This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/00KPXaoeVFb3ZxS5PVmQU3i8VY4.roa File: 00KPXaoeVFb3ZxS5PVmQU3i8VY4.roa (raw, json) Hash identifier: HLzQZ86nyzCWCoL4HyX0cWOR0lVQ8RFQ8/UNt4CesgA= Subject key identifier: D3:42:8F:5D:AA:1E:54:56:F7:67:14:B9:3D:59:90:53:78:BC:55:8E Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be Certificate serial: 019B7CECC111AD8817B1826193B42D73C5B4 Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/00KPXaoeVFb3ZxS5PVmQU3i8VY4.roa Signing time: Fri 02 Jan 2026 04:17:29 +0000 ROA not before: Fri 02 Jan 2026 04:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205498 IP address blocks: 45.85.16.0/22 maxlen: 22 185.215.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:c1:11:ad:88:17:b1:82:61:93:b4:2d:73:c5:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be Validity Not Before: Jan 2 04:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d3428f5daa1e5456f76714b93d59905378bc558e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c5:bf:58:1b:a7:29:a2:bf:06:2f:c8:b9:e2: ad:0f:21:1b:00:b5:26:93:fd:d7:62:e5:eb:ef:e8: fd:83:93:07:b2:0b:ef:fe:83:f1:9e:37:59:e3:22: 83:d1:50:e1:78:ce:3e:be:11:33:d7:92:03:d1:1f: 0b:e4:1a:cd:50:01:eb:0b:91:55:39:37:01:85:d8: 07:d2:b7:98:1f:73:54:25:60:66:04:82:26:30:7d: 9f:65:c6:ac:e1:7c:13:f9:74:b2:64:6d:65:6b:1f: dc:2f:cb:83:e5:20:0a:c6:e8:9d:7e:70:43:67:a1: 7b:ee:12:57:91:cc:6a:bf:6f:23:ad:7f:02:dd:ef: aa:e3:ef:46:ac:fe:ec:c9:c0:90:c4:21:ff:6c:31: 1e:38:3e:f7:a6:4d:88:f2:62:ad:77:c1:e4:cc:bb: 82:39:13:cf:df:02:1e:a0:c4:0e:e5:cf:7a:e8:d3: 35:56:ee:32:d3:e4:fb:51:3d:f1:52:77:71:58:b4: d3:c8:d9:46:6e:e7:0c:eb:7e:53:5f:9f:63:0b:41: 40:4e:b5:6e:f8:3b:75:a6:94:55:96:a6:5d:e7:4f: 16:ad:cb:07:df:3a:24:40:84:6c:ff:5c:f5:38:6c: 52:33:50:9c:06:5c:ed:b2:03:2c:d8:43:6d:52:9e: 9a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:42:8F:5D:AA:1E:54:56:F7:67:14:B9:3D:59:90:53:78:BC:55:8E X509v3 Authority Key Identifier: keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/00KPXaoeVFb3ZxS5PVmQU3i8VY4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.85.16.0/22 185.215.140.0/22 Signature Algorithm: sha256WithRSAEncryption 97:c1:44:2b:ea:e8:c3:31:dc:f4:f4:88:e8:9a:07:6c:d5:f6: 43:94:46:3b:e1:a2:d4:6a:5b:4e:3c:e3:e1:cc:be:26:79:35: 40:79:c7:26:15:e2:e2:48:7b:e5:fb:f2:8d:1a:1f:70:79:cd: 72:21:7b:2e:be:eb:d1:0f:94:3a:3d:08:80:b4:ff:96:9c:99: 46:94:af:cd:24:e8:c8:44:d7:f4:94:ce:08:b1:33:b6:b5:92: 95:db:dd:7b:e4:28:76:a3:5a:b8:31:09:19:c4:1c:04:96:b8: 5e:8e:a3:a7:59:96:08:31:ff:7b:6d:87:65:60:68:c3:c0:25: 56:8a:18:a7:f5:62:17:06:a2:10:04:6d:90:e8:8d:36:d1:69: e8:b9:44:86:c8:18:bc:e4:e5:f0:82:36:a4:7c:c0:95:bd:d3: b4:e8:b1:18:44:3d:01:10:fb:a7:fa:f1:7a:e8:36:a0:05:89: 36:da:64:b5:cf:7e:61:d1:aa:92:af:11:64:69:46:18:c1:d5: 1f:7d:0e:a3:f7:d8:d3:02:fc:f5:1c:fc:21:49:21:f1:34:1d: 49:64:7d:29:1c:15:c6:8f:66:bb:50:50:04:1e:18:9c:db:48: 48:ff:52:56:b1:99:38:df:a8:ae:6e:d8:ec:2a:b9:a7:c8:07: 09:c4:ce:4c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87MERrYgXsYJhk7Qtc8W0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzkyMTMzNjkxMWE1Njg4ZDc4ZTkzZmZlNWU0NzIxMTNi YjE5YmUwHhcNMjYwMTAyMDQxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzQyOGY1ZGFhMWU1NDU2Zjc2NzE0YjkzZDU5OTA1Mzc4YmM1NThlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7sW/WBunKaK/Bi/IueKtDyEbALUm k/3XYuXr7+j9g5MHsgvv/oPxnjdZ4yKD0VDheM4+vhEz15ID0R8L5BrNUAHrC5FV OTcBhdgH0reYH3NUJWBmBIImMH2fZcas4XwT+XSyZG1lax/cL8uD5SAKxuidfnBD Z6F77hJXkcxqv28jrX8C3e+q4+9GrP7sycCQxCH/bDEeOD73pk2I8mKtd8HkzLuC ORPP3wIeoMQO5c966NM1Vu4y0+T7UT3xUndxWLTTyNlGbucM635TX59jC0FATrVu +Dt1ppRVlqZd508WrcsH3zokQIRs/1z1OGxSM1CcBlztsgMs2ENtUp6aOwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFNNCj12qHlRW92cUuT1ZkFN4vFWOMB8GA1UdIwQY MBaAFBd5ITNpEaVojXjpP/5eRyETuxm+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0Nzgt YjVjM2QyNGVmZGNkLzEvMDBLUFhhb2VWRmIzWnhTNVBWbVFVM2k4Vlk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC82MzEwN2MtYjU2MC00MTE2LWI0NzgtYjVjM2QyNGVmZGNk LzEvRjNraE0ya1JwV2lOZU9rX19sNUhJUk83R2I0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCLVUQAwQC udeMMA0GCSqGSIb3DQEBCwUAA4IBAQCXwUQr6ujDMdz09Ijomgds1fZDlEY74aLU altOPOPhzL4meTVAeccmFeLiSHvl+/KNGh9wec1yIXsuvuvRD5Q6PQiAtP+WnJlG lK/NJOjIRNf0lM4IsTO2tZKV29175Ch2o1q4MQkZxBwElrhejqOnWZYIMf97bYdl YGjDwCVWihin9WIXBqIQBG2Q6I020WnouUSGyBi85OXwgjakfMCVvdO06LEYRD0B EPun+vF66DagBYk22mS1z35h0aqSrxFkaUYYwdUffQ6j99jTAvz1HPwhSSHxNB1J ZH0pHBXGj2a7UFAEHhic20hI/1JWsZk436iubtjsKrmnyAcJxM5M -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:46 2026 by rpki-client