This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/6h1PvR00lCR4R_OK63mWuUNm8Ow.roa File: 6h1PvR00lCR4R_OK63mWuUNm8Ow.roa (raw, json) Hash identifier: nK88CLEdk1ROq2MFGTRKCThSy5zWr4KCZ19shw/qtOU= Subject key identifier: EA:1D:4F:BD:1D:34:94:24:78:47:F3:8A:EB:79:96:B9:43:66:F0:EC Certificate issuer: /CN=43af2e987d2b63addaa5adc178f31e90d876aaa7 Certificate serial: 019B7AC895E6F8C501BDECDFEB7FA51B17E6 Authority key identifier: 43:AF:2E:98:7D:2B:63:AD:DA:A5:AD:C1:78:F3:1E:90:D8:76:AA:A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/6h1PvR00lCR4R_OK63mWuUNm8Ow.roa Signing time: Thu 01 Jan 2026 18:18:44 +0000 ROA not before: Thu 01 Jan 2026 18:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48728 IP address blocks: 185.2.246.0/24 maxlen: 24 185.2.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Q68umH0rY63apa3BePMekNh2qqc.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Q68umH0rY63apa3BePMekNh2qqc.mft rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:95:e6:f8:c5:01:bd:ec:df:eb:7f:a5:1b:17:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43af2e987d2b63addaa5adc178f31e90d876aaa7 Validity Not Before: Jan 1 18:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ea1d4fbd1d3494247847f38aeb7996b94366f0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:95:75:89:cb:9c:8a:bc:9f:cc:a9:9e:70:d6: a7:59:92:52:ab:14:0e:9a:d6:b1:80:44:75:d3:2e: 69:e6:75:3a:b2:48:7a:dd:cc:98:04:20:67:ae:20: 94:d6:bb:22:27:ab:83:46:a9:2a:44:13:b1:80:f2: 1b:38:87:74:72:09:da:e6:c5:10:2e:d2:fa:00:c6: 6a:3b:00:fd:dc:eb:74:db:83:ef:c7:0c:21:fd:0e: 69:a0:f8:51:db:e9:be:45:91:f3:ec:07:50:bb:2b: 31:4c:c7:e4:34:21:37:61:84:2c:12:09:b5:9b:1b: c3:c1:9a:9f:00:f6:1f:63:41:0c:9e:9d:05:44:4e: 96:7f:a4:81:2e:54:04:18:a5:77:41:cf:2a:bf:f2: f1:c9:7e:02:4c:0b:42:c5:f4:c1:df:de:d3:73:5b: b5:18:66:c5:87:70:e9:71:67:b1:66:1e:98:df:bc: e7:20:0a:20:55:ac:37:82:f6:10:0e:d3:4b:95:9a: a3:6a:5f:c0:7c:d4:2c:2d:37:e0:58:74:61:cd:15: c0:92:32:aa:ba:f6:fa:48:f3:f5:07:5e:56:71:d2: db:f8:1c:35:86:60:81:11:0a:03:ce:ea:87:45:a0: 8a:51:c5:95:9e:31:7c:55:89:7a:c5:fb:bd:4d:3c: ed:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:1D:4F:BD:1D:34:94:24:78:47:F3:8A:EB:79:96:B9:43:66:F0:EC X509v3 Authority Key Identifier: keyid:43:AF:2E:98:7D:2B:63:AD:DA:A5:AD:C1:78:F3:1E:90:D8:76:AA:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q68umH0rY63apa3BePMekNh2qqc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/6h1PvR00lCR4R_OK63mWuUNm8Ow.