This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/EmYDSnJqctRpN9CEhV280CiZiZE.roa File: EmYDSnJqctRpN9CEhV280CiZiZE.roa (raw, json) Hash identifier: ijsmLasEnX5vmRmeCLWwnkIFdYfKeY7/Yqd7k5nDgPo= Subject key identifier: 12:66:03:4A:72:6A:72:D4:69:37:D0:84:85:5D:BC:D0:28:99:89:91 Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Certificate serial: 019B76EB61DB2ABA12134D8B11C42D34F35C Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/EmYDSnJqctRpN9CEhV280CiZiZE.roa Signing time: Thu 01 Jan 2026 00:18:16 +0000 ROA not before: Thu 01 Jan 2026 00:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42615 IP address blocks: 185.186.8.0/24 maxlen: 24 185.186.11.0/24 maxlen: 24 2a0b:6b81:3::/48 maxlen: 48 2a0b:6b81:4::/48 maxlen: 48 2a0b:6b81:401::/48 maxlen: 48 2a0b:6b81:403::/48 maxlen: 48 2a0b:6b87::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.mft rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:61:db:2a:ba:12:13:4d:8b:11:c4:2d:34:f3:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Validity Not Before: Jan 1 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1266034a726a72d46937d084855dbcd028998991 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:29:d3:eb:c5:42:bb:b7:fc:d4:dd:51:ab:73: 97:3f:9a:27:6c:43:df:3a:3f:83:d0:f7:58:49:08: 04:4a:7a:68:9d:c3:57:55:51:d3:8a:ab:51:12:9d: b6:ba:0d:2d:12:9d:18:6c:15:39:9f:bf:2a:8d:6c: 87:56:96:ac:05:04:5a:48:bc:e8:da:31:6a:76:cf: 4d:7e:1b:87:b9:c0:63:c9:27:f7:6c:16:6e:62:bf: 79:9f:3e:29:c0:2a:bb:36:3d:a2:d6:55:c5:a2:f5: e1:f8:d5:04:fc:84:c8:f5:05:e5:72:0a:50:52:6d: 3d:75:98:61:f7:74:a3:5c:87:be:24:7e:b7:20:1c: 07:7c:3b:7c:ca:74:23:08:b9:26:b4:0c:0e:c8:8d: b8:b6:4f:a8:32:1c:6b:01:53:4d:54:af:12:2f:a7: 17:e2:4d:19:18:ef:2f:57:3c:09:e4:86:cd:5f:c6: e6:62:32:eb:19:39:7e:13:63:f0:73:e5:d4:6c:79: 39:26:b4:73:86:58:db:ec:0b:0b:4e:b0:bc:1b:9b: 88:99:40:f8:49:27:99:4a:6d:49:da:87:3c:d5:56: a1:29:f6:a7:58:11:38:5a:1b:1b:86:45:a2:c3:dc: 62:33:05:c5:81:eb:a4:74:58:54:42:cd:50:2b:fc: 3d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:66:03:4A:72:6A:72:D4:69:37:D0:84:85:5D:BC:D0:28:99:89:91 X509v3 Authority Key Identifier: keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/EmYDSnJqctRpN9CEhV280CiZiZE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.186.8.0/24 185.186.11.0/24 IPv6: 2a0b:6b81:3::-2a0b:6b81:4:ffff:ffff:ffff:ffff:ffff 2a0b:6b81:401::/48 2a0b:6b81:403::/48 2a0b:6b87::/32 Signature Algorithm: