This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b7bdf6-9df4-4d4f-8d95-bcbfb1898eba/1/p8BGzkeZTXu6qLWOB4ZXBUN3ORs.roa File: p8BGzkeZTXu6qLWOB4ZXBUN3ORs.roa (raw, json) Hash identifier: OVtfVKdOOl/LSMO1Y47imdhBsBHfrXhcCR6Y3Lh7Lwk= Subject key identifier: A7:C0:46:CE:47:99:4D:7B:BA:A8:B5:8E:07:86:57:05:43:77:39:1B Certificate issuer: /CN=fcf5f08031e35af9545d3ad3d138cad10396e2ca Certificate serial: 019B79ED2A95617107913AD6A47664DB84B3 Authority key identifier: FC:F5:F0:80:31:E3:5A:F9:54:5D:3A:D3:D1:38:CA:D1:03:96:E2:CA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PXwgDHjWvlUXTrT0TjK0QOW4so.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b7bdf6-9df4-4d4f-8d95-bcbfb1898eba/1/p8BGzkeZTXu6qLWOB4ZXBUN3ORs.roa Signing time: Thu 01 Jan 2026 14:19:04 +0000 ROA not before: Thu 01 Jan 2026 14:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205157 IP address blocks: 185.70.162.0/24 maxlen: 24 185.228.168.0/24 maxlen: 24 185.228.169.0/24 maxlen: 24 185.228.170.0/24 maxlen: 24 185.228.171.0/24 maxlen: 24 2a0d:2a00:1::/48 maxlen: 48 2a0d:2a00:2::/48 maxlen: 48 2a0d:2a00:c0::/48 maxlen: 48 2a0d:2a00:ab1::/48 maxlen: 48 2a0d:2a00:ab2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b7bdf6-9df4-4d4f-8d95-bcbfb1898eba/1/_PXwgDHjWvlUXTrT0TjK0QOW4so.crl rsync://rpki.ripe.net/repository/DEFAULT/94/b7bdf6-9df4-4d4f-8d95-bcbfb1898eba/1/_PXwgDHjWvlUXTrT0TjK0QOW4so.mft rsync://rpki.ripe.net/repository/DEFAULT/_PXwgDHjWvlUXTrT0TjK0QOW4so.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:2a:95:61:71:07:91:3a:d6:a4:76:64:db:84:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fcf5f08031e35af9545d3ad3d138cad10396e2ca Validity Not Before: Jan 1 14:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7c046ce47994d7bbaa8b58e078657054377391b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6c:04:a3:f4:ec:d9:e5:98:1d:72:14:79:8c: ce:15:0e:18:4f:69:da:c9:b3:4d:9b:32:76:87:81: af:38:39:c7:9c:07:52:02:dd:95:58:a5:2a:26:cb: 86:57:2e:68:85:94:27:02:ca:ec:97:10:1d:e8:80: 7c:c5:48:f6:eb:5a:b7:55:49:a9:90:11:0b:da:e6: 55:b6:15:c7:b6:28:ce:f1:9d:1e:0e:27:59:58:e6: 61:fa:cb:44:d2:98:ca:58:14:90:41:e5:5f:c3:a3: cf:6c:58:c1:83:ae:6d:57:52:9d:a4:e8:df:f7:a5: dc:86:f8:17:a6:7a:71:57:ae:9f:d5:47:31:26:fe: d8:1c:5b:6b:4a:71:28:cd:78:26:17:05:60:b6:84: 85:31:1f:d1:c9:e2:c9:a2:b3:b1:3c:63:d5:55:bc: 24:2f:2e:d7:19:38:0b:d8:06:32:37:eb:e3:8c:a7: 39:c6:f6:aa:42:6d:6a:38:e3:b3:46:87:90:22:77: c7:91:9a:11:10:f5:62:ff:27:44:98:a4:28:29:fc: cd:e3:0f:b9:6b:e1:b0:ca:be:c3:d2:b5:0b:40:e5: 9d:40:9b:fb:cb:04:72:06:3e:03:50:7e:82:0f:1e: 80:78:1c:cb:79:e0:54:fe:5d:4b:bb:c8:19:1d:16: 56:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C0:46:CE:47:99:4D:7B:BA:A8:B5:8E:07:86:57:05:43:77:39:1B X509v3 Authority Key Identifier: keyid:FC:F5:F0:80:31:E3:5A:F9:54:5D:3A:D3:D1:38:CA:D1:03:96:E2:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PXwgDHjWvlUXTrT0TjK0QOW4so.