This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/B8SXQQ3hL0fnf_TfbamzqN0CfnU.roa File: B8SXQQ3hL0fnf_TfbamzqN0CfnU.roa (raw, json) Hash identifier: C1cUJRztP+dL7d8PQDR5YZauNQ52r1/a8GSZXIDmFyQ= Subject key identifier: 07:C4:97:41:0D:E1:2F:47:E7:7F:F4:DF:6D:A9:B3:A8:DD:02:7E:75 Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Certificate serial: 019B7F15C687A211BC816B2CC62449835427 Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/B8SXQQ3hL0fnf_TfbamzqN0CfnU.roa Signing time: Fri 02 Jan 2026 14:21:32 +0000 ROA not before: Fri 02 Jan 2026 14:21:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205220 IP address blocks: 88.214.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.mft rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:c6:87:a2:11:bc:81:6b:2c:c6:24:49:83:54:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe Validity Not Before: Jan 2 14:21:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07c497410de12f47e77ff4df6da9b3a8dd027e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:32:d2:b3:08:fc:48:e9:99:b9:4b:d2:f2:61: c9:cb:dd:9f:3a:33:ae:2a:7a:6a:fe:f2:9a:15:1d: dc:43:01:c1:ae:2c:4b:9e:c1:b8:fd:f8:00:c7:a6: eb:43:1f:2b:c4:59:ed:c5:45:26:cc:51:c6:20:10: 9e:aa:16:1f:e3:25:2a:55:d7:85:db:3b:fc:65:f0: 83:37:64:17:7f:9a:02:22:2c:f5:db:8f:7f:66:55: 12:26:d2:b2:61:be:3c:74:ff:d3:70:79:fe:21:77: 2c:89:29:16:c8:1c:4f:5e:91:85:2c:75:77:de:7e: 4f:0c:68:2c:60:3a:ce:d4:e5:2d:17:b9:86:36:37: 50:4e:75:77:f1:ad:b1:58:49:0b:b3:88:2f:c6:95: 30:19:05:39:bf:d5:3d:7e:c3:b0:fb:53:88:9a:3e: 4b:1a:b0:a8:76:a6:c9:f0:27:bd:c6:34:56:55:ee: 27:8b:da:da:76:c9:61:06:4d:0b:4e:e7:c5:bb:b1: 79:60:03:42:ec:bf:34:db:0b:8f:95:95:40:b6:c0: fa:2f:59:f4:4b:b7:26:dd:39:30:cd:60:d4:fa:dd: 17:83:f5:53:d7:d6:d3:57:30:27:74:14:8b:76:19: 62:6f:ef:6f:1a:11:53:7a:c1:81:86:e5:bb:4a:35: 66:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C4:97:41:0D:E1:2F:47:E7:7F:F4:DF:6D:A9:B3:A8:DD:02:7E:75 X509v3 Authority Key Identifier: keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/B8SXQQ3hL0fnf_TfbamzqN0CfnU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.214.52.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:b1:14:a3:90:ff:88:6c:f0:5d:f6:92:52:e6:1b:b0:95:24: fe:a8:e9:51:66:32:3c:b8:ef:c0:d9:9f:47:62:52:30:bf:e7: da:ea:d9:48:2b:c3:24:c4:4f:cd:ff:ce:25:d8:b3:c6:21:c2: 09:7e:1e:0c:4b:bc:60:da:01:4a:81:6c:be:6d:5c:e8:bc:a2: b5:3c:9d:12:37:90:75:f3:7d:0d:1f:76:ca:14:f9:ea:29:2a: 35:fe:3b:d3:af:59:7e:de:c5:06:35:56:9b:e0:e1:5a:9b:83: 09:ae:bd:ac:a6:bb:29:ed:ee:85:6f:7b:4c:1e:06:0f:51:28: e8:80:cc:a7:a8:00:dc:13:f1:f3:f6:fc:35:8d:df:40:c4:42: 25:5b:5e:de:10:bd:9b:ad:93:c2:95:88:36:2e:5d:c5:91:48: ac:8f:8b:c7:d9:22:5b:bf:d8:83:27:84:54:4a:b3:5d:5f:0b: 6e:be:d1:82:35:48:cb:93:66:c5:90:f2:80:05:40:61:8c:0e: 0c:f9:45:b9:d9:88:bf:33:e6:b1:fa:04:df:80:ce:a9:ce:dd: fc:20:4a:30:2f:29:95:61:a0:f9:a8:ca:15:d7:bd:cf:0e:0a: fb:0d:ca:0f:a8:3c:12:99:6f:bc:f8:4a:cd:98:f2:f8:5e:92: 44:b5:3c:6d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FcaHohG8gWssxiRJg1QnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw MjNlYmUwHhcNMjYwMTAyMTQyMTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2M0OTc0MTBkZTEyZjQ3ZTc3ZmY0ZGY2ZGE5YjNhOGRkMDI3ZTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxDLSswj8SOmZuUvS8mHJy92fOjOu Knpq/vKaFR3cQwHBrixLnsG4/fgAx6brQx8rxFntxUUmzFHGIBCeqhYf4yUqVdeF 2zv8ZfCDN2QXf5oCIiz1249/ZlUSJtKyYb48dP/TcHn+IXcsiSkWyBxPXpGFLHV3 3n5PDGgsYDrO1OUtF7mGNjdQTnV38a2xWEkLs4gvxpUwGQU5v9U9fsOw+1OImj5L GrCodqbJ8Ce9xjRWVe4ni9radslhBk0LTufFu7F5YANC7L802wuPlZVAtsD6L1n0 S7cm3TkwzWDU+t0Xg/VT19bTVzAndBSLdhlib+9vGhFTesGBhuW7SjVmZQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAfEl0EN4S9H53/0322ps6jdAn51MB8GA1UdIwQY MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt OTlhY2I5OWNlNzU0LzEvQjhTWFFRM2hMMGZuZl9UZmJhbXpxTjBDZm5VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0 LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNY0MA0G CSqGSIb3DQEBCwUAA4IBAQBNsRSjkP+IbPBd9pJS5huwlST+qOlRZjI8uO/A2Z9H YlIwv+fa6tlIK8MkxE/N/84l2LPGIcIJfh4MS7xg2gFKgWy+bVzovKK1PJ0SN5B1 830NH3bKFPnqKSo1/jvTr1l+3sUGNVab4OFam4MJrr2sprsp7e6Fb3tMHgYPUSjo gMynqADcE/Hz9vw1jd9AxEIlW17eEL2brZPClYg2Ll3FkUisj4vH2SJbv9iDJ4RU SrNdXwtuvtGCNUjLk2bFkPKABUBhjA4M+UW52Yi/M+ax+gTfgM6pzt38IEowLymV YaD5qMoV173PDgr7DcoPqDwSmW+8+ErNmPL4XpJEtTxt -----END CERTIFICATE-----Generated at Wed Jan 21 01:07:58 2026 by rpki-client