This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/f8VlKt8JzCNAPxp24L1Yki6OYWM.roa File: f8VlKt8JzCNAPxp24L1Yki6OYWM.roa (raw, json) Hash identifier: pdFJm+KiuiR3o4ERryoXHrfDwKAIlg8iSODri6S35nw= Subject key identifier: 7F:C5:65:2A:DF:09:CC:23:40:3F:1A:76:E0:BD:58:92:2E:8E:61:63 Certificate issuer: /CN=1a99c75fe5777e136573e1e51efba6781f3a5b16 Certificate serial: 019B79100B945E96191AA3F7B4A25A973DC9 Authority key identifier: 1A:99:C7:5F:E5:77:7E:13:65:73:E1:E5:1E:FB:A6:78:1F:3A:5B:16 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpnHX-V3fhNlc-HlHvumeB86WxY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/f8VlKt8JzCNAPxp24L1Yki6OYWM.roa Signing time: Thu 01 Jan 2026 10:17:33 +0000 ROA not before: Thu 01 Jan 2026 10:17:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203450 IP address blocks: 185.134.160.0/22 maxlen: 22 2a06:ed40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/GpnHX-V3fhNlc-HlHvumeB86WxY.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/GpnHX-V3fhNlc-HlHvumeB86WxY.mft rsync://rpki.ripe.net/repository/DEFAULT/GpnHX-V3fhNlc-HlHvumeB86WxY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:0b:94:5e:96:19:1a:a3:f7:b4:a2:5a:97:3d:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1a99c75fe5777e136573e1e51efba6781f3a5b16 Validity Not Before: Jan 1 10:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7fc5652adf09cc23403f1a76e0bd58922e8e6163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:dd:7e:f8:00:9e:02:c2:bc:38:95:2b:03:e0: e2:b8:51:f5:c8:ec:55:d5:e4:21:ea:53:29:2b:22: 85:49:9a:82:49:6b:9d:aa:24:6e:5e:5e:cb:1c:5c: 51:1d:e0:84:0a:c4:b7:8b:e2:95:7c:f6:25:0c:46: b3:f2:70:bf:f3:77:b2:7c:1a:e8:1a:d6:4f:3d:c9: 67:99:3e:d6:96:ad:11:5b:ae:e1:85:36:19:4a:0c: ad:07:2b:91:e8:e9:36:5a:a9:cf:3b:f7:2e:bd:5e: 20:34:4d:9c:d1:90:b1:8a:25:79:34:0c:2e:8f:cc: 7e:c4:2b:82:30:92:be:63:6c:88:d2:3c:ff:0d:65: f7:6b:f4:d7:c8:b8:0c:c4:64:e8:dc:05:31:12:5d: 43:9e:14:82:ed:b8:07:bf:7a:cb:1d:49:58:1f:8d: 56:ef:49:80:09:dc:7a:ea:73:82:91:17:24:1d:46: 3c:b8:b4:bc:13:e2:ef:fa:85:10:1c:a3:a7:00:ca: 71:4f:21:a1:8f:81:51:5f:1d:c1:e9:39:a1:37:8c: 80:c5:45:41:16:d7:fe:e5:12:36:30:56:3b:aa:38: 79:22:f6:87:d8:40:66:a0:09:c0:92:ba:f4:6a:8b: 74:0e:2a:6a:04:08:fc:a0:8b:f6:46:0d:39:64:84: 77:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C5:65:2A:DF:09:CC:23:40:3F:1A:76:E0:BD:58:92:2E:8E:61:63 X509v3 Authority Key Identifier: keyid:1A:99:C7:5F:E5:77:7E:13:65:73:E1:E5:1E:FB:A6:78:1F:3A:5B:16 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpnHX-V3fhNlc-HlHvumeB86WxY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/f8VlKt8JzCNAPxp24L1Yki6OYWM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/71173b-1938-4835-af00-a699bcb08ae3/1/GpnHX-V3fhNlc-HlHvumeB86WxY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.134.160.0/22 