This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/iv3ySpiG9hKEd0IHT1uP-bp6Uh4.roa File: iv3ySpiG9hKEd0IHT1uP-bp6Uh4.roa (raw, json) Hash identifier: h/a4jbV0u98/g4ZmPoA9cn/DFGG2qqlcGEnesiqVsVs= Subject key identifier: 8A:FD:F2:4A:98:86:F6:12:84:77:42:07:4F:5B:8F:F9:BA:7A:52:1E Certificate issuer: /CN=2874e46bf636ea63e5d12362f551b80b27714780 Certificate serial: 019B7FF242E9A28ADFF4451B1092C0A120AA Authority key identifier: 28:74:E4:6B:F6:36:EA:63:E5:D1:23:62:F5:51:B8:0B:27:71:47:80 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/iv3ySpiG9hKEd0IHT1uP-bp6Uh4.roa Signing time: Fri 02 Jan 2026 18:22:21 +0000 ROA not before: Fri 02 Jan 2026 18:22:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51691 IP address blocks: 37.16.96.0/20 maxlen: 23 37.16.112.0/20 maxlen: 20 178.213.232.0/21 maxlen: 21 178.213.238.0/23 maxlen: 23 178.213.239.0/24 maxlen: 24 2a00:4cc1::/32 maxlen: 48 2a00:4cc1:2501::/64 maxlen: 64 2a00:4cc2::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/KHTka_Y26mPl0SNi9VG4CydxR4A.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/KHTka_Y26mPl0SNi9VG4CydxR4A.mft rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:42:e9:a2:8a:df:f4:45:1b:10:92:c0:a1:20:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2874e46bf636ea63e5d12362f551b80b27714780 Validity Not Before: Jan 2 18:22:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8afdf24a9886f612847742074f5b8ff9ba7a521e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:93:bf:db:84:d4:bb:81:1e:db:ea:ea:ff:d1: 7b:d1:ac:9f:2c:a4:f4:f1:d7:97:e1:5d:55:d2:59: bb:4b:47:75:3f:9d:22:13:33:7c:b2:06:5d:b4:b8: eb:bc:b5:38:48:a1:e1:f6:60:ef:15:a6:4f:13:fa: 0c:95:17:59:83:b3:34:3a:2b:ab:a6:2f:16:39:65: 85:6b:fa:ce:c9:94:4b:94:18:5d:c4:36:89:23:d0: 14:e8:f3:77:ad:f5:44:1c:2d:5f:84:17:41:be:85: 68:57:b5:11:06:50:b8:fc:d2:c0:8b:12:9d:7a:fe: 0a:92:6d:51:d5:85:56:25:9f:34:2f:7d:91:4b:9b: 05:3c:ed:98:7c:98:8d:c0:cc:c5:90:63:03:e6:d7: 8c:7b:fd:8b:16:d5:e9:17:aa:ce:fd:83:ec:26:51: 3e:d3:b0:b2:a4:48:9d:7d:af:bc:ed:00:60:30:f6: c7:11:f1:71:63:67:93:79:bd:17:e4:b6:69:97:ac: cc:bd:a7:f8:e2:c4:ef:e6:e5:7a:6e:65:ac:7c:9f: a9:10:84:c9:ee:39:0d:6e:10:8e:82:96:02:21:06: a2:23:f8:b8:49:5d:69:38:d0:2d:38:d5:82:5d:86: fd:d6:26:09:61:e6:cf:f2:e6:32:1e:5a:6e:87:22: f2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:FD:F2:4A:98:86:F6:12:84:77:42:07:4F:5B:8F:F9:BA:7A:52:1E X509v3 Authority Key Identifier: keyid:28:74:E4:6B:F6:36:EA:63:E5:D1:23:62:F5:51:B8:0B:27:71:47:80 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KHTka_Y26mPl0SNi9VG4CydxR4A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/iv3ySpiG9hKEd0IHT1uP-bp6Uh4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/eddc05-402d-4da7-97ef-c10da6aac1b1/1/KHTka_Y26mPl0SNi9VG4CydxR4A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.16.96.0/19 