This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/kbTz7ppbQ7oPVGXlVGsMEuIRKgQ.roa File: kbTz7ppbQ7oPVGXlVGsMEuIRKgQ.roa (raw, json) Hash identifier: RN50qd/QjamGrCWyNEXJiSMZd1C/NPpkaF05FYlWOGk= Subject key identifier: 91:B4:F3:EE:9A:5B:43:BA:0F:54:65:E5:54:6B:0C:12:E2:11:2A:04 Certificate issuer: /CN=dc86e3e928c7f0c9db69515ff3aa1f678cee43c0 Certificate serial: 019B7C7FBC6259C7E159EEDF75A452DBAD34 Authority key identifier: DC:86:E3:E9:28:C7:F0:C9:DB:69:51:5F:F3:AA:1F:67:8C:EE:43:C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/kbTz7ppbQ7oPVGXlVGsMEuIRKgQ.roa Signing time: Fri 02 Jan 2026 02:18:24 +0000 ROA not before: Fri 02 Jan 2026 02:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208795 IP address blocks: 185.32.84.0/22 maxlen: 24 185.135.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.crl rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.mft rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:bc:62:59:c7:e1:59:ee:df:75:a4:52:db:ad:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dc86e3e928c7f0c9db69515ff3aa1f678cee43c0 Validity Not Before: Jan 2 02:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=91b4f3ee9a5b43ba0f5465e5546b0c12e2112a04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b6:09:8e:d0:89:6a:34:d1:4e:3f:98:9b:40: 9c:52:2e:95:60:0e:2a:68:25:22:f7:b7:7b:f8:8c: 46:32:96:f1:5b:3b:a9:93:89:e4:05:1d:b1:6c:ef: 4a:60:4b:02:9d:c6:c2:4a:ae:f2:62:9c:f4:29:7c: 50:f6:b9:38:55:c0:da:e9:d3:eb:16:c5:dd:54:23: ec:e2:9f:2d:c9:fb:ab:fe:8c:62:59:8d:3d:f2:85: c6:af:f9:fb:7a:9e:1b:40:b6:ab:8c:fd:ed:a2:c6: 9b:1e:2a:45:e5:1d:c8:bb:ae:ca:6d:c4:69:9a:cf: 2d:06:21:e6:c8:ee:5c:20:a5:22:af:96:dd:fc:6a: f7:47:01:c3:07:ff:c8:bd:4d:9c:89:5a:3a:04:d5: 1c:3b:42:ab:2a:a6:70:4f:75:d7:29:96:12:85:32: 72:e2:3b:d3:9a:f3:89:5b:e1:27:f7:7c:11:51:dd: 71:43:21:08:11:52:63:12:64:2a:61:7d:64:1c:37: 21:7f:30:fb:32:b8:c3:be:4f:b7:33:98:d7:6f:a5: 96:02:af:36:ad:87:9a:b9:f4:4a:52:44:cb:49:72: 5e:00:0c:51:2e:52:e7:99:5d:57:05:26:dd:42:cd: 56:db:f2:96:f7:38:46:c0:3a:32:22:84:19:7b:5d: 94:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:B4:F3:EE:9A:5B:43:BA:0F:54:65:E5:54:6B:0C:12:E2:11:2A:04 X509v3 Authority Key Identifier: keyid:DC:86:E3:E9:28:C7:F0:C9:DB:69:51:5F:F3:AA:1F:67:8C:EE:43:C0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/kbTz7ppbQ7oPVGXlVGsMEuIRKgQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/471aa5-c3f7-4afd-b122-9c8e59c2771c/1/3Ibj6SjH8MnbaVFf86ofZ4zuQ8A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.32.84.0/22 185.135.172.