This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/xofP0vR2GRdVVsSvPDa0VtVkEXQ.roa File: xofP0vR2GRdVVsSvPDa0VtVkEXQ.roa (raw, json) Hash identifier: /8DfX5cmYB17XvXmzLIRZPN74OLUvtImYga9Uzx5tUI= Subject key identifier: C6:87:CF:D2:F4:76:19:17:55:56:C4:AF:3C:36:B4:56:D5:64:11:74 Certificate issuer: /CN=70fee176f51ce8fd81424ff73a5417341279c0f1 Certificate serial: 019B78A2927CA4AE45DE43501026E3BAD169 Authority key identifier: 70:FE:E1:76:F5:1C:E8:FD:81:42:4F:F7:3A:54:17:34:12:79:C0:F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/xofP0vR2GRdVVsSvPDa0VtVkEXQ.roa Signing time: Thu 01 Jan 2026 08:17:58 +0000 ROA not before: Thu 01 Jan 2026 08:17:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208802 IP address blocks: 185.85.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.crl rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.mft rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:92:7c:a4:ae:45:de:43:50:10:26:e3:ba:d1:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70fee176f51ce8fd81424ff73a5417341279c0f1 Validity Not Before: Jan 1 08:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c687cfd2f47619175556c4af3c36b456d5641174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:10:8a:bc:09:ba:4f:b7:23:ae:bc:e7:9d:f7: c1:e2:7c:b9:de:a4:29:a7:98:d9:52:9e:52:4d:05: 9b:92:c2:58:70:41:3c:00:9b:d0:19:43:b2:46:0d: 6c:e0:32:6c:df:3c:b1:4f:18:d0:27:e0:d5:4a:f9: 53:da:ac:00:03:b0:06:14:8d:68:f8:8f:3d:1d:ed: 76:24:fb:a3:a3:36:35:89:8e:47:eb:14:43:1e:28: 96:4a:a0:ed:23:cc:d4:b5:b7:e0:08:ec:0b:6a:75: 69:56:14:ce:c0:f3:f6:ec:1b:87:f6:ff:3e:47:46: d2:3a:4b:7f:ab:c2:e9:5f:98:81:ea:87:2f:c8:a4: 81:78:da:75:5b:2a:3e:b4:8c:09:68:4e:37:b5:96: 89:ff:65:a5:35:56:ac:bb:ad:78:a6:2c:0d:b0:a4: c4:e7:af:03:56:85:f8:33:f9:e2:a6:ab:24:35:d4: a0:f8:bc:3c:dc:4c:00:02:4e:88:f9:bf:1c:e0:65: c1:1b:66:ed:b9:10:3d:8e:74:83:01:bf:04:9b:ac: 27:19:53:2f:49:60:af:fa:e9:fe:e1:d8:40:b1:c6: 77:c1:fd:0b:0e:45:8f:e6:45:55:80:f7:45:42:86: 52:f2:e7:53:c4:ad:e6:38:b1:c7:5e:4b:29:fa:9f: 49:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:87:CF:D2:F4:76:19:17:55:56:C4:AF:3C:36:B4:56:D5:64:11:74 X509v3 Authority Key Identifier: keyid:70:FE:E1:76:F5:1C:E8:FD:81:42:4F:F7:3A:54:17:34:12:79:C0:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/xofP0vR2GRdVVsSvPDa0VtVkEXQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4be222-6482-4db9-9a5f-752e9b8b0756/1/cP7hdvUc6P2BQk_3OlQXNBJ5wPE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.85.184.