This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/8cS6Qj5MYE4B8boPnbZ2kcXbU-k.roa File: 8cS6Qj5MYE4B8boPnbZ2kcXbU-k.roa (raw, json) Hash identifier: AKR29eJxFVsOMPaiI3uGdOD049mIqIl+nuPgud2mgtc= Subject key identifier: F1:C4:BA:42:3E:4C:60:4E:01:F1:BA:0F:9D:B6:76:91:C5:DB:53:E9 Certificate issuer: /CN=c59c41daf0092b703bc059ba1353f071ed12199b Certificate serial: 019B7BA5136F04239CB3F9B7E0B888FEC765 Authority key identifier: C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/8cS6Qj5MYE4B8boPnbZ2kcXbU-k.roa Signing time: Thu 01 Jan 2026 22:19:34 +0000 ROA not before: Thu 01 Jan 2026 22:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3303 IP address blocks: 195.8.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.mft rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:13:6f:04:23:9c:b3:f9:b7:e0:b8:88:fe:c7:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c59c41daf0092b703bc059ba1353f071ed12199b Validity Not Before: Jan 1 22:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f1c4ba423e4c604e01f1ba0f9db67691c5db53e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:85:29:53:1c:b1:f0:68:b4:d6:98:f6:38: 46:50:df:8d:6a:9a:f4:0e:3c:d2:59:eb:7f:a8:99: 35:f5:0b:33:f9:7d:28:8a:62:26:a8:2f:fd:60:7b: d0:20:c4:4c:31:4c:03:04:2d:1a:a7:0b:dd:6f:06: 38:cf:fb:a7:bf:b0:c6:c9:44:bd:28:fc:c6:8a:57: ce:41:4a:b5:c4:da:03:11:de:67:42:b9:3f:be:df: 5c:6d:5b:e5:20:67:d3:1a:01:6a:08:d8:5a:7d:b0: 99:8a:d4:09:42:37:71:c1:db:bc:bb:86:3d:22:5e: dd:fe:4b:f4:8a:8e:f8:44:ad:83:3f:5a:5e:37:d7: cf:dd:54:93:f0:a8:58:ba:8e:92:ae:09:f4:ba:92: f7:76:b1:d3:45:e4:20:3a:ba:2b:c4:5b:51:d1:7f: 11:51:74:c1:b3:f8:e7:ca:78:be:5f:96:1c:54:76: 54:3a:bd:f1:91:eb:79:22:eb:64:6f:1a:5d:f5:06: b8:bc:e4:ef:f9:9c:66:26:01:86:a1:30:fd:4a:1f: aa:60:8a:8b:c7:c9:99:82:47:fc:da:68:84:cf:78: 75:36:85:6e:e5:48:34:9f:18:70:69:36:80:6b:d6: 8e:c9:37:39:75:b4:45:57:e6:e8:bb:42:42:24:ab: 21:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C4:BA:42:3E:4C:60:4E:01:F1:BA:0F:9D:B6:76:91:C5:DB:53:E9 X509v3 Authority Key Identifier: keyid:C5:9C:41:DA:F0:09:2B:70:3B:C0:59:BA:13:53:F0:71:ED:12:19:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZxB2vAJK3A7wFm6E1Pwce0SGZs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/8cS6Qj5MYE4B8boPnbZ2kcXbU-k.