This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/iL8SJgTfFm_DO4zngs_BfrPS1jM.roa File: iL8SJgTfFm_DO4zngs_BfrPS1jM.roa (raw, json) Hash identifier: BsRqnxPV5ByC/K//Fbo6jM4xfMeMokNBdVnHMfCc3jQ= Subject key identifier: 88:BF:12:26:04:DF:16:6F:C3:3B:8C:E7:82:CF:C1:7E:B3:D2:D6:33 Certificate issuer: /CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5 Certificate serial: 019B7DCA4CE9E077C8AD22DE418C29CA7A71 Authority key identifier: 06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/iL8SJgTfFm_DO4zngs_BfrPS1jM.roa Signing time: Fri 02 Jan 2026 08:19:28 +0000 ROA not before: Fri 02 Jan 2026 08:19:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206123 IP address blocks: 176.10.116.0/24 maxlen: 24 185.32.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.crl rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.mft rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:4c:e9:e0:77:c8:ad:22:de:41:8c:29:ca:7a:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06da1c6b1a65f7a3d97f9bd75e7cac3135246fa5 Validity Not Before: Jan 2 08:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88bf122604df166fc33b8ce782cfc17eb3d2d633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b1:b3:d2:b7:b4:61:c0:01:d7:05:28:bf:3e: 0f:c1:59:f8:67:5f:2d:e0:04:00:07:f0:79:08:5e: ba:45:9f:d5:2d:72:c4:da:8a:b3:4f:d7:40:6e:c6: e5:50:32:84:b2:b3:61:ae:bb:ec:92:1a:61:cf:72: 8b:34:76:5b:9b:a1:1a:2b:04:93:00:22:c9:49:17: bd:dc:cc:1c:7b:6e:76:44:26:3a:9a:83:5e:07:0d: 51:39:44:0c:08:10:b1:cb:20:4f:8b:99:bb:9d:43: 29:e3:54:5b:0f:5d:c1:2d:19:9e:3a:4f:f9:08:f2: 64:0e:33:95:df:58:cf:88:75:e4:9b:03:be:61:d5: 96:21:df:fd:04:ed:5b:83:d3:46:4e:0a:f0:3b:3b: 7f:77:c3:a0:ad:e3:f0:ac:2f:51:94:ef:f4:69:00: a4:42:dd:39:2e:43:fe:72:9e:dc:49:82:2a:12:68: 8d:1b:82:d7:c2:c6:e7:fc:b9:14:86:40:d4:76:06: 33:e8:72:f7:68:6f:f5:11:d5:34:59:26:ca:88:50: 95:4a:0b:6f:96:7e:a4:82:45:12:db:37:d9:6a:d5: b4:71:19:86:5c:c0:b9:d4:5c:b5:a2:d7:97:f5:14: 39:c1:c7:ab:11:c7:23:20:a0:e4:6f:3d:1f:b2:dd: 9a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:BF:12:26:04:DF:16:6F:C3:3B:8C:E7:82:CF:C1:7E:B3:D2:D6:33 X509v3 Authority Key Identifier: keyid:06:DA:1C:6B:1A:65:F7:A3:D9:7F:9B:D7:5E:7C:AC:31:35:24:6F:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Btocaxpl96PZf5vXXnysMTUkb6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/iL8SJgTfFm_DO4zngs_BfrPS1jM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/62a3b1-117d-4b17-9662-45eb738cb9c8/1/Btocaxpl96PZf5vXXnysMTUkb6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.10.116.0/24 185.32.221.