IPv6: 2a06:ed40::/29 Signature Algorithm: sha256WithRSAEncryption 5e:d6:c5:f5:1a:81:e0:58:05:c1:2a:c4:1c:3c:c4:a0:a9:46: 96:dc:79:0e:7c:a6:6a:a7:a2:b1:a3:77:f2:42:36:87:09:ee: 56:40:7d:8b:28:6e:b0:84:98:f1:6a:be:9f:de:d7:5c:da:38: 3f:72:9d:7f:4e:2b:42:da:2d:17:1b:1c:30:1a:eb:65:9a:e5: 7a:be:c1:60:61:ec:54:d7:16:1b:c3:57:4f:da:b5:1d:78:f7: dd:bd:27:56:9b:3f:d9:ef:43:21:41:4e:84:d3:8a:af:72:70: b1:e5:63:48:bb:dc:59:a1:14:fb:6b:8b:60:ee:63:6e:2f:d6: fe:66:78:6a:b2:74:17:b6:be:04:ab:82:7d:f5:80:e3:9b:ce: 63:02:50:ee:b6:b1:75:ac:83:55:9e:34:01:28:33:27:ef:b2: 74:1b:7b:9e:4d:6d:5c:90:50:0d:51:1a:8d:02:b6:9f:f4:59: a4:19:87:0c:d9:f4:4c:bb:b5:d7:1b:a7:46:6e:7f:4c:95:10: 1c:37:85:44:5c:c5:4e:ce:4e:f3:e3:c0:5b:50:fc:b8:b1:f6: c9:d4:30:3e:9b:e8:dc:dd:9c:d4:17:68:30:98:17:a2:39:cf: f6:49:ad:df:01:a9:80:83:1b:6f:aa:af:95:58:ec:22:76:50: 86:3e:87:21 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt5EAuUXpYZGqP3tKJalz3JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhOTljNzVmZTU3NzdlMTM2NTczZTFlNTFlZmJhNjc4MWYz YTViMTYwHhcNMjYwMTAxMTAxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZmM1NjUyYWRmMDljYzIzNDAzZjFhNzZlMGJkNTg5MjJlOGU2MTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxN1++ACeAsK8OJUrA+DiuFH1yOxV 1eQh6lMpKyKFSZqCSWudqiRuXl7LHFxRHeCECsS3i+KVfPYlDEaz8nC/83eyfBro GtZPPclnmT7Wlq0RW67hhTYZSgytByuR6Ok2WqnPO/cuvV4gNE2c0ZCxiiV5NAwu j8x+xCuCMJK+Y2yI0jz/DWX3a/TXyLgMxGTo3AUxEl1DnhSC7bgHv3rLHUlYH41W 70mACdx66nOCkRckHUY8uLS8E+Lv+oUQHKOnAMpxTyGhj4FRXx3B6TmhN4yAxUVB Ftf+5RI2MFY7qjh5IvaH2EBmoAnAkrr0aot0DipqBAj8oIv2Rg05ZIR3MQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFH/FZSrfCcwjQD8aduC9WJIujmFjMB8GA1UdIwQY MBaAFBqZx1/ld34TZXPh5R77pngfOlsWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3BuSFgtVjNmaE5sYy1IbEh2dW1lQjg2V3hZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi83MTE3M2ItMTkzOC00ODM1LWFmMDAt YTY5OWJjYjA4YWUzLzEvZjhWbEt0OEp6Q05BUHhwMjRMMVlraTZPWVdNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi83MTE3M2ItMTkzOC00ODM1LWFmMDAtYTY5OWJjYjA4YWUz LzEvR3BuSFgtVjNmaE5sYy1IbEh2dW1lQjg2V3hZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuYagMA0E AgACMAcDBQMqBu1AMA0GCSqGSIb3DQEBCwUAA4IBAQBe1sX1GoHgWAXBKsQcPMSg qUaW3HkOfKZqp6Kxo3fyQjaHCe5WQH2LKG6whJjxar6f3tdc2jg/cp1/TitC2i0X GxwwGutlmuV6vsFgYexU1xYbw1dP2rUdePfdvSdWmz/Z70MhQU6E04qvcnCx5WNI u9xZoRT7a4tg7mNuL9b+ZnhqsnQXtr4Eq4J99YDjm85jAlDutrF1rINVnjQBKDMn 77J0G3ueTW1ckFANURqNAraf9FmkGYcM2fRMu7XXG6dGbn9MlRAcN4VEXMVOzk7z 48BbUPy4sfbJ1DA+m+jc3ZzUF2gwmBeiOc/2Sa3fAamAgxtvqq+VWOwidlCGPoch -----END CERTIFICATE-----Generated at Mon Feb 9 20:09:39 2026 by rpki-client