This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/l_ruKO78QHVQe-kxScIY78h3qwo.roa File: l_ruKO78QHVQe-kxScIY78h3qwo.roa (raw, json) Hash identifier: jzBDUnZ8ZQyI+7hv0yjsFFpgvL3Te9Vz0AqbFGjex/4= Subject key identifier: 97:FA:EE:28:EE:FC:40:75:50:7B:E9:31:49:C2:18:EF:C8:77:AB:0A Certificate issuer: /CN=4398b577b223b5a76351219a74fda446704890f7 Certificate serial: 019B7AC88D99C151F2EB58B66C1209CE07B3 Authority key identifier: 43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/l_ruKO78QHVQe-kxScIY78h3qwo.roa Signing time: Thu 01 Jan 2026 18:18:42 +0000 ROA not before: Thu 01 Jan 2026 18:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212323 IP address blocks: 185.209.12.0/24 maxlen: 24 2a10:d200::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.mft rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:8d:99:c1:51:f2:eb:58:b6:6c:12:09:ce:07:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4398b577b223b5a76351219a74fda446704890f7 Validity Not Before: Jan 1 18:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=97faee28eefc4075507be93149c218efc877ab0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b2:4e:58:7d:aa:d7:96:7a:7e:13:45:02:ea: 52:88:73:c6:18:55:bc:63:70:4f:2a:67:94:a7:8d: ad:16:06:6f:2b:74:67:d5:bf:24:5b:30:ea:be:ce: 4f:0a:c9:5c:de:fd:3d:49:65:ae:41:6f:e3:5a:c3: 22:c4:44:6c:06:08:04:8f:b6:33:44:15:5d:f9:0a: 8c:ae:57:76:d1:44:70:e6:19:f5:0b:25:ac:8a:6b: 10:40:48:9e:43:cd:a1:d4:89:57:33:dd:1d:23:e7: 06:20:64:10:33:06:d3:23:2b:4b:16:74:a9:1a:48: 21:9d:11:4e:af:db:12:46:72:2e:ad:23:8d:a7:57: 0e:02:34:80:d8:d1:65:5d:80:fc:d0:a1:ba:39:2a: 3a:35:cc:ef:3f:01:b2:32:74:77:fe:fb:fa:96:be: b7:12:bd:cb:c8:e4:ef:b1:5c:a8:c3:e7:5c:05:1e: b5:c9:76:86:48:6c:86:9b:86:2a:3c:79:db:7d:e4: 25:46:d3:f7:b3:66:9c:ac:cf:7c:68:95:64:cf:67: ea:78:b0:cc:78:91:73:d9:7b:11:09:97:38:a2:66: 9b:62:7e:cd:df:75:bf:8d:e6:0c:00:4d:35:88:15: d6:b6:27:3d:00:b8:63:a2:24:40:8f:9e:f5:ed:19: 6e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:FA:EE:28:EE:FC:40:75:50:7B:E9:31:49:C2:18:EF:C8:77:AB:0A X509v3 Authority Key Identifier: keyid:43:98:B5:77:B2:23:B5:A7:63:51:21:9A:74:FD:A4:46:70:48:90:F7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q5i1d7IjtadjUSGadP2kRnBIkPc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/l_ruKO78QHVQe-kxScIY78h3qwo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/582695-61a1-48e7-b6ac-7bc45340dd28/1/Q5i1d7IjtadjUSGadP2kRnBIkPc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.209.12.0/24 IPv6: 2a10:d200::/29 Signature Algorithm: