This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/8MsqChfqyk1noQMRXmiLEoP7JJc.roa File: 8MsqChfqyk1noQMRXmiLEoP7JJc.roa (raw, json) Hash identifier: 5HC+gRN9Kd7T3/h7fthoFYQYhTna8IfEWC1qAEQyFlA= Subject key identifier: F0:CB:2A:0A:17:EA:CA:4D:67:A1:03:11:5E:68:8B:12:83:FB:24:97 Certificate issuer: /CN=87be093097097c4457ff5aa3e5893c8c15432612 Certificate serial: 019B7BA31A1BABA402C8EA0675EEC2B625D7 Authority key identifier: 87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/8MsqChfqyk1noQMRXmiLEoP7JJc.roa Signing time: Thu 01 Jan 2026 22:17:25 +0000 ROA not before: Thu 01 Jan 2026 22:17:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39409 IP address blocks: 37.153.156.0/24 maxlen: 24 185.216.8.0/24 maxlen: 24 2001:678:20c::/48 maxlen: 48 2001:678:d58::/48 maxlen: 48 2a10:9906::/48 maxlen: 48 2a10:9906:1001::/48 maxlen: 48 2a10:9906:1002::/48 maxlen: 48 2a10:9906:3010::/48 maxlen: 48 2a10:9906:3020::/48 maxlen: 48 2a10:9906:3050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.mft rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:1a:1b:ab:a4:02:c8:ea:06:75:ee:c2:b6:25:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87be093097097c4457ff5aa3e5893c8c15432612 Validity Not Before: Jan 1 22:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f0cb2a0a17eaca4d67a103115e688b1283fb2497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:88:a8:1c:8f:9f:6f:ca:90:ff:cc:d8:36:72: ee:6d:a4:be:38:09:3b:c5:b0:85:d3:c7:7a:a6:51: 65:68:1f:31:d1:cd:23:20:cb:04:66:c9:03:c9:59: 47:bf:a2:44:70:a9:d6:76:a0:e1:1a:05:fd:02:1e: 00:67:b9:88:34:e7:10:29:6e:f7:72:ce:37:95:60: cf:09:3f:8a:f9:a0:3c:ec:2b:9c:58:cc:8a:4b:2b: f2:84:55:54:57:26:59:68:a6:b2:51:ea:42:3c:8e: 8a:71:07:44:35:c7:8e:79:7a:77:dd:b5:d0:63:00: cc:e8:18:d7:fe:06:3a:2e:0a:2c:32:39:76:b0:1c: ac:e9:30:e2:4b:15:01:f4:7b:c2:a7:98:9b:fb:23: 27:91:56:fe:ad:50:9a:d4:14:47:f0:c0:d5:33:68: 20:f7:06:32:8f:02:77:d7:d5:02:7a:2b:e0:2a:5d: 80:ca:c2:ea:c3:77:35:3f:64:b7:56:e8:8a:07:fe: 17:3a:6c:f4:f2:3a:ed:b2:84:fc:9a:c6:4c:a8:6e: bf:7a:11:8f:d8:23:9d:ea:0b:26:bb:32:fc:0c:04: e9:68:13:53:6c:54:02:68:3c:08:21:02:35:0b:f5: c4:a8:b7:e1:6a:b8:2c:91:8a:f2:e0:a1:d4:5a:b0: b5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:CB:2A:0A:17:EA:CA:4D:67:A1:03:11:5E:68:8B:12:83:FB:24:97 X509v3 Authority Key Identifier: keyid:87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/8MsqChfqyk1noQMRXmiLEoP7JJc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.153.156.0/24 185.216.8.0/24 IPv6: 2001:678:20c::/48 2001:678:d58::/48 2a10:9906::/48 2a10:9906:1001::-2a10:9906:1002:ffff:ffff:ffff:ffff:ffff 2a10:9906:3010::/48 2a10:9906:3020::/48 2a10:9906:3050::/48 