This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/23f-P_z416Ppe4GgtK45DwqrddY.roa File: 23f-P_z416Ppe4GgtK45DwqrddY.roa (raw, json) Hash identifier: bSWEHUUenscSMc7VlL+kNMVvTIwLoSErYQnpNcbAOPA= Subject key identifier: DB:77:FE:3F:FC:F8:D7:A3:E9:7B:81:A0:B4:AE:39:0F:0A:AB:75:D6 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C1382E9A7D2E5B3EF9BE17B353E1CF8 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/23f-P_z416Ppe4GgtK45DwqrddY.roa Signing time: Fri 02 Jan 2026 00:20:12 +0000 ROA not before: Fri 02 Jan 2026 00:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200088 IP address blocks: 185.226.106.0/24 maxlen: 24 185.228.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:82:e9:a7:d2:e5:b3:ef:9b:e1:7b:35:3e:1c:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db77fe3ffcf8d7a3e97b81a0b4ae390f0aab75d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3d:1e:26:6e:84:b5:e2:16:95:57:b8:8f:ca: 93:60:eb:a7:ca:0d:ee:a0:e0:17:21:87:0f:81:85: 6f:09:3f:8b:22:b2:ca:97:16:80:93:56:cc:c7:92: 32:3d:fb:fb:37:4d:a3:f7:c1:8c:6c:64:62:f1:c1: 9c:41:f6:69:d1:bb:2f:86:e0:14:9b:d7:46:77:31: d4:6e:f6:ce:8f:c1:b1:bf:fb:bd:c5:e4:1a:3d:00: 77:7a:ab:fe:7e:a7:bf:b5:2d:ea:ef:c9:34:e9:ca: 5e:2b:86:76:f7:cc:f4:d3:81:b4:12:e6:8a:94:80: 5f:5b:91:47:3d:21:4c:18:3a:be:14:41:c3:b1:ca: 8b:9d:3f:11:f1:99:f2:94:18:2e:94:14:3c:00:4a: 46:aa:11:74:a0:fb:74:ce:b4:6c:3f:05:3d:44:e7: ef:d1:60:70:28:ce:ba:0d:11:82:f3:d4:a7:ed:6c: 6a:74:c6:35:50:0d:5e:e3:e8:1f:5f:5e:be:8a:fc: e5:fe:bf:5b:57:e2:3a:12:ae:ec:09:7a:c6:8a:01: 03:64:37:d6:1c:da:3b:84:76:f8:bf:35:94:f8:23: 20:d8:49:82:97:4d:d8:f1:b0:27:7d:d2:c5:71:a9: 8d:69:45:a9:43:22:e5:6c:34:fe:05:de:69:6a:d7: 5c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:77:FE:3F:FC:F8:D7:A3:E9:7B:81:A0:B4:AE:39:0F:0A:AB:75:D6 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/23f-P_z416Ppe4GgtK45DwqrddY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.226.106.0/24 185.228.74.0/24 Signature Algorithm: sha256WithRSAEncryption 39:3d:53:5a:9e:56:c4:69:a7:6b:26:15:36:d2:be:51:20:a7: e6:ee:5a:7b:07:27:17:36:d4:1b:fc:d4:78:3b:56:88:15:6e: e2:fa:2e:12:95:30:42:95:f8:ed:16:4c:90:26:cf:9c:6e:ad: 43:51:f0:a7:bc:dc:8f:78:5c:9b:25:a1:00:fe:ba:87:d9:e9: 05:e9:17:c7:c7:0d:cd:a4:bd:4a:de:de:51:dd:19:8b:de:17: d4:a5:9a:a5:fe:8f:ad:93:3b:29:d4:52:e1:f2:03:d3:9e:a7: eb:6d:35:10:61:18:c5:6e:42:f4:87:af:8e:12:45:10:07:45: f7:ca:f4:30:52:9c:4c:07:d1:b7:ad:1e:62:ed:35:ff:25:7b: 30:5c:1e:68:6f:1d:a1:f3:52:78:9d:19:15:13:39:b4:77:6a: b5:60:0e:26:9f:69:12:d2:aa:6e:0b:6b:44:b5:8c:a3:51:8b: 87:da:52:3a:f8:1c:1d:98:2f:55:af:f3:d6:19:67:75:fd:1e: 4b:d0:a2:60:ea:77:81:e0:ce:df:1b:f2:0c:c1:54:66:23:6f: 80:23:11:1e:63:df:9d:f5:91:f7:ed:60:82:88:c4:8b:a4:82: c2:a7:c0:95:b4:27:3f:76:f7:5b:d7:48:e2:68:6b:d0:28:83: 9e:92:b1:71 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8E4Lpp9Lls++b4Xs1Phz4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjc3ZmUzZmZjZjhkN2EzZTk3YjgxYTBiNGFlMzkwZjBhYWI3NWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyD0eJm6EteIWlVe4j8qTYOunyg3u oOAXIYcPgYVvCT+LIrLKlxaAk1bMx5IyPfv7N02j98GMbGRi8cGcQfZp0bsvhuAU m9dGdzHUbvbOj8Gxv/u9xeQaPQB3eqv+fqe/tS3q78k06cpeK4Z298z004G0EuaK lIBfW5FHPSFMGDq+FEHDscqLnT8R8ZnylBgulBQ8AEpGqhF0oPt0zrRsPwU9ROfv 0WBwKM66DRGC89Sn7WxqdMY1UA1e4+gfX16+ivzl/r9bV+I6Eq7sCXrGigEDZDfW HNo7hHb4vzWU+CMg2EmCl03Y8bAnfdLFcamNaUWpQyLlbDT+Bd5patdc7QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNt3/j/8+Nej6XuBoLSuOQ8Kq3XWMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvMjNmLVBfejQxNlBwZTRHZ3RLNDVEd3FyZGRZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAueJqAwQA ueRKMA0GCSqGSIb3DQEBCwUAA4IBAQA5PVNanlbEaadrJhU20r5RIKfm7lp7BycX NtQb/NR4O1aIFW7i+i4SlTBClfjtFkyQJs+cbq1DUfCnvNyPeFybJaEA/rqH2ekF 6RfHxw3NpL1K3t5R3RmL3hfUpZql/o+tkzsp1FLh8gPTnqfrbTUQYRjFbkL0h6+O EkUQB0X3yvQwUpxMB9G3rR5i7TX/JXswXB5obx2h81J4nRkVEzm0d2q1YA4mn2kS 0qpuC2tEtYyjUYuH2lI6+BwdmC9Vr/PWGWd1/R5L0KJg6neB4M7fG/IMwVRmI2+A IxEeY9+d9ZH37WCCiMSLpILCp8CVtCc/dvdb10jiaGvQKIOekrFx -----END CERTIFICATE-----Generated at Fri Jan 2 23:53:25 2026 by rpki-client