sha256WithRSAEncryption 2f:36:8b:d1:48:01:3a:de:a9:c4:af:75:93:3d:5f:a4:89:b4: aa:fe:d0:1c:f0:65:0e:94:ae:50:fc:24:cf:37:33:5a:8b:68: 05:2d:cd:55:9f:28:7d:7b:01:e0:92:7d:97:37:1f:95:89:5b: 94:75:90:5f:5e:d4:cd:4d:23:32:9b:da:af:f5:b2:a1:ce:10: 04:70:e2:72:73:07:40:d7:04:2b:85:d5:50:6d:2d:5e:9e:65: 9c:13:67:ca:05:a6:73:5b:fe:96:24:5b:58:80:a0:fb:ac:44: 1f:92:8a:77:2f:18:b6:b8:96:76:c4:b7:47:9c:f9:0e:b6:da: 88:d3:ef:c9:4b:67:da:07:a7:ed:24:3f:4f:7a:f1:e3:be:94: d0:a0:f3:1e:45:d3:aa:5f:f8:24:f7:ef:6b:bd:92:eb:16:9b: 70:ee:61:7e:43:21:37:e4:a5:f4:3e:ec:be:16:00:bd:85:18: 21:30:f8:44:3b:de:cb:95:53:48:98:44:8a:24:ed:2b:de:8b: 86:06:de:14:56:55:96:30:6a:d1:3a:a9:eb:6e:72:42:b7:80: 28:ad:92:2d:37:f6:52:d8:f9:04:3b:f1:0c:0b:3e:d1:eb:39: 59:7a:fa:b7:80:73:76:91:34:19:9d:8b:a4:a3:94:f3:10:d2: ef:35:bd:6e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6yI2ZwVHy61i2bBIJzgezMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzOThiNTc3YjIyM2I1YTc2MzUxMjE5YTc0ZmRhNDQ2NzA0 ODkwZjcwHhcNMjYwMTAxMTgxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5N2ZhZWUyOGVlZmM0MDc1NTA3YmU5MzE0OWMyMThlZmM4NzdhYjBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA07JOWH2q15Z6fhNFAupSiHPGGFW8 Y3BPKmeUp42tFgZvK3Rn1b8kWzDqvs5PCslc3v09SWWuQW/jWsMixERsBggEj7Yz RBVd+QqMrld20URw5hn1CyWsimsQQEieQ82h1IlXM90dI+cGIGQQMwbTIytLFnSp GkghnRFOr9sSRnIurSONp1cOAjSA2NFlXYD80KG6OSo6NczvPwGyMnR3/vv6lr63 Er3LyOTvsVyow+dcBR61yXaGSGyGm4YqPHnbfeQlRtP3s2acrM98aJVkz2fqeLDM eJFz2XsRCZc4omabYn7N33W/jeYMAE01iBXWtic9ALhjoiRAj5717Rlu6QIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFJf67iju/EB1UHvpMUnCGO/Id6sKMB8GA1UdIwQY MBaAFEOYtXeyI7WnY1EhmnT9pEZwSJD3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTVpMWQ3SWp0YWRqVVNHYWRQMmtSbkJJa1BjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS81ODI2OTUtNjFhMS00OGU3LWI2YWMt N2JjNDUzNDBkZDI4LzEvbF9ydUtPNzhRSFZRZS1reFNjSVk3OGgzcXdvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS81ODI2OTUtNjFhMS00OGU3LWI2YWMtN2JjNDUzNDBkZDI4 LzEvUTVpMWQ3SWp0YWRqVVNHYWRQMmtSbkJJa1BjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAudEMMA0E AgACMAcDBQMqENIAMA0GCSqGSIb3DQEBCwUAA4IBAQAvNovRSAE63qnEr3WTPV+k ibSq/tAc8GUOlK5Q/CTPNzNai2gFLc1Vnyh9ewHgkn2XNx+ViVuUdZBfXtTNTSMy m9qv9bKhzhAEcOJycwdA1wQrhdVQbS1enmWcE2fKBaZzW/6WJFtYgKD7rEQfkop3 Lxi2uJZ2xLdHnPkOttqI0+/JS2faB6ftJD9PevHjvpTQoPMeRdOqX/gk9+9rvZLr Fptw7mF+QyE35KX0Puy+FgC9hRghMPhEO97LlVNImESKJO0r3ouGBt4UVlWWMGrR OqnrbnJCt4AorZItN/ZS2PkEO/EMCz7R6zlZevq3gHN2kTQZnYuko5TzENLvNb1u -----END CERTIFICATE-----Generated at Tue Feb 10 04:16:44 2026 by rpki-client