This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SK7fr81Y0OJA2DFCDC1dbF9hlEE.roa File: SK7fr81Y0OJA2DFCDC1dbF9hlEE.roa (raw, json) Hash identifier: V7HaH9s25jEMMy6Fs2PGqqt7K3OfTf/9HM1LcYrwWoU= Subject key identifier: 48:AE:DF:AF:CD:58:D0:E2:40:D8:31:42:0C:2D:5D:6C:5F:61:94:41 Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019B7C139D1469B8AEEA0AC3F1B7100D8CBC Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SK7fr81Y0OJA2DFCDC1dbF9hlEE.roa Signing time: Fri 02 Jan 2026 00:20:18 +0000 ROA not before: Fri 02 Jan 2026 00:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214654 IP address blocks: 185.206.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:9d:14:69:b8:ae:ea:0a:c3:f1:b7:10:0d:8c:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 2 00:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=48aedfafcd58d0e240d831420c2d5d6c5f619441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:91:98:49:24:10:31:75:18:11:2c:bc:06:24: 15:dd:57:61:91:21:d3:6f:05:ce:d1:81:4e:dc:eb: 72:f5:d7:ff:61:78:d9:61:b6:cb:a1:13:fc:f0:b0: f6:42:ac:01:0d:4d:0c:1b:3f:86:3a:67:2c:73:43: 4e:d5:31:7a:69:a7:a0:4c:cb:e6:41:af:53:89:e1: af:6f:a8:8a:8a:99:5c:f0:56:0d:f2:2c:04:bf:bb: cd:05:26:48:98:6f:1f:3f:1b:ee:4c:e8:dc:3d:d8: eb:3d:a4:05:6e:fd:36:e5:a7:44:ca:a4:c6:de:79: 97:46:a9:7e:1e:ae:51:91:9a:2d:75:90:3e:61:8a: 85:63:1f:61:f8:6b:31:cc:cd:7c:bc:ff:ed:71:e5: 26:a3:db:e3:28:ad:10:29:f1:e1:7e:0b:82:43:94: 03:48:41:14:35:e9:33:71:de:3d:99:51:8f:d7:53: 26:3e:f2:1d:d2:2a:98:2d:20:48:3c:4d:5a:d2:c8: c5:6c:b2:57:f4:6e:a9:58:b4:7e:df:37:69:d9:6f: b4:06:4d:ae:cd:db:01:a1:ad:63:35:64:1e:e0:38: 39:e1:d7:0b:88:94:b8:ea:3f:b5:4a:4b:28:99:00: 00:c8:24:20:27:4e:4e:d4:f1:b0:1b:46:a2:4e:e1: fc:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AE:DF:AF:CD:58:D0:E2:40:D8:31:42:0C:2D:5D:6C:5F:61:94:41 X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/SK7fr81Y0OJA2DFCDC1dbF9hlEE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.206.250.0/24 Signature Algorithm: sha256WithRSAEncryption 44:a3:06:d3:c1:2c:f4:7d:a1:3b:ca:c1:78:ce:db:6a:90:4a: 3e:f8:5d:55:de:ec:a1:aa:4e:e2:07:47:69:73:48:dd:06:cc: d7:ad:b7:84:28:90:92:29:a9:b4:3f:d1:96:d5:86:9e:a0:78: 5e:a1:47:75:ca:49:41:f8:18:8e:ee:39:b3:5f:6c:20:fa:ce: 68:01:f9:2c:04:15:e5:0c:15:3d:c3:91:e8:b2:a9:fc:6c:e4: 7a:6c:de:af:61:51:55:dc:9c:9c:5a:8e:15:34:01:4a:a4:70: be:fa:ce:49:ab:aa:aa:44:e0:f6:d0:56:93:2b:d9:db:67:4b: eb:57:e7:7d:7e:22:3b:ab:0d:93:b9:c0:60:65:21:73:97:9f: 28:c3:5a:f2:77:ee:07:d6:8a:9c:1f:af:d2:cf:47:33:97:8c: 39:2c:1b:c2:d7:6e:2c:08:de:4e:0b:05:cb:19:c2:e4:e5:59: ed:7e:17:2b:f6:e6:40:fc:3d:ab:83:47:1c:a5:94:8c:ea:19: 33:63:9b:f3:e0:0f:13:b1:60:c7:78:88:64:63:9a:fa:43:6a: be:0f:20:52:a8:f6:d5:4d:94:c5:e3:c8:6e:bb:7c:ee:08:f1: 97:0d:ab:5c:fe:08:3d:4e:0d:c4:ed:75:13:4c:4c:49:97:82: 06:a4:47:bf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8E50Uabiu6grD8bcQDYy8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTAyMDAyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0OGFlZGZhZmNkNThkMGUyNDBkODMxNDIwYzJkNWQ2YzVmNjE5NDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZGYSSQQMXUYESy8BiQV3VdhkSHT bwXO0YFO3Oty9df/YXjZYbbLoRP88LD2QqwBDU0MGz+GOmcsc0NO1TF6aaegTMvm Qa9TieGvb6iKiplc8FYN8iwEv7vNBSZImG8fPxvuTOjcPdjrPaQFbv025adEyqTG 3nmXRql+Hq5RkZotdZA+YYqFYx9h+GsxzM18vP/tceUmo9vjKK0QKfHhfguCQ5QD SEEUNekzcd49mVGP11MmPvId0iqYLSBIPE1a0sjFbLJX9G6pWLR+3zdp2W+0Bk2u zdsBoa1jNWQe4Dg54dcLiJS46j+1SksomQAAyCQgJ05O1PGwG0aiTuH80wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFEiu36/NWNDiQNgxQgwtXWxfYZRBMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvU0s3ZnI4MVkwT0pBMkRGQ0RDMWRiRjlobEVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc76MA0G CSqGSIb3DQEBCwUAA4IBAQBEowbTwSz0faE7ysF4zttqkEo++F1V3uyhqk7iB0dp c0jdBszXrbeEKJCSKam0P9GW1YaeoHheoUd1yklB+BiO7jmzX2wg+s5oAfksBBXl DBU9w5Hosqn8bOR6bN6vYVFV3JycWo4VNAFKpHC++s5Jq6qqROD20FaTK9nbZ0vr V+d9fiI7qw2TucBgZSFzl58ow1ryd+4H1oqcH6/Sz0czl4w5LBvC124sCN5OCwXL GcLk5Vntfhcr9uZA/D2rg0ccpZSM6hkzY5vz4A8TsWDHeIhkY5r6Q2q+DyBSqPbV TZTF48huu3zuCPGXDatc/gg9Tg3E7XUTTExJl4IGpEe/ -----END CERTIFICATE-----Generated at Fri Jan 2 23:47:29 2026 by rpki-client