Signature Algorithm: sha256WithRSAEncryption 60:75:be:4d:19:47:c2:96:4d:22:ef:17:a7:f9:fe:f3:88:e1: 5c:2a:c2:59:47:ac:59:34:06:5e:7f:26:1a:20:68:c6:60:6a: 16:ef:7b:31:1f:ea:8e:d0:de:f9:63:7b:14:e7:bb:01:4e:8e: 8a:ff:75:c3:f6:48:3c:79:f4:a8:ca:79:34:1a:25:14:8a:50: f8:12:4c:0f:b4:80:ba:ea:69:fd:36:8a:58:06:75:da:4c:1a: 46:f2:d8:df:70:bf:bc:0e:34:5e:3d:61:7c:20:65:1d:46:ad: 51:7a:a5:38:cc:96:b3:f8:d5:37:db:93:cb:5e:c4:a9:c5:ad: 7f:c7:41:d4:ef:d1:ad:d7:c7:a6:6f:77:d6:b4:c3:36:0a:2c: 99:ef:87:e9:06:92:7b:6a:4c:c3:44:04:50:5b:ad:89:6a:a6: d4:bf:22:4a:9d:84:44:39:1b:18:36:87:b6:1b:56:02:bb:58: e3:c6:76:a3:e4:6c:d2:45:03:e0:34:27:64:bd:3c:c3:48:c8: 66:ab:97:16:32:b4:28:ce:9d:0e:18:da:0b:ac:e6:60:d8:7b: 66:03:d5:68:8e:1d:5f:a9:ff:72:f7:3f:28:00:ed:ab:44:8d: 52:b2:e3:26:e5:67:f7:bc:3d:3f:0c:cd:66:f9:77:c9:98:91: e3:67:40:23 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgISAZt7oxobq6QCyOoGde7CtiXXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3YmUwOTMwOTcwOTdjNDQ1N2ZmNWFhM2U1ODkzYzhjMTU0 MzI2MTIwHhcNMjYwMTAxMjIxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMGNiMmEwYTE3ZWFjYTRkNjdhMTAzMTE1ZTY4OGIxMjgzZmIyNDk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroioHI+fb8qQ/8zYNnLubaS+OAk7 xbCF08d6plFlaB8x0c0jIMsEZskDyVlHv6JEcKnWdqDhGgX9Ah4AZ7mINOcQKW73 cs43lWDPCT+K+aA87CucWMyKSyvyhFVUVyZZaKayUepCPI6KcQdENceOeXp33bXQ YwDM6BjX/gY6LgosMjl2sBys6TDiSxUB9HvCp5ib+yMnkVb+rVCa1BRH8MDVM2gg 9wYyjwJ319UCeivgKl2AysLqw3c1P2S3VuiKB/4XOmz08jrtsoT8msZMqG6/ehGP 2COd6gsmuzL8DATpaBNTbFQCaDwIIQI1C/XEqLfhargskYry4KHUWrC1BQIDAQAB o4ICYTCCAl0wHQYDVR0OBBYEFPDLKgoX6spNZ6EDEV5oixKD+ySXMB8GA1UdIwQY MBaAFIe+CTCXCXxEV/9ao+WJPIwVQyYSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDc0Sk1KY0pmRVJYXzFxajVZazhqQlZESmhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jYzhmNGEtNGMwMi00MDRiLThkOTMt MmNkZTY1ZjMxMTJhLzEvOE1zcUNoZnF5azFub1FNUlhtaUxFb1A3SkpjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9jYzhmNGEtNGMwMi00MDRiLThkOTMtMmNkZTY1ZjMxMTJh LzEvaDc0Sk1KY0pmRVJYXzFxajVZazhqQlZESmhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjASBAIAATAMAwQAJZmcAwQA udgIMFAEAgACMEoDBwAgAQZ4AgwDBwAgAQZ4DVgDBwAqEJkGAAAwEgMHACoQmQYQ AQMHACoQmQYQAgMHACoQmQYwEAMHACoQmQYwIAMHACoQmQYwUDANBgkqhkiG9w0B AQsFAAOCAQEAYHW+TRlHwpZNIu8Xp/n+84jhXCrCWUesWTQGXn8mGiBoxmBqFu97 MR/qjtDe+WN7FOe7AU6Oiv91w/ZIPHn0qMp5NBolFIpQ+BJMD7SAuupp/TaKWAZ1 2kwaRvLY33C/vA40Xj1hfCBlHUatUXqlOMyWs/jVN9uTy17EqcWtf8dB1O/RrdfH pm931rTDNgosme+H6QaSe2pMw0QEUFutiWqm1L8iSp2ERDkbGDaHthtWArtY48Z2 o+Rs0kUD4DQnZL08w0jIZquXFjK0KM6dDhjaC6zmYNh7ZgPVaI4dX6n/cvc/KADt q0SNUrLjJuVn97w9PwzNZvl3yZiR42dAIw== -----END CERTIFICATE-----Generated at Sun Jan 25 19:18:04 2026 by rpki-client