This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/42a5BDfavJB8-Fjb88ehzC_G2vI.roa File: 42a5BDfavJB8-Fjb88ehzC_G2vI.roa (raw, json) Hash identifier: 2elAAn7GbfRppYPOlapcCAAsvKzqxnlQwzBHL9tcDlY= Subject key identifier: E3:66:B9:04:37:DA:BC:90:7C:F8:58:DB:F3:C7:A1:CC:2F:C6:DA:F2 Certificate issuer: /CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae Certificate serial: 019C3F1CB9BED313F8EDBE258E81C1559CC5 Authority key identifier: 85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/42a5BDfavJB8-Fjb88ehzC_G2vI.roa Signing time: Sun 08 Feb 2026 21:16:13 +0000 ROA not before: Sun 08 Feb 2026 21:16:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58208 IP address blocks: 5.42.156.0/23 maxlen: 23 2a01:45c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.mft rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:3f:1c:b9:be:d3:13:f8:ed:be:25:8e:81:c1:55:9c:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85b4f875e99d35b14204693eee11ca9b6aafe4ae Validity Not Before: Feb 8 21:16:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e366b90437dabc907cf858dbf3c7a1cc2fc6daf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8d:2b:18:d6:7e:6f:ef:f0:9a:67:ea:10:ef: 8c:57:a4:07:27:a8:63:3e:76:78:26:d6:6d:db:73: 96:5a:ce:ee:d4:a9:8f:1d:f1:9b:2b:7b:f0:b8:9e: d2:34:d5:12:90:f3:0c:18:ba:c0:99:ad:40:f6:3e: 59:62:5a:88:7b:65:af:f4:be:af:fe:bd:50:7d:e4: be:89:40:8b:cc:84:a4:41:f8:04:2b:4d:d7:ed:d3: 23:85:3a:06:69:ee:e4:53:1a:43:49:96:82:c3:2f: 97:ec:0f:50:d2:71:c0:8b:43:20:d2:fb:32:01:27: 58:78:92:f1:d3:f5:d6:f5:29:e3:4e:f4:e8:6f:6f: 89:99:4d:f9:fe:84:ff:52:6b:b4:bc:c9:2d:82:c6: 48:ee:66:49:f7:5d:ec:e6:5b:af:d5:12:96:e2:81: 0b:23:fa:a1:f1:64:2c:e1:04:6b:17:65:20:dd:2f: 82:db:7a:cf:13:98:96:34:29:82:72:bb:e0:b3:58: a6:3e:f0:86:e2:3e:cc:31:6e:58:8a:ac:6d:6a:09: 7c:f9:2b:fc:64:e9:46:4d:0f:ae:bc:df:2f:39:78: 8f:98:d3:2b:ca:83:08:6e:86:87:44:e7:7f:f5:07: 89:94:02:92:cf:e7:39:90:10:c8:1b:e9:06:46:2f: 26:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:66:B9:04:37:DA:BC:90:7C:F8:58:DB:F3:C7:A1:CC:2F:C6:DA:F2 X509v3 Authority Key Identifier: keyid:85:B4:F8:75:E9:9D:35:B1:42:04:69:3E:EE:11:CA:9B:6A:AF:E4:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbT4demdNbFCBGk-7hHKm2qv5K4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/42a5BDfavJB8-Fjb88ehzC_G2vI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/b8219e-346a-43b9-b823-938a73b6f7c2/1/hbT4demdNbFCBGk-7hHKm2qv5K4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.42.156.0/23 IPv6: 2a01:45c0::/32 Signature Algorithm: sha256WithRSAEncryption 91:14:e4:d6:0f:8e:80:d5:16:12:74:cf:05:28:18:00:71:ef: 50:20:f5:33:1e:e3:1a:b9:82:9f:8d:b1:71:26:1f:0e:86:c5: 2e:79:5b:92:46:b0:58:c2:de:b9:32:07:03:83:b4:ff:19:8f: d9:a1:42:56:95:9e:a1:12:99:31:69:c1:85:d3:92:58:cf:f6: 94:8a:52:57:9f:c2:ad:ba:af:24:6e:7b:e0:a8:a4:43:19:a1: 21:aa:48:9e:61:7d:7a:02:c1:51:82:1d:e9:fe:a8:6f:3a:cb: 9c:04:6e:eb:ca:0f:67:be:98:f2:b0:79:2b:71:2a:f9:c3:fe: 12:57:c4:68:cf:47:e5:da:96:42:c7:f6:21:fa:26:a5:85:ae: b6:11:81:b3:1b:ec:fd:00:f1:48:b4:0a:0c:9c:f4:a3:78:20: a6:07:bc:48:98:cc:1c:12:34:b2:f9:d9:3d:63:3e:74:b0:6b: 82:eb:bc:14:a0:a5:a9:56:0b:cf:d4:4e:a2:31:33:f0:b2:94: e7:de:a7:05:be:0f:34:69:0b:ab:90:a0:bc:f3:e8:ee:0a:fb: 1d:12:b2:17:0e:8e:58:aa:10:d6:4a:80:ce:94:ae:94:22:d3: 1c:84:f9:4c:7d:dc:7a:e0:e5:26:93:ee:fb:e8:0f:c2:1d:1f: 9d:82:93:81 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZw/HLm+0xP47b4ljoHBVZzFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1YjRmODc1ZTk5ZDM1YjE0MjA0NjkzZWVlMTFjYTliNmFh ZmU0YWUwHhcNMjYwMjA4MjExNjEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzY2YjkwNDM3ZGFiYzkwN2NmODU4ZGJmM2M3YTFjYzJmYzZkYWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsI0rGNZ+b+/wmmfqEO+MV6QHJ6hj PnZ4JtZt23OWWs7u1KmPHfGbK3vwuJ7SNNUSkPMMGLrAma1A9j5ZYlqIe2Wv9L6v /r1QfeS+iUCLzISkQfgEK03X7dMjhToGae7kUxpDSZaCwy+X7A9Q0nHAi0Mg0vsy ASdYeJLx0/XW9SnjTvTob2+JmU35/oT/Umu0vMktgsZI7mZJ913s5luv1RKW4oEL I/qh8WQs4QRrF2Ug3S+C23rPE5iWNCmCcrvgs1imPvCG4j7MMW5Yiqxtagl8+Sv8 ZOlGTQ+uvN8vOXiPmNMryoMIboaHROd/9QeJlAKSz+c5kBDIG+kGRi8maQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFONmuQQ32ryQfPhY2/PHocwvxtryMB8GA1UdIwQY MBaAFIW0+HXpnTWxQgRpPu4Ryptqr+SuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGJUNGRlbWROYkZDQkdrLTdoSEttMnF2NUs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9iODIxOWUtMzQ2YS00M2I5LWI4MjMt OTM4YTczYjZmN2MyLzEvNDJhNUJEZmF2SkI4LUZqYjg4ZWh6Q19HMnZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9iODIxOWUtMzQ2YS00M2I5LWI4MjMtOTM4YTczYjZmN2My LzEvaGJUNGRlbWROYkZDQkdrLTdoSEttMnF2NUs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBBSqcMA0E AgACMAcDBQAqAUXAMA0GCSqGSIb3DQEBCwUAA4IBAQCRFOTWD46A1RYSdM8FKBgA ce9QIPUzHuMauYKfjbFxJh8OhsUueVuSRrBYwt65MgcDg7T/GY/ZoUJWlZ6hEpkx acGF05JYz/aUilJXn8Ktuq8kbnvgqKRDGaEhqkieYX16AsFRgh3p/qhvOsucBG7r yg9nvpjysHkrcSr5w/4SV8Roz0fl2pZCx/Yh+ialha62EYGzG+z9APFItAoMnPSj eCCmB7xImMwcEjSy+dk9Yz50sGuC67wUoKWpVgvP1E6iMTPwspTn3qcFvg80aQur kKC88+juCvsdErIXDo5YqhDWSoDOlK6UItMchPlMfdx64OUmk+776A/CHR+dgpOB -----END CERTIFICATE-----Generated at Mon Feb 9 22:17:11 2026 by rpki-client