This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/sB0mmb0YWSbMF3E1k6_T_zsN2sM.roa File: sB0mmb0YWSbMF3E1k6_T_zsN2sM.roa (raw, json) Hash identifier: YB4mz8FheQ84EqAJDNB1pXt2M2JuLI6viCvso+bTBuc= Subject key identifier: B0:1D:26:99:BD:18:59:26:CC:17:71:35:93:AF:D3:FF:3B:0D:DA:C3 Certificate issuer: /CN=5ab1996515884434b87882b5b972a6e529ffb00b Certificate serial: 019B7EA589148B1D3CAE0D59EC17193661E6 Authority key identifier: 5A:B1:99:65:15:88:44:34:B8:78:82:B5:B9:72:A6:E5:29:FF:B0:0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/sB0mmb0YWSbMF3E1k6_T_zsN2sM.roa Signing time: Fri 02 Jan 2026 12:18:56 +0000 ROA not before: Fri 02 Jan 2026 12:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209103 IP address blocks: 185.159.157.0/24 maxlen: 24 185.159.159.0/24 maxlen: 24 2a07:b941:e10::/44 maxlen: 44 2a07:b941:e20::/44 maxlen: 44 2a07:b941:e40::/44 maxlen: 44 2a07:b941:f00::/44 maxlen: 44 2a07:b941:f10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.crl rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.mft rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a5:89:14:8b:1d:3c:ae:0d:59:ec:17:19:36:61:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5ab1996515884434b87882b5b972a6e529ffb00b Validity Not Before: Jan 2 12:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b01d2699bd185926cc17713593afd3ff3b0ddac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:9a:7e:de:34:8a:6c:bd:43:6b:b9:c4:16:00: a0:1a:06:8e:7e:02:13:db:b0:f0:8a:92:c4:89:41: 0c:53:b9:bf:29:06:b6:33:33:3c:da:7a:00:e2:cb: 26:ac:2d:fa:ae:8c:2b:3d:1a:16:dd:53:b0:43:8a: 54:f1:9f:d7:39:95:2d:13:3d:92:9b:9a:56:3d:d7: 6d:11:2c:94:6b:f6:8b:fb:2f:44:0d:50:ee:c2:ba: e6:c8:90:73:00:89:8d:78:58:d0:b5:1a:ac:16:1f: bc:1d:b0:e6:d8:67:8a:7f:cd:ca:12:d3:dc:a4:6b: 26:e9:5c:be:95:ad:fc:a5:15:d9:a9:92:a7:9e:a9: c2:61:04:09:04:58:73:41:b4:67:5e:f7:36:61:cd: 35:49:ed:84:64:f5:7e:a6:ca:64:3d:ab:67:fe:f2: 56:91:88:dd:f8:1e:bd:60:da:9c:8a:02:72:55:66: 1d:0b:7c:2a:35:e5:bb:86:9e:ab:f9:eb:cc:b6:62: 64:f6:31:45:08:5b:c9:38:65:2e:95:90:66:c8:23: bd:7a:16:71:c4:90:6f:a1:24:50:32:1e:65:7d:af: a3:6b:73:cb:2a:80:45:d5:71:2b:2c:7c:f7:22:45: c0:84:42:3e:89:48:75:ad:40:24:ef:1b:77:8b:05: 8a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:1D:26:99:BD:18:59:26:CC:17:71:35:93:AF:D3:FF:3B:0D:DA:C3 X509v3 Authority Key Identifier: keyid:5A:B1:99:65:15:88:44:34:B8:78:82:B5:B9:72:A6:E5:29:FF:B0:0B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/sB0mmb0YWSbMF3E1k6_T_zsN2sM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/94c919-e6ea-4e18-af12-ed5b01d2528c/1/WrGZZRWIRDS4eIK1uXKm5Sn_sAs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.159.157.0/24 185.159.159.0/24 IPv6: 