This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/ddP8BpIU-MaA-3H_y1D2YA_MFvk.roa File: ddP8BpIU-MaA-3H_y1D2YA_MFvk.roa (raw, json) Hash identifier: egFPsgGwcBntJyqTtf6bIrnDHbQ5F2B22kHTn0DO3Gg= Subject key identifier: 75:D3:FC:06:92:14:F8:C6:80:FB:71:FF:CB:50:F6:60:0F:CC:16:F9 Certificate issuer: /CN=8a26f476d608625ad1fe06e52b974a9f66f0141a Certificate serial: 019B7F147B429C44F940B941B2E732CF1CCA Authority key identifier: 8A:26:F4:76:D6:08:62:5A:D1:FE:06:E5:2B:97:4A:9F:66:F0:14:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iib0dtYIYlrR_gblK5dKn2bwFBo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/ddP8BpIU-MaA-3H_y1D2YA_MFvk.roa Signing time: Fri 02 Jan 2026 14:20:07 +0000 ROA not before: Fri 02 Jan 2026 14:20:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48152 IP address blocks: 81.88.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/iib0dtYIYlrR_gblK5dKn2bwFBo.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/iib0dtYIYlrR_gblK5dKn2bwFBo.mft rsync://rpki.ripe.net/repository/DEFAULT/iib0dtYIYlrR_gblK5dKn2bwFBo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 05:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:7b:42:9c:44:f9:40:b9:41:b2:e7:32:cf:1c:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a26f476d608625ad1fe06e52b974a9f66f0141a Validity Not Before: Jan 2 14:20:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75d3fc069214f8c680fb71ffcb50f6600fcc16f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5b:63:5d:a6:3a:fd:e8:91:2d:17:d7:4e:42: 70:0b:68:8f:c5:3a:bb:a2:5c:ab:99:5f:6c:65:ae: 6b:ba:a4:19:0e:36:ca:fa:bd:10:c9:89:be:d5:e1: 9b:17:61:1b:5a:80:6b:07:27:71:34:1a:b5:d2:94: b1:8f:c8:d1:99:f7:fa:0d:ae:19:85:8a:25:0e:e2: 9b:07:7d:c0:f3:c9:25:3d:0e:cf:f3:77:5c:d7:8e: b6:07:0f:15:91:f9:f9:c9:cc:d8:df:6d:5e:8f:96: 3e:9f:9b:65:0b:2c:09:d6:e1:01:93:6e:10:5d:fa: 92:3c:04:01:4d:8f:21:88:84:84:9e:8b:8e:68:db: 22:ec:f3:7d:01:c9:32:8e:f6:61:2c:fa:7a:7f:66: d3:49:0d:5d:61:f1:08:a2:1c:9f:01:11:f5:94:08: 3f:71:91:e7:35:91:7e:6e:2c:5e:08:39:da:cb:c2: 41:76:70:bc:aa:b6:63:e2:19:63:48:fb:06:08:c0: 0a:62:72:f6:10:f8:80:d6:38:cf:d7:5d:25:2c:29: 38:d4:dc:21:92:b9:e3:60:37:7c:7c:6b:38:00:0c: 28:9f:b3:0d:74:cb:51:ef:51:6b:0e:db:10:d7:50: 00:02:34:c0:6a:99:2d:ed:cc:4c:b2:c5:67:4b:2f: d2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D3:FC:06:92:14:F8:C6:80:FB:71:FF:CB:50:F6:60:0F:CC:16:F9 X509v3 Authority Key Identifier: keyid:8A:26:F4:76:D6:08:62:5A:D1:FE:06:E5:2B:97:4A:9F:66:F0:14:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iib0dtYIYlrR_gblK5dKn2bwFBo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/ddP8BpIU-MaA-3H_y1D2YA_MFvk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/a66f2d-ca2f-4bca-b27b-d846d106b5f7/1/iib0dtYIYlrR_gblK5dKn2bwFBo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.88.104.