This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/B8sy3_ktMjmvz_Vx32lg_nQccTc.roa File: B8sy3_ktMjmvz_Vx32lg_nQccTc.roa (raw, json) Hash identifier: bK5/40BeY6wg8mqdMQ18mLOTKqKSB1YnA9Zq5nJtUEs= Subject key identifier: 07:CB:32:DF:F9:2D:32:39:AF:CF:F5:71:DF:69:60:FE:74:1C:71:37 Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc Certificate serial: 019BF14EC75D85462A0B02A3A4F6E960D3AD Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/B8sy3_ktMjmvz_Vx32lg_nQccTc.roa Signing time: Sat 24 Jan 2026 18:40:30 +0000 ROA not before: Sat 24 Jan 2026 18:40:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206208 IP address blocks: 185.242.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.mft rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f1:4e:c7:5d:85:46:2a:0b:02:a3:a4:f6:e9:60:d3:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc Validity Not Before: Jan 24 18:40:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07cb32dff92d3239afcff571df6960fe741c7137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1c:70:a6:01:c2:18:78:10:c4:c9:ef:69:45: 85:4a:37:62:09:02:fb:f2:bd:d1:c9:b1:41:5b:46: 69:ef:20:fd:27:46:d8:98:b6:5c:31:d2:af:18:28: 62:72:80:df:a7:1e:31:6d:ff:84:35:31:89:ed:44: 76:c7:41:58:04:c7:ac:ae:53:d0:42:c9:ca:fd:e7: 92:a4:96:48:d1:40:cd:a8:11:8e:83:ba:95:81:ae: 03:9a:49:bb:c7:b6:4d:57:8d:31:c4:78:d4:5d:5d: c2:30:f0:ae:15:e5:b0:ec:f1:aa:cc:95:47:e2:b9: b1:82:91:ef:8b:7d:1b:d7:6f:db:cd:fc:3e:69:90: 9c:86:40:1f:9b:84:f2:d0:4e:8c:27:af:6c:82:94: 42:4f:5e:0f:b1:0c:ec:4b:47:b7:9d:bc:d3:e6:9c: 95:3c:14:be:6a:42:2e:6e:54:39:e0:50:da:2c:ae: 5c:b0:c1:35:aa:62:7c:ce:fe:19:d2:af:88:c9:95: e9:81:e6:9d:ba:34:f7:63:77:a9:b5:21:9c:f5:20: 44:4f:68:76:b4:af:5a:48:67:6f:93:e0:11:5e:a8: 28:14:8f:33:0e:8d:b8:c4:4d:49:03:44:84:4d:f0: 4a:42:2b:cd:ea:c1:61:dc:7a:fe:ca:80:f2:6e:40: e2:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:CB:32:DF:F9:2D:32:39:AF:CF:F5:71:DF:69:60:FE:74:1C:71:37 X509v3 Authority Key Identifier: keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/B8sy3_ktMjmvz_Vx32lg_nQccTc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.242.2.0/24 Signature Algorithm: sha256WithRSAEncryption 17:a8:18:13:97:07:af:77:7a:49:98:65:b2:12:96:7a:79:22: fe:12:55:ea:67:ae:37:0d:6b:84:3d:cb:21:70:f9:24:e2:86: b6:b6:24:59:18:ae:df:91:2a:71:57:da:a3:68:f4:45:45:64: 31:4f:ae:f4:86:78:76:75:19:c0:cd:f5:8c:7f:b8:45:8a:06: d7:24:2a:9d:2d:64:01:78:b0:7d:78:59:07:6a:a2:dd:4a:f0: d4:97:53:fd:54:bb:0e:32:66:ee:66:c8:4e:7d:c7:57:d8:4b: a7:3f:d0:fd:f3:b5:19:06:d5:37:d6:a2:1f:75:18:e3:12:b9: 97:76:ff:59:a5:c8:c1:8d:c3:0f:77:2a:8f:fd:55:07:30:f7: 72:2d:84:ef:03:84:fd:99:ca:bb:e1:5e:bb:40:5c:c3:83:4b: 42:e2:f0:36:47:a4:dd:1e:f7:3e:cf:7c:01:ea:4d:55:91:97: 10:15:44:94:0c:aa:35:78:ff:e4:7b:2d:1e:40:d2:ba:61:93: e0:5d:81:9a:2d:3b:04:a7:26:b6:7c:da:68:4d:1c:d5:80:3a: 26:31:cc:27:24:a9:cc:8a:8f:c5:89:5f:cc:98:f9:b7:42:cd: e8:7e:60:de:0c:cf:73:b4:ed:20:2f:d3:25:94:9b:4e:39:a0: c5:54:13:e0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZvxTsddhUYqCwKjpPbpYNOtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhlYjQ0MWRhZGJiZWNiNjk2NWQ0ZWExZjA0NmNjNWM4ZTI4 ODE3ZmMwHhcNMjYwMTI0MTg0MDMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2NiMzJkZmY5MmQzMjM5YWZjZmY1NzFkZjY5NjBmZTc0MWM3MTM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoxxwpgHCGHgQxMnvaUWFSjdiCQL7 8r3RybFBW0Zp7yD9J0bYmLZcMdKvGChicoDfpx4xbf+ENTGJ7UR2x0FYBMesrlPQ QsnK/eeSpJZI0UDNqBGOg7qVga4Dmkm7x7ZNV40xxHjUXV3CMPCuFeWw7PGqzJVH 4rmxgpHvi30b12/bzfw+aZCchkAfm4Ty0E6MJ69sgpRCT14PsQzsS0e3nbzT5pyV PBS+akIublQ54FDaLK5csME1qmJ8zv4Z0q+IyZXpgeadujT3Y3eptSGc9SBET2h2 tK9aSGdvk+ARXqgoFI8zDo24xE1JA0SETfBKQivN6sFh3Hr+yoDybkDiaQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAfLMt/5LTI5r8/1cd9pYP50HHE3MB8GA1UdIwQY MBaAFI60QdrbvstpZdTqHwRsxcjiiBf8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvanJSQjJ0dS15MmxsMU9vZkJHekZ5T0tJRl93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS85NzhkMGYtOTI5Ny00YzcxLTljZmIt NDZiOTQ5MDkyY2JlLzEvQjhzeTNfa3RNam12el9WeDMybGdfblFjY1RjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NS85NzhkMGYtOTI5Ny00YzcxLTljZmItNDZiOTQ5MDkyY2Jl LzEvanJSQjJ0dS15MmxsMU9vZkJHekZ5T0tJRl93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufICMA0G CSqGSIb3DQEBCwUAA4IBAQAXqBgTlwevd3pJmGWyEpZ6eSL+ElXqZ643DWuEPcsh cPkk4oa2tiRZGK7fkSpxV9qjaPRFRWQxT670hnh2dRnAzfWMf7hFigbXJCqdLWQB eLB9eFkHaqLdSvDUl1P9VLsOMmbuZshOfcdX2EunP9D987UZBtU31qIfdRjjErmX dv9ZpcjBjcMPdyqP/VUHMPdyLYTvA4T9mcq74V67QFzDg0tC4vA2R6TdHvc+z3wB 6k1VkZcQFUSUDKo1eP/key0eQNK6YZPgXYGaLTsEpya2fNpoTRzVgDomMcwnJKnM io/FiV/MmPm3Qs3ofmDeDM9ztO0gL9MllJtOOaDFVBPg -----END CERTIFICATE-----Generated at Sun Jan 25 14:39:09 2026 by rpki-client