178.213.232.0/21 IPv6: 2a00:4cc1::-2a00:4cc2:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8c:43:c4:40:7d:2e:e4:c3:2e:82:0b:e3:21:3d:54:6e:a9:e1: 8e:1f:bd:b5:e2:89:67:20:60:d8:23:e7:47:3b:91:ca:bb:ef: 7f:eb:61:0d:2f:6e:af:8e:b8:78:23:0e:a9:19:4d:03:83:c1: 07:71:2e:63:2e:b5:b1:ce:a3:a8:38:67:39:10:81:59:bb:e2: f3:93:4d:5d:c0:89:e9:df:25:90:f7:d0:90:d1:70:ae:d5:d2: f8:68:5d:b0:d0:ed:12:e3:30:c9:db:d3:39:8b:34:58:81:fa: ef:6f:dd:8a:15:0e:1f:5d:e1:01:3c:54:5c:e7:5f:47:30:a3: db:c7:a5:83:4e:1e:fd:75:5d:4c:7c:d1:fb:8e:e3:98:3d:39: d4:52:ef:c8:f0:ff:77:c7:79:da:e1:f6:dc:dc:2e:e3:aa:a9: 59:76:f6:c8:34:c2:83:66:3e:1c:6c:2c:af:ef:0d:b2:2a:36: cf:db:b7:68:99:7f:01:c3:e5:05:f6:f3:75:9e:8e:60:65:8f: c9:a7:3b:6f:dc:23:c9:07:16:03:4d:fb:f5:83:60:da:be:ed: cb:e2:10:01:91:97:2c:b8:2e:e4:d7:97:36:7b:09:f8:ef:c1: 5f:60:06:b9:80:78:fc:4c:0e:17:10:2e:a7:e4:96:1d:1a:23: 97:2c:83:3c -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISAZt/8kLpoorf9EUbEJLAoSCqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI4NzRlNDZiZjYzNmVhNjNlNWQxMjM2MmY1NTFiODBiMjc3 MTQ3ODAwHhcNMjYwMTAyMTgyMjIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWZkZjI0YTk4ODZmNjEyODQ3NzQyMDc0ZjViOGZmOWJhN2E1MjFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApJO/24TUu4Ee2+rq/9F70ayfLKT0 8deX4V1V0lm7S0d1P50iEzN8sgZdtLjrvLU4SKHh9mDvFaZPE/oMlRdZg7M0Oiur pi8WOWWFa/rOyZRLlBhdxDaJI9AU6PN3rfVEHC1fhBdBvoVoV7URBlC4/NLAixKd ev4Kkm1R1YVWJZ80L32RS5sFPO2YfJiNwMzFkGMD5teMe/2LFtXpF6rO/YPsJlE+ 07CypEidfa+87QBgMPbHEfFxY2eTeb0X5LZpl6zMvaf44sTv5uV6bmWsfJ+pEITJ 7jkNbhCOgpYCIQaiI/i4SV1pONAtONWCXYb91iYJYebP8uYyHlpuhyLy/QIDAQAB o4ICJzCCAiMwHQYDVR0OBBYEFIr98kqYhvYShHdCB09bj/m6elIeMB8GA1UdIwQY MBaAFCh05Gv2Nupj5dEjYvVRuAsncUeAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS0hUa2FfWTI2bVBsMFNOaTlWRzRDeWR4UjRBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9lZGRjMDUtNDAyZC00ZGE3LTk3ZWYt YzEwZGE2YWFjMWIxLzEvaXYzeVNwaUc5aEtFZDBJSFQxdVAtYnA2VWg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9lZGRjMDUtNDAyZC00ZGE3LTk3ZWYtYzEwZGE2YWFjMWIx LzEvS0hUa2FfWTI2bVBsMFNOaTlWRzRDeWR4UjRBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDASBAIAATAMAwQFJRBgAwQD stXoMBYEAgACMBAwDgMFACoATMEDBQAqAEzCMA0GCSqGSIb3DQEBCwUAA4IBAQCM Q8RAfS7kwy6CC+MhPVRuqeGOH7214olnIGDYI+dHO5HKu+9/62ENL26vjrh4Iw6p GU0Dg8EHcS5jLrWxzqOoOGc5EIFZu+Lzk01dwInp3yWQ99CQ0XCu1dL4aF2w0O0S 4zDJ29M5izRYgfrvb92KFQ4fXeEBPFRc519HMKPbx6WDTh79dV1MfNH7juOYPTnU Uu/I8P93x3na4fbc3C7jqqlZdvbINMKDZj4cbCyv7w2yKjbP27domX8Bw+UF9vN1 no5gZY/Jpztv3CPJBxYDTfv1g2Davu3L4hABkZcsuC7k15c2ewn478FfYAa5gHj8 TA4XEC6n5JYdGiOXLIM8 -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:24 2026 by rpki-client