This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/8Nzbql_0L1Sqe6QwC_4FVwreWNg.roa File: 8Nzbql_0L1Sqe6QwC_4FVwreWNg.roa (raw, json) Hash identifier: 4gCR519ZeBzC3kk6VwY+ThTPU0hs0GWYjUpi1seUwSM= Subject key identifier: F0:DC:DB:AA:5F:F4:2F:54:AA:7B:A4:30:0B:FE:05:57:0A:DE:58:D8 Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Certificate serial: 019B7D5D09AA4AE89C51DAC9AE8201174930 Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/8Nzbql_0L1Sqe6QwC_4FVwreWNg.roa Signing time: Fri 02 Jan 2026 06:20:07 +0000 ROA not before: Fri 02 Jan 2026 06:20:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201581 IP address blocks: 217.153.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.mft rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 12:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:09:aa:4a:e8:9c:51:da:c9:ae:82:01:17:49:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933 Validity Not Before: Jan 2 06:20:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f0dcdbaa5ff42f54aa7ba4300bfe05570ade58d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2f:b8:26:81:7c:03:62:1f:ad:ac:0f:66:37: ad:ea:4c:83:f6:87:2f:4b:a2:b0:e8:8d:2e:e9:bd: 71:89:15:4c:e0:0b:14:db:84:3c:b7:60:58:d3:e8: e8:ae:72:7c:66:56:31:6c:51:6b:42:cb:bb:e0:24: 34:81:3e:f7:ce:42:48:29:92:34:56:be:59:0d:7a: 86:a9:f5:53:1c:bb:18:5b:73:3d:45:58:22:4b:c5: 84:73:1e:63:86:0f:55:85:61:b9:e6:3e:ee:b1:41: 4e:e8:df:96:5b:6f:77:e6:9f:db:4f:a8:5b:54:5b: 2c:1f:b4:f8:f3:73:d0:dd:5e:cc:9a:9f:9f:25:d4: 42:c2:df:f5:a6:4e:d1:48:a9:f8:83:87:45:88:f1: c9:2f:4b:a3:23:d6:65:6a:8d:0f:e9:2d:fd:44:8c: 00:12:1e:d3:38:a0:47:80:dc:49:49:79:45:26:c7: 28:be:4e:51:0d:24:58:78:bc:f7:89:ec:bc:e4:17: 31:08:28:b3:c3:7d:37:83:56:da:fe:58:cc:19:13: c4:6a:a3:ed:60:72:c8:d9:01:6b:ec:37:13:99:d9: 66:24:16:96:c3:29:80:b7:aa:0f:75:e1:46:88:8d: 56:40:39:9f:fb:98:0f:91:be:71:44:56:06:7f:59: 01:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DC:DB:AA:5F:F4:2F:54:AA:7B:A4:30:0B:FE:05:57:0A:DE:58:D8 X509v3 Authority Key Identifier: keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/8Nzbql_0L1Sqe6QwC_4FVwreWNg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.153.116.0/24 Signature Algorithm: sha256WithRSAEncryption 67:4d:a5:aa:ce:86:cf:a0:de:05:7b:04:f5:c4:28:eb:42:44: 07:cd:7f:73:c3:c2:60:e5:c7:8b:b5:ad:25:ed:0e:7f:90:23: 7d:4a:f7:32:f7:08:12:13:3b:c3:a0:37:65:34:7f:0c:95:74: ac:dd:84:bc:f4:6c:54:be:48:71:fe:26:3b:ab:96:dd:c9:87: b8:ee:4a:50:58:fd:42:c9:0e:81:48:51:8c:86:d2:ac:37:b4: 18:9f:cb:d8:55:82:de:fe:3b:67:a6:ae:4b:ad:f6:36:a0:c6: ce:fb:03:44:53:41:3b:6c:12:02:3f:87:fa:c7:8f:2f:2a:10: 00:84:94:03:6c:f9:4a:0c:b1:b1:54:b3:9f:0f:15:01:bd:00: 8c:29:b8:c6:27:de:ad:ff:df:12:4c:15:e1:38:bb:11:03:b9: be:9b:48:7d:32:bd:c6:64:aa:26:1d:d7:1b:ab:55:1f:a7:d5: 7e:e5:58:96:ee:91:db:cb:5f:08:eb:ca:aa:6c:e6:b9:36:4f: 31:03:fa:41:ca:2f:b8:2d:8f:cd:3c:82:87:38:2a:92:d8:7d: bc:c2:2c:49:45:e5:83:96:e3:de:8b:8f:c6:9e:a3:0d:df:76: 46:ef:f4:9f:0f:94:d6:03:f7:73:5c:20:f9:94:6e:1c:0c:ee: b2:18:f4:fa -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XQmqSuicUdrJroIBF0kwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFhY2E2M2RmMjQ4YjdhZGYzZGRkMDdlOGMyZDNlZWRkMDJj ZWY5MzMwHhcNMjYwMTAyMDYyMDA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMGRjZGJhYTVmZjQyZjU0YWE3YmE0MzAwYmZlMDU1NzBhZGU1OGQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArC+4JoF8A2IfrawPZjet6kyD9ocv S6Kw6I0u6b1xiRVM4AsU24Q8t2BY0+jornJ8ZlYxbFFrQsu74CQ0gT73zkJIKZI0 Vr5ZDXqGqfVTHLsYW3M9RVgiS8WEcx5jhg9VhWG55j7usUFO6N+WW2935p/bT6hb VFssH7T483PQ3V7Mmp+fJdRCwt/1pk7RSKn4g4dFiPHJL0ujI9Zlao0P6S39RIwA Eh7TOKBHgNxJSXlFJscovk5RDSRYeLz3iey85BcxCCizw303g1ba/ljMGRPEaqPt YHLI2QFr7DcTmdlmJBaWwymAt6oPdeFGiI1WQDmf+5gPkb5xRFYGf1kBfwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFPDc26pf9C9UqnukMAv+BVcK3ljYMB8GA1UdIwQY MBaAFBrKY98ki3rfPd0H6MLT7t0CzvkzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzIt OTFlMzE4NGJiMGFiLzEvOE56YnFsXzBMMVNxZTZRd0NfNEZWd3JlV05nLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8xZjY0NTgtZGM3NS00YWRkLWFlNzItOTFlMzE4NGJiMGFi LzEvR3NwajN5U0xldDg5M1Fmb3d0UHUzUUxPLVRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2Zl0MA0G CSqGSIb3DQEBCwUAA4IBAQBnTaWqzobPoN4FewT1xCjrQkQHzX9zw8Jg5ceLta0l 7Q5/kCN9Svcy9wgSEzvDoDdlNH8MlXSs3YS89GxUvkhx/iY7q5bdyYe47kpQWP1C yQ6BSFGMhtKsN7QYn8vYVYLe/jtnpq5LrfY2oMbO+wNEU0E7bBICP4f6x48vKhAA hJQDbPlKDLGxVLOfDxUBvQCMKbjGJ96t/98STBXhOLsRA7m+m0h9Mr3GZKomHdcb q1Ufp9V+5ViW7pHby18I68qqbOa5Nk8xA/pByi+4LY/NPIKHOCqS2H28wixJReWD luPei4/GnqMN33ZG7/SfD5TWA/dzXCD5lG4cDO6yGPT6 -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:39 2026 by rpki-client