This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/8zauiXBaFMH5VLxzsSvMEUumaxQ.roa File: 8zauiXBaFMH5VLxzsSvMEUumaxQ.roa (raw, json) Hash identifier: sJvy2vx8n7/hTOLyUNRFHLLiMRYWbPfkI+7/KsQidiw= Subject key identifier: F3:36:AE:89:70:5A:14:C1:F9:54:BC:73:B1:2B:CC:11:4B:A6:6B:14 Certificate issuer: /CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2 Certificate serial: 019B7D5AB43A5CD9CA0C2CD9363C252FC0ED Authority key identifier: 0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/8zauiXBaFMH5VLxzsSvMEUumaxQ.roa Signing time: Fri 02 Jan 2026 06:17:34 +0000 ROA not before: Fri 02 Jan 2026 06:17:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45034 IP address blocks: 185.106.232.0/24 maxlen: 24 185.106.234.0/24 maxlen: 24 2a00:a700::/48 maxlen: 48 2a00:a700:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.mft rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 15:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:b4:3a:5c:d9:ca:0c:2c:d9:36:3c:25:2f:c0:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0e41a3968b62741b36d348be0d2c91c5d4b133a2 Validity Not Before: Jan 2 06:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f336ae89705a14c1f954bc73b12bcc114ba66b14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ee:3b:30:32:1b:60:93:94:1d:0e:6e:94:3b: b5:62:cc:c2:84:52:8d:78:98:23:98:97:04:5a:c3: 1e:ec:af:2c:67:3e:cf:de:7a:60:0d:ce:ed:70:d1: 12:52:44:c1:c3:89:d7:f3:0d:bc:12:63:0a:be:f2: d7:c3:6e:89:4d:39:2f:7f:0f:8a:45:64:65:ed:48: cc:63:4a:ca:25:89:ed:f7:c8:5f:c5:4d:f2:c1:48: 1c:90:73:01:5d:69:26:09:95:d0:56:e6:8c:1e:77: 9e:e2:bd:28:71:61:73:1f:2a:25:a4:35:8d:ee:b9: c1:35:4a:ad:24:c6:93:fd:4a:42:52:f2:24:03:4c: 37:c5:19:b8:fb:9a:b0:9d:14:2a:3e:fe:55:d2:2c: 34:1e:d5:08:ad:10:55:ff:2e:55:6f:a7:e3:03:12: 32:d9:4a:5f:ae:3d:c9:9c:b4:ef:0a:0e:64:04:62: 44:bf:dc:77:e6:d4:dc:74:6e:9b:54:8d:c6:db:21: 19:1e:94:a0:49:36:bf:2d:53:00:21:55:15:42:f2: bc:ed:ab:99:1e:46:09:9e:e3:0e:45:53:85:5f:e4: 3e:e6:dc:22:04:19:20:93:2e:9c:46:7c:a8:e3:55: 5e:c1:77:71:ea:33:8a:93:9c:c5:3e:97:83:69:61: f2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:36:AE:89:70:5A:14:C1:F9:54:BC:73:B1:2B:CC:11:4B:A6:6B:14 X509v3 Authority Key Identifier: keyid:0E:41:A3:96:8B:62:74:1B:36:D3:48:BE:0D:2C:91:C5:D4:B1:33:A2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DkGjlotidBs200i-DSyRxdSxM6I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/8zauiXBaFMH5VLxzsSvMEUumaxQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/05b1f8-4b35-40bb-a034-747523192363/1/DkGjlotidBs200i-DSyRxdSxM6I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.106.232.0/24 