This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/A2RPdFLnV8Lfmf0wON0HC0ISmiU.roa File: A2RPdFLnV8Lfmf0wON0HC0ISmiU.roa (raw, json) Hash identifier: JNHZwvTA4JGmSpPd+wy2p2sJ08x2J+cDHWHOAj7luKY= Subject key identifier: 03:64:4F:74:52:E7:57:C2:DF:99:FD:30:38:DD:07:0B:42:12:9A:25 Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9 Certificate serial: 019B7F847B4AB41B69D7AFE34AF2992C82F4 Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/A2RPdFLnV8Lfmf0wON0HC0ISmiU.roa Signing time: Fri 02 Jan 2026 16:22:27 +0000 ROA not before: Fri 02 Jan 2026 16:22:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212805 IP address blocks: 85.153.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.mft rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:7b:4a:b4:1b:69:d7:af:e3:4a:f2:99:2c:82:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9 Validity Not Before: Jan 2 16:22:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03644f7452e757c2df99fd3038dd070b42129a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:16:b1:e0:7b:fc:0d:26:c8:aa:49:45:9a:33: a5:1a:78:53:64:86:6a:f2:95:34:e0:6b:f2:a3:37: fd:9e:b0:b3:ca:4c:78:ce:39:75:23:9e:37:85:12: 59:02:3d:01:cd:5e:77:53:a2:d2:16:a0:12:62:1e: 00:19:20:2e:fe:08:97:17:9c:71:66:4b:af:56:1d: 08:77:7c:c0:12:02:ac:25:03:97:e1:3f:76:80:24: ed:ac:dd:6c:fc:64:e8:01:43:91:e4:8d:f8:c5:7e: c7:a1:d8:e7:f5:dd:a6:c1:25:37:85:f7:44:95:9b: 0c:1e:48:76:31:4d:61:83:80:9f:84:c7:e0:ae:80: 87:e2:97:06:cf:70:f3:79:6d:ef:e2:a4:1e:58:ef: 40:fb:f8:e0:b5:e5:5d:3b:35:90:bb:98:33:91:c4: 73:aa:37:9b:a3:be:72:8b:51:eb:9b:ab:0f:3e:ff: 6f:6a:8e:7d:44:36:01:ca:50:a7:ab:6d:c0:db:4a: e6:24:fa:1b:0e:ff:da:b6:11:2f:e9:e3:17:c3:7e: b7:2a:b7:f9:60:6c:e8:92:90:0f:12:a5:3b:08:5d: 2c:91:2f:fe:c7:b4:8f:5e:f0:f5:78:43:68:ab:8d: ec:78:a0:c7:d8:19:ad:d2:5c:d7:7c:a5:db:d5:ec: 09:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:64:4F:74:52:E7:57:C2:DF:99:FD:30:38:DD:07:0B:42:12:9A:25 X509v3 Authority Key Identifier: keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/A2RPdFLnV8Lfmf0wON0HC0ISmiU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.153.146.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:e7:73:64:ee:d9:4d:0a:48:7c:30:62:d0:64:da:ce:99:fc: eb:24:78:2c:5a:c6:44:d0:51:bf:1f:e4:73:8d:05:a9:56:cf: e8:2d:15:00:46:ee:ec:8b:d9:62:9b:e7:e3:cc:90:0b:75:f3: 2a:eb:cb:99:6b:7f:f0:14:47:4c:49:82:f5:3c:25:02:51:1e: bc:63:c7:e7:ff:22:d2:07:c9:85:9c:9d:ad:64:83:f3:c4:a9: 6b:7c:86:2d:d0:94:01:82:75:f8:2b:e9:df:2c:40:e6:c5:8b: af:f6:ed:50:0f:0e:89:64:ba:ce:e3:1e:3a:9d:77:47:9b:ba: 19:cb:6f:48:56:79:9c:a3:0f:a6:11:c6:fe:af:ab:57:a6:d2: c5:13:83:40:d6:96:91:b7:7a:a5:b8:55:09:39:1d:9b:f7:f7: 7a:ac:6c:34:21:1e:8b:59:bc:70:69:e5:c1:4d:30:5e:a1:bf: 97:97:b5:de:82:cd:f9:15:3d:30:06:45:5d:b0:34:1c:3d:33: 06:35:2a:fa:e2:fb:79:80:8d:52:88:47:5d:f5:ca:c1:fb:c0: cf:4e:13:b1:17:72:1f:ae:41:ac:7d:a9:e9:04:0a:f1:4e:d8: e2:7f:3e:0a:b2:ce:51:90:f6:bb:c6:85:ce:ee:3f:d1:e9:c6: 67:6d:ef:38 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hHtKtBtp16/jSvKZLIL0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkNTljNDMyM2Y3NjdjZTRmZmM4NWRhYWQyMDhiOTBjMDRm YmQzZTkwHhcNMjYwMTAyMTYyMjI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzY0NGY3NDUyZTc1N2MyZGY5OWZkMzAzOGRkMDcwYjQyMTI5YTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBax4Hv8DSbIqklFmjOlGnhTZIZq 8pU04Gvyozf9nrCzykx4zjl1I543hRJZAj0BzV53U6LSFqASYh4AGSAu/giXF5xx ZkuvVh0Id3zAEgKsJQOX4T92gCTtrN1s/GToAUOR5I34xX7Hodjn9d2mwSU3hfdE lZsMHkh2MU1hg4CfhMfgroCH4pcGz3DzeW3v4qQeWO9A+/jgteVdOzWQu5gzkcRz qjebo75yi1Hrm6sPPv9vao59RDYBylCnq23A20rmJPobDv/athEv6eMXw363Krf5 YGzokpAPEqU7CF0skS/+x7SPXvD1eENoq43seKDH2Bmt0lzXfKXb1ewJcQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFANkT3RS51fC35n9MDjdBwtCEpolMB8GA1UdIwQY MBaAFI1ZxDI/dnzk/8hdqtIIuQwE+9PpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUt ZjJiZTlmNmM2NjRjLzEvQTJSUGRGTG5WOExmbWYwd09OMEhDMElTbWlVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUtZjJiZTlmNmM2NjRj LzEvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVZmSMA0G CSqGSIb3DQEBCwUAA4IBAQBv53Nk7tlNCkh8MGLQZNrOmfzrJHgsWsZE0FG/H+Rz jQWpVs/oLRUARu7si9lim+fjzJALdfMq68uZa3/wFEdMSYL1PCUCUR68Y8fn/yLS B8mFnJ2tZIPzxKlrfIYt0JQBgnX4K+nfLEDmxYuv9u1QDw6JZLrO4x46nXdHm7oZ y29IVnmcow+mEcb+r6tXptLFE4NA1paRt3qluFUJOR2b9/d6rGw0IR6LWbxwaeXB TTBeob+Xl7Xegs35FT0wBkVdsDQcPTMGNSr64vt5gI1SiEdd9crB+8DPThOxF3If rkGsfanpBArxTtjifz4Kss5RkPa7xoXO7j/R6cZnbe84 -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:05 2026 by rpki-client