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:a2:7f:49:20:a5:0e:f5:2e:cf:91:10:31:a2:ab:76:15:1e: d0:c3:1a:2f:8f:f3:fe:f9:c8:d8:74:0b:41:35:f7:63:cf:cd: 76:8e:1e:72:5a:9c:e2:3b:70:5d:5c:bd:92:0d:d5:12:d7:13: 92:89:01:c8:fa:7c:35:01:24:a1:b0:66:64:2e:d9:44:97:90: 04:0e:d5:ac:4c:27:53:ca:ea:75:e1:4d:e4:5d:e0:1e:fa:b0: 4c:db:31:4c:fd:b1:33:79:48:c9:7d:82:c5:a0:4c:5b:8b:f5: e3:6e:3a:04:01:0d:52:6c:71:94:61:00:e5:85:ea:d4:f5:ba: 1c:c6:7c:b3:d9:4a:47:4b:be:c4:ce:fd:e7:a4:55:aa:5b:52: b5:5d:3b:bc:70:2a:e5:b1:4e:5e:72:c3:6a:e0:17:b8:ff:4a: 69:b7:99:3e:bd:77:2a:b9:41:82:2e:b5:04:2f:28:d0:07:e2: 8c:67:16:70:ca:08:a3:54:07:6e:93:f3:60:dc:2f:fb:87:39: 06:86:36:c9:dc:97:af:30:0f:3e:f3:f5:19:a2:a8:4d:5b:9c: da:a9:9b:a1:17:2a:4d:b5:e0:69:86:ff:96:31:a9:03:6c:e1: 55:9e:5e:ad:fc:80:fb:c4:51:62:9a:6c:f8:b2:0b:24:44:cd: c1:ba:8f:83 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt9ykzp4HfIrSLeQYwpynpxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2ZGExYzZiMWE2NWY3YTNkOTdmOWJkNzVlN2NhYzMxMzUy NDZmYTUwHhcNMjYwMTAyMDgxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OGJmMTIyNjA0ZGYxNjZmYzMzYjhjZTc4MmNmYzE3ZWIzZDJkNjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbGz0re0YcAB1wUovz4PwVn4Z18t 4AQAB/B5CF66RZ/VLXLE2oqzT9dAbsblUDKEsrNhrrvskhphz3KLNHZbm6EaKwST ACLJSRe93Mwce252RCY6moNeBw1ROUQMCBCxyyBPi5m7nUMp41RbD13BLRmeOk/5 CPJkDjOV31jPiHXkmwO+YdWWId/9BO1bg9NGTgrwOzt/d8OgrePwrC9RlO/0aQCk Qt05LkP+cp7cSYIqEmiNG4LXwsbn/LkUhkDUdgYz6HL3aG/1EdU0WSbKiFCVSgtv ln6kgkUS2zfZatW0cRmGXMC51Fy1oteX9RQ5wcerEccjIKDkbz0fst2a5QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIi/EiYE3xZvwzuM54LPwX6z0tYzMB8GA1UdIwQY MBaAFAbaHGsaZfej2X+b1158rDE1JG+lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnRvY2F4cGw5NlBaZjV2WFhueXNNVFVrYjZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS82MmEzYjEtMTE3ZC00YjE3LTk2NjIt NDVlYjczOGNiOWM4LzEvaUw4U0pnVGZGbV9ETzR6bmdzX0JmclBTMWpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZS82MmEzYjEtMTE3ZC00YjE3LTk2NjItNDVlYjczOGNiOWM4 LzEvQnRvY2F4cGw5NlBaZjV2WFhueXNNVFVrYjZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAsAp0AwQA uSDdMA0GCSqGSIb3DQEBCwUAA4IBAQA9on9JIKUO9S7PkRAxoqt2FR7Qwxovj/P+ +cjYdAtBNfdjz812jh5yWpziO3BdXL2SDdUS1xOSiQHI+nw1ASShsGZkLtlEl5AE DtWsTCdTyup14U3kXeAe+rBM2zFM/bEzeUjJfYLFoExbi/XjbjoEAQ1SbHGUYQDl herU9bocxnyz2UpHS77Ezv3npFWqW1K1XTu8cCrlsU5ecsNq4Be4/0ppt5k+vXcq uUGCLrUELyjQB+KMZxZwygijVAduk/Ng3C/7hzkGhjbJ3JevMA8+8/UZoqhNW5za qZuhFypNteBphv+WMakDbOFVnl6t/ID7xFFimmz4sgskRM3Buo+D -----END CERTIFICATE-----Generated at Mon Jan 26 04:55:21 2026 by rpki-client