This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/l8MRszfSe4qexC-9JyLTk4XoVgk.roa File: l8MRszfSe4qexC-9JyLTk4XoVgk.roa (raw, json) Hash identifier: 9EV7cJFTRMkileOYn43dLtuQWD4NKNC4K7WAWUwzDvY= Subject key identifier: 97:C3:11:B3:37:D2:7B:8A:9E:C4:2F:BD:27:22:D3:93:85:E8:56:09 Certificate issuer: /CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6 Certificate serial: 019B76EAFD570E558BC24093FD8D5511677F Authority key identifier: 21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/l8MRszfSe4qexC-9JyLTk4XoVgk.roa Signing time: Thu 01 Jan 2026 00:17:50 +0000 ROA not before: Thu 01 Jan 2026 00:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 41960 IP address blocks: 185.60.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.mft rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:fd:57:0e:55:8b:c2:40:93:fd:8d:55:11:67:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2181c5b3cb7eeb1e49582155a1918ec612f95ac6 Validity Not Before: Jan 1 00:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97c311b337d27b8a9ec42fbd2722d39385e85609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5f:8a:79:c1:e5:4d:00:09:7f:9a:09:34:41: d9:58:fa:08:a6:1b:75:7a:88:19:1d:a0:d9:ce:89: 3f:33:c3:10:7b:d2:f3:5b:5a:73:36:5f:35:39:ab: 1f:3a:76:7a:36:e4:22:3f:29:b9:de:ff:68:ac:bf: 6b:05:93:82:da:95:df:54:87:ea:ef:0f:45:7d:71: b1:9a:f3:b2:ae:d9:5d:ab:9f:fa:49:0e:3f:92:02: e0:8f:55:fa:21:8b:a9:78:21:62:d0:0b:d9:2b:93: 46:a0:e4:dd:11:19:2a:7b:85:c0:a6:2e:c2:66:48: a9:0a:40:4c:e7:39:c8:91:75:01:31:ad:11:b9:c5: 90:ec:d7:8a:f1:6a:f3:29:15:ee:18:89:08:22:49: 16:cd:92:1e:bb:b6:31:73:1d:62:c3:f8:00:72:58: 83:58:67:bc:9e:12:e0:8a:3b:18:45:d9:45:d3:71: c2:98:35:43:86:3a:fc:97:10:84:88:b4:df:dc:f0: bf:90:c1:ed:fb:d6:5e:85:4c:65:20:b6:9d:d9:30: d4:5c:26:48:1c:fc:3f:48:82:eb:0a:d1:87:c4:65: 89:06:c5:7d:ec:00:ff:ce:dc:f6:a5:c1:66:db:8b: 0d:0e:0e:a1:48:8a:fc:66:93:c1:a6:6c:c0:5c:a6: 4c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C3:11:B3:37:D2:7B:8A:9E:C4:2F:BD:27:22:D3:93:85:E8:56:09 X509v3 Authority Key Identifier: keyid:21:81:C5:B3:CB:7E:EB:1E:49:58:21:55:A1:91:8E:C6:12:F9:5A:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYHFs8t-6x5JWCFVoZGOxhL5WsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/l8MRszfSe4qexC-9JyLTk4XoVgk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/dcd15e-eb12-4631-b220-0226d45a7532/1/IYHFs8t-6x5JWCFVoZGOxhL5WsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.60.159.0/24 