft rsync://rpki.ripe.net/repository/DEFAULT/lRUfu3HkGy0QY9OxEUGtoahEx_c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:e0:6f:71:db:58:b1:f3:f2:e0:96:0f:61:52:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95151fbb71e41b2d1063d3b11141ada1a844c7f7 Validity Not Before: Jan 2 16:20:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e370e957bc6b64a20f811dcb5d088f0e4c6e4ba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a1:ff:1c:36:4c:35:a8:1e:05:6e:3f:b8:d5: 16:be:a5:ef:e3:28:f2:fc:9f:77:51:c6:ea:c5:f6: b2:47:9e:2b:0c:1e:e7:63:60:54:cd:77:16:43:7b: 05:d6:76:6b:ac:4c:a9:42:58:5b:e4:03:22:43:bf: 6a:28:cf:06:01:eb:c3:5f:38:e9:2b:a1:5e:fd:1b: 85:6e:08:ae:ca:43:f8:b9:03:14:96:fe:fe:e1:39: 1b:3e:a5:e4:d3:69:b7:57:15:c4:24:2d:0b:ea:5b: 10:17:e1:47:ee:19:6d:27:c1:10:36:4b:9f:3d:90: ec:f5:fe:06:a4:5f:11:62:96:bb:72:f7:ae:b4:3f: 09:34:98:13:39:a6:25:7c:81:c9:10:8d:4f:68:fa: 8b:cf:a4:f2:59:58:d5:dc:63:8d:96:d2:e7:6f:ca: b1:de:ed:d3:33:8d:10:92:5b:71:59:cc:72:4d:bb: 43:38:aa:02:b5:68:c7:13:a8:8d:17:84:e2:1b:e4: 33:69:23:1b:26:58:cd:41:e2:ff:ca:9a:54:0e:c0: 8c:77:30:e6:27:0b:ad:91:18:02:2c:0c:70:38:2c: 9d:e0:4e:68:e9:3e:aa:23:2c:1f:e1:ac:ce:81:47: 2a:09:0e:c5:b2:d0:76:c1:75:f5:ae:32:66:e6:d6: bd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:70:E9:57:BC:6B:64:A2:0F:81:1D:CB:5D:08:8F:0E:4C:6E:4B:A8 X509v3 Authority Key Identifier: keyid:95:15:1F:BB:71:E4:1B:2D:10:63:D3:B1:11:41:AD:A1:A8:44:C7:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRUfu3HkGy0QY9OxEUGtoahEx_c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/43DpV7xrZKIPgR3LXQiPDkxuS6g.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/lRUfu3HkGy0QY9OxEUGtoahEx_c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.231.57.0/24 IPv6: 2a10:b880::/32 Signature Algorithm: sha256WithRSAEncryption 0b:f3:87:32:4a:22:1a:1b:a3:d1:5c:d6:a2:88:fe:23:e5:af: a4:35:23:bc:5a:c2:df:80:9b:cc:f3:51:61:65:7c:9d:49:fc: 86:37:fd:fb:3c:d7:9f:21:28:e1:2e:f5:fd:b3:fe:66:83:bd: 2d:8e:ed:b1:7d:27:7b:13:e9:f0:26:e0:4e:ae:43:e8:28:f4: 98:c0:a2:3e:5a:65:b1:4c:48:1d:21:98:01:70:56:f0:f9:b2: bd:55:31:7d:93:a8:67:a9:d5:a8:59:cf:19:38:71:35:b0:00: cd:ef:57:4e:3a:2d:99:13:f1:c5:54:8f:e4:fd:12:aa:6f:0a: 3a:d0:88:15:40:b8:00:ca:48:91:3b:ed:a4:21:7d:71:51:d4: f1:5a:68:e4:6a:86:86:4e:c2:d9:ff:f0:1e:75:ab:28:cb:03: 8d:cd:fc:f4:f8:8f:98:31:11:af:fd:da:bd:8b:75:86:9c:86: 54:84:b5:c8:6f:6d:4e:17:ae:78:1d:7e:2c:c0:0c:88:77:9f: 07:d0:46:28:4d:bd:5a:91:df:2d:bd:67:03:cb:57:09:11:a0: bb:9a:75:29:51:7b:93:5c:0f:6c:16:b8:44:ca:03:29:35:dc: 3c:55:6e:54:81:7d:c9:f8:f9:3f:72:c8:95:bd:d3:ef:e0:28: c4:23:8e:93 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/guBvcdtYsfPy4JYPYVIYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1MTUxZmJiNzFlNDFiMmQxMDYzZDNiMTExNDFhZGExYTg0 NGM3ZjcwHhcNMjYwMTAyMTYyMDQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzcwZTk1N2JjNmI2NGEyMGY4MTFkY2I1ZDA4OGYwZTRjNmU0YmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26H/HDZMNageBW4/uNUWvqXv4yjy /J93UcbqxfayR54rDB7nY2BUzXcWQ3sF1nZrrEypQlhb5AMiQ79qKM8GAevDXzjp K6Fe/RuFbgiuykP4uQMUlv7+4TkbPqXk02m3VxXEJC0L6lsQF+FH7hltJ8EQNkuf PZDs9f4GpF8RYpa7cveutD8JNJgTOaYlfIHJEI1PaPqLz6TyWVjV3GONltLnb8qx 3u3TM40QkltxWcxyTbtDOKoCtWjHE6iNF4TiG+QzaSMbJljNQeL/yppUDsCMdzDm JwutkRgCLAxwOCyd4E5o6T6qIywf4azOgUcqCQ7FstB2wXX1rjJm5ta9hQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFONw6Ve8a2SiD4Edy10Ijw5MbkuoMB8GA1UdIwQY MBaAFJUVH7tx5BstEGPTsRFBraGoRMf3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFJVZnUzSGtHeTBRWTlPeEVVR3RvYWhFeF9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8xODVmZTktMjUxNy00MzhjLThlMjYt OWZkODM2ZThiMzY2LzEvNDNEcFY3eHJaS0lQZ1IzTFhRaVBEa3h1UzZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8xODVmZTktMjUxNy00MzhjLThlMjYtOWZkODM2ZThiMzY2 LzEvbFJVZnUzSGtHeTBRWTlPeEVVR3RvYWhFeF9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuec5MA0E AgACMAcDBQAqELiAMA0GCSqGSIb3DQEBCwUAA4IBAQAL84cySiIaG6PRXNaiiP4j 5a+kNSO8WsLfgJvM81FhZXydSfyGN/37PNefISjhLvX9s/5mg70tju2xfSd7E+nw JuBOrkPoKPSYwKI+WmWxTEgdIZgBcFbw+bK9VTF9k6hnqdWoWc8ZOHE1sADN71dO Oi2ZE/HFVI/k/RKqbwo60IgVQLgAykiRO+2kIX1xUdTxWmjkaoaGTsLZ//Aedaso ywONzfz0+I+YMRGv/dq9i3WGnIZUhLXIb21OF654HX4swAyId58H0EYoTb1akd8t vWcDy1cJEaC7mnUpUXuTXA9sFrhEygMpNdw8VW5UgX3J+Pk/csiVvdPv4CjEI46T -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:33 2026 by rpki-client