This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/7oVXpAJyEuxYNuHmvd9aRWGoKfo.roa File: 7oVXpAJyEuxYNuHmvd9aRWGoKfo.roa (raw, json) Hash identifier: aOBhiDvMAxK+XYQzQVgLlx3/xd+jEySWQ2727ke/inY= Subject key identifier: EE:85:57:A4:02:72:12:EC:58:36:E1:E6:BD:DF:5A:45:61:A8:29:FA Certificate issuer: /CN=5c32a925c55f1d4e6e40c10f4e8e019b483c1d50 Certificate serial: 019B7834FAD57558C49E10E35C0273EC5B2F Authority key identifier: 5C:32:A9:25:C5:5F:1D:4E:6E:40:C1:0F:4E:8E:01:9B:48:3C:1D:50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/7oVXpAJyEuxYNuHmvd9aRWGoKfo.roa Signing time: Thu 01 Jan 2026 06:18:16 +0000 ROA not before: Thu 01 Jan 2026 06:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48611 IP address blocks: 185.250.184.0/24 maxlen: 24 185.250.185.0/24 maxlen: 24 2a0c:1140::/32 maxlen: 32 2a0c:1142::/32 maxlen: 32 2a0c:1143::/32 maxlen: 32 2a0c:1144::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.mft rsync://rpki.ripe.net/repository/DEFAULT/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:fa:d5:75:58:c4:9e:10:e3:5c:02:73:ec:5b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c32a925c55f1d4e6e40c10f4e8e019b483c1d50 Validity Not Before: Jan 1 06:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ee8557a4027212ec5836e1e6bddf5a4561a829fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:06:0e:87:41:07:09:e4:5f:fb:84:b1:c2: 04:97:4c:aa:93:e6:eb:dd:e6:fc:c1:c0:60:45:6b: fc:92:01:da:aa:60:a7:0e:f2:12:0a:42:c0:1f:60: f0:36:ea:c3:c9:dd:27:ca:54:b9:c2:a3:56:7a:bc: 36:02:3b:6b:84:a8:bd:9d:6e:28:ac:10:d5:40:f5: 00:94:88:da:e5:7b:26:10:9e:60:b5:51:a3:77:7e: 91:d3:fe:da:cb:32:03:ed:52:db:5d:ed:2c:88:de: d4:d7:6f:5e:b7:14:8b:1d:b4:07:f1:bc:0c:2d:86: a4:d7:bf:9e:72:51:2d:62:b7:c5:c1:68:53:6e:f8: b7:18:94:5d:e1:e3:5e:77:e5:03:47:4b:fa:0d:21: a7:1c:d2:a4:cf:0b:83:44:f5:91:12:78:6c:07:a1: 36:2a:c8:da:52:74:30:6a:bb:be:57:89:af:4b:84: 22:c4:03:ee:fe:08:11:7e:d1:47:78:23:f4:a7:e0: b7:4c:f9:69:81:8c:0f:7a:d6:6c:66:87:95:57:eb: 77:c8:d3:65:50:eb:c3:4b:47:9a:c5:d8:6c:f6:1a: 18:25:8d:4f:e2:f4:0e:49:27:10:14:b9:6f:3e:69: 49:2b:05:e1:5a:0f:f9:28:54:b6:8e:78:6f:ee:84: 56:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:85:57:A4:02:72:12:EC:58:36:E1:E6:BD:DF:5A:45:61:A8:29:FA X509v3 Authority Key Identifier: keyid:5C:32:A9:25:C5:5F:1D:4E:6E:40:C1:0F:4E:8E:01:9B:48:3C:1D:50 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/7oVXpAJyEuxYNuHmvd9aRWGoKfo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/d3c8f7-ff8d-42b8-a762-45377418fbb2/1/XDKpJcVfHU5uQMEPTo4Bm0g8HVA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.250.184.0/23 IPv6: 2a0c:1140::/32 