Signature Algorithm: sha256WithRSAEncryption 36:d6:69:9f:5c:13:ca:04:e7:38:fe:fd:7b:c1:cf:17:f7:2a: 46:40:d3:43:96:0b:2a:7d:49:f1:95:4e:3b:87:7c:ee:b5:7a: 46:c5:2e:10:1b:cc:a1:4d:ef:b3:88:6e:57:e3:64:80:0c:9b: 3e:38:37:b7:6e:df:35:ac:d6:5c:7c:3f:9b:12:99:39:1a:81: c3:09:a2:d5:a0:1e:ee:b2:23:ed:7f:33:1c:7e:60:da:c5:d7: 0a:d7:ee:f3:7f:18:04:df:3a:67:d6:a1:17:9b:de:a6:31:e4: 0d:5a:7b:49:26:6b:81:72:3c:7c:70:3f:b5:dd:92:75:de:33: be:6d:d0:22:60:3c:68:5c:7c:71:7e:91:49:a7:4f:84:1d:4b: bf:3e:e9:3c:ab:78:77:a3:db:cb:a6:5f:d4:3c:cb:7c:be:9c: 1d:0b:5a:2a:5b:2e:7e:05:0d:a9:01:ec:b0:46:f8:04:9a:f3: ba:cd:c3:16:dd:2e:59:50:d8:91:59:e7:da:75:63:78:67:1a: 52:9c:51:50:3b:b0:d7:44:84:25:c6:49:35:47:fa:ec:8e:8e: 19:ea:82:3d:22:71:e4:9c:c9:a4:20:2b:4d:8d:5c:11:f7:6c: 96:63:6d:f7:fe:92:fb:5b:d5:b9:eb:79:ca:69:08:ac:4e:c0: 3c:ce:ae:54 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26v1XDlWLwkCT/Y1VEWd/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxODFjNWIzY2I3ZWViMWU0OTU4MjE1NWExOTE4ZWM2MTJm OTVhYzYwHhcNMjYwMTAxMDAxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5N2MzMTFiMzM3ZDI3YjhhOWVjNDJmYmQyNzIyZDM5Mzg1ZTg1NjA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoF+KecHlTQAJf5oJNEHZWPoIpht1 eogZHaDZzok/M8MQe9LzW1pzNl81OasfOnZ6NuQiPym53v9orL9rBZOC2pXfVIfq 7w9FfXGxmvOyrtldq5/6SQ4/kgLgj1X6IYupeCFi0AvZK5NGoOTdERkqe4XApi7C ZkipCkBM5znIkXUBMa0RucWQ7NeK8WrzKRXuGIkIIkkWzZIeu7Yxcx1iw/gAcliD WGe8nhLgijsYRdlF03HCmDVDhjr8lxCEiLTf3PC/kMHt+9ZehUxlILad2TDUXCZI HPw/SILrCtGHxGWJBsV97AD/ztz2pcFm24sNDg6hSIr8ZpPBpmzAXKZM1QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFJfDEbM30nuKnsQvvSci05OF6FYJMB8GA1UdIwQY MBaAFCGBxbPLfuseSVghVaGRjsYS+VrGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9kY2QxNWUtZWIxMi00NjMxLWIyMjAt MDIyNmQ0NWE3NTMyLzEvbDhNUnN6ZlNlNHFleEMtOUp5TFRrNFhvVmdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9kY2QxNWUtZWIxMi00NjMxLWIyMjAtMDIyNmQ0NWE3NTMy LzEvSVlIRnM4dC02eDVKV0NGVm9aR094aEw1V3NZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTyfMA0G CSqGSIb3DQEBCwUAA4IBAQA21mmfXBPKBOc4/v17wc8X9ypGQNNDlgsqfUnxlU47 h3zutXpGxS4QG8yhTe+ziG5X42SADJs+ODe3bt81rNZcfD+bEpk5GoHDCaLVoB7u siPtfzMcfmDaxdcK1+7zfxgE3zpn1qEXm96mMeQNWntJJmuBcjx8cD+13ZJ13jO+ bdAiYDxoXHxxfpFJp0+EHUu/Puk8q3h3o9vLpl/UPMt8vpwdC1oqWy5+BQ2pAeyw RvgEmvO6zcMW3S5ZUNiRWefadWN4ZxpSnFFQO7DXRIQlxkk1R/rsjo4Z6oI9InHk nMmkICtNjVwR92yWY233/pL7W9W563nKaQisTsA8zq5U -----END CERTIFICATE-----Generated at Mon Jan 26 23:44:56 2026 by rpki-client