This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/grB1qqfTRQP7MTNrrn-WzmUk8gw.roa File: grB1qqfTRQP7MTNrrn-WzmUk8gw.roa (raw, json) Hash identifier: +6I+Ww911XZBE+FZXYbMuXqk8USqXVoE6JeVtzI2oaA= Subject key identifier: 82:B0:75:AA:A7:D3:45:03:FB:31:33:6B:AE:7F:96:CE:65:24:F2:0C Certificate issuer: /CN=6f20c1aae03c274f029428eea0a4424208d4f3ed Certificate serial: 019B7F1345DF99D043CFCAD46699413AC055 Authority key identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/grB1qqfTRQP7MTNrrn-WzmUk8gw.roa Signing time: Fri 02 Jan 2026 14:18:48 +0000 ROA not before: Fri 02 Jan 2026 14:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206602 IP address blocks: 185.245.144.0/22 maxlen: 22 185.245.144.0/24 maxlen: 24 185.245.145.0/24 maxlen: 24 185.245.146.0/24 maxlen: 24 185.245.147.0/24 maxlen: 24 2a12:bcc0::/29 maxlen: 29 2a12:bcc0:1::/48 maxlen: 48 2a12:bcc0:2::/48 maxlen: 48 2a12:bcc0:101::/48 maxlen: 48 2a12:bcc0:102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 20:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:45:df:99:d0:43:cf:ca:d4:66:99:41:3a:c0:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f20c1aae03c274f029428eea0a4424208d4f3ed Validity Not Before: Jan 2 14:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82b075aaa7d34503fb31336bae7f96ce6524f20c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0e:fa:16:2d:d9:71:c3:62:13:2e:d3:21:66: c2:4a:0f:72:0c:f4:8d:35:34:60:39:49:d1:d2:a0: d0:82:5e:0e:92:1c:d6:6f:78:14:58:50:a2:33:54: df:c1:87:79:07:72:33:16:9d:32:c7:bc:79:1b:b5: 88:f6:83:55:64:f7:1c:2b:b1:18:9c:00:52:b9:a7: 91:74:a5:7e:2d:23:20:c3:da:62:35:c4:cc:06:5f: 1a:03:ad:7c:b6:3e:84:1a:bf:00:fa:13:5b:bb:9c: de:2c:f7:12:d5:57:c4:09:50:48:f0:aa:74:91:99: 66:76:c7:70:71:b5:7c:81:21:2b:a2:bb:b9:4c:ec: 62:b7:d2:1a:12:ea:46:5e:ca:03:17:4a:99:43:24: 9b:1c:b9:79:3a:84:7b:0c:f9:3d:c8:48:09:dd:1a: 13:2d:97:a3:53:5b:d3:b3:19:56:51:08:8a:47:de: 75:42:9f:69:54:68:75:8c:73:c4:99:24:a7:d0:90: 6a:35:5b:09:03:bf:a0:c1:f3:fe:45:76:5b:2d:4e: 48:7c:cb:10:63:63:2b:6c:4b:dd:ea:bf:0b:19:48: 90:3b:dc:46:a7:5e:14:3f:ab:ff:99:30:b7:94:4a: 8e:db:ca:24:08:2b:0c:51:d9:64:38:c7:a9:75:4e: c2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B0:75:AA:A7:D3:45:03:FB:31:33:6B:AE:7F:96:CE:65:24:F2:0C X509v3 Authority Key Identifier: keyid:6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/grB1qqfTRQP7MTNrrn-WzmUk8gw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.245.144.0/22 IPv6: 