185.106.234.0/24 IPv6: 2a00:a700::/48 2a00:a700:a::/48 Signature Algorithm: sha256WithRSAEncryption b1:a2:ab:0e:b0:53:ca:2e:73:33:33:6b:73:0c:a2:38:45:d2: b6:88:ab:a6:1e:1f:df:2f:23:c7:48:42:de:55:67:cd:87:65: 8a:2b:59:3e:97:71:fb:7d:76:5d:90:57:d0:bb:cd:35:3a:11: 01:09:d8:a9:fa:56:6b:bb:0f:42:bb:a1:4a:50:47:a7:f0:a6: fa:e4:12:ab:6d:cb:7b:71:e8:37:6d:18:7c:c0:f9:86:02:7a: 1d:ec:b9:8f:65:59:bf:69:bf:07:26:76:2d:7e:7a:35:f8:a3: 1b:06:09:c1:08:85:92:81:28:4b:2d:9d:e3:56:32:79:09:4a: 88:03:e8:51:7b:12:6b:80:8b:f3:97:39:81:1d:4c:c9:0e:58: e5:ad:36:22:15:82:e3:9b:55:77:4a:a4:86:7a:ac:24:ce:15: d0:a8:ee:26:98:da:1b:b1:ea:cb:64:f8:ab:d0:2c:7c:55:ea: 92:97:55:35:8f:4f:91:15:3c:09:68:a5:29:0c:2a:8f:ec:da: 6f:0a:2e:3b:cc:2b:94:0d:bc:6d:0b:5f:f2:01:ff:94:eb:d4: 70:32:af:7c:53:e0:86:e0:5f:f8:55:18:5f:06:12:5e:26:16: 0c:57:fb:67:e1:4c:a3:d0:ea:43:ae:ea:b4:48:a8:11:76:07: f2:f0:ec:cf -----BEGIN CERTIFICATE----- MIIFHTCCBAWgAwIBAgISAZt9WrQ6XNnKDCzZNjwlL8DtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBlNDFhMzk2OGI2Mjc0MWIzNmQzNDhiZTBkMmM5MWM1ZDRi MTMzYTIwHhcNMjYwMTAyMDYxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMzM2YWU4OTcwNWExNGMxZjk1NGJjNzNiMTJiY2MxMTRiYTY2YjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+47MDIbYJOUHQ5ulDu1YszChFKN eJgjmJcEWsMe7K8sZz7P3npgDc7tcNESUkTBw4nX8w28EmMKvvLXw26JTTkvfw+K RWRl7UjMY0rKJYnt98hfxU3ywUgckHMBXWkmCZXQVuaMHnee4r0ocWFzHyolpDWN 7rnBNUqtJMaT/UpCUvIkA0w3xRm4+5qwnRQqPv5V0iw0HtUIrRBV/y5Vb6fjAxIy 2Upfrj3JnLTvCg5kBGJEv9x35tTcdG6bVI3G2yEZHpSgSTa/LVMAIVUVQvK87auZ HkYJnuMORVOFX+Q+5twiBBkgky6cRnyo41VewXdx6jOKk5zFPpeDaWHyKwIDAQAB o4ICKTCCAiUwHQYDVR0OBBYEFPM2rolwWhTB+VS8c7ErzBFLpmsUMB8GA1UdIwQY MBaAFA5Bo5aLYnQbNtNIvg0skcXUsTOiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8wNWIxZjgtNGIzNS00MGJiLWEwMzQt NzQ3NTIzMTkyMzYzLzEvOHphdWlYQmFGTUg1Vkx4enNTdk1FVXVtYXhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8wNWIxZjgtNGIzNS00MGJiLWEwMzQtNzQ3NTIzMTkyMzYz LzEvRGtHamxvdGlkQnMyMDBpLURTeVJ4ZFN4TTZJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQAuWroAwQA uWrqMBgEAgACMBIDBwAqAKcAAAADBwAqAKcAAAowDQYJKoZIhvcNAQELBQADggEB ALGiqw6wU8ouczMza3MMojhF0raIq6YeH98vI8dIQt5VZ82HZYorWT6Xcft9dl2Q V9C7zTU6EQEJ2Kn6Vmu7D0K7oUpQR6fwpvrkEqtty3tx6DdtGHzA+YYCeh3suY9l Wb9pvwcmdi1+ejX4oxsGCcEIhZKBKEstneNWMnkJSogD6FF7EmuAi/OXOYEdTMkO WOWtNiIVguObVXdKpIZ6rCTOFdCo7iaY2hux6stk+KvQLHxV6pKXVTWPT5EVPAlo pSkMKo/s2m8KLjvMK5QNvG0LX/IB/5Tr1HAyr3xT4IbgX/hVGF8GEl4mFgxX+2fh TKPQ6kOu6rRIqBF2B/Lw7M8= -----END CERTIFICATE-----Generated at Sun Jan 11 22:27:46 2026 by rpki-client