2a0c:1142::-2a0c:1147:ffff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 57:e4:c8:7f:0c:68:6a:7d:9c:d7:a5:c7:39:59:fb:06:72:cd: 12:00:51:17:5a:81:e6:d1:08:b2:62:f3:31:5b:ae:b6:de:5f: 0a:73:c2:fa:7f:76:87:aa:b5:64:81:80:b7:19:ef:8f:5c:af: 54:22:9f:47:39:84:3b:f7:1c:42:5e:c5:4c:c9:da:3d:51:c5: f2:85:55:48:92:49:81:28:4c:ef:b0:79:6e:55:11:5c:c8:d4: f2:85:c1:1d:c6:89:79:1b:13:0e:11:b2:4f:c9:10:08:a5:66: d4:c8:e2:f7:ca:d6:c5:2b:9e:3a:f2:49:a0:43:43:d5:e1:ba: ff:29:29:e6:62:9c:25:95:f1:63:24:36:57:b3:3f:38:bc:5b: f9:a7:77:8e:d8:5e:48:24:43:f9:7f:e2:60:e4:e3:60:03:f1: 0c:6d:2d:20:02:c1:d2:41:fe:7e:23:49:c2:62:02:dc:92:60: 4e:db:d8:b3:54:9b:c2:37:38:bf:bf:2d:92:08:86:6b:d4:f6: 06:c1:34:08:79:ff:56:ae:82:b5:ec:3a:af:d7:4a:8c:88:5d: 56:48:ce:eb:c1:15:c4:6e:52:0a:e6:8f:d0:c9:58:a4:99:a3: bf:c4:de:0f:35:5c:e3:c5:aa:bf:e0:12:5c:ea:f7:d1:65:db: 4b:2e:8b:66 -----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISAZt4NPrVdVjEnhDjXAJz7FsvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjMzJhOTI1YzU1ZjFkNGU2ZTQwYzEwZjRlOGUwMTliNDgz YzFkNTAwHhcNMjYwMTAxMDYxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZTg1NTdhNDAyNzIxMmVjNTgzNmUxZTZiZGRmNWE0NTYxYTgyOWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFkGDodBBwnkX/uEscIEl0yqk+br 3eb8wcBgRWv8kgHaqmCnDvISCkLAH2DwNurDyd0nylS5wqNWerw2AjtrhKi9nW4o rBDVQPUAlIja5XsmEJ5gtVGjd36R0/7ayzID7VLbXe0siN7U129etxSLHbQH8bwM LYak17+eclEtYrfFwWhTbvi3GJRd4eNed+UDR0v6DSGnHNKkzwuDRPWREnhsB6E2 KsjaUnQwaru+V4mvS4QixAPu/ggRftFHeCP0p+C3TPlpgYwPetZsZoeVV+t3yNNl UOvDS0eaxdhs9hoYJY1P4vQOSScQFLlvPmlJKwXhWg/5KFS2jnhv7oRWVwIDAQAB o4ICKDCCAiQwHQYDVR0OBBYEFO6FV6QCchLsWDbh5r3fWkVhqCn6MB8GA1UdIwQY MBaAFFwyqSXFXx1ObkDBD06OAZtIPB1QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWERLcEpjVmZIVTV1UU1FUFRvNEJtMGc4SFZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9kM2M4ZjctZmY4ZC00MmI4LWE3NjIt NDUzNzc0MThmYmIyLzEvN29WWHBBSnlFdXhZTnVIbXZkOWFSV0dvS2ZvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi9kM2M4ZjctZmY4ZC00MmI4LWE3NjItNDUzNzc0MThmYmIy LzEvWERLcEpjVmZIVTV1UU1FUFRvNEJtMGc4SFZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD4GCCsGAQUFBwEHAQH/BC8wLTAMBAIAATAGAwQBufq4MB0E AgACMBcDBQAqDBFAMA4DBQEqDBFCAwUDKgwRQDANBgkqhkiG9w0BAQsFAAOCAQEA V+TIfwxoan2c16XHOVn7BnLNEgBRF1qB5tEIsmLzMVuutt5fCnPC+n92h6q1ZIGA txnvj1yvVCKfRzmEO/ccQl7FTMnaPVHF8oVVSJJJgShM77B5blURXMjU8oXBHcaJ eRsTDhGyT8kQCKVm1Mji98rWxSueOvJJoEND1eG6/ykp5mKcJZXxYyQ2V7M/OLxb +ad3jtheSCRD+X/iYOTjYAPxDG0tIALB0kH+fiNJwmIC3JJgTtvYs1Sbwjc4v78t kgiGa9T2BsE0CHn/Vq6Ctew6r9dKjIhdVkjO68EVxG5SCuaP0MlYpJmjv8TeDzVc 48Wqv+ASXOr30WXbSy6LZg== -----END CERTIFICATE-----Generated at Sun Jan 25 19:59:09 2026 by rpki-client