This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8A44F-HK4brDvcdx38UFaUUZrxg.roa File: 8A44F-HK4brDvcdx38UFaUUZrxg.roa (raw, json) Hash identifier: J1l91xAYUMrUVrPKe9o7rX2U+//nR5fojqbrmgbxxMA= Subject key identifier: F0:0E:38:17:E1:CA:E1:BA:C3:BD:C7:71:DF:C5:05:69:45:19:AF:18 Certificate issuer: /CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714 Certificate serial: 019B77590CB5FFBF7B10E9CA81353C654E6A Authority key identifier: F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8A44F-HK4brDvcdx38UFaUUZrxg.roa Signing time: Thu 01 Jan 2026 02:18:03 +0000 ROA not before: Thu 01 Jan 2026 02:18:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47998 IP address blocks: 94.228.64.0/20 maxlen: 24 2a00:1068::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.mft rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:0c:b5:ff:bf:7b:10:e9:ca:81:35:3c:65:4e:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f169902ad6b7bf4601eeaa5e723ef23d70fa7714 Validity Not Before: Jan 1 02:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f00e3817e1cae1bac3bdc771dfc505694519af18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f4:af:c7:d0:cc:2f:6b:ed:7c:77:0d:57:b0: c2:82:62:da:13:d9:25:11:3e:0c:15:6f:69:d2:b0: 51:28:db:3d:85:6d:8b:e7:d8:1c:78:aa:8d:62:a7: fd:c3:b6:b0:84:c0:35:02:de:48:c5:76:bd:16:32: 26:fb:0e:63:59:7e:c9:df:19:b4:e9:1b:db:58:29: d9:4f:fe:08:66:dc:4d:ac:17:87:96:03:99:32:e3: 1c:aa:7c:76:4d:aa:d8:ed:92:15:4f:fa:b2:bd:1d: 04:8b:64:eb:58:f0:02:b3:a6:2a:c4:fd:73:21:e0: de:80:83:1a:ed:5b:ad:05:e8:b1:66:a6:86:35:d0: 09:59:7a:d2:ae:35:5d:33:a5:78:e5:de:22:b6:c6: de:94:18:73:8e:7f:c3:e7:3c:43:bc:36:f8:17:a7: 84:c7:70:72:9b:34:d7:a5:14:eb:c2:31:82:8f:81: a6:ef:b6:2b:65:b9:f2:4f:19:24:d6:a8:dd:dd:a0: 47:be:f1:15:70:7d:20:16:79:25:13:a6:d2:c8:a4: 9e:c8:57:60:fe:3f:f6:19:03:f4:fc:f2:4d:7d:f5: 3c:3d:29:43:15:17:44:c9:96:54:c9:78:24:0c:78: 85:88:d6:0b:4e:1b:05:38:ee:bd:96:4a:e4:bc:05: 34:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:0E:38:17:E1:CA:E1:BA:C3:BD:C7:71:DF:C5:05:69:45:19:AF:18 X509v3 Authority Key Identifier: keyid:F1:69:90:2A:D6:B7:BF:46:01:EE:AA:5E:72:3E:F2:3D:70:FA:77:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8WmQKta3v0YB7qpecj7yPXD6dxQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8A44F-HK4brDvcdx38UFaUUZrxg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4f2800-a555-4f82-8936-f208365051cb/1/8WmQKta3v0YB7qpecj7yPXD6dxQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.228.64.0/20 IPv6: 2a00:1068::/32 Signature Algorithm: sha256WithRSAEncryption 69:84:5b:bb:dc:93:7a:f7:8b:53:f9:b1:52:4a:99:b6:50:62: 1d:c9:e3:49:7a:e3:7a:aa:67:38:40:c5:c5:a5:dc:81:5b:e7: ea:0a:7a:ea:06:7c:ce:af:3d:89:37:d1:27:cf:51:23:d9:60: 1f:89:d7:00:01:19:5e:0b:5c:8e:3b:3a:76:ea:e5:ed:2d:e9: 4c:78:00:00:2a:90:31:51:c0:6f:93:64:a9:8b:0a:3a:e9:06: 0e:01:aa:e0:a2:eb:3d:2e:b9:10:0f:99:0e:44:5d:94:64:89: 65:64:1b:18:fc:f6:ba:ca:41:47:88:4e:0e:c8:52:6d:6f:44: 0c:24:31:fe:c2:08:14:af:59:e4:d6:46:0d:07:86:01:8b:d4: ef:61:ff:8f:95:f7:51:f0:57:93:f8:ef:e5:e3:2a:db:9c:8a: 16:5a:f9:cf:6a:c7:54:7c:b5:95:2a:46:42:88:04:06:6f:a7: 54:f4:aa:de:b1:44:d4:8e:9c:c7:b1:cd:fd:31:85:cd:fa:93: d1:e1:87:06:02:13:12:68:cf:6d:85:62:b6:e6:50:81:f9:2b: 08:8e:ab:cb:44:b9:9a:5e:90:66:d7:3d:b3:ea:a1:9a:65:46: 94:77:b3:e6:bf:68:ed:5b:52:75:94:cb:9c:8f:8e:a4:4a:a6: db:ba:a6:c1 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt3WQy1/797EOnKgTU8ZU5qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYxNjk5MDJhZDZiN2JmNDYwMWVlYWE1ZTcyM2VmMjNkNzBm YTc3MTQwHhcNMjYwMTAxMDIxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDBlMzgxN2UxY2FlMWJhYzNiZGM3NzFkZmM1MDU2OTQ1MTlhZjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAofSvx9DML2vtfHcNV7DCgmLaE9kl ET4MFW9p0rBRKNs9hW2L59gceKqNYqf9w7awhMA1At5IxXa9FjIm+w5jWX7J3xm0 6RvbWCnZT/4IZtxNrBeHlgOZMuMcqnx2TarY7ZIVT/qyvR0Ei2TrWPACs6YqxP1z IeDegIMa7VutBeixZqaGNdAJWXrSrjVdM6V45d4itsbelBhzjn/D5zxDvDb4F6eE x3BymzTXpRTrwjGCj4Gm77YrZbnyTxkk1qjd3aBHvvEVcH0gFnklE6bSyKSeyFdg /j/2GQP0/PJNffU8PSlDFRdEyZZUyXgkDHiFiNYLThsFOO69lkrkvAU0gQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFPAOOBfhyuG6w73Hcd/FBWlFGa8YMB8GA1UdIwQY MBaAFPFpkCrWt79GAe6qXnI+8j1w+ncUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOFdtUUt0YTN2MFlCN3FwZWNqN3lQWEQ2ZHhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy80ZjI4MDAtYTU1NS00ZjgyLTg5MzYt ZjIwODM2NTA1MWNiLzEvOEE0NEYtSEs0YnJEdmNkeDM4VUZhVVVacnhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMy80ZjI4MDAtYTU1NS00ZjgyLTg5MzYtZjIwODM2NTA1MWNi LzEvOFdtUUt0YTN2MFlCN3FwZWNqN3lQWEQ2ZHhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQEXuRAMA0E AgACMAcDBQAqABBoMA0GCSqGSIb3DQEBCwUAA4IBAQBphFu73JN694tT+bFSSpm2 UGIdyeNJeuN6qmc4QMXFpdyBW+fqCnrqBnzOrz2JN9Enz1Ej2WAfidcAARleC1yO Ozp26uXtLelMeAAAKpAxUcBvk2Spiwo66QYOAargous9LrkQD5kORF2UZIllZBsY /Pa6ykFHiE4OyFJtb0QMJDH+wggUr1nk1kYNB4YBi9TvYf+PlfdR8FeT+O/l4yrb nIoWWvnPasdUfLWVKkZCiAQGb6dU9KresUTUjpzHsc39MYXN+pPR4YcGAhMSaM9t hWK25lCB+SsIjqvLRLmaXpBm1z2z6qGaZUaUd7Pmv2jtW1J1lMucj46kSqbbuqbB -----END CERTIFICATE-----Generated at Tue Feb 10 01:24:21 2026 by rpki-client