This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/sCTR8cDIH84F0OMO06djeXs_-PQ.roa File: sCTR8cDIH84F0OMO06djeXs_-PQ.roa (raw, json) Hash identifier: ugj+brY/Z7Vee3VbgiQKLfHy9VAROXKxM5IhUTLTOGk= Subject key identifier: B0:24:D1:F1:C0:C8:1F:CE:05:D0:E3:0E:D3:A7:63:79:7B:3F:F8:F4 Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad Certificate serial: 019B7C7FB2A179AA684306C3E0D563CC35A7 Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/sCTR8cDIH84F0OMO06djeXs_-PQ.roa Signing time: Fri 02 Jan 2026 02:18:22 +0000 ROA not before: Fri 02 Jan 2026 02:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42088 IP address blocks: 185.212.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.mft rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:b2:a1:79:aa:68:43:06:c3:e0:d5:63:cc:35:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08af091858bb99651764399c6565df7a0834dbad Validity Not Before: Jan 2 02:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b024d1f1c0c81fce05d0e30ed3a763797b3ff8f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:20:b7:9e:e7:d5:04:15:ba:f6:47:66:92:fd: 4f:23:40:45:88:18:ff:22:99:42:07:90:71:48:3a: 50:2e:8f:7c:c8:9a:a7:e9:5f:4f:38:22:29:8e:9b: 3d:06:bc:d4:7a:b9:19:79:6a:16:61:f8:21:2b:85: 14:e4:9f:6b:94:3d:ee:10:cd:8c:23:6d:09:3f:9d: 19:2c:95:a4:b9:5f:58:03:26:3a:82:06:38:49:4b: ce:ac:38:64:c9:4e:3b:ba:70:df:36:ef:0f:c8:8c: 49:11:f3:c9:8e:c3:9b:47:19:b4:8e:88:fd:85:4f: a9:56:1a:6d:43:38:e6:05:c8:ff:1c:2d:af:37:fa: 47:ec:1b:0c:e7:2e:2c:b6:2b:a6:52:dd:c9:25:b3: 0b:aa:a3:d2:0e:5b:9e:d6:53:7f:49:b4:f8:95:7e: 1d:e1:ac:80:92:9e:ff:f7:e0:9b:88:51:cb:96:51: fd:2b:c5:b4:60:e3:e2:bc:87:e8:ff:6b:fa:3a:ed: 8a:be:0d:0c:c3:e9:14:8e:29:f5:81:cf:77:e4:fe: 28:72:03:fe:6d:71:11:b2:0c:0b:98:bb:df:a6:4c: 47:69:78:a6:9e:26:4d:fa:27:5a:ea:3e:f5:d4:0c: c0:f0:99:51:6a:09:80:ea:ce:af:89:c7:8c:d6:59: dc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:24:D1:F1:C0:C8:1F:CE:05:D0:E3:0E:D3:A7:63:79:7B:3F:F8:F4 X509v3 Authority Key Identifier: keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/sCTR8cDIH84F0OMO06djeXs_-PQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.212.249.0/24 Signature Algorithm: sha256WithRSAEncryption 09:b6:69:fe:e1:78:9b:14:82:bd:50:6a:62:63:8f:dc:7d:14: 83:cf:d5:76:87:5b:b1:c4:e6:bc:42:fa:f5:7a:c9:f2:13:c6: 3a:c4:e4:9a:40:d4:f4:9f:69:9a:80:27:e0:34:ba:41:f2:01: 82:88:9a:08:1a:e5:2a:2e:a5:18:d8:6c:6b:6e:4f:ea:05:7b: 60:48:cc:fa:8c:c4:3b:8b:6a:e3:ce:db:9e:67:bc:47:a2:ca: 21:50:a0:3c:c8:2c:a1:1f:45:b2:41:04:c7:9b:c3:19:7a:f4: 1d:72:f8:dc:fc:b6:ba:c9:76:b3:b7:23:67:79:11:2d:aa:5a: c6:01:82:d6:19:33:b2:fc:6a:41:3d:8a:da:71:c2:07:a7:ea: a1:65:7b:f2:71:4c:4f:b6:49:5f:cd:37:7e:ca:61:45:54:4f: a0:67:a2:0a:6e:11:6c:d8:af:63:32:9f:2a:5e:3c:38:8b:b3: 5a:d9:75:df:35:8b:63:11:67:16:2d:d8:aa:39:59:c5:5a:6e: 5d:44:11:31:a2:9c:90:b5:22:99:fb:6e:20:2a:14:f0:77:86: 82:e7:99:f7:73:ff:6c:e4:5b:04:fd:2a:32:2f:c2:dc:54:40: f6:dc:f6:7e:1e:dc:12:9d:d8:43:00:5a:9c:a2:99:40:da:57: 4a:c5:6b:0e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8f7KheapoQwbD4NVjzDWnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4YWYwOTE4NThiYjk5NjUxNzY0Mzk5YzY1NjVkZjdhMDgz NGRiYWQwHhcNMjYwMTAyMDIxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMDI0ZDFmMWMwYzgxZmNlMDVkMGUzMGVkM2E3NjM3OTdiM2ZmOGY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtyC3nufVBBW69kdmkv1PI0BFiBj/ IplCB5BxSDpQLo98yJqn6V9POCIpjps9BrzUerkZeWoWYfghK4UU5J9rlD3uEM2M I20JP50ZLJWkuV9YAyY6ggY4SUvOrDhkyU47unDfNu8PyIxJEfPJjsObRxm0joj9 hU+pVhptQzjmBcj/HC2vN/pH7BsM5y4stiumUt3JJbMLqqPSDlue1lN/SbT4lX4d 4ayAkp7/9+CbiFHLllH9K8W0YOPivIfo/2v6Ou2Kvg0Mw+kUjin1gc935P4ocgP+ bXERsgwLmLvfpkxHaXimniZN+ida6j711AzA8JlRagmA6s6viceM1lnchwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFLAk0fHAyB/OBdDjDtOnY3l7P/j0MB8GA1UdIwQY MBaAFAivCRhYu5llF2Q5nGVl33oINNutMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0s4SkdGaTdtV1VYWkRtY1pXWGZlZ2cwMjYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS83MDBmZDMtYzM2MC00OGFiLThhMDYt NTYxMjliN2RjMDE4LzEvc0NUUjhjRElIODRGME9NTzA2ZGplWHNfLVBRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS83MDBmZDMtYzM2MC00OGFiLThhMDYtNTYxMjliN2RjMDE4 LzEvQ0s4SkdGaTdtV1VYWkRtY1pXWGZlZ2cwMjYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudT5MA0G CSqGSIb3DQEBCwUAA4IBAQAJtmn+4XibFIK9UGpiY4/cfRSDz9V2h1uxxOa8Qvr1 esnyE8Y6xOSaQNT0n2magCfgNLpB8gGCiJoIGuUqLqUY2Gxrbk/qBXtgSMz6jMQ7 i2rjztueZ7xHosohUKA8yCyhH0WyQQTHm8MZevQdcvjc/La6yXaztyNneREtqlrG AYLWGTOy/GpBPYraccIHp+qhZXvycUxPtklfzTd+ymFFVE+gZ6IKbhFs2K9jMp8q Xjw4i7Na2XXfNYtjEWcWLdiqOVnFWm5dRBExopyQtSKZ+24gKhTwd4aC55n3c/9s 5FsE/SoyL8LcVED23PZ+HtwSndhDAFqcoplA2ldKxWsO -----END CERTIFICATE-----Generated at Mon Jan 26 05:31:43 2026 by rpki-client