This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/d8793d-47d8-4d78-9ade-351bfd83fcc1/1/156cev6jxdaS9CKH_J7urLFNox0.roa File: 156cev6jxdaS9CKH_J7urLFNox0.roa (raw, json) Hash identifier: IR52/Lw7/la2ANoAjFKa1rlTWLrtGkhOKVZLP6cf7EI= Subject key identifier: D7:9E:9C:7A:FE:A3:C5:D6:92:F4:22:87:FC:9E:EE:AC:B1:4D:A3:1D Certificate issuer: /CN=80f358b2ce02ba8ff0ba14eec5f337a8da11c0dc Certificate serial: 019B79ECEBE796567A03EB5F79B6C91A1E42 Authority key identifier: 80:F3:58:B2:CE:02:BA:8F:F0:BA:14:EE:C5:F3:37:A8:DA:11:C0:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPNYss4Cuo_wuhTuxfM3qNoRwNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/d8793d-47d8-4d78-9ade-351bfd83fcc1/1/156cev6jxdaS9CKH_J7urLFNox0.roa Signing time: Thu 01 Jan 2026 14:18:48 +0000 ROA not before: Thu 01 Jan 2026 14:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60331 IP address blocks: 185.32.96.0/22 maxlen: 24 2a00:c120::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/d8793d-47d8-4d78-9ade-351bfd83fcc1/1/gPNYss4Cuo_wuhTuxfM3qNoRwNw.crl rsync://rpki.ripe.net/repository/DEFAULT/37/d8793d-47d8-4d78-9ade-351bfd83fcc1/1/gPNYss4Cuo_wuhTuxfM3qNoRwNw.mft rsync://rpki.ripe.net/repository/DEFAULT/gPNYss4Cuo_wuhTuxfM3qNoRwNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:eb:e7:96:56:7a:03:eb:5f:79:b6:c9:1a:1e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80f358b2ce02ba8ff0ba14eec5f337a8da11c0dc Validity Not Before: Jan 1 14:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d79e9c7afea3c5d692f42287fc9eeeacb14da31d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8a:72:18:4d:47:c4:6e:28:48:2a:84:57:30: 73:3d:36:d9:c4:be:f9:c4:be:2e:a3:c1:2e:03:3c: e2:c2:23:13:cf:84:16:77:3f:d1:25:6b:83:c9:0e: c3:f4:f8:70:97:59:ec:a6:cc:d0:0a:e5:78:cd:27: ff:30:8e:7a:ca:dd:0c:34:81:d5:ec:b5:76:e0:21: 32:03:cf:71:63:d9:c5:e2:b5:6c:33:eb:ce:4e:76: fc:04:0f:09:e2:77:b7:15:c0:fa:d2:ec:e2:65:47: ce:a0:4b:cb:5f:1c:68:8f:90:ed:6f:13:d0:01:9e: 4a:b4:44:a9:a4:66:2e:69:a1:70:a1:e1:a5:b8:0f: a8:58:ed:99:47:07:ad:03:bb:18:9e:08:b2:70:f5: bf:49:2f:ae:28:f0:a9:e9:89:41:92:8e:23:f3:18: d8:7a:22:b4:ee:b4:56:bd:4f:c7:98:d9:70:2f:6a: 85:37:0d:6b:9b:74:ed:24:dd:7b:30:75:50:26:af: 32:56:89:fc:1a:1e:7d:16:8c:19:e9:40:0f:bf:77: 1d:c5:91:93:0f:eb:95:14:50:9c:4b:7f:dd:04:17: 5d:76:d9:3f:d3:65:39:02:6b:37:26:1c:7e:f2:81: 89:76:41:fe:80:58:6b:3e:e7:81:fb:0b:bc:34:6d: 3c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:9E:9C:7A:FE:A3:C5:D6:92:F4:22:87:FC:9E:EE:AC:B1:4D:A3:1D X509v3 Authority Key Identifier: keyid:80:F3:58:B2:CE:02:BA:8F:F0:BA:14:EE:C5:F3:37:A8:DA:11:C0:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPNYss4Cuo_wuhTuxfM3qNoRwNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/d8793d-47d8-4d78-9ade-351bfd83fcc1/1/156cev6jxdaS9CKH_J7urLFNox0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/d8793d-47d8-4d78-9ade-351bfd83fcc1/1/gPNYss4Cuo_wuhTuxfM3qNoRwNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.32.96.0/22 