This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/085Ouj6r61iFfHOta5gBK38YcLI.roa File: 085Ouj6r61iFfHOta5gBK38YcLI.roa (raw, json) Hash identifier: +dcjb4qLRxfEpIYg0fxx4jk7ltlYnwP0GJy1QwyeW6s= Subject key identifier: D3:CE:4E:BA:3E:AB:EB:58:85:7C:73:AD:6B:98:01:2B:7F:18:70:B2 Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A31DC73A8BEBA563F0BCD01503F9EA Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/085Ouj6r61iFfHOta5gBK38YcLI.roa Signing time: Thu 01 Jan 2026 08:18:34 +0000 ROA not before: Thu 01 Jan 2026 08:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35708 IP address blocks: 109.205.193.0/24 maxlen: 24 2a01:fb01::/32 maxlen: 32 2a01:fb02::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:1d:c7:3a:8b:eb:a5:63:f0:bc:d0:15:03:f9:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d3ce4eba3eabeb58857c73ad6b98012b7f1870b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:1c:c0:f8:8c:41:38:71:cb:27:eb:aa:b5:86: e5:cb:e6:bb:45:64:d8:a6:13:e0:34:36:90:6b:9c: 62:27:9c:07:63:0d:3a:20:de:f5:a8:b7:e2:5e:db: a2:fa:4d:9c:c4:a6:f9:0f:cb:08:ce:c3:96:56:76: 60:d9:ab:71:c1:6c:8e:c3:b9:b3:06:f2:49:7d:89: 1e:9c:f9:38:d2:6c:2b:e5:f3:c5:1b:1a:d6:ec:db: 5b:dd:fa:45:18:e2:75:2a:75:a5:ce:81:41:50:d6: 94:dd:1b:0c:d5:03:c1:aa:ce:ed:9b:51:17:df:e9: 2e:0e:95:b7:54:1d:9d:ab:38:fe:82:66:bc:ab:88: 7c:01:fb:06:50:16:84:ca:e9:41:89:63:23:a0:c2: 74:81:4e:12:61:e6:e9:5b:de:11:5a:83:c4:09:2e: a0:73:4b:7f:36:2e:fd:cf:0b:10:33:48:70:38:73: 83:86:76:30:db:5f:12:37:58:48:62:de:a1:ff:0c: f1:db:8d:74:f2:15:4f:70:5c:8a:79:42:fa:32:1b: 42:35:3e:10:23:f2:5a:88:bc:1d:57:1d:df:3f:d9: ce:de:92:31:31:11:06:1a:fa:6e:2a:07:a2:4c:db: 1e:4b:dd:67:11:74:06:e5:bb:10:cf:6a:f1:fc:b1: e8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:CE:4E:BA:3E:AB:EB:58:85:7C:73:AD:6B:98:01:2B:7F:18:70:B2 X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/085Ouj6r61iFfHOta5gBK38YcLI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 IPv6: 2a01:fb01::-2a01:fb02:3fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 50:5e:ef:5c:e6:6c:92:9a:91:6e:6a:65:ab:fd:c5:6a:37:65: c5:45:0a:b6:a2:3a:9c:f6:c9:40:ce:f8:df:79:a5:b1:39:4e: ca:d4:2f:62:42:f8:9e:01:42:79:ac:a4:e5:7c:92:9a:50:74: 9a:73:e1:5a:31:5f:88:db:5e:28:56:5f:d2:cf:5f:bc:44:2c: fe:c9:ae:16:43:ac:d2:0a:a9:17:02:07:37:87:69:b0:b1:0c: 0b:e1:6a:42:b5:41:4d:57:15:4e:c2:b4:5f:2f:0d:b6:bf:c9: 47:32:47:72:38:6b:76:32:2b:4b:27:cd:5f:7d:b1:69:7b:36: a4:0b:a0:98:2b:54:98:9a:9b:33:b3:d7:72:d7:84:80:8e:c8: 0e:cf:a0:c2:cc:e4:3b:55:18:43:29:cc:ab:57:37:68:0f:ac: 59:81:c9:6d:cd:1b:16:53:40:06:a5:3b:78:f9:e0:5e:52:6d: 76:1d:8a:d9:ef:d0:0a:3f:b9:57:98:7e:fc:b6:34:4f:75:a0: 6b:ab:4f:2f:67:f6:11:88:81:e8:e5:59:59:6e:a2:2f:95:1c: 6b:92:89:41:7a:86:ed:14:c1:4b:35:5f:c6:be:02:fd:77:38: d1:56:1c:f1:e8:57:40:b2:d0:b9:f1:34:75:b0:e2:1a:df:c0: 9b:c5:f6:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt4ox3HOovrpWPwvNAVA/nqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkM2NlNGViYTNlYWJlYjU4ODU3YzczYWQ2Yjk4MDEyYjdmMTg3MGIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlBzA+IxBOHHLJ+uqtYbly+a7RWTY phPgNDaQa5xiJ5wHYw06IN71qLfiXtui+k2cxKb5D8sIzsOWVnZg2atxwWyOw7mz BvJJfYkenPk40mwr5fPFGxrW7Ntb3fpFGOJ1KnWlzoFBUNaU3RsM1QPBqs7tm1EX 3+kuDpW3VB2dqzj+gma8q4h8AfsGUBaEyulBiWMjoMJ0gU4SYebpW94RWoPECS6g c0t/Ni79zwsQM0hwOHODhnYw218SN1hIYt6h/wzx24108hVPcFyKeUL6MhtCNT4Q I/JaiLwdVx3fP9nO3pIxMREGGvpuKgeiTNseS91nEXQG5bsQz2rx/LHoSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNPOTro+q+tYhXxzrWuYASt/GHCyMB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvMDg1T3VqNnI2MWlGZkhPdGE1Z0JLMzhZY0xJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAMBAIAATAGAwQAbc3BMBcE AgACMBEwDwMFACoB+wEDBgYqAfsCADANBgkqhkiG9w0BAQsFAAOCAQEAUF7vXOZs kpqRbmplq/3FajdlxUUKtqI6nPbJQM7433mlsTlOytQvYkL4ngFCeayk5XySmlB0 mnPhWjFfiNteKFZf0s9fvEQs/smuFkOs0gqpFwIHN4dpsLEMC+FqQrVBTVcVTsK0 Xy8Ntr/JRzJHcjhrdjIrSyfNX32xaXs2pAugmCtUmJqbM7PXcteEgI7IDs+gwszk O1UYQynMq1c3aA+sWYHJbc0bFlNABqU7ePngXlJtdh2K2e/QCj+5V5h+/LY0T3Wg a6tPL2f2EYiB6OVZWW6iL5Uca5KJQXqG7RTBSzVfxr4C/Xc40VYc8ehXQLLQufE0 dbDiGt/Am8X21g== -----END CERTIFICATE-----Generated at Mon Jan 19 14:38:57 2026 by rpki-client