This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/g1AJ0Qadc9BuFdt0Z0aJx8FVAkI.roa File: g1AJ0Qadc9BuFdt0Z0aJx8FVAkI.roa (raw, json) Hash identifier: 9XnbutJv0NwND+aZq4DcwJkTrnxqoNa2gocMNMOI7TM= Subject key identifier: 83:50:09:D1:06:9D:73:D0:6E:15:DB:74:67:46:89:C7:C1:55:02:42 Certificate issuer: /CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c Certificate serial: 019B79ED5B220F01C0B7BDE177B51EDBF7CB Authority key identifier: 47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/g1AJ0Qadc9BuFdt0Z0aJx8FVAkI.roa Signing time: Thu 01 Jan 2026 14:19:17 +0000 ROA not before: Thu 01 Jan 2026 14:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 138968 IP address blocks: 85.208.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.mft rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:5b:22:0f:01:c0:b7:bd:e1:77:b5:1e:db:f7:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4705d3c6a5b0512682cdfdf363b19a9c567f1f6c Validity Not Before: Jan 1 14:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=835009d1069d73d06e15db74674689c7c1550242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b8:86:54:39:29:59:1f:42:cb:a6:92:43:bc: 59:a0:a6:03:8f:30:ba:4d:8e:4b:9d:af:1a:b1:b1: b7:95:4b:7c:ea:29:cd:73:77:0c:02:6a:77:0b:1a: eb:e6:31:f7:76:3c:d7:1d:f5:a5:b2:69:43:6c:62: 1b:9b:7c:9b:56:59:ac:b1:08:03:8c:b0:34:ef:52: 3f:d2:01:65:d4:f8:dd:7c:03:a6:6f:40:d3:44:1e: 15:e4:35:05:42:49:db:1b:4f:89:63:97:42:16:9e: dd:9f:73:29:3a:ba:f5:28:35:4f:eb:dc:55:ca:90: ee:e2:b1:42:76:61:99:aa:0a:e7:40:b9:b7:fc:5d: fa:63:74:80:25:c5:37:04:31:e0:46:2a:79:62:35: 69:0f:4f:e6:9c:34:df:2d:5f:04:56:2e:2f:bf:6f: 51:c2:20:e0:b6:0c:11:48:2e:61:34:16:d3:a0:19: 6c:4a:9d:82:7b:84:a1:12:33:62:75:1f:72:c4:e9: 18:9d:06:12:44:53:e2:6c:7f:49:37:97:1d:a8:37: 8a:18:78:75:d2:47:58:da:ae:fc:28:e0:d3:8c:e3: 9d:16:47:2c:8e:a6:37:18:6a:a2:d7:0a:99:c8:ea: ee:20:08:ce:99:9d:97:27:ef:ce:e8:38:16:75:6e: b6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:50:09:D1:06:9D:73:D0:6E:15:DB:74:67:46:89:C7:C1:55:02:42 X509v3 Authority Key Identifier: keyid:47:05:D3:C6:A5:B0:51:26:82:CD:FD:F3:63:B1:9A:9C:56:7F:1F:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwXTxqWwUSaCzf3zY7GanFZ_H2w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/g1AJ0Qadc9BuFdt0Z0aJx8FVAkI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/56aee9-996c-438f-bb00-0dfa6b22eff2/1/RwXTxqWwUSaCzf3zY7GanFZ_H2w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.208.212.0/22 Signature Algorithm: sha256WithRSAEncryption