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:c3:31:36:24:6f:01:d4:ec:c1:7a:a1:8d:3e:4e:c0:5f:32: 6a:aa:08:0a:fb:72:ce:1f:cd:a3:96:0f:1c:c1:d3:d8:e1:20: a7:8e:05:17:d7:47:f0:7f:59:5a:54:b6:6e:1f:37:d8:a0:f0: 3a:51:a4:c7:fd:3c:dc:3e:36:68:78:de:49:d1:5a:13:e5:ab: af:ee:49:0b:73:8c:bf:01:dc:a5:2e:4f:54:3e:38:ab:cb:f8: 3e:a2:3f:5d:d2:0d:63:cb:2c:37:f7:85:69:9f:08:55:18:5b: ed:9e:c9:3e:47:65:78:12:97:f4:6a:97:e8:ad:26:4a:07:6f: ae:8d:cb:90:e6:d6:27:c9:a8:5a:be:f1:5d:ca:b5:36:f2:96: 6a:72:d8:1f:2f:63:46:d7:3c:54:a3:85:7f:95:a2:18:09:e5: ae:92:a6:bd:c0:28:45:89:4e:09:5a:d2:e0:6f:7b:90:e5:cf: f5:dc:c0:58:be:80:04:a1:8f:55:fd:66:cc:ad:f9:09:2c:78: 14:13:c8:8e:a8:c2:22:7e:bf:80:76:23:4d:2a:e2:41:a6:06: 63:56:13:23:93:e3:d1:5c:7a:52:e1:01:45:d1:56:b6:db:6f: 65:49:ab:14:26:8c:88:8d:a1:d5:e0:c3:bc:00:57:6b:37:71: 49:df:84:ba -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8f7xiWcfhWe7fdaRS2600MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjODZlM2U5MjhjN2YwYzlkYjY5NTE1ZmYzYWExZjY3OGNl ZTQzYzAwHhcNMjYwMTAyMDIxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MWI0ZjNlZTlhNWI0M2JhMGY1NDY1ZTU1NDZiMGMxMmUyMTEyYTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybYJjtCJajTRTj+Ym0CcUi6VYA4q aCUi97d7+IxGMpbxWzupk4nkBR2xbO9KYEsCncbCSq7yYpz0KXxQ9rk4VcDa6dPr FsXdVCPs4p8tyfur/oxiWY098oXGr/n7ep4bQLarjP3tosabHipF5R3Iu67KbcRp ms8tBiHmyO5cIKUir5bd/Gr3RwHDB//IvU2ciVo6BNUcO0KrKqZwT3XXKZYShTJy 4jvTmvOJW+En93wRUd1xQyEIEVJjEmQqYX1kHDchfzD7MrjDvk+3M5jXb6WWAq82 rYeaufRKUkTLSXJeAAxRLlLnmV1XBSbdQs1W2/KW9zhGwDoyIoQZe12UDwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFJG08+6aW0O6D1Rl5VRrDBLiESoEMB8GA1UdIwQY MBaAFNyG4+kox/DJ22lRX/OqH2eM7kPAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM0liajZTakg4TW5iYVZGZjg2b2ZaNHp1UThBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC80NzFhYTUtYzNmNy00YWZkLWIxMjIt OWM4ZTU5YzI3NzFjLzEva2JUejdwcGJRN29QVkdYbFZHc01FdUlSS2dRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOC80NzFhYTUtYzNmNy00YWZkLWIxMjItOWM4ZTU5YzI3NzFj LzEvM0liajZTakg4TW5iYVZGZjg2b2ZaNHp1UThBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuSBUAwQC uYesMA0GCSqGSIb3DQEBCwUAA4IBAQBtwzE2JG8B1OzBeqGNPk7AXzJqqggK+3LO H82jlg8cwdPY4SCnjgUX10fwf1laVLZuHzfYoPA6UaTH/TzcPjZoeN5J0VoT5auv 7kkLc4y/AdylLk9UPjiry/g+oj9d0g1jyyw394VpnwhVGFvtnsk+R2V4Epf0apfo rSZKB2+ujcuQ5tYnyahavvFdyrU28pZqctgfL2NG1zxUo4V/laIYCeWukqa9wChF iU4JWtLgb3uQ5c/13MBYvoAEoY9V/WbMrfkJLHgUE8iOqMIifr+AdiNNKuJBpgZj VhMjk+PRXHpS4QFF0Va2229lSasUJoyIjaHV4MO8AFdrN3FJ34S6 -----END CERTIFICATE-----Generated at Tue Feb 10 01:14:10 2026 by rpki-client