This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/6qoBSrrhi2VKQ2-x91iDJmcoOhQ.roa File: 6qoBSrrhi2VKQ2-x91iDJmcoOhQ.roa (raw, json) Hash identifier: urnXFLFxbktUpf/FnGonIt+QH0Pj4s4eEnHDC6hX/xw= Subject key identifier: EA:AA:01:4A:BA:E1:8B:65:4A:43:6F:B1:F7:58:83:26:67:28:3A:14 Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10 Certificate serial: 019B7F84E0B65A63BED4018D6135937F3B0D Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/6qoBSrrhi2VKQ2-x91iDJmcoOhQ.roa Signing time: Fri 02 Jan 2026 16:22:53 +0000 ROA not before: Fri 02 Jan 2026 16:22:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42831 IP address blocks: 88.209.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.mft rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 15:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:e0:b6:5a:63:be:d4:01:8d:61:35:93:7f:3b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10 Validity Not Before: Jan 2 16:22:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=eaaa014abae18b654a436fb1f758832667283a14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:59:f0:7f:53:d8:db:43:f2:29:92:46:51:b1: 2d:77:f9:7b:ca:69:90:8c:ba:6a:96:66:0b:be:f0: 62:d5:9e:6f:93:5b:9b:c4:b2:4a:a1:36:5d:06:6e: 91:30:0f:51:50:e2:40:6a:44:2a:23:15:19:00:dd: b7:68:9c:f5:be:b7:80:af:e7:ca:fe:e2:7d:f4:82: 8b:34:7d:6c:e0:09:8a:3b:2e:84:38:96:90:f2:ad: 9a:85:c9:d7:77:21:95:dc:3c:f0:81:07:b5:0a:31: e0:70:1e:3c:4e:bc:d4:28:93:3d:dd:2d:db:5f:d3: 36:6b:41:8a:27:5a:dd:8f:6d:1c:d2:d0:d6:46:c7: 51:ba:44:87:65:c9:00:61:25:4a:d6:da:ec:44:8f: 58:36:ae:65:d6:3e:d8:74:5a:fa:b7:0c:6b:d5:69: 52:14:c5:83:80:0f:ce:67:6a:30:a9:89:6c:c8:40: ee:25:8f:8e:04:ac:32:2d:2d:ee:cf:7f:90:db:e5: 15:02:b2:7c:79:a3:f5:ee:db:bf:1c:26:14:3d:7b: dc:6b:87:64:da:08:39:1a:ae:42:2f:0a:97:e3:80: d1:bc:c6:f6:5d:fb:80:17:0c:69:95:cd:7e:d2:b3: aa:98:55:a8:b1:d1:b0:10:98:42:0d:c1:f5:2a:63: 0e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AA:01:4A:BA:E1:8B:65:4A:43:6F:B1:F7:58:83:26:67:28:3A:14 X509v3 Authority Key Identifier: keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/6qoBSrrhi2VKQ2-x91iDJmcoOhQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.209.204.0/24 Signature Algorithm: sha256WithRSAEncryption 02:84:0e:f3:ed:6d:cf:8a:2b:0a:32:73:e0:ca:5d:fe:34:a7: d7:bf:c6:c4:1b:3e:de:6c:47:45:31:3e:8e:ab:14:41:1f:6d: 9b:e6:e2:b5:29:31:ef:35:1a:16:a5:cd:58:a0:c5:0a:ce:fd: f4:d4:87:69:2c:a7:75:a2:9c:64:4e:1c:c5:cc:a7:15:4e:7d: 48:53:5b:b0:1d:8f:9e:a3:2f:32:bb:84:5a:4b:86:4f:a0:4b: 3f:97:5e:50:30:5b:9f:c9:90:86:1c:fa:68:bb:c3:25:27:9a: a3:00:61:7f:1e:4f:e3:0b:e9:6f:82:f7:e6:17:cf:03:d3:88: 77:c0:c5:8e:d8:83:ea:32:48:35:28:a4:ac:2a:b7:2b:fa:80: 7c:c2:79:8c:37:f3:ab:b6:89:5f:8f:97:dc:9c:d9:83:c4:9f: a7:92:74:10:1c:ff:ba:c6:d9:87:15:12:cb:a1:68:50:0c:64: d6:2c:92:a4:0f:89:93:b4:fc:c9:06:b6:75:54:e9:41:43:cd: a3:d2:b7:98:84:f6:25:06:7d:d1:be:9d:06:37:5a:f3:b1:56: 7a:3a:db:a9:94:ba:a7:34:1c:67:55:a6:cc:47:01:57:7b:13: f9:c8:b1:7c:c6:ae:c4:cb:36:32:23:e3:b9:f0:ec:70:00:33: 67:8b:ba:51 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hOC2WmO+1AGNYTWTfzsNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx MWRhMTAwHhcNMjYwMTAyMTYyMjUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYWFhMDE0YWJhZTE4YjY1NGE0MzZmYjFmNzU4ODMyNjY3MjgzYTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFnwf1PY20PyKZJGUbEtd/l7ymmQ jLpqlmYLvvBi1Z5vk1ubxLJKoTZdBm6RMA9RUOJAakQqIxUZAN23aJz1vreAr+fK /uJ99IKLNH1s4AmKOy6EOJaQ8q2ahcnXdyGV3DzwgQe1CjHgcB48TrzUKJM93S3b X9M2a0GKJ1rdj20c0tDWRsdRukSHZckAYSVK1trsRI9YNq5l1j7YdFr6twxr1WlS FMWDgA/OZ2owqYlsyEDuJY+OBKwyLS3uz3+Q2+UVArJ8eaP17tu/HCYUPXvca4dk 2gg5Gq5CLwqX44DRvMb2XfuAFwxplc1+0rOqmFWosdGwEJhCDcH1KmMONwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOqqAUq64YtlSkNvsfdYgyZnKDoUMB8GA1UdIwQY MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt N2U0ZDZmNmY2ZTY2LzEvNnFvQlNycmhpMlZLUTIteDkxaURKbWNvT2hRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2 LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWNHMMA0G CSqGSIb3DQEBCwUAA4IBAQAChA7z7W3PiisKMnPgyl3+NKfXv8bEGz7ebEdFMT6O qxRBH22b5uK1KTHvNRoWpc1YoMUKzv301IdpLKd1opxkThzFzKcVTn1IU1uwHY+e oy8yu4RaS4ZPoEs/l15QMFufyZCGHPpou8MlJ5qjAGF/Hk/jC+lvgvfmF88D04h3 wMWO2IPqMkg1KKSsKrcr+oB8wnmMN/Ortolfj5fcnNmDxJ+nknQQHP+6xtmHFRLL oWhQDGTWLJKkD4mTtPzJBrZ1VOlBQ82j0reYhPYlBn3Rvp0GN1rzsVZ6OtuplLqn NBxnVabMRwFXexP5yLF8xq7EyzYyI+O58OxwADNni7pR -----END CERTIFICATE-----Generated at Mon Jan 19 20:01:00 2026 by rpki-client