2a12:bcc0::/29 Signature Algorithm: sha256WithRSAEncryption 85:29:ff:57:da:6f:3e:5a:89:1e:a3:f6:03:ca:10:1f:e9:db: 56:08:8e:07:af:c1:6f:73:20:1d:43:6d:f9:f9:df:84:2e:24: 7a:72:0e:6d:4c:f3:85:58:90:de:ef:91:fc:c0:c2:bc:48:47: 5b:69:f3:91:26:27:7c:f5:8a:6a:af:b8:96:07:a3:6d:7f:6f: 00:9f:5e:15:02:79:9b:72:a2:60:ce:f6:e5:7d:31:09:47:0f: be:b0:17:22:de:0c:87:81:34:71:e7:2d:ef:47:7c:c8:23:b8: 8a:58:26:8a:38:6a:0d:e1:36:9b:df:31:8d:6d:7e:ca:db:07: a9:35:c2:62:ee:08:10:36:af:fd:ef:b4:7b:cd:96:66:12:8b: a0:d8:31:bf:16:83:76:61:cb:cd:0f:6f:af:86:ea:6f:75:41: d0:27:e0:f4:90:2e:be:96:ee:94:58:bf:69:27:03:1f:6a:c8: 62:5e:96:34:8d:c1:32:3b:ee:ae:1e:b4:75:86:53:9b:56:01: ca:96:e9:f4:87:4d:f6:d3:ee:dc:be:e1:cc:ac:c6:ea:6e:73: a7:55:b5:61:60:39:c8:3a:51:e6:84:ba:4b:95:94:b0:7b:8d: 24:01:83:d2:e5:37:26:d7:17:89:58:d1:77:24:4c:9c:c0:ff: 59:61:9d:d0 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/E0XfmdBDz8rUZplBOsBVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMjBjMWFhZTAzYzI3NGYwMjk0MjhlZWEwYTQ0MjQyMDhk NGYzZWQwHhcNMjYwMTAyMTQxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmIwNzVhYWE3ZDM0NTAzZmIzMTMzNmJhZTdmOTZjZTY1MjRmMjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzA76Fi3ZccNiEy7TIWbCSg9yDPSN NTRgOUnR0qDQgl4OkhzWb3gUWFCiM1TfwYd5B3IzFp0yx7x5G7WI9oNVZPccK7EY nABSuaeRdKV+LSMgw9piNcTMBl8aA618tj6EGr8A+hNbu5zeLPcS1VfECVBI8Kp0 kZlmdsdwcbV8gSEroru5TOxit9IaEupGXsoDF0qZQySbHLl5OoR7DPk9yEgJ3RoT LZejU1vTsxlWUQiKR951Qp9pVGh1jHPEmSSn0JBqNVsJA7+gwfP+RXZbLU5IfMsQ Y2MrbEvd6r8LGUiQO9xGp14UP6v/mTC3lEqO28okCCsMUdlkOMepdU7CIwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIKwdaqn00UD+zEza65/ls5lJPIMMB8GA1UdIwQY MBaAFG8gwargPCdPApQo7qCkQkII1PPtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUt MDk1ZDBiZDI1NTVmLzEvZ3JCMXFxZlRSUVA3TVROcnJuLVd6bVVrOGd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS83ZTRiYTctZjU5Mi00ZWVjLWJjYWUtMDk1ZDBiZDI1NTVm LzEvYnlEQnF1QThKMDhDbENqdW9LUkNRZ2pVOC0wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCufWQMA0E AgACMAcDBQMqErzAMA0GCSqGSIb3DQEBCwUAA4IBAQCFKf9X2m8+Wokeo/YDyhAf 6dtWCI4Hr8FvcyAdQ235+d+ELiR6cg5tTPOFWJDe75H8wMK8SEdbafORJid89Ypq r7iWB6Ntf28An14VAnmbcqJgzvblfTEJRw++sBci3gyHgTRx5y3vR3zII7iKWCaK OGoN4Tab3zGNbX7K2wepNcJi7ggQNq/977R7zZZmEoug2DG/FoN2YcvND2+vhupv dUHQJ+D0kC6+lu6UWL9pJwMfashiXpY0jcEyO+6uHrR1hlObVgHKlun0h0320+7c vuHMrMbqbnOnVbVhYDnIOlHmhLpLlZSwe40kAYPS5Tcm1xeJWNF3JEycwP9ZYZ3Q -----END CERTIFICATE-----Generated at Mon Jan 26 02:43:39 2026 by rpki-client