This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/8TA7t7HrUBV_MAyX5n-91LJHqkY.roa File: 8TA7t7HrUBV_MAyX5n-91LJHqkY.roa (raw, json) Hash identifier: /S+gSBwTzcXM3LZzCzX/nuyybzqrF+WlaDQm17WzHkw= Subject key identifier: F1:30:3B:B7:B1:EB:50:15:7F:30:0C:97:E6:7F:BD:D4:B2:47:AA:46 Certificate issuer: /CN=bdd244214d76468d3fb72abad1892ef23dede978 Certificate serial: 019B7F834AFF22AC93F6AB0F6F57EEA7721C Authority key identifier: BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/8TA7t7HrUBV_MAyX5n-91LJHqkY.roa Signing time: Fri 02 Jan 2026 16:21:09 +0000 ROA not before: Fri 02 Jan 2026 16:21:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 185.235.156.0/23 maxlen: 23 185.235.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/vdJEIU12Ro0_tyq60Yku8j3t6Xg.crl rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/vdJEIU12Ro0_tyq60Yku8j3t6Xg.mft rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:4a:ff:22:ac:93:f6:ab:0f:6f:57:ee:a7:72:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdd244214d76468d3fb72abad1892ef23dede978 Validity Not Before: Jan 2 16:21:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f1303bb7b1eb50157f300c97e67fbdd4b247aa46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:21:ca:44:73:56:83:f2:da:ff:5e:9e:85:c5: 45:46:91:82:aa:0d:fc:18:c3:ae:7c:93:10:31:0a: 26:47:c8:74:56:79:7e:4f:ad:96:39:84:ef:4b:73: ac:f5:08:0e:3b:74:7d:e9:16:88:46:62:9d:b8:e6: c3:07:f1:9b:24:05:23:b9:7a:3b:9b:04:13:7b:a5: 87:f4:14:06:6f:9b:93:97:64:3c:79:cf:da:de:ff: 77:9c:84:6d:d4:78:58:d0:aa:75:22:82:16:05:f6: ca:07:02:2e:28:92:3f:ad:01:24:e4:20:f9:31:5f: fe:61:fb:13:79:e5:4f:de:34:94:57:08:49:7e:d1: 04:25:29:19:2a:26:5e:b0:1e:5f:36:c7:d3:b7:e6: b9:ee:3c:53:c2:58:dc:3b:9b:4d:90:6e:a0:bd:76: b6:c7:f5:d4:6d:fb:05:02:87:26:72:4e:72:c4:e1: 7c:45:64:aa:9a:9c:2d:ef:aa:c7:b7:3e:f8:41:b7: bc:b6:bc:17:58:a4:2a:54:66:e4:32:88:d0:e0:3a: c5:22:f6:8f:0f:63:5f:ff:36:24:d2:05:0f:21:8d: e4:c8:a3:f9:c7:04:7e:e1:6c:9c:f8:94:76:2e:c2: 0f:74:36:42:99:1c:8d:c8:95:99:a5:3b:95:ed:4d: 54:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:30:3B:B7:B1:EB:50:15:7F:30:0C:97:E6:7F:BD:D4:B2:47:AA:46 X509v3 Authority Key Identifier: keyid:BD:D2:44:21:4D:76:46:8D:3F:B7:2A:BA:D1:89:2E:F2:3D:ED:E9:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdJEIU12Ro0_tyq60Yku8j3t6Xg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/8TA7t7HrUBV_MAyX5n-91LJHqkY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/756eef-6629-463a-99ff-46a43ef0221b/1/vdJEIU12Ro0_tyq60Yku8j3t6Xg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.235.156.0-185.235.158.255 