2a07:b941:e10::-2a07:b941:e2f:ffff:ffff:ffff:ffff:ffff 2a07:b941:e40::/44 2a07:b941:f00::/43 Signature Algorithm: sha256WithRSAEncryption 99:7a:92:03:c6:a5:5c:5c:30:b3:f6:b7:45:eb:8a:58:28:e8: 8f:1f:22:82:62:bd:b9:ad:fe:71:fd:d5:5e:ef:22:eb:d8:7c: 1f:54:14:cb:bf:fe:f7:44:a0:81:63:85:68:47:07:fc:6c:87: b7:1f:ba:93:c5:ef:4a:ab:71:02:14:4a:ff:83:db:ac:f2:63: b3:3d:f6:79:c8:59:c0:5f:0c:52:c4:de:9d:6b:21:67:0d:b7: 9d:af:84:92:9a:a6:25:31:92:1b:08:55:4b:00:98:c8:11:b6: 0d:47:9c:7b:cc:11:2f:e1:a6:5e:6a:4c:85:6e:43:7e:cc:e7: c9:95:ac:20:8b:a4:b8:79:c5:b1:58:5e:1d:7b:8f:7a:cc:6d: 5c:05:1b:2c:f2:14:c3:ab:1c:05:2b:be:15:53:c3:6a:f5:25: 08:1b:44:1a:d6:82:b9:81:b2:56:47:8a:de:ab:c1:d1:21:bd: 57:7f:36:c6:59:a0:9b:71:15:28:6d:6c:ca:ac:4c:4d:ea:70: 02:a6:d4:2b:d3:a5:6a:4f:50:e1:71:49:be:fd:00:a0:e0:01: 31:4e:7d:b1:8f:44:98:11:c9:c5:78:91:af:48:1f:e4:bb:32: 69:ee:fa:1c:dd:cd:f3:b2:21:f6:de:f5:5e:b5:07:70:e0:2a: 1f:fd:c8:35 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgISAZt+pYkUix08rg1Z7BcZNmHmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhYjE5OTY1MTU4ODQ0MzRiODc4ODJiNWI5NzJhNmU1Mjlm ZmIwMGIwHhcNMjYwMTAyMTIxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDFkMjY5OWJkMTg1OTI2Y2MxNzcxMzU5M2FmZDNmZjNiMGRkYWMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpp+3jSKbL1Da7nEFgCgGgaOfgIT 27DwipLEiUEMU7m/KQa2MzM82noA4ssmrC36rowrPRoW3VOwQ4pU8Z/XOZUtEz2S m5pWPddtESyUa/aL+y9EDVDuwrrmyJBzAImNeFjQtRqsFh+8HbDm2GeKf83KEtPc pGsm6Vy+la38pRXZqZKnnqnCYQQJBFhzQbRnXvc2Yc01Se2EZPV+pspkPatn/vJW kYjd+B69YNqcigJyVWYdC3wqNeW7hp6r+evMtmJk9jFFCFvJOGUulZBmyCO9ehZx xJBvoSRQMh5lfa+ja3PLKoBF1XErLHz3IkXAhEI+iUh1rUAk7xt3iwWKNQIDAQAB o4ICPTCCAjkwHQYDVR0OBBYEFLAdJpm9GFkmzBdxNZOv0/87DdrDMB8GA1UdIwQY MBaAFFqxmWUViEQ0uHiCtblypuUp/7ALMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3JHWlpSV0lSRFM0ZUlLMXVYS201U25fc0FzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85NGM5MTktZTZlYS00ZTE4LWFmMTIt ZWQ1YjAxZDI1MjhjLzEvc0IwbW1iMFlXU2JNRjNFMWs2X1RfenNOMnNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85NGM5MTktZTZlYS00ZTE4LWFmMTItZWQ1YjAxZDI1Mjhj LzEvV3JHWlpSV0lSRFM0ZUlLMXVYS201U25fc0FzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFMGCCsGAQUFBwEHAQH/BEQwQjASBAIAATAMAwQAuZ+dAwQA uZ+fMCwEAgACMCYwEgMHBCoHuUEOEAMHBCoHuUEOIAMHBCoHuUEOQAMHBSoHuUEP ADANBgkqhkiG9w0BAQsFAAOCAQEAmXqSA8alXFwws/a3ReuKWCjojx8igmK9ua3+ cf3VXu8i69h8H1QUy7/+90SggWOFaEcH/GyHtx+6k8XvSqtxAhRK/4PbrPJjsz32 echZwF8MUsTenWshZw23na+EkpqmJTGSGwhVSwCYyBG2DUece8wRL+GmXmpMhW5D fsznyZWsIIukuHnFsVheHXuPesxtXAUbLPIUw6scBSu+FVPDavUlCBtEGtaCuYGy VkeK3qvB0SG9V382xlmgm3EVKG1syqxMTepwAqbUK9Olak9Q4XFJvv0AoOABMU59 sY9EmBHJxXiRr0gf5Lsyae76HN3N87Ih9t71XrUHcOAqH/3INQ== -----END CERTIFICATE-----Generated at Mon Jan 26 06:18:02 2026 by rpki-client