This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/v2pVbuDIo2QFLf9tgf0AgEZfKsg.roa File: v2pVbuDIo2QFLf9tgf0AgEZfKsg.roa (raw, json) Hash identifier: gXOCFkUMTWDAXQIKNOf9kMl0WJuvQJli0ZTnKwQ3NNo= Subject key identifier: BF:6A:55:6E:E0:C8:A3:64:05:2D:FF:6D:81:FD:00:80:46:5F:2A:C8 Certificate issuer: /CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae Certificate serial: 019B78353DEEF1C5F4A5F5C605C6E55D2D0D Authority key identifier: 89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/v2pVbuDIo2QFLf9tgf0AgEZfKsg.roa Signing time: Thu 01 Jan 2026 06:18:33 +0000 ROA not before: Thu 01 Jan 2026 06:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199739 IP address blocks: 109.224.2.0/24 maxlen: 24 109.224.3.0/24 maxlen: 24 109.224.32.0/24 maxlen: 24 109.224.44.0/24 maxlen: 24 109.224.45.0/24 maxlen: 24 109.224.46.0/24 maxlen: 24 109.224.47.0/24 maxlen: 24 185.141.9.0/24 maxlen: 24 185.141.10.0/24 maxlen: 24 185.141.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.mft rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:3d:ee:f1:c5:f4:a5:f5:c6:05:c6:e5:5d:2d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896ed6e4b5c7c19db98c57432af4dcf630bf60ae Validity Not Before: Jan 1 06:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf6a556ee0c8a364052dff6d81fd0080465f2ac8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e0:64:5e:6f:52:34:81:96:a5:6e:c3:62:92: 59:93:7c:23:4c:fa:62:a3:32:23:b5:14:f7:56:dc: 9a:8e:1e:b9:83:87:e7:40:89:35:64:76:d5:05:82: ad:53:e5:5e:a8:ce:3e:82:7c:ba:3a:26:bf:4b:ca: 44:34:fa:a9:77:c7:fa:ba:35:62:1c:a9:72:f7:5d: b1:11:1a:12:97:46:bb:06:f0:00:f5:d0:2a:2f:63: 58:6b:85:33:99:b0:82:ad:00:03:40:18:d9:6f:31: a4:dd:8f:92:11:8f:eb:6b:42:e6:06:b1:5b:10:7a: b3:be:51:43:ce:b1:d6:da:96:b6:a2:09:68:fb:89: 6c:19:cf:b8:b8:90:4c:04:45:d0:8f:ce:ff:24:f0: 23:1c:b5:ec:07:2b:61:5f:ba:c0:f5:ef:a8:f4:25: 98:6c:cb:0b:28:e0:4f:68:7f:db:1e:37:87:f2:0b: c2:48:26:e6:3c:83:2d:05:9a:6d:3a:8d:7e:63:a0: 86:d0:6c:7d:30:31:c5:39:a6:8b:13:86:6b:21:0e: d2:7c:48:2b:55:48:48:41:24:2e:55:f9:b9:b7:e5: b0:f3:fe:61:3f:d3:3f:82:77:c7:fa:4a:22:96:73: e4:bc:7e:1f:3e:df:82:4d:d7:59:14:e4:c4:d7:35: 66:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:6A:55:6E:E0:C8:A3:64:05:2D:FF:6D:81:FD:00:80:46:5F:2A:C8 X509v3 Authority Key Identifier: keyid:89:6E:D6:E4:B5:C7:C1:9D:B9:8C:57:43:2A:F4:DC:F6:30:BF:60:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iW7W5LXHwZ25jFdDKvTc9jC_YK4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/v2pVbuDIo2QFLf9tgf0AgEZfKsg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/98/900444-dd40-4a04-a616-dc1ff6746d2e/1/iW7W5LXHwZ25jFdDKvTc9jC_YK4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.224.2.0/23 