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/d54d2b-2126-4542-a5e4-c5493fe82e26/1/xZxB2vAJK3A7wFm6E1Pwce0SGZs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.8.108.0/24 Signature Algorithm: sha256WithRSAEncryption 80:dc:52:19:4f:19:b0:ef:6f:69:c9:e8:f4:88:ee:b3:e4:db: 6b:db:36:0c:bc:b5:4f:b0:20:20:1c:8f:7b:38:6d:b7:71:8c: 72:d5:e0:e4:9e:bf:46:79:fa:c5:ad:ed:72:fd:b4:4d:60:6b: 23:06:0e:b7:fc:97:35:06:d3:f3:d9:18:39:29:72:19:f8:60: 8d:13:02:58:1e:99:c7:e0:1c:b0:49:f8:08:10:18:3f:82:a5: c5:64:0f:61:83:77:3f:c7:7c:28:16:f5:09:46:66:fa:7c:38: dc:54:8a:64:7f:59:e7:fc:5e:2e:75:3d:9f:18:b9:8b:76:39: e9:51:f2:94:19:29:0f:1e:dc:bc:2c:83:b7:67:f9:4f:56:27: 1b:d6:69:06:69:7a:cd:aa:73:29:4c:d8:dc:b6:75:2a:91:7f: 99:0b:ac:bd:e7:1c:dc:5b:f2:c2:a3:ff:b6:2f:72:b9:6f:7b: 10:03:52:01:c6:33:21:b1:e0:92:cd:fd:c1:b8:12:8f:8e:53: 60:07:f7:3c:32:48:07:2f:bf:42:7d:e2:fc:be:be:bc:6f:ff: 58:ea:70:20:c0:d9:8c:a4:1f:ff:29:dc:19:f2:c8:6e:95:08: e1:d3:c0:18:88:74:63:81:03:4b:7b:c4:d9:9b:7c:43:61:ed: 0e:ca:d8:d1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7pRNvBCOcs/m34LiI/sdlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1OWM0MWRhZjAwOTJiNzAzYmMwNTliYTEzNTNmMDcxZWQx MjE5OWIwHhcNMjYwMTAxMjIxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMWM0YmE0MjNlNGM2MDRlMDFmMWJhMGY5ZGI2NzY5MWM1ZGI1M2U5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAub2FKVMcsfBotNaY9jhGUN+Napr0 DjzSWet/qJk19Qsz+X0oimImqC/9YHvQIMRMMUwDBC0apwvdbwY4z/unv7DGyUS9 KPzGilfOQUq1xNoDEd5nQrk/vt9cbVvlIGfTGgFqCNhafbCZitQJQjdxwdu8u4Y9 Il7d/kv0io74RK2DP1peN9fP3VST8KhYuo6Srgn0upL3drHTReQgOrorxFtR0X8R UXTBs/jnyni+X5YcVHZUOr3xket5Iutkbxpd9Qa4vOTv+ZxmJgGGoTD9Sh+qYIqL x8mZgkf82miEz3h1NoVu5Ug0nxhwaTaAa9aOyTc5dbRFV+bou0JCJKsh4QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPHEukI+TGBOAfG6D522dpHF21PpMB8GA1UdIwQY MBaAFMWcQdrwCStwO8BZuhNT8HHtEhmbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kNTRkMmItMjEyNi00NTQyLWE1ZTQt YzU0OTNmZTgyZTI2LzEvOGNTNlFqNU1ZRTRCOGJvUG5iWjJrY1hiVS1rLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9kNTRkMmItMjEyNi00NTQyLWE1ZTQtYzU0OTNmZTgyZTI2 LzEveFp4QjJ2QUpLM0E3d0ZtNkUxUHdjZTBTR1pzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwwhsMA0G CSqGSIb3DQEBCwUAA4IBAQCA3FIZTxmw729pyej0iO6z5Ntr2zYMvLVPsCAgHI97 OG23cYxy1eDknr9GefrFre1y/bRNYGsjBg63/Jc1BtPz2Rg5KXIZ+GCNEwJYHpnH 4BywSfgIEBg/gqXFZA9hg3c/x3woFvUJRmb6fDjcVIpkf1nn/F4udT2fGLmLdjnp UfKUGSkPHty8LIO3Z/lPVicb1mkGaXrNqnMpTNjctnUqkX+ZC6y95xzcW/LCo/+2 L3K5b3sQA1IBxjMhseCSzf3BuBKPjlNgB/c8MkgHL79CfeL8vr68b/9Y6nAgwNmM pB//KdwZ8shulQjh08AYiHRjgQNLe8TZm3xDYe0OytjR -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:33 2026 by rpki-client