This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/86rwpp7NoSy9fECyDeEoFqFRMi4.roa File: 86rwpp7NoSy9fECyDeEoFqFRMi4.roa (raw, json) Hash identifier: rgEJeX45tszWO1cxr8s21ZwNAHTD1705NnbIc/RLjw0= Subject key identifier: F3:AA:F0:A6:9E:CD:A1:2C:BD:7C:40:B2:0D:E1:28:16:A1:51:32:2E Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e Certificate serial: 019B7E38A2CA391AA4524498DA4A277137BE Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/86rwpp7NoSy9fECyDeEoFqFRMi4.roa Signing time: Fri 02 Jan 2026 10:19:59 +0000 ROA not before: Fri 02 Jan 2026 10:19:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214045 IP address blocks: 194.143.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.mft rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:a2:ca:39:1a:a4:52:44:98:da:4a:27:71:37:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e Validity Not Before: Jan 2 10:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f3aaf0a69ecda12cbd7c40b20de12816a151322e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5b:20:02:bc:1f:ae:4b:1d:2d:d7:9c:f0:5d: f2:8f:92:ad:3d:5a:44:b4:fb:cb:34:e4:ee:f4:84: 67:ec:47:40:ce:8c:b8:d1:05:a1:7e:3c:3d:5c:2b: 07:98:08:00:42:ed:38:20:17:35:22:28:64:56:20: e3:c0:de:2d:45:92:a2:69:2c:be:2f:37:48:7f:54: da:99:e5:d4:60:51:2d:59:23:9e:a0:1a:64:d3:70: bb:92:5c:f5:3e:d7:85:da:08:08:9d:97:90:dd:c1: d7:94:4c:2a:ce:69:de:32:f7:da:fa:43:b2:b3:3f: 15:8b:83:55:1a:1e:91:2a:53:9a:20:91:ec:1b:b1: 9a:07:cf:6c:0d:af:66:c9:70:77:45:c9:7f:d0:07: cf:97:99:b8:c9:e0:3c:c2:84:be:84:63:59:a1:1c: 44:34:e7:92:4b:93:d7:ec:82:2e:60:92:92:75:a2: b9:2a:86:2c:1e:86:4a:7b:9c:05:fc:66:11:ae:35: 25:e2:04:12:4d:49:e3:a4:fd:3b:e6:95:97:67:4c: ad:e8:68:49:e9:3a:67:e3:78:5c:a9:ec:94:d2:e4: 32:e6:f9:0c:67:ac:3a:d8:9d:c5:0e:3f:27:e3:21: 31:6e:44:a2:7e:82:59:63:59:ad:c2:72:91:29:55: 1f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:AA:F0:A6:9E:CD:A1:2C:BD:7C:40:B2:0D:E1:28:16:A1:51:32:2E X509v3 Authority Key Identifier: keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/86rwpp7NoSy9fECyDeEoFqFRMi4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.143.205.0/24 Signature Algorithm: sha256WithRSAEncryption 40:4e:45:58:ea:eb:0c:a1:5c:ca:36:42:14:48:a1:5c:49:c8: fa:84:b9:cc:ec:5b:e3:7f:24:f0:18:d4:02:8a:55:23:b6:b6: 53:83:ca:1f:63:1f:35:6f:a9:61:b9:0b:19:c3:68:ea:22:7e: e9:18:92:0e:f8:43:98:42:29:e1:6d:96:85:f2:c5:70:2e:c9: fe:e2:13:ee:8b:36:69:6a:d3:93:14:c3:75:04:54:d0:63:88: 7b:b2:b5:85:55:ae:78:05:af:c9:55:bd:12:5f:a0:c3:ed:6a: 6b:74:1e:a9:f7:64:16:be:90:bd:fc:82:e2:0f:8c:75:e3:dc: 32:9d:32:9f:f6:c0:f5:02:2d:25:4d:5d:24:80:0c:bd:7a:fd: 7a:3b:2d:15:97:39:86:c3:0c:a9:b1:f0:e4:95:a9:ff:ed:c1: a1:2f:ef:44:4d:85:e1:3b:65:1d:b5:c2:c8:d4:61:a5:58:42: 67:84:3b:99:6c:e4:4f:33:17:9f:fe:45:03:4d:ce:a0:73:87: 2b:70:c6:bc:b7:41:96:7f:eb:57:31:db:61:69:55:82:46:c1: a4:f6:a1:4c:bf:dd:eb:3b:b0:de:69:57:7e:90:ab:43:e1:2c: 73:06:7e:bf:8c:1d:f3:ba:1a:8c:ca:03:90:ee:1c:c3:5d:c2: f8:6b:cd:c9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OKLKORqkUkSY2koncTe+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy MGFlMmUwHhcNMjYwMTAyMTAxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmM2FhZjBhNjllY2RhMTJjYmQ3YzQwYjIwZGUxMjgxNmExNTEzMjJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VsgArwfrksdLdec8F3yj5KtPVpE tPvLNOTu9IRn7EdAzoy40QWhfjw9XCsHmAgAQu04IBc1IihkViDjwN4tRZKiaSy+ LzdIf1TameXUYFEtWSOeoBpk03C7klz1PteF2ggInZeQ3cHXlEwqzmneMvfa+kOy sz8Vi4NVGh6RKlOaIJHsG7GaB89sDa9myXB3Rcl/0AfPl5m4yeA8woS+hGNZoRxE NOeSS5PX7IIuYJKSdaK5KoYsHoZKe5wF/GYRrjUl4gQSTUnjpP075pWXZ0yt6GhJ 6Tpn43hcqeyU0uQy5vkMZ6w62J3FDj8n4yExbkSifoJZY1mtwnKRKVUftwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPOq8KaezaEsvXxAsg3hKBahUTIuMB8GA1UdIwQY MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt MWRkZWM0Y2NlMjRjLzEvODZyd3BwN05vU3k5ZkVDeURlRW9GcUZSTWk0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwo/NMA0G CSqGSIb3DQEBCwUAA4IBAQBATkVY6usMoVzKNkIUSKFcScj6hLnM7FvjfyTwGNQC ilUjtrZTg8ofYx81b6lhuQsZw2jqIn7pGJIO+EOYQinhbZaF8sVwLsn+4hPuizZp atOTFMN1BFTQY4h7srWFVa54Ba/JVb0SX6DD7WprdB6p92QWvpC9/ILiD4x149wy nTKf9sD1Ai0lTV0kgAy9ev16Oy0VlzmGwwypsfDklan/7cGhL+9ETYXhO2UdtcLI 1GGlWEJnhDuZbORPMxef/kUDTc6gc4crcMa8t0GWf+tXMdthaVWCRsGk9qFMv93r O7DeaVd+kKtD4SxzBn6/jB3zuhqMygOQ7hzDXcL4a83J -----END CERTIFICATE-----Generated at Tue Jan 20 02:46:34 2026 by rpki-client