This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/v-ipIT8yr4AG7JC_OJEOS1gcpDo.roa File: v-ipIT8yr4AG7JC_OJEOS1gcpDo.roa (raw, json) Hash identifier: GHUlrgQfUHa7TIwzSErf9EB2ikM0OJVY/nwHMqCmoVI= Subject key identifier: BF:E8:A9:21:3F:32:AF:80:06:EC:90:BF:38:91:0E:4B:58:1C:A4:3A Certificate issuer: /CN=b9de70122e49285d05b05f9bbf4449bfc80830e5 Certificate serial: 019B7910BEBEE59822B654F277390361C583 Authority key identifier: B9:DE:70:12:2E:49:28:5D:05:B0:5F:9B:BF:44:49:BF:C8:08:30:E5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ud5wEi5JKF0FsF-bv0RJv8gIMOU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/v-ipIT8yr4AG7JC_OJEOS1gcpDo.roa Signing time: Thu 01 Jan 2026 10:18:19 +0000 ROA not before: Thu 01 Jan 2026 10:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42687 IP address blocks: 185.217.141.0/24 maxlen: 24 2a10:c700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/ud5wEi5JKF0FsF-bv0RJv8gIMOU.crl rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/ud5wEi5JKF0FsF-bv0RJv8gIMOU.mft rsync://rpki.ripe.net/repository/DEFAULT/ud5wEi5JKF0FsF-bv0RJv8gIMOU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:be:be:e5:98:22:b6:54:f2:77:39:03:61:c5:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b9de70122e49285d05b05f9bbf4449bfc80830e5 Validity Not Before: Jan 1 10:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bfe8a9213f32af8006ec90bf38910e4b581ca43a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fc:df:e1:07:b6:7c:71:b7:3c:8d:cb:0c:6a: 9a:86:7d:25:6b:cc:ea:e7:99:59:07:63:64:75:cf: 03:ed:c5:1c:fd:06:23:b8:01:53:83:3b:35:6a:fc: d6:6e:4d:5f:a8:78:14:20:4b:f5:9f:b6:69:73:9c: 57:d0:7b:de:8d:2f:ad:55:b0:24:c2:bb:be:44:14: b9:a4:f7:28:c8:76:4e:e8:4d:9e:fe:39:69:99:fd: c6:ec:41:d0:fe:b0:00:16:ce:9c:56:a4:2b:ab:2c: 36:c7:cb:a0:68:2d:e5:ca:f1:c0:00:eb:34:50:04: c5:09:45:b1:40:76:98:ce:9e:e3:aa:6c:27:3f:70: 0c:60:96:03:8a:bd:66:9b:a2:e3:37:e7:47:5d:d7: 2a:4b:b9:22:93:0b:bb:2f:46:04:1b:df:d3:2a:be: fc:af:97:95:9e:6d:f6:ac:ee:eb:61:c1:de:39:4e: 7f:9b:4c:21:6a:3e:6c:11:99:c6:c8:29:9d:dc:55: b8:68:37:c6:99:17:a0:42:ec:e6:a7:3d:89:6e:8a: bb:73:fb:34:dd:05:cb:dc:60:f8:cd:c2:96:17:de: 20:6f:6c:5a:73:13:02:3b:c4:b9:3c:02:e5:32:35: 3d:9f:85:23:1b:1c:a6:b9:5a:4b:ae:31:b0:d9:6f: fe:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E8:A9:21:3F:32:AF:80:06:EC:90:BF:38:91:0E:4B:58:1C:A4:3A X509v3 Authority Key Identifier: keyid:B9:DE:70:12:2E:49:28:5D:05:B0:5F:9B:BF:44:49:BF:C8:08:30:E5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ud5wEi5JKF0FsF-bv0RJv8gIMOU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/v-ipIT8yr4AG7JC_OJEOS1gcpDo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/ud5wEi5JKF0FsF-bv0RJv8gIMOU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.217.141.0/24 