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:b6:dd:dc:dd:d7:26:d7:36:ca:86:18:ad:c0:63:62:78:24: c6:a9:84:db:21:84:32:3d:18:c7:fb:76:32:13:f0:09:7d:be: 71:c5:f9:cc:dd:c7:18:07:9e:8f:64:28:b9:99:e4:e0:9d:56: 53:ff:cf:ba:d8:60:21:2b:da:d7:19:90:41:d7:e9:13:2b:de: 70:69:57:71:10:9c:73:bb:12:c1:6f:f3:2c:c8:d6:c0:ab:79: 93:1a:0a:18:99:d3:f2:40:b3:4a:69:3b:6c:f8:b0:67:76:01: be:49:b8:59:7a:f1:ee:8a:13:8a:98:13:1e:80:2a:b0:97:08: 9b:79:f8:6a:f3:2f:fd:78:39:74:b8:6c:78:f8:24:f7:65:bf: 9e:51:9d:fc:73:6e:90:2b:fa:a4:08:d5:92:42:88:79:e7:53: f5:b8:ec:3c:dc:c0:40:5c:aa:72:8a:14:25:c4:34:fa:c8:d9: f7:f8:69:6b:69:43:0d:03:72:c6:05:31:fd:c1:17:c5:9a:40: ca:66:72:bf:b5:3d:45:6d:61:b9:b4:c7:37:f0:e3:15:d2:e6: 05:b9:b8:b7:8f:5b:e3:cf:fb:5f:f9:6e:82:4f:f4:61:1c:bc: 5b:df:3b:a5:00:df:0b:b0:5c:75:88:18:0f:a1:27:0e:83:1a: 45:ec:4e:9d -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4opJ8pK5F3kNQECbjutFpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwZmVlMTc2ZjUxY2U4ZmQ4MTQyNGZmNzNhNTQxNzM0MTI3 OWMwZjEwHhcNMjYwMTAxMDgxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNjg3Y2ZkMmY0NzYxOTE3NTU1NmM0YWYzYzM2YjQ1NmQ1NjQxMTc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBCKvAm6T7cjrrznnffB4ny53qQp p5jZUp5STQWbksJYcEE8AJvQGUOyRg1s4DJs3zyxTxjQJ+DVSvlT2qwAA7AGFI1o +I89He12JPujozY1iY5H6xRDHiiWSqDtI8zUtbfgCOwLanVpVhTOwPP27BuH9v8+ R0bSOkt/q8LpX5iB6ocvyKSBeNp1Wyo+tIwJaE43tZaJ/2WlNVasu614piwNsKTE 568DVoX4M/nipqskNdSg+Lw83EwAAk6I+b8c4GXBG2btuRA9jnSDAb8Em6wnGVMv SWCv+un+4dhAscZ3wf0LDkWP5kVVgPdFQoZS8udTxK3mOLHHXksp+p9JYwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFMaHz9L0dhkXVVbErzw2tFbVZBF0MB8GA1UdIwQY MBaAFHD+4Xb1HOj9gUJP9zpUFzQSecDxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1A3aGR2VWM2UDJCUWtfM09sUVhOQko1d1BFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS80YmUyMjItNjQ4Mi00ZGI5LTlhNWYt NzUyZTliOGIwNzU2LzEveG9mUDB2UjJHUmRWVnNTdlBEYTBWdFZrRVhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS80YmUyMjItNjQ4Mi00ZGI5LTlhNWYtNzUyZTliOGIwNzU2 LzEvY1A3aGR2VWM2UDJCUWtfM09sUVhOQko1d1BFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuVW4MA0G CSqGSIb3DQEBCwUAA4IBAQB9tt3c3dcm1zbKhhitwGNieCTGqYTbIYQyPRjH+3Yy E/AJfb5xxfnM3ccYB56PZCi5meTgnVZT/8+62GAhK9rXGZBB1+kTK95waVdxEJxz uxLBb/MsyNbAq3mTGgoYmdPyQLNKaTts+LBndgG+SbhZevHuihOKmBMegCqwlwib efhq8y/9eDl0uGx4+CT3Zb+eUZ38c26QK/qkCNWSQoh551P1uOw83MBAXKpyihQl xDT6yNn3+GlraUMNA3LGBTH9wRfFmkDKZnK/tT1FbWG5tMc38OMV0uYFubi3j1vj z/tf+W6CT/RhHLxb3zulAN8LsFx1iBgPoScOgxpF7E6d -----END CERTIFICATE-----Generated at Mon Jan 26 09:23:52 2026 by rpki-client