bb:14:db:d9:06:c6:f0:d7:7d:b3:2c:90:ce:63:cc:0a:ac:fc: ca:3b:5d:17:db:d8:ae:9b:b2:44:46:ff:48:4c:dc:78:47:1a: 6b:1d:3e:8e:b6:77:33:37:85:cc:b8:f7:c9:ae:f7:52:1d:28: bc:a0:83:b5:b2:3e:ca:c7:11:86:0c:32:0e:15:c5:95:8c:d5: 9a:f1:bd:dc:6f:09:fb:66:ad:40:30:45:ac:e0:98:68:e0:81: b9:4d:92:1b:5d:44:f4:37:01:6a:06:55:ee:d6:0a:b2:e7:58: da:d8:ea:5a:dd:9c:b0:ce:33:d2:87:ed:89:69:e1:54:3e:3e: 8d:ca:14:f7:b6:b2:a4:f4:23:dc:dd:14:9e:66:27:f4:70:a9: 42:ad:83:61:d6:d3:81:4d:0e:4b:1d:37:45:f6:0c:e9:b2:4e: ee:ce:25:fd:72:4b:c9:9c:8e:c6:de:73:ef:05:f0:ba:dc:10: 5a:96:38:f3:cb:a9:03:5b:eb:d2:6b:8f:7b:4c:7d:c8:99:d1: db:72:4e:65:c1:15:ee:0e:3c:33:38:a3:5e:7c:06:35:0a:b2: 96:bd:21:6a:df:94:a9:e1:2c:e8:98:3f:74:05:01:27:73:4a: e6:9a:4f:c2:f7:fb:f0:44:d9:f7:05:d4:ac:39:f1:3d:1c:cf: f0:dd:21:70 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57VsiDwHAt73hd7Ue2/fLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ3MDVkM2M2YTViMDUxMjY4MmNkZmRmMzYzYjE5YTljNTY3 ZjFmNmMwHhcNMjYwMTAxMTQxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzUwMDlkMTA2OWQ3M2QwNmUxNWRiNzQ2NzQ2ODljN2MxNTUwMjQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7iGVDkpWR9Cy6aSQ7xZoKYDjzC6 TY5Lna8asbG3lUt86inNc3cMAmp3Cxrr5jH3djzXHfWlsmlDbGIbm3ybVlmssQgD jLA071I/0gFl1PjdfAOmb0DTRB4V5DUFQknbG0+JY5dCFp7dn3MpOrr1KDVP69xV ypDu4rFCdmGZqgrnQLm3/F36Y3SAJcU3BDHgRip5YjVpD0/mnDTfLV8EVi4vv29R wiDgtgwRSC5hNBbToBlsSp2Ce4ShEjNidR9yxOkYnQYSRFPibH9JN5cdqDeKGHh1 0kdY2q78KODTjOOdFkcsjqY3GGqi1wqZyOruIAjOmZ2XJ+/O6DgWdW62pwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFINQCdEGnXPQbhXbdGdGicfBVQJCMB8GA1UdIwQY MBaAFEcF08alsFEmgs3982OxmpxWfx9sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUndYVHhxV3dVU2FDemYzelk3R2FuRlpfSDJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi81NmFlZTktOTk2Yy00MzhmLWJiMDAt MGRmYTZiMjJlZmYyLzEvZzFBSjBRYWRjOUJ1RmR0MFowYUp4OEZWQWtJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi81NmFlZTktOTk2Yy00MzhmLWJiMDAtMGRmYTZiMjJlZmYy LzEvUndYVHhxV3dVU2FDemYzelk3R2FuRlpfSDJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVdDUMA0G CSqGSIb3DQEBCwUAA4IBAQC7FNvZBsbw132zLJDOY8wKrPzKO10X29ium7JERv9I TNx4RxprHT6OtnczN4XMuPfJrvdSHSi8oIO1sj7KxxGGDDIOFcWVjNWa8b3cbwn7 Zq1AMEWs4Jho4IG5TZIbXUT0NwFqBlXu1gqy51ja2Opa3ZywzjPSh+2JaeFUPj6N yhT3trKk9CPc3RSeZif0cKlCrYNh1tOBTQ5LHTdF9gzpsk7uziX9ckvJnI7G3nPv BfC63BBaljjzy6kDW+vSa497TH3ImdHbck5lwRXuDjwzOKNefAY1CrKWvSFq35Sp 4SzomD90BQEnc0rmmk/C9/vwRNn3BdSsOfE9HM/w3SFw -----END CERTIFICATE-----Generated at Sun Jan 25 18:08:15 2026 by rpki-client