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b7bdf6-9df4-4d4f-8d95-bcbfb1898eba/1/p8BGzkeZTXu6qLWOB4ZXBUN3ORs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b7bdf6-9df4-4d4f-8d95-bcbfb1898eba/1/_PXwgDHjWvlUXTrT0TjK0QOW4so.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.70.162.0/24 185.228.168.0/22 IPv6: 2a0d:2a00:1::-2a0d:2a00:2:ffff:ffff:ffff:ffff:ffff 2a0d:2a00:c0::/48 2a0d:2a00:ab1::-2a0d:2a00:ab2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 77:37:8e:1c:bc:ff:ef:43:22:c4:85:59:91:94:71:b6:a1:f5: 43:0c:f3:25:35:88:11:3d:dc:73:a7:37:db:d5:b5:37:a3:ed: ef:be:ad:d6:b7:67:5a:10:12:f8:73:7f:aa:2a:6b:7d:34:d9: d9:a3:2d:82:49:58:9b:23:8a:be:a5:bc:35:de:ce:e3:1e:67: fd:16:66:f1:ad:00:3b:9a:4c:bc:77:d9:aa:56:c9:92:ce:b7: 8d:9b:1c:21:c9:d9:24:3d:7a:77:96:ef:12:e8:c9:68:ee:9b: 76:bb:a3:03:ea:c3:ac:d4:2e:97:ae:06:96:86:d4:ef:7c:1f: 00:4b:a6:e9:7a:01:5d:d8:c6:04:46:0a:64:43:d7:de:84:06: ca:0b:d5:7a:45:3a:b2:dc:e8:63:b1:8c:82:79:88:85:3b:d7: cf:1d:65:e0:19:c8:f1:48:cd:00:ea:5f:7a:44:5e:93:8f:d1: 1e:a4:73:9e:01:1a:a8:34:39:8e:dc:1e:f0:51:44:3b:6e:85: 83:7a:64:0e:1e:34:01:19:f5:12:3a:c1:5a:6f:14:bf:43:bf: a8:52:ec:2d:0f:06:63:45:74:b6:67:7c:a8:b7:02:76:a4:97: 47:7d:50:87:b0:b6:cb:24:89:fc:7b:45:86:6d:e1:67:ee:33: 0a:61:de:0f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgISAZt57SqVYXEHkTrWpHZk24SzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZjZjVmMDgwMzFlMzVhZjk1NDVkM2FkM2QxMzhjYWQxMDM5 NmUyY2EwHhcNMjYwMTAxMTQxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhN2MwNDZjZTQ3OTk0ZDdiYmFhOGI1OGUwNzg2NTcwNTQzNzczOTFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp2wEo/Ts2eWYHXIUeYzOFQ4YT2na ybNNmzJ2h4GvODnHnAdSAt2VWKUqJsuGVy5ohZQnAsrslxAd6IB8xUj261q3VUmp kBEL2uZVthXHtijO8Z0eDidZWOZh+stE0pjKWBSQQeVfw6PPbFjBg65tV1KdpOjf 96XchvgXpnpxV66f1UcxJv7YHFtrSnEozXgmFwVgtoSFMR/RyeLJorOxPGPVVbwk Ly7XGTgL2AYyN+vjjKc5xvaqQm1qOOOzRoeQInfHkZoREPVi/ydEmKQoKfzN4w+5 a+Gwyr7D0rULQOWdQJv7ywRyBj4DUH6CDx6AeBzLeeBU/l1Lu8gZHRZWTwIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFKfARs5HmU17uqi1jgeGVwVDdzkbMB8GA1UdIwQY MBaAFPz18IAx41r5VF0609E4ytEDluLKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX1BYd2dESGpXdmxVWFRyVDBUakswUU9XNHNvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9iN2JkZjYtOWRmNC00ZDRmLThkOTUt YmNiZmIxODk4ZWJhLzEvcDhCR3prZVpUWHU2cUxXT0I0WlhCVU4zT1JzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NC9iN2JkZjYtOWRmNC00ZDRmLThkOTUtYmNiZmIxODk4ZWJh LzEvX1BYd2dESGpXdmxVWFRyVDBUakswUU9XNHNvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTASBAIAATAMAwQAuUaiAwQC ueSoMDcEAgACMDEwEgMHACoNKgAAAQMHACoNKgAAAgMHACoNKgAAwDASAwcAKg0q AAqxAwcAKg0qAAqyMA0GCSqGSIb3DQEBCwUAA4IBAQB3N44cvP/vQyLEhVmRlHG2 ofVDDPMlNYgRPdxzpzfb1bU3o+3vvq3Wt2daEBL4c3+qKmt9NNnZoy2CSVibI4q+ pbw13s7jHmf9FmbxrQA7mky8d9mqVsmSzreNmxwhydkkPXp3lu8S6Mlo7pt2u6MD 6sOs1C6XrgaWhtTvfB8AS6bpegFd2MYERgpkQ9fehAbKC9V6RTqy3OhjsYyCeYiF O9fPHWXgGcjxSM0A6l96RF6Tj9EepHOeARqoNDmO3B7wUUQ7boWDemQOHjQBGfUS OsFabxS/Q7+oUuwtDwZjRXS2Z3yotwJ2pJdHfVCHsLbLJIn8e0WGbeFn7jMKYd4P -----END CERTIFICATE-----Generated at Mon Jan 26 03:56:40 2026 by rpki-client