IPv6: 2a00:c120::/32 Signature Algorithm: sha256WithRSAEncryption 2b:33:ea:47:09:a9:56:aa:a4:90:e9:6c:0c:df:0a:76:b0:a2: 6d:72:b8:dd:17:8d:e0:6d:a9:58:4d:67:ff:8f:93:6b:14:60: b0:92:bf:b0:49:1f:1b:82:d4:0c:df:c5:9b:bf:a5:7a:e3:74: 91:31:fd:1f:a1:25:bc:41:07:35:e8:57:c9:23:c7:be:d5:6c: 6d:e9:6e:f1:67:6a:f4:bf:bd:71:77:f5:55:45:b8:b0:5d:5a: bb:4d:0a:14:6a:0e:4c:d0:c7:6f:cc:d5:6f:81:88:68:e7:e6: be:a4:1d:fb:da:a8:49:27:47:25:82:c3:4a:d6:40:7f:2e:fa: c1:34:f8:08:1f:06:c7:ba:a5:29:48:89:d0:ca:92:d7:cf:52: 66:08:51:c1:df:f2:97:e2:80:6f:86:f3:f0:ee:17:fa:32:07: 06:d1:29:71:a6:03:d6:28:c7:53:41:8e:d7:5f:e2:f9:a2:28: fc:87:d3:1f:c5:32:ed:a2:f3:37:4d:91:36:ee:b1:14:8e:e8: 08:b5:cc:1f:50:fa:65:e6:4e:c6:72:6e:ce:a3:fc:49:bf:bd: 0b:25:ea:07:9a:f4:c8:8d:56:78:07:59:9d:ae:b6:f7:75:c0: 3f:42:df:dd:48:4f:3d:9a:d5:4f:0e:3f:d1:eb:3a:09:df:d7: 40:17:d1:cc -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57OvnllZ6A+tfebbJGh5CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwZjM1OGIyY2UwMmJhOGZmMGJhMTRlZWM1ZjMzN2E4ZGEx MWMwZGMwHhcNMjYwMTAxMTQxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzllOWM3YWZlYTNjNWQ2OTJmNDIyODdmYzllZWVhY2IxNGRhMzFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4pyGE1HxG4oSCqEVzBzPTbZxL75 xL4uo8EuAzziwiMTz4QWdz/RJWuDyQ7D9Phwl1nspszQCuV4zSf/MI56yt0MNIHV 7LV24CEyA89xY9nF4rVsM+vOTnb8BA8J4ne3FcD60uziZUfOoEvLXxxoj5DtbxPQ AZ5KtESppGYuaaFwoeGluA+oWO2ZRwetA7sYngiycPW/SS+uKPCp6YlBko4j8xjY eiK07rRWvU/HmNlwL2qFNw1rm3TtJN17MHVQJq8yVon8Gh59FowZ6UAPv3cdxZGT D+uVFFCcS3/dBBdddtk/02U5Ams3Jhx+8oGJdkH+gFhrPueB+wu8NG08NQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFNeenHr+o8XWkvQih/ye7qyxTaMdMB8GA1UdIwQY MBaAFIDzWLLOArqP8LoU7sXzN6jaEcDcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ1BOWXNzNEN1b193dWhUdXhmTTNxTm9Sd053LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9kODc5M2QtNDdkOC00ZDc4LTlhZGUt MzUxYmZkODNmY2MxLzEvMTU2Y2V2Nmp4ZGFTOUNLSF9KN3VyTEZOb3gwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy9kODc5M2QtNDdkOC00ZDc4LTlhZGUtMzUxYmZkODNmY2Mx LzEvZ1BOWXNzNEN1b193dWhUdXhmTTNxTm9Sd053LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuSBgMA0E AgACMAcDBQAqAMEgMA0GCSqGSIb3DQEBCwUAA4IBAQArM+pHCalWqqSQ6WwM3wp2 sKJtcrjdF43gbalYTWf/j5NrFGCwkr+wSR8bgtQM38Wbv6V643SRMf0foSW8QQc1 6FfJI8e+1Wxt6W7xZ2r0v71xd/VVRbiwXVq7TQoUag5M0MdvzNVvgYho5+a+pB37 2qhJJ0clgsNK1kB/LvrBNPgIHwbHuqUpSInQypLXz1JmCFHB3/KX4oBvhvPw7hf6 MgcG0SlxpgPWKMdTQY7XX+L5oij8h9MfxTLtovM3TZE27rEUjugItcwfUPpl5k7G cm7Oo/xJv70LJeoHmvTIjVZ4B1mdrrb3dcA/Qt/dSE89mtVPDj/R6zoJ39dAF9HM -----END CERTIFICATE-----Generated at Mon Jan 26 04:39:34 2026 by rpki-client