109.224.32.0/24 109.224.44.0/22 185.141.9.0-185.141.11.255 Signature Algorithm: sha256WithRSAEncryption c1:51:40:8f:1b:6a:24:48:20:8c:d8:c9:3a:1a:0d:3b:14:2b: 58:1d:12:f8:87:94:c8:6d:75:fe:ba:ba:81:8d:d1:47:ee:1d: ce:56:f7:33:a4:81:bf:02:66:f7:07:37:23:50:7f:ab:02:7f: d5:fe:2b:7a:a9:30:e3:1e:4b:8e:c4:0f:ac:83:ef:8a:fc:be: a8:0e:e4:3b:70:74:a6:9c:5a:a7:db:7e:d7:1f:82:bb:b7:64: d2:58:5f:78:0c:06:f2:fb:cf:f6:6f:a6:bf:e0:91:69:f6:72: b4:fb:5b:92:21:4c:1e:85:cf:9d:ec:49:c2:2b:bd:d8:5b:76: 37:cb:1b:56:37:1b:1e:33:6e:b3:74:5f:72:a0:9a:57:f0:f4: 71:8f:a8:76:4b:ca:aa:82:42:a9:4d:33:92:ef:77:34:9b:af: df:26:11:b2:59:3c:1d:ca:e7:90:6a:44:c5:87:5d:13:64:5b: 1f:25:ec:9a:08:31:04:bc:3a:21:8d:d8:6f:57:5c:6f:e4:a5: fa:02:8f:48:9f:03:38:e4:eb:f4:bb:44:9c:da:9c:2e:7e:27: 2a:f7:73:bf:e3:58:29:14:a4:b9:72:26:ac:e3:10:69:bf:9b: a4:7d:6f:0c:5e:af:dc:07:41:17:65:59:60:ea:dd:be:22:74: 8b:f6:65:60 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZt4NT3u8cX0pfXGBcblXS0NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmVkNmU0YjVjN2MxOWRiOThjNTc0MzJhZjRkY2Y2MzBi ZjYwYWUwHhcNMjYwMTAxMDYxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjZhNTU2ZWUwYzhhMzY0MDUyZGZmNmQ4MWZkMDA4MDQ2NWYyYWM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOBkXm9SNIGWpW7DYpJZk3wjTPpi ozIjtRT3Vtyajh65g4fnQIk1ZHbVBYKtU+VeqM4+gny6Oia/S8pENPqpd8f6ujVi HKly912xERoSl0a7BvAA9dAqL2NYa4UzmbCCrQADQBjZbzGk3Y+SEY/ra0LmBrFb EHqzvlFDzrHW2pa2oglo+4lsGc+4uJBMBEXQj87/JPAjHLXsBythX7rA9e+o9CWY bMsLKOBPaH/bHjeH8gvCSCbmPIMtBZptOo1+Y6CG0Gx9MDHFOaaLE4ZrIQ7SfEgr VUhIQSQuVfm5t+Ww8/5hP9M/gnfH+koilnPkvH4fPt+CTddZFOTE1zVm1QIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFL9qVW7gyKNkBS3/bYH9AIBGXyrIMB8GA1UdIwQY MBaAFIlu1uS1x8GduYxXQyr03PYwv2CuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVc3VzVMWEh3WjI1akZkREt2VGM5akNfWUs0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC85MDA0NDQtZGQ0MC00YTA0LWE2MTYt ZGMxZmY2NzQ2ZDJlLzEvdjJwVmJ1RElvMlFGTGY5dGdmMEFnRVpmS3NnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OC85MDA0NDQtZGQ0MC00YTA0LWE2MTYtZGMxZmY2NzQ2ZDJl LzEvaVc3VzVMWEh3WjI1akZkREt2VGM5akNfWUs0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQBbeACAwQA beAgAwQCbeAsMAwDBAC5jQkDBAK5jQgwDQYJKoZIhvcNAQELBQADggEBAMFRQI8b aiRIIIzYyToaDTsUK1gdEviHlMhtdf66uoGN0UfuHc5W9zOkgb8CZvcHNyNQf6sC f9X+K3qpMOMeS47ED6yD74r8vqgO5DtwdKacWqfbftcfgru3ZNJYX3gMBvL7z/Zv pr/gkWn2crT7W5IhTB6Fz53sScIrvdhbdjfLG1Y3Gx4zbrN0X3Kgmlfw9HGPqHZL yqqCQqlNM5LvdzSbr98mEbJZPB3K55BqRMWHXRNkWx8l7JoIMQS8OiGN2G9XXG/k pfoCj0ifAzjk6/S7RJzanC5+Jyr3c7/jWCkUpLlyJqzjEGm/m6R9bwxer9wHQRdl WWDq3b4idIv2ZWA= -----END CERTIFICATE-----Generated at Sun Jan 25 23:03:47 2026 by rpki-client