Signature Algorithm: sha256WithRSAEncryption 09:bd:62:a7:9e:4c:f8:0f:03:5b:9a:22:48:e1:77:c3:0a:00: 17:52:5d:d5:bb:22:51:2c:48:80:43:d5:8a:64:66:c6:7e:18: 7e:7d:6c:9e:6c:7c:e8:8b:01:61:c3:b0:14:d4:7e:cd:cc:49: 04:67:db:6a:cd:af:a5:9e:a9:97:0c:1b:31:89:97:96:c0:4b: 65:54:1e:7d:65:38:0d:d4:e4:9a:f1:3d:8c:66:69:d7:8d:f9: 49:b0:fd:ea:a2:86:f4:42:6c:a9:62:5e:b2:04:8a:85:42:d2: 74:d8:f9:9a:ad:a6:66:5b:ad:05:6b:1b:85:d7:8f:da:22:71: fc:de:96:68:b8:2b:2b:bf:da:57:e3:b2:2b:8f:9d:82:cf:aa: 8f:c4:30:c8:e9:9e:a5:90:bd:22:da:15:b5:aa:00:6a:50:03: 14:c1:b6:a9:d9:c7:86:7e:8a:81:1b:c9:b3:00:73:f2:fb:94: 20:cc:02:2f:a5:60:d0:8f:04:33:3d:3e:ce:76:59:a0:94:26: 79:4f:38:e7:60:47:d0:6d:c3:45:4d:54:f1:ed:c4:f2:83:ec: 0a:52:c4:4d:55:76:d4:bc:b1:ae:1d:a3:6c:6f:04:dc:f2:bb: 55:75:f2:cc:ca:d5:09:64:1b:f8:ef:77:ee:45:40:c7:e2:e1: 02:65:90:36 -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt/g0r/IqyT9qsPb1fup3IcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZDI0NDIxNGQ3NjQ2OGQzZmI3MmFiYWQxODkyZWYyM2Rl ZGU5NzgwHhcNMjYwMTAyMTYyMTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMTMwM2JiN2IxZWI1MDE1N2YzMDBjOTdlNjdmYmRkNGIyNDdhYTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjSHKRHNWg/La/16ehcVFRpGCqg38 GMOufJMQMQomR8h0Vnl+T62WOYTvS3Os9QgOO3R96RaIRmKduObDB/GbJAUjuXo7 mwQTe6WH9BQGb5uTl2Q8ec/a3v93nIRt1HhY0Kp1IoIWBfbKBwIuKJI/rQEk5CD5 MV/+YfsTeeVP3jSUVwhJftEEJSkZKiZesB5fNsfTt+a57jxTwljcO5tNkG6gvXa2 x/XUbfsFAocmck5yxOF8RWSqmpwt76rHtz74Qbe8trwXWKQqVGbkMojQ4DrFIvaP D2Nf/zYk0gUPIY3kyKP5xwR+4Wyc+JR2LsIPdDZCmRyNyJWZpTuV7U1UCQIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFPEwO7ex61AVfzAMl+Z/vdSyR6pGMB8GA1UdIwQY MBaAFL3SRCFNdkaNP7cqutGJLvI97el4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmRKRUlVMTJSbzBfdHlxNjBZa3U4ajN0NlhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83NTZlZWYtNjYyOS00NjNhLTk5ZmYt NDZhNDNlZjAyMjFiLzEvOFRBN3Q3SHJVQlZfTUF5WDVuLTkxTEpIcWtZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNC83NTZlZWYtNjYyOS00NjNhLTk5ZmYtNDZhNDNlZjAyMjFi LzEvdmRKRUlVMTJSbzBfdHlxNjBZa3U4ajN0NlhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAK565wD BAC5654wDQYJKoZIhvcNAQELBQADggEBAAm9YqeeTPgPA1uaIkjhd8MKABdSXdW7 IlEsSIBD1YpkZsZ+GH59bJ5sfOiLAWHDsBTUfs3MSQRn22rNr6WeqZcMGzGJl5bA S2VUHn1lOA3U5JrxPYxmadeN+Umw/eqihvRCbKliXrIEioVC0nTY+ZqtpmZbrQVr G4XXj9oicfzelmi4Kyu/2lfjsiuPnYLPqo/EMMjpnqWQvSLaFbWqAGpQAxTBtqnZ x4Z+ioEbybMAc/L7lCDMAi+lYNCPBDM9Ps52WaCUJnlPOOdgR9Btw0VNVPHtxPKD 7ApSxE1VdtS8sa4do2xvBNzyu1V18szK1QlkG/jvd+5FQMfi4QJlkDY= -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:13 2026 by rpki-client