This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/8rzPtlhYyaAc0Vfc-cSWvMUsmac.roa File: 8rzPtlhYyaAc0Vfc-cSWvMUsmac.roa (raw, json) Hash identifier: bB5sqI8RgiCQWVM+kWB5z6NjZVuemHjXhI7mxOmdIek= Subject key identifier: F2:BC:CF:B6:58:58:C9:A0:1C:D1:57:DC:F9:C4:96:BC:C5:2C:99:A7 Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Certificate serial: 019B7A5AC9EC4D6A2014A451F24A5F43EC25 Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/8rzPtlhYyaAc0Vfc-cSWvMUsmac.roa Signing time: Thu 01 Jan 2026 16:18:48 +0000 ROA not before: Thu 01 Jan 2026 16:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212332 IP address blocks: 82.153.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.mft rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:c9:ec:4d:6a:20:14:a4:51:f2:4a:5f:43:ec:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b Validity Not Before: Jan 1 16:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f2bccfb65858c9a01cd157dcf9c496bcc52c99a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:56:8b:8a:44:2f:82:43:a5:62:a4:e6:c4: c7:1b:a0:a9:d6:4c:e4:50:e2:7c:5b:5c:c3:90:43: 19:60:d5:14:cf:8f:1b:b8:18:c9:6c:6d:65:0e:1d: 04:86:a8:98:3a:5d:b8:11:ac:3c:0a:cf:68:c0:6e: 26:b2:fc:8f:f3:94:5c:c7:b6:35:dc:e9:e0:d7:16: ec:f0:84:95:81:23:8a:8d:1d:7a:e2:fd:d4:9d:76: 82:b0:12:e0:58:27:3c:15:ac:d9:45:6d:82:43:7c: 18:80:96:07:d6:6f:b6:3e:2a:a2:01:9f:80:db:cd: 78:18:17:7e:15:d9:c7:5a:58:29:7c:38:40:d0:e0: a2:9d:ec:3e:80:07:4b:84:04:d9:92:3f:40:d3:b8: 75:cb:0b:c3:6d:db:f6:ef:29:dc:32:a3:e3:c9:0e: 97:04:8a:7d:dd:69:eb:88:53:03:b7:94:93:7b:b0: e2:04:7a:e3:02:eb:e9:7e:74:8b:04:ef:9b:4c:07: 2e:23:be:a7:14:5a:1c:35:68:3f:ca:56:e6:ce:ac: 5a:ef:2f:ab:80:e0:fd:4b:a7:4b:01:0c:e3:26:3b: 94:a0:2c:21:f3:2e:ed:b5:80:dd:33:36:06:4a:8a: d6:bd:c7:1d:7b:e8:8d:41:d2:d1:7b:66:e6:bb:4e: 74:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BC:CF:B6:58:58:C9:A0:1C:D1:57:DC:F9:C4:96:BC:C5:2C:99:A7 X509v3 Authority Key Identifier: keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/8rzPtlhYyaAc0Vfc-cSWvMUsmac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.153.242.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:e5:0a:e9:55:29:f4:0d:ea:71:89:4a:76:5c:06:e7:38:7a: b0:2f:70:62:19:52:06:6f:3c:73:bc:ab:7d:30:d4:2e:70:cf: 43:70:99:f0:2c:89:a0:5f:5b:da:b7:b1:57:b4:ee:fe:85:32: 3d:67:14:b1:17:84:02:6e:11:93:1d:f6:cc:e3:96:10:d8:26: 8e:4f:b8:c2:68:e5:72:0b:28:2f:a0:e9:d7:99:7b:f8:78:82: 45:10:b8:8b:af:5e:0f:21:4c:6f:e9:f8:bc:9d:58:f1:43:69: 87:67:98:89:5d:fa:83:0d:64:e7:16:2b:4f:45:d2:0a:ab:2e: 7e:e8:e7:b6:94:1f:98:b4:46:a4:0a:f8:c4:01:7a:a5:39:38: fd:a9:e3:ee:a5:8e:56:82:e0:fa:c4:e0:3f:63:a4:1f:b9:75: ec:8f:34:6d:47:0b:89:4a:fa:66:c3:35:61:36:4c:9f:ab:05: 18:3c:76:c0:9c:d7:87:d3:e5:fb:e7:aa:50:3a:68:e1:ad:0b: fc:73:5e:9f:6f:ed:3c:82:a1:37:21:ba:27:13:d9:41:7c:2b: 55:b0:cf:86:6b:50:d3:5a:91:91:58:92:25:9f:a7:ba:5e:88: e8:2c:ca:76:f6:1b:a7:16:08:e8:64:29:d9:a1:4a:ad:ea:ce: 7d:f4:95:ba -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WsnsTWogFKRR8kpfQ+wlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZDMwZDhhN2UxMmZjN2JmNjJlMGMxMjFlN2NjMjI2ZGVh NTNiOWIwHhcNMjYwMTAxMTYxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMmJjY2ZiNjU4NThjOWEwMWNkMTU3ZGNmOWM0OTZiY2M1MmM5OWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodVWi4pEL4JDpWKk5sTHG6Cp1kzk UOJ8W1zDkEMZYNUUz48buBjJbG1lDh0EhqiYOl24Eaw8Cs9owG4msvyP85Rcx7Y1 3Ong1xbs8ISVgSOKjR164v3UnXaCsBLgWCc8FazZRW2CQ3wYgJYH1m+2PiqiAZ+A 2814GBd+FdnHWlgpfDhA0OCinew+gAdLhATZkj9A07h1ywvDbdv27yncMqPjyQ6X BIp93WnriFMDt5STe7DiBHrjAuvpfnSLBO+bTAcuI76nFFocNWg/ylbmzqxa7y+r gOD9S6dLAQzjJjuUoCwh8y7ttYDdMzYGSorWvccde+iNQdLRe2bmu050vQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPK8z7ZYWMmgHNFX3PnElrzFLJmnMB8GA1UdIwQY MBaAFD/TDYp+Evx79i4MEh58wibepTubMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzkt NDEyMjhlMzlmZjdjLzEvOHJ6UHRsaFl5YUFjMFZmYy1jU1d2TVVzbWFjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS80OWRjMDAtOTdlMi00NjI4LWFlMzktNDEyMjhlMzlmZjdj LzEvUDlNTmluNFNfSHYyTGd3U0huekNKdDZsTzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUpnyMA0G CSqGSIb3DQEBCwUAA4IBAQBK5QrpVSn0DepxiUp2XAbnOHqwL3BiGVIGbzxzvKt9 MNQucM9DcJnwLImgX1vat7FXtO7+hTI9ZxSxF4QCbhGTHfbM45YQ2CaOT7jCaOVy CygvoOnXmXv4eIJFELiLr14PIUxv6fi8nVjxQ2mHZ5iJXfqDDWTnFitPRdIKqy5+ 6Oe2lB+YtEakCvjEAXqlOTj9qePupY5WguD6xOA/Y6QfuXXsjzRtRwuJSvpmwzVh NkyfqwUYPHbAnNeH0+X756pQOmjhrQv8c16fb+08gqE3IbonE9lBfCtVsM+Ga1DT WpGRWJIln6e6XojoLMp29hunFgjoZCnZoUqt6s599JW6 -----END CERTIFICATE-----Generated at Sun Jan 25 07:17:52 2026 by rpki-client