sha256WithRSAEncryption 6d:69:a2:f9:d3:7e:18:1e:95:ee:f2:a1:9d:80:23:7e:57:8d: c2:dc:41:a9:a8:a0:8e:56:de:3d:11:88:90:9c:16:8d:05:19: 1a:47:f3:46:4e:ae:2a:67:eb:0e:1b:a6:68:cb:54:51:0d:45: 3b:5b:df:f6:36:3a:6e:8d:6f:d5:12:ec:0b:af:8f:ad:93:b3: 7c:06:10:8d:8f:df:8a:9f:3f:4d:de:d7:66:d1:73:80:8c:46: e0:47:82:21:e2:b8:8c:0f:88:ab:9b:32:45:bb:07:d4:67:97: 16:e6:e9:e1:8d:a8:3c:d7:14:ee:e9:d3:95:f7:2a:4d:09:44: 51:2a:7e:78:1d:d2:db:c8:de:87:88:6e:a3:9c:dd:ef:7e:d6: ee:68:0f:76:f4:c1:84:2f:7e:9e:a6:8a:70:f8:de:93:2a:72: a0:49:22:ad:53:e2:4a:48:cc:34:e5:43:5e:5d:d6:93:85:04: c5:e4:7e:79:f8:e3:3a:b8:fd:3a:51:22:57:d3:cd:d0:f0:b2: 01:03:6c:22:de:a1:a2:da:c4:39:f1:f0:fa:02:d8:b8:0c:e2: 4c:90:c4:b5:89:0a:8e:0b:f0:4c:67:f7:f6:ef:27:8e:a6:be: 98:38:e6:65:fd:31:bf:bc:91:04:2a:4a:d2:b4:83:99:b2:66: ba:34:5f:fc -----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgISAZt262HbKroSE02LEcQtNPNcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNWJjOWJiNTQ3ZTI3Nzg4ZDIyMWJjOGJiZDVmYjAyZTAy NDQ4MGYwHhcNMjYwMTAxMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMjY2MDM0YTcyNmE3MmQ0NjkzN2QwODQ4NTVkYmNkMDI4OTk4OTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsinT68VCu7f81N1Rq3OXP5onbEPf Oj+D0PdYSQgESnponcNXVVHTiqtREp22ug0tEp0YbBU5n78qjWyHVpasBQRaSLzo 2jFqds9NfhuHucBjySf3bBZuYr95nz4pwCq7Nj2i1lXFovXh+NUE/ITI9QXlcgpQ Um09dZhh93SjXIe+JH63IBwHfDt8ynQjCLkmtAwOyI24tk+oMhxrAVNNVK8SL6cX 4k0ZGO8vVzwJ5IbNX8bmYjLrGTl+E2Pwc+XUbHk5JrRzhljb7AsLTrC8G5uImUD4 SSeZSm1J2oc81VahKfanWBE4WhsbhkWiw9xiMwXFgeukdFhUQs1QK/w9dQIDAQAB o4ICRDCCAkAwHQYDVR0OBBYEFBJmA0pyanLUaTfQhIVdvNAomYmRMB8GA1UdIwQY MBaAFINbybtUfid4jSIbyLvV+wLgJEgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEt YjM2YTI0ZDM5NDI3LzEvRW1ZRFNuSnFjdFJwTjlDRWhWMjgwQ2laaVpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEtYjM2YTI0ZDM5NDI3 LzEvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFoGCCsGAQUFBwEHAQH/BEswSTASBAIAATAMAwQAuboIAwQA uboLMDMEAgACMC0wEgMHACoLa4EAAwMHACoLa4EABAMHACoLa4EEAQMHACoLa4EE AwMFACoLa4cwDQYJKoZIhvcNAQELBQADggEBAG1povnTfhgele7yoZ2AI35XjcLc QamooI5W3j0RiJCcFo0FGRpH80ZOripn6w4bpmjLVFENRTtb3/Y2Om6Nb9US7Auv j62Ts3wGEI2P34qfP03e12bRc4CMRuBHgiHiuIwPiKubMkW7B9Rnlxbm6eGNqDzX FO7p05X3Kk0JRFEqfngd0tvI3oeIbqOc3e9+1u5oD3b0wYQvfp6minD43pMqcqBJ Iq1T4kpIzDTlQ15d1pOFBMXkfnn44zq4/TpRIlfTzdDwsgEDbCLeoaLaxDnx8PoC 2LgM4kyQxLWJCo4L8Exn9/bvJ46mvpg45mX9Mb+8kQQqStK0g5myZro0X/w= -----END CERTIFICATE-----Generated at Sun Jan 25 14:04:35 2026 by rpki-client