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/668437-97c2-48c2-b7c8-cc7746719406/1/Q68umH0rY63apa3BePMekNh2qqc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.2.246.0/23 Signature Algorithm: sha256WithRSAEncryption b5:2b:d0:b8:fb:59:24:65:66:0b:ff:24:79:0e:a6:10:9d:1d: 96:4a:fa:11:79:a5:bc:6c:48:af:61:a4:6f:b9:40:0c:14:2a: eb:90:d6:22:ad:90:2b:48:03:a2:6d:61:62:26:f8:bc:96:de: ca:35:c6:15:83:d5:5f:11:53:96:c5:02:1d:75:c0:f3:8a:9f: 88:03:00:3d:71:c6:e0:bf:92:3b:cd:1e:b4:28:84:34:fc:45: 17:50:98:6f:9b:14:7a:f9:c5:53:37:0c:7f:70:ea:96:b4:f1: c3:ab:34:19:7f:69:7b:43:db:43:ae:39:55:5b:68:8b:66:09: 29:bb:34:fe:bc:8d:c4:7d:5a:3a:a4:61:30:66:72:5d:e6:47: 19:b6:2f:60:e4:f1:07:a3:e1:9c:df:0c:71:da:e9:12:fe:96: 78:f5:5f:d7:05:a9:8f:00:31:01:52:21:5e:1b:aa:62:15:be: 41:de:1c:fc:3f:b4:32:5f:80:a6:d9:ab:da:fc:27:4a:cb:54: f5:ae:ba:2c:55:66:30:4a:cd:30:cd:f8:9c:9f:ee:00:dd:07: 54:db:de:68:d4:95:23:13:6b:d2:07:d3:26:c6:ca:73:a6:1a: fa:a0:fd:51:66:ea:e5:b5:e6:b6:2d:cc:32:4a:3e:22:d4:35: 60:33:42:90 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yJXm+MUBvezf63+lGxfmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzYWYyZTk4N2QyYjYzYWRkYWE1YWRjMTc4ZjMxZTkwZDg3 NmFhYTcwHhcNMjYwMTAxMTgxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYTFkNGZiZDFkMzQ5NDI0Nzg0N2YzOGFlYjc5OTZiOTQzNjZmMGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZV1icuciryfzKmecNanWZJSqxQO mtaxgER10y5p5nU6skh63cyYBCBnriCU1rsiJ6uDRqkqRBOxgPIbOId0cgna5sUQ LtL6AMZqOwD93Ot024Pvxwwh/Q5poPhR2+m+RZHz7AdQuysxTMfkNCE3YYQsEgm1 mxvDwZqfAPYfY0EMnp0FRE6Wf6SBLlQEGKV3Qc8qv/LxyX4CTAtCxfTB397Tc1u1 GGbFh3DpcWexZh6Y37znIAogVaw3gvYQDtNLlZqjal/AfNQsLTfgWHRhzRXAkjKq uvb6SPP1B15WcdLb+Bw1hmCBEQoDzuqHRaCKUcWVnjF8VYl6xfu9TTztNQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFOodT70dNJQkeEfziut5lrlDZvDsMB8GA1UdIwQY MBaAFEOvLph9K2Ot2qWtwXjzHpDYdqqnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTY4dW1IMHJZNjNhcGEzQmVQTWVrTmgycXFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi82Njg0MzctOTdjMi00OGMyLWI3Yzgt Y2M3NzQ2NzE5NDA2LzEvNmgxUHZSMDBsQ1I0Ul9PSzYzbVd1VU5tOE93LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi82Njg0MzctOTdjMi00OGMyLWI3YzgtY2M3NzQ2NzE5NDA2 LzEvUTY4dW1IMHJZNjNhcGEzQmVQTWVrTmgycXFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuQL2MA0G CSqGSIb3DQEBCwUAA4IBAQC1K9C4+1kkZWYL/yR5DqYQnR2WSvoReaW8bEivYaRv uUAMFCrrkNYirZArSAOibWFiJvi8lt7KNcYVg9VfEVOWxQIddcDzip+IAwA9ccbg v5I7zR60KIQ0/EUXUJhvmxR6+cVTNwx/cOqWtPHDqzQZf2l7Q9tDrjlVW2iLZgkp uzT+vI3EfVo6pGEwZnJd5kcZti9g5PEHo+Gc3wxx2ukS/pZ49V/XBamPADEBUiFe G6piFb5B3hz8P7QyX4Cm2ava/CdKy1T1rrosVWYwSs0wzficn+4A3QdU295o1JUj E2vSB9Mmxspzphr6oP1RZurltea2LcwySj4i1DVgM0KQ -----END CERTIFICATE-----Generated at Sun Jan 25 20:01:25 2026 by rpki-client