IPv6: 2a10:c700::/32 Signature Algorithm: sha256WithRSAEncryption 5f:5f:15:0d:fe:b3:94:43:f8:56:11:86:57:0f:4f:c8:25:18: 4c:44:37:b9:7a:a8:a0:a0:5e:c7:72:08:08:0e:97:6d:e8:11: 21:d2:79:bf:01:96:32:45:6b:66:2b:ca:8e:a4:24:87:70:0e: 39:76:10:bc:d6:ac:2f:dc:dd:24:10:d2:ae:40:38:6a:15:06: 88:2c:a2:a2:5d:f8:a1:04:d2:5b:c3:05:87:da:4a:5a:f2:8f: c7:63:a8:12:68:85:15:c6:8f:f7:57:f2:5d:e3:e2:10:a4:59: f5:02:8c:b2:dd:ff:14:d7:d4:d6:8f:62:65:3f:1f:0b:e9:3f: 86:93:9a:a7:ce:47:68:fa:94:2f:7b:9f:4e:7c:e5:92:c7:01: a8:3d:7f:93:34:c1:f0:bb:f5:0e:da:55:87:65:cf:5b:84:98: ea:eb:32:18:e3:fc:85:03:3a:10:ba:5f:6d:91:8d:55:ad:46: 44:a6:be:64:9a:d7:33:d2:7a:10:2d:24:17:34:f0:a5:fd:c9: 4a:85:26:66:96:c0:53:42:22:6e:c7:54:c8:7d:e1:66:dc:bd: 32:eb:e8:d6:1a:3a:5d:a2:db:82:a9:6d:98:e3:8f:6f:ff:61: 4d:a1:9e:32:e9:d7:2e:d1:cd:19:e5:22:82:ac:db:99:78:71: 87:c4:a2:ac -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EL6+5ZgitlTydzkDYcWDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI5ZGU3MDEyMmU0OTI4NWQwNWIwNWY5YmJmNDQ0OWJmYzgw ODMwZTUwHhcNMjYwMTAxMTAxODE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZmU4YTkyMTNmMzJhZjgwMDZlYzkwYmYzODkxMGU0YjU4MWNhNDNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvfzf4Qe2fHG3PI3LDGqahn0la8zq 55lZB2Nkdc8D7cUc/QYjuAFTgzs1avzWbk1fqHgUIEv1n7Zpc5xX0HvejS+tVbAk wru+RBS5pPcoyHZO6E2e/jlpmf3G7EHQ/rAAFs6cVqQrqyw2x8ugaC3lyvHAAOs0 UATFCUWxQHaYzp7jqmwnP3AMYJYDir1mm6LjN+dHXdcqS7kikwu7L0YEG9/TKr78 r5eVnm32rO7rYcHeOU5/m0whaj5sEZnGyCmd3FW4aDfGmRegQuzmpz2Jboq7c/s0 3QXL3GD4zcKWF94gb2xacxMCO8S5PALlMjU9n4UjGxymuVpLrjGw2W/+qQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFL/oqSE/Mq+ABuyQvziRDktYHKQ6MB8GA1UdIwQY MBaAFLnecBIuSShdBbBfm79ESb/ICDDlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdWQ1d0VpNUpLRjBGc0YtYnYwUkp2OGdJTU9VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS9hZmFlNmMtMjk4Mi00MTE5LTkwNmYt ODk1Zjg2Mjg3NTA2LzEvdi1pcElUOHlyNEFHN0pDX09KRU9TMWdjcERvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS9hZmFlNmMtMjk4Mi00MTE5LTkwNmYtODk1Zjg2Mjg3NTA2 LzEvdWQ1d0VpNUpLRjBGc0YtYnYwUkp2OGdJTU9VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAudmNMA0E AgACMAcDBQAqEMcAMA0GCSqGSIb3DQEBCwUAA4IBAQBfXxUN/rOUQ/hWEYZXD0/I JRhMRDe5eqigoF7HcggIDpdt6BEh0nm/AZYyRWtmK8qOpCSHcA45dhC81qwv3N0k ENKuQDhqFQaILKKiXfihBNJbwwWH2kpa8o/HY6gSaIUVxo/3V/Jd4+IQpFn1Aoyy 3f8U19TWj2JlPx8L6T+Gk5qnzkdo+pQve59OfOWSxwGoPX+TNMHwu/UO2lWHZc9b hJjq6zIY4/yFAzoQul9tkY1VrUZEpr5kmtcz0noQLSQXNPCl/clKhSZmlsBTQiJu x1TIfeFm3L0y6+jWGjpdotuCqW2Y449v/2FNoZ4y6dcu0c0Z5SKCrNuZeHGHxKKs -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:33 2026 by rpki-client