This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/69XHjm7-yIbeLCUNviEuBo92-TM.roa File: 69XHjm7-yIbeLCUNviEuBo92-TM.roa (raw, json) Hash identifier: APoWjNu0LQYujI/yA31MFn1n87SnZbSJrgLE5wdw/7c= Subject key identifier: EB:D5:C7:8E:6E:FE:C8:86:DE:2C:25:0D:BE:21:2E:06:8F:76:F9:33 Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75 Certificate serial: 019B76EB13F06F5C8BD6B0D28F20F6A6E762 Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/69XHjm7-yIbeLCUNviEuBo92-TM.roa Signing time: Thu 01 Jan 2026 00:17:56 +0000 ROA not before: Thu 01 Jan 2026 00:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203704 IP address blocks: 185.124.4.0/22 maxlen: 24 185.207.144.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.mft rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:13:f0:6f:5c:8b:d6:b0:d2:8f:20:f6:a6:e7:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75 Validity Not Before: Jan 1 00:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ebd5c78e6efec886de2c250dbe212e068f76f933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ac:98:93:ec:2a:58:20:a3:d2:6f:3d:0b:e8: b9:14:17:2f:d3:f5:f2:e4:a8:7c:bd:02:53:b4:17: 7b:0b:a0:e3:7e:ef:c9:e0:fe:af:8c:93:92:f5:a7: a6:4c:96:8f:4f:20:eb:d8:f4:c6:73:5b:c4:5e:5d: 95:32:ef:ad:87:e9:72:8b:1b:8c:16:ca:f5:30:a9: 5f:a8:6b:19:1f:06:b2:2a:f9:91:d9:6f:24:fd:99: 59:59:1f:f9:7e:8f:da:c6:af:ed:b0:8e:15:76:dd: c7:a5:a6:cc:5c:13:98:e8:6f:e4:2a:15:4d:01:2d: 44:33:71:4a:d9:25:1c:5f:0b:83:6a:98:75:01:d1: 0a:04:46:17:96:c0:7c:8d:18:5a:12:52:a5:98:05: 33:47:62:c9:fd:10:2b:53:f8:16:67:f0:5b:d5:84: 5d:04:ea:43:f4:e2:f9:fc:d2:6e:a0:27:74:0e:59: 91:e7:29:62:da:61:1d:23:e4:51:ae:c8:10:dd:76: 85:91:cb:ea:8d:59:f9:90:61:d6:3f:3f:a0:7b:d7: 83:2b:31:b2:a5:81:0a:ee:50:37:d3:85:89:4b:ba: 25:aa:e7:d4:cc:74:2d:b2:73:a5:1a:4a:74:ac:87: 56:30:56:a6:ad:a9:ea:7b:c5:db:6d:f1:ab:84:a2: c9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:D5:C7:8E:6E:FE:C8:86:DE:2C:25:0D:BE:21:2E:06:8F:76:F9:33 X509v3 Authority Key Identifier: keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/69XHjm7-yIbeLCUNviEuBo92-TM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.124.4.0/22 185.207.144.0/22 Signature Algorithm: sha256WithRSAEncryption 99:fc:d1:c0:3d:1e:96:21:9a:ca:68:46:8c:28:37:7b:7a:cc: 20:66:60:a1:0f:4a:99:6c:97:1a:d2:ac:67:35:eb:93:8b:a7: 5e:24:3f:14:fa:b6:9b:c2:2b:bb:94:5b:c9:39:ef:5e:4c:e9: d2:4e:ba:c0:3b:21:d0:06:09:9e:18:f8:1a:74:4e:8f:0d:9e: f1:da:86:03:21:09:79:8e:60:17:af:4a:24:57:41:98:c5:0f: dd:03:1e:e9:08:62:0d:7e:86:26:03:56:3d:8b:ba:16:4a:4e: de:79:e3:43:d1:ad:a8:a4:90:38:68:5b:3c:02:f7:67:35:0b: f3:38:f3:c6:97:e2:9c:2c:a6:8a:e8:4f:95:88:80:65:7f:d8: bf:37:dd:52:c3:24:81:f2:5b:54:7e:61:b7:2f:76:b2:bf:72: b8:72:67:28:f3:4c:7b:36:84:f0:71:a7:4a:ac:ed:46:48:6c: c8:06:31:d1:fe:93:e6:bd:6d:66:01:53:dc:97:04:9c:81:ae: d2:3d:c6:35:96:3a:88:0a:5d:98:49:5a:dd:9c:06:6e:61:89: cb:cd:3f:20:36:d6:df:02:4f:7e:c4:45:c8:c4:55:dd:cd:50: 19:6f:a0:b8:33:dc:f7:c5:7e:85:28:a0:ec:85:a3:e4:05:71: 45:09:1c:8e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26xPwb1yL1rDSjyD2pudiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ0NzVmYjA5MzRjZjZhNThkY2NlZjExMDg3NWRiZTVlM2U4 YjZiNzUwHhcNMjYwMTAxMDAxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYmQ1Yzc4ZTZlZmVjODg2ZGUyYzI1MGRiZTIxMmUwNjhmNzZmOTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApayYk+wqWCCj0m89C+i5FBcv0/Xy 5Kh8vQJTtBd7C6Djfu/J4P6vjJOS9aemTJaPTyDr2PTGc1vEXl2VMu+th+lyixuM Fsr1MKlfqGsZHwayKvmR2W8k/ZlZWR/5fo/axq/tsI4Vdt3HpabMXBOY6G/kKhVN AS1EM3FK2SUcXwuDaph1AdEKBEYXlsB8jRhaElKlmAUzR2LJ/RArU/gWZ/Bb1YRd BOpD9OL5/NJuoCd0DlmR5yli2mEdI+RRrsgQ3XaFkcvqjVn5kGHWPz+ge9eDKzGy pYEK7lA304WJS7olqufUzHQtsnOlGkp0rIdWMFamranqe8XbbfGrhKLJwwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFOvVx45u/siG3iwlDb4hLgaPdvkzMB8GA1UdIwQY MBaAFNR1+wk0z2pY3M7xEIddvl4+i2t1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYt Yzc5MTRhYjY0MjczLzEvNjlYSGptNy15SWJlTENVTnZpRXVCbzkyLVRNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9iZmY0YWEtNGYwNy00MTI5LThhZDYtYzc5MTRhYjY0Mjcz LzEvMUhYN0NUVFBhbGpjenZFUWgxMi1YajZMYTNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuXwEAwQC uc+QMA0GCSqGSIb3DQEBCwUAA4IBAQCZ/NHAPR6WIZrKaEaMKDd7eswgZmChD0qZ bJca0qxnNeuTi6deJD8U+rabwiu7lFvJOe9eTOnSTrrAOyHQBgmeGPgadE6PDZ7x 2oYDIQl5jmAXr0okV0GYxQ/dAx7pCGINfoYmA1Y9i7oWSk7eeeND0a2opJA4aFs8 AvdnNQvzOPPGl+KcLKaK6E+ViIBlf9i/N91SwySB8ltUfmG3L3ayv3K4cmco80x7 NoTwcadKrO1GSGzIBjHR/pPmvW1mAVPclwScga7SPcY1ljqICl2YSVrdnAZuYYnL zT8gNtbfAk9+xEXIxFXdzVAZb6C4M9z3xX6FKKDshaPkBXFFCRyO -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:24 2026 by rpki-client