This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8icw0sOVzRdyLffJ5AxMWd4N5Cg.roa File: 8icw0sOVzRdyLffJ5AxMWd4N5Cg.roa (raw, json) Hash identifier: 1C6uv2AVL2XnF9BPI5whWrOT9RLUJMX+g+I+/XYaJSk= Subject key identifier: F2:27:30:D2:C3:95:CD:17:72:2D:F7:C9:E4:0C:4C:59:DE:0D:E4:28 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C136A4962D5C2A682BF3498C7B28E9D Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8icw0sOVzRdyLffJ5AxMWd4N5Cg.roa Signing time: Fri 02 Jan 2026 00:20:05 +0000 ROA not before: Fri 02 Jan 2026 00:20:05 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34927 IP address blocks: 45.90.18.0/24 maxlen: 24 185.225.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:6a:49:62:d5:c2:a6:82:bf:34:98:c7:b2:8e:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f22730d2c395cd17722df7c9e40c4c59de0de428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:e1:c7:92:eb:2d:c0:f5:d2:6d:33:2a:e5:c2: 23:82:76:ff:e1:8d:01:d9:04:2e:a6:7a:03:f1:2c: 4f:0d:87:ee:ff:c9:25:10:3e:a2:b7:1d:7a:f2:07: 14:7f:50:66:68:50:e9:6f:6b:4a:64:0c:6d:f4:b2: 0f:9a:52:9f:ba:32:5e:a5:41:00:ca:ab:8c:32:37: 49:c7:4a:66:77:67:b0:fb:1f:d1:5a:6f:e3:c9:13: 37:5a:c7:77:64:7b:a0:fa:81:40:4b:88:7a:37:f4: ff:25:48:9e:9d:b2:e9:f4:69:de:0d:9c:ce:03:20: 73:f8:84:71:fd:1f:0e:22:8d:7b:22:b7:80:b0:a0: c8:3b:0a:3d:96:bc:2c:b4:cd:2a:a3:94:1d:a8:1d: 06:af:05:e4:61:de:4d:79:ee:c3:6a:8d:c5:ea:21: 09:4a:a9:76:74:cf:af:8b:54:e4:69:ea:94:62:3c: b6:ac:d9:80:94:ec:ee:e5:5a:34:fb:52:dd:b0:c6: 3f:07:16:74:15:5e:61:e4:99:51:02:7e:7e:03:b9: 6f:98:cf:71:89:d5:32:4a:93:dd:e8:d9:10:68:8f: 2e:80:bd:57:d1:95:94:a9:6e:c8:d7:b1:90:fc:7c: d7:c7:53:4d:c3:c2:ba:50:2a:f3:9f:c7:10:57:9e: 7e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:27:30:D2:C3:95:CD:17:72:2D:F7:C9:E4:0C:4C:59:DE:0D:E4:28 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/8icw0sOVzRdyLffJ5AxMWd4N5Cg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.18.0/24 185.225.3.0/24 Signature Algorithm: sha256WithRSAEncryption 11:e4:b2:f8:1a:64:63:01:47:f1:8e:0f:74:42:79:c5:b4:b8: 74:44:83:06:70:36:90:81:41:94:a3:5e:63:25:cb:26:0d:24: 3d:24:1c:30:85:ab:76:2d:a4:1e:ef:63:aa:f2:10:27:f7:15: d5:01:73:2a:83:bb:42:c1:1f:1c:d0:71:50:ca:dd:07:28:88: f8:96:11:63:b1:02:d0:7c:15:4d:a9:2f:41:d3:4b:f1:c2:6f: d0:d3:8b:06:0a:fe:ae:19:1f:3f:33:34:09:b1:b8:a2:ff:fc: 0a:6f:26:f5:d4:14:86:19:0e:5a:52:5b:a9:73:d9:3f:ca:23: c0:48:4c:97:30:a7:dd:f1:d5:af:9c:92:59:52:d5:4b:11:87: 94:d5:7d:44:b5:60:28:ab:2b:0b:bd:e1:03:41:33:12:1a:d0: bb:ad:2e:c2:38:4d:13:32:7c:0e:48:5d:c3:70:71:fa:db:a5: 7b:27:bc:44:f2:09:c7:45:4c:d7:86:8c:e8:3a:d5:2e:8a:3d: 71:1e:b1:36:ed:00:ad:d1:cb:fe:ab:08:2b:ef:9c:ac:c9:12: f8:c1:67:f3:c6:88:17:90:eb:6f:a0:2b:b9:86:fd:82:5c:b6: 14:cd:61:d0:4f:21:e9:b1:6b:53:5a:56:46:a3:e2:dc:c0:45: 99:cb:04:63 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8E2pJYtXCpoK/NJjHso6dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMjI3MzBkMmMzOTVjZDE3NzIyZGY3YzllNDBjNGM1OWRlMGRlNDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+eHHkustwPXSbTMq5cIjgnb/4Y0B 2QQupnoD8SxPDYfu/8klED6itx168gcUf1BmaFDpb2tKZAxt9LIPmlKfujJepUEA yquMMjdJx0pmd2ew+x/RWm/jyRM3Wsd3ZHug+oFAS4h6N/T/JUienbLp9GneDZzO AyBz+IRx/R8OIo17IreAsKDIOwo9lrwstM0qo5QdqB0GrwXkYd5Nee7Dao3F6iEJ Sql2dM+vi1TkaeqUYjy2rNmAlOzu5Vo0+1LdsMY/BxZ0FV5h5JlRAn5+A7lvmM9x idUySpPd6NkQaI8ugL1X0ZWUqW7I17GQ/HzXx1NNw8K6UCrzn8cQV55+FQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFPInMNLDlc0Xci33yeQMTFneDeQoMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvOGljdzBzT1Z6UmR5TGZmSjVBeE1XZDRONUNnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALVoSAwQA ueEDMA0GCSqGSIb3DQEBCwUAA4IBAQAR5LL4GmRjAUfxjg90QnnFtLh0RIMGcDaQ gUGUo15jJcsmDSQ9JBwwhat2LaQe72Oq8hAn9xXVAXMqg7tCwR8c0HFQyt0HKIj4 lhFjsQLQfBVNqS9B00vxwm/Q04sGCv6uGR8/MzQJsbii//wKbyb11BSGGQ5aUlup c9k/yiPASEyXMKfd8dWvnJJZUtVLEYeU1X1EtWAoqysLveEDQTMSGtC7rS7COE0T MnwOSF3DcHH626V7J7xE8gnHRUzXhozoOtUuij1xHrE27QCt0cv+qwgr75ysyRL4 wWfzxogXkOtvoCu5hv2CXLYUzWHQTyHpsWtTWlZGo+LcwEWZywRj -----END CERTIFICATE-----Generated at Fri Jan 2 23:47:30 2026 by rpki-client