This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/_XRghfMhYMaDoIUQgdxTV1nl8Zg.roa File: _XRghfMhYMaDoIUQgdxTV1nl8Zg.roa (raw, json) Hash identifier: 3r32wTlW0UwBU+wmGMDkMPZxoYROHjLHE8xLGZOKfig= Subject key identifier: FD:74:60:85:F3:21:60:C6:83:A0:85:10:81:DC:53:57:59:E5:F1:98 Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Certificate serial: 019B76EB62EF9174772892D6613866CA5D5E Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/_XRghfMhYMaDoIUQgdxTV1nl8Zg.roa Signing time: Thu 01 Jan 2026 00:18:16 +0000 ROA not before: Thu 01 Jan 2026 00:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 55207 IP address blocks: 185.186.8.0/24 maxlen: 24 2a0b:6b86::/48 maxlen: 48 2a0b:6b86:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.mft rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:62:ef:91:74:77:28:92:d6:61:38:66:ca:5d:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f Validity Not Before: Jan 1 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fd746085f32160c683a0851081dc535759e5f198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:da:f6:5a:9d:81:1d:8f:a1:6c:96:b3:39:4b: 40:9a:7c:46:f1:f4:58:f1:d5:c7:ae:db:2e:63:e8: 67:14:fc:10:3a:7c:32:1a:9a:60:40:78:df:6a:ad: 95:d6:a4:89:15:47:34:43:0c:ea:65:b0:9a:6a:dd: db:05:8f:c9:d8:78:41:b9:e2:78:7a:0e:bf:bb:ad: 80:cb:5d:d3:2d:b9:ac:c7:6d:14:b1:49:ba:f9:c6: d8:d4:ec:65:8a:c3:db:b3:c5:3a:26:3d:c7:02:56: ca:ce:07:3e:4b:c7:e3:83:71:d1:bc:2a:c0:08:01: e9:05:96:61:81:0e:8f:7b:a8:25:54:23:55:bc:0d: 6e:ef:dc:cb:fd:fb:69:d6:3a:e9:58:c2:cd:0e:56: 97:ae:ce:82:93:b9:c1:d1:47:0d:9c:21:ff:b5:d4: 32:10:ae:ae:43:af:a3:d4:0e:29:2f:52:17:f7:a4: 31:a5:bf:4a:82:67:e1:32:9e:1b:11:65:85:cb:c2: d6:52:f1:f2:c7:b6:c0:bf:9f:47:a6:af:96:1d:4f: 8e:ef:d3:3b:8b:e9:e2:e7:4c:50:26:0e:a7:d8:35: 78:5c:f5:1e:80:15:2d:d5:f4:b0:b3:9f:7c:1b:46: 81:54:4e:dd:f4:ab:4a:b3:81:8f:c5:47:3c:5e:c0: e8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:74:60:85:F3:21:60:C6:83:A0:85:10:81:DC:53:57:59:E5:F1:98 X509v3 Authority Key Identifier: keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/_XRghfMhYMaDoIUQgdxTV1nl8Zg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.186.8.0/24 IPv6: 2a0b:6b86::/47 Signature Algorithm: sha256WithRSAEncryption 99:37:3a:70:e7:63:98:8f:09:f8:4a:1a:37:fa:eb:76:91:62: 9c:15:60:d9:d5:b6:13:f5:43:12:94:67:9a:94:af:e6:bf:2b: bd:4d:47:9b:e9:d5:92:b4:0f:4f:08:a2:14:d1:4e:37:45:60: d5:f2:30:ad:c9:8d:e6:54:a1:00:cd:fd:3a:55:65:ad:4d:7e: a4:e1:20:53:45:f8:d3:23:6c:09:e3:a5:09:b6:c0:df:99:aa: 2a:68:7a:1d:28:31:46:7c:b8:df:4f:99:04:57:36:91:e9:6f: c3:fe:81:ee:52:a4:1a:b5:cd:d4:a0:60:33:c3:9d:ab:ea:2f: 06:de:c6:57:1a:cb:4c:27:87:ed:f1:8a:76:17:6c:90:56:af: 65:07:c0:45:46:51:17:4a:3a:05:af:19:d9:8a:e5:74:e9:d0: c6:a7:93:5e:b3:96:5a:91:0d:23:98:e5:82:96:2e:05:ee:8c: b8:f6:f7:22:ef:eb:76:34:e8:43:a0:65:0f:7b:cb:06:26:35: 1d:d3:31:17:06:a1:37:4c:9d:43:88:70:c9:ce:02:f0:70:ca: b4:9f:64:45:50:d2:10:24:02:79:3b:be:90:1f:12:cc:57:85: 25:0f:f6:9d:e2:27:b3:4c:b5:1a:a5:ae:5c:c4:d8:91:eb:ca: 90:0b:58:71 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt262LvkXR3KJLWYThmyl1eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgzNWJjOWJiNTQ3ZTI3Nzg4ZDIyMWJjOGJiZDVmYjAyZTAy NDQ4MGYwHhcNMjYwMTAxMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZDc0NjA4NWYzMjE2MGM2ODNhMDg1MTA4MWRjNTM1NzU5ZTVmMTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltr2Wp2BHY+hbJazOUtAmnxG8fRY 8dXHrtsuY+hnFPwQOnwyGppgQHjfaq2V1qSJFUc0QwzqZbCaat3bBY/J2HhBueJ4 eg6/u62Ay13TLbmsx20UsUm6+cbY1OxlisPbs8U6Jj3HAlbKzgc+S8fjg3HRvCrA CAHpBZZhgQ6Pe6glVCNVvA1u79zL/ftp1jrpWMLNDlaXrs6Ck7nB0UcNnCH/tdQy EK6uQ6+j1A4pL1IX96Qxpb9KgmfhMp4bEWWFy8LWUvHyx7bAv59Hpq+WHU+O79M7 i+ni50xQJg6n2DV4XPUegBUt1fSws598G0aBVE7d9KtKs4GPxUc8XsDoSwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFP10YIXzIWDGg6CFEIHcU1dZ5fGYMB8GA1UdIwQY MBaAFINbybtUfid4jSIbyLvV+wLgJEgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEt YjM2YTI0ZDM5NDI3LzEvX1hSZ2hmTWhZTWFEb0lVUWdkeFRWMW5sOFpnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEtYjM2YTI0ZDM5NDI3 LzEvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuboIMA8E AgACMAkDBwEqC2uGAAAwDQYJKoZIhvcNAQELBQADggEBAJk3OnDnY5iPCfhKGjf6 63aRYpwVYNnVthP1QxKUZ5qUr+a/K71NR5vp1ZK0D08IohTRTjdFYNXyMK3JjeZU oQDN/TpVZa1NfqThIFNF+NMjbAnjpQm2wN+Zqipoeh0oMUZ8uN9PmQRXNpHpb8P+ ge5SpBq1zdSgYDPDnavqLwbexlcay0wnh+3xinYXbJBWr2UHwEVGURdKOgWvGdmK 5XTp0Mank16zllqRDSOY5YKWLgXujLj29yLv63Y06EOgZQ97ywYmNR3TMRcGoTdM nUOIcMnOAvBwyrSfZEVQ0hAkAnk7vpAfEsxXhSUP9p3iJ7NMtRqlrlzE2JHrypAL WHE= -----END CERTIFICATE-----Generated at Sun Jan 25 16:55:27 2026 by rpki-client