This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/f8Sh5PKSsR8s0NGtsNUsmQSlkUU.roa File: f8Sh5PKSsR8s0NGtsNUsmQSlkUU.roa (raw, json) Hash identifier: 1BPKZPNSlsiHZ/s0396JFcxfcZNK9Nqj40vSmiyevVk= Subject key identifier: 7F:C4:A1:E4:F2:92:B1:1F:2C:D0:D1:AD:B0:D5:2C:99:04:A5:91:45 Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e Certificate serial: 019B7AC7E4F031ADDA04C2AA11AAC84A0B63 Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/f8Sh5PKSsR8s0NGtsNUsmQSlkUU.roa Signing time: Thu 01 Jan 2026 18:17:59 +0000 ROA not before: Thu 01 Jan 2026 18:17:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1125 IP address blocks: 145.125.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.mft rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:e4:f0:31:ad:da:04:c2:aa:11:aa:c8:4a:0b:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e Validity Not Before: Jan 1 18:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7fc4a1e4f292b11f2cd0d1adb0d52c9904a59145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:95:e2:d3:c8:60:0b:f5:43:02:e1:10:a7:eb: 04:27:51:68:47:42:8c:93:bd:ed:c6:bc:4d:30:e5: 7e:6b:95:e6:2d:d6:f1:63:42:ec:2e:9d:cc:0b:2a: da:ac:b1:6f:80:6c:c8:05:9e:c6:18:34:ca:3f:c9: 54:b1:d1:11:28:77:b2:74:0d:81:e5:03:5e:cc:7a: 7a:64:4c:d5:04:44:f1:83:95:78:c4:87:0f:20:7b: 63:8a:17:30:ae:22:71:03:30:31:e4:9e:13:6b:be: f3:fa:a9:1c:ef:e9:9c:40:a4:83:80:e0:37:8a:db: 46:83:0b:63:2f:76:68:79:0d:5d:57:7f:6c:15:d1: d6:29:fc:79:29:45:26:6b:7b:b3:b4:93:1c:e7:fd: 7c:96:25:35:56:8e:06:48:08:d4:7f:4e:e7:14:a1: d2:d9:15:c6:6f:76:db:e8:c6:c6:d3:67:5e:fa:8b: 10:29:d3:11:8c:4c:66:19:c7:11:e4:06:e6:b8:30: c0:c9:60:1c:38:2b:cb:4d:dd:67:09:66:f4:d6:95: 5f:52:9b:c5:d2:78:26:30:30:65:75:e3:0a:15:d3: 9f:60:b0:31:71:a4:e0:fa:94:22:aa:b4:bd:e1:2b: fe:9c:da:c8:5c:8a:be:34:36:21:c2:8d:4c:19:d5: b8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C4:A1:E4:F2:92:B1:1F:2C:D0:D1:AD:B0:D5:2C:99:04:A5:91:45 X509v3 Authority Key Identifier: keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/f8Sh5PKSsR8s0NGtsNUsmQSlkUU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.125.0.0/16 Signature Algorithm: sha256WithRSAEncryption 91:b7:b0:03:88:69:67:f6:55:53:4f:52:dc:cf:c2:7e:45:73: 70:99:2a:ba:3c:6e:53:27:9d:cc:f7:76:c0:16:d6:5e:27:59: 65:45:63:bc:23:c5:22:fc:3b:0c:96:79:7e:14:ef:b2:21:5c: 1d:b1:86:3d:3f:83:e9:f2:3d:2b:fa:b2:6b:3d:73:84:bd:61: 2c:26:6b:db:7e:b7:b1:b2:f0:2f:fd:11:3d:ac:5d:d3:37:2e: ba:89:96:2f:25:e8:1d:07:f7:11:94:2f:e2:c0:6c:84:2c:46: b7:91:5d:c7:bb:e1:a8:1d:d6:08:30:3d:87:90:a2:23:47:d7: b5:9c:69:9f:4b:76:1f:1c:c2:c4:93:b5:be:20:57:f7:e4:f9: d6:1f:ff:bd:d9:48:e1:d3:7e:d1:8c:39:02:e2:02:16:da:99: 79:2c:d4:2f:1f:5f:7b:91:8e:fa:e5:19:4e:27:97:a4:8d:aa: 00:0c:86:64:0a:59:17:62:92:9e:eb:c6:b1:f2:b0:63:b2:bf: 8e:34:e8:9a:08:d0:17:2d:ff:f4:22:25:b2:89:0c:d4:4f:ef: 0e:08:10:88:ec:32:56:88:29:e8:62:cb:39:0e:06:5e:01:56: 89:7e:64:68:f8:b7:e3:a9:47:96:7c:10:b2:3d:20:db:da:37: db:a9:61:1d -----BEGIN CERTIFICATE----- MIIE/DCCA+SgAwIBAgISAZt6x+TwMa3aBMKqEarISgtjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE3NzNkYjE3Nzk1ZDJiZjFiNGI1MzQ1YzViMjkzOTBkYmFm NDUyM2UwHhcNMjYwMTAxMTgxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZmM0YTFlNGYyOTJiMTFmMmNkMGQxYWRiMGQ1MmM5OTA0YTU5MTQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA55Xi08hgC/VDAuEQp+sEJ1FoR0KM k73txrxNMOV+a5XmLdbxY0LsLp3MCyrarLFvgGzIBZ7GGDTKP8lUsdERKHeydA2B 5QNezHp6ZEzVBETxg5V4xIcPIHtjihcwriJxAzAx5J4Ta77z+qkc7+mcQKSDgOA3 ittGgwtjL3ZoeQ1dV39sFdHWKfx5KUUma3uztJMc5/18liU1Vo4GSAjUf07nFKHS 2RXGb3bb6MbG02de+osQKdMRjExmGccR5AbmuDDAyWAcOCvLTd1nCWb01pVfUpvF 0ngmMDBldeMKFdOfYLAxcaTg+pQiqrS94Sv+nNrIXIq+NDYhwo1MGdW4aQIDAQAB o4ICCDCCAgQwHQYDVR0OBBYEFH/EoeTykrEfLNDRrbDVLJkEpZFFMB8GA1UdIwQY MBaAFBdz2xd5XSvxtLU0XFspOQ269FI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYt NTQ4NjFmMjMyNDlkLzEvZjhTaDVQS1NzUjhzME5HdHNOVXNtUVNsa1VVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYtNTQ4NjFmMjMyNDlk LzEvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAkX0wDQYJ KoZIhvcNAQELBQADggEBAJG3sAOIaWf2VVNPUtzPwn5Fc3CZKro8blMnncz3dsAW 1l4nWWVFY7wjxSL8OwyWeX4U77IhXB2xhj0/g+nyPSv6sms9c4S9YSwma9t+t7Gy 8C/9ET2sXdM3LrqJli8l6B0H9xGUL+LAbIQsRreRXce74agd1ggwPYeQoiNH17Wc aZ9Ldh8cwsSTtb4gV/fk+dYf/73ZSOHTftGMOQLiAhbamXks1C8fX3uRjvrlGU4n l6SNqgAMhmQKWRdikp7rxrHysGOyv4406JoI0Bct//QiJbKJDNRP7w4IEIjsMlaI KehiyzkOBl4BVol+ZGj4t+OpR5Z8ELI9INvaN9upYR0= -----END CERTIFICATE-----Generated at Sun Jan 25 12:17:31 2026 by rpki-client