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:40:1c:14:50:93:fc:cf:7d:45:71:39:6b:05:af:d5:4f:86: b7:eb:0d:0d:d8:91:9a:86:f3:a0:a4:59:8b:9c:2c:0f:39:70: 29:4e:71:a9:ed:05:12:43:c5:28:26:99:96:a3:af:e5:e0:4d: de:06:de:17:53:73:57:3d:31:21:89:d0:1d:49:74:97:f9:35: fd:a7:9c:d2:35:cf:32:f1:d2:41:64:eb:81:f5:5a:d7:ca:e1: 73:11:06:96:a4:d9:ec:ae:d2:27:df:cc:21:fd:7e:1d:68:4b: ae:86:6a:e3:62:6b:de:3c:03:22:b0:9f:74:c2:36:b4:74:f9: f8:9d:51:1e:2a:e6:cd:19:bc:1c:e7:43:49:95:44:d6:88:0f: d8:89:69:ef:99:34:6a:0f:a2:65:cd:72:5c:16:b8:e2:29:e5: 20:72:88:b1:62:63:a6:40:bc:19:31:d2:4d:e5:b2:4d:6f:d1: 11:fa:08:10:ec:00:33:d6:22:e1:fe:83:cc:a6:4d:6f:e3:ef: c8:88:d6:59:d7:b3:16:9d:92:b2:3d:2c:1a:94:b8:3e:05:18: 9a:2b:7d:19:09:84:e2:9e:87:7b:e0:ed:ca:fb:b8:4a:25:4c: 31:eb:93:45:b1:94:d4:b9:a2:24:cb:86:5e:b1:89:84:2c:94: b7:76:39:04 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FHtCnET5QLlBsucyzxzKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMjZmNDc2ZDYwODYyNWFkMWZlMDZlNTJiOTc0YTlmNjZm MDE0MWEwHhcNMjYwMTAyMTQyMDA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWQzZmMwNjkyMTRmOGM2ODBmYjcxZmZjYjUwZjY2MDBmY2MxNmY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu1tjXaY6/eiRLRfXTkJwC2iPxTq7 olyrmV9sZa5ruqQZDjbK+r0QyYm+1eGbF2EbWoBrBydxNBq10pSxj8jRmff6Da4Z hYolDuKbB33A88klPQ7P83dc1462Bw8Vkfn5yczY321ej5Y+n5tlCywJ1uEBk24Q XfqSPAQBTY8hiISEnouOaNsi7PN9AckyjvZhLPp6f2bTSQ1dYfEIohyfARH1lAg/ cZHnNZF+bixeCDnay8JBdnC8qrZj4hljSPsGCMAKYnL2EPiA1jjP110lLCk41Nwh krnjYDd8fGs4AAwon7MNdMtR71FrDtsQ11AAAjTAapkt7cxMssVnSy/SNwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHXT/AaSFPjGgPtx/8tQ9mAPzBb5MB8GA1UdIwQY MBaAFIom9HbWCGJa0f4G5SuXSp9m8BQaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWliMGR0WUlZbHJSX2dibEs1ZEtuMmJ3RkJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9hNjZmMmQtY2EyZi00YmNhLWIyN2It ZDg0NmQxMDZiNWY3LzEvZGRQOEJwSVUtTWFBLTNIX3kxRDJZQV9NRnZrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9hNjZmMmQtY2EyZi00YmNhLWIyN2ItZDg0NmQxMDZiNWY3 LzEvaWliMGR0WUlZbHJSX2dibEs1ZEtuMmJ3RkJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCUVhoMA0G CSqGSIb3DQEBCwUAA4IBAQALQBwUUJP8z31FcTlrBa/VT4a36w0N2JGahvOgpFmL nCwPOXApTnGp7QUSQ8UoJpmWo6/l4E3eBt4XU3NXPTEhidAdSXSX+TX9p5zSNc8y 8dJBZOuB9VrXyuFzEQaWpNnsrtIn38wh/X4daEuuhmrjYmvePAMisJ90wja0dPn4 nVEeKubNGbwc50NJlUTWiA/YiWnvmTRqD6JlzXJcFrjiKeUgcoixYmOmQLwZMdJN 5bJNb9ER+ggQ7AAz1iLh/oPMpk1v4+/IiNZZ17MWnZKyPSwalLg+BRiaK30ZCYTi nod74O3K+7hKJUwx65NFsZTUuaIky4ZesYmELJS3djkE -----END CERTIFICATE-----Generated at Mon Jan 26 12:37:16 2026 by rpki-client