This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/_8hAdBxzAFnC0h4YarC8ytTSTGE.roa File: _8hAdBxzAFnC0h4YarC8ytTSTGE.roa (raw, json) Hash identifier: P9q9yQrfO57XlgsnKPc4SR32XLQFXVVcR1r9ax6Sjng= Subject key identifier: FF:C8:40:74:1C:73:00:59:C2:D2:1E:18:6A:B0:BC:CA:D4:D2:4C:61 Certificate issuer: /CN=c76e03ff7d0bfde32839c28fec81c6275c04d33f Certificate serial: 019B77C6CF3DAF171329CE668BD6043A75E7 Authority key identifier: C7:6E:03:FF:7D:0B:FD:E3:28:39:C2:8F:EC:81:C6:27:5C:04:D3:3F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x24D_30L_eMoOcKP7IHGJ1wE0z8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/_8hAdBxzAFnC0h4YarC8ytTSTGE.roa Signing time: Thu 01 Jan 2026 04:17:56 +0000 ROA not before: Thu 01 Jan 2026 04:17:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200934 IP address blocks: 185.107.123.0/24 maxlen: 24 2a00:cb40:200::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/x24D_30L_eMoOcKP7IHGJ1wE0z8.crl rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/x24D_30L_eMoOcKP7IHGJ1wE0z8.mft rsync://rpki.ripe.net/repository/DEFAULT/x24D_30L_eMoOcKP7IHGJ1wE0z8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 01:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:cf:3d:af:17:13:29:ce:66:8b:d6:04:3a:75:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c76e03ff7d0bfde32839c28fec81c6275c04d33f Validity Not Before: Jan 1 04:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ffc840741c730059c2d21e186ab0bccad4d24c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3f:ed:8d:2d:4a:09:e7:fd:6b:b6:06:a9:04: ba:6e:6c:7b:f0:12:56:95:05:61:32:6d:7c:e8:ff: 0e:12:b7:a8:58:96:ad:4e:11:87:be:d3:db:66:52: c3:20:c3:38:77:62:b1:f6:c2:a2:94:c6:21:e5:73: 2e:f6:31:5a:4f:ac:86:da:4d:c3:3a:80:72:9c:93: 18:ce:f2:82:e3:37:34:6b:f9:46:13:84:97:a7:3d: 8b:35:79:41:11:0e:37:80:19:68:3d:d2:e9:c2:17: 74:b3:3f:34:0b:0e:49:5b:8f:f0:bf:07:2f:09:ec: 6d:9b:a1:e9:b0:69:89:46:a3:62:79:4b:4c:aa:d0: 95:a3:40:b7:04:0f:ea:dc:65:55:89:f4:2e:45:1c: 34:2c:70:55:a8:57:d1:14:84:a3:51:05:e1:4b:5a: 3d:5a:3c:fd:e9:00:e2:48:8f:b5:cb:88:79:64:e3: ef:ed:bb:89:7b:08:86:ca:f2:00:07:34:1d:88:11: 44:12:10:42:20:19:28:51:41:2b:48:b6:ce:ed:99: a8:6d:f7:e2:98:13:93:22:bf:89:ea:d9:b3:67:2c: a4:57:fd:dd:01:51:9f:e1:8a:9a:80:66:bc:12:75: b5:2a:07:87:fe:32:21:dc:c4:b2:d5:88:11:e0:5b: 3c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C8:40:74:1C:73:00:59:C2:D2:1E:18:6A:B0:BC:CA:D4:D2:4C:61 X509v3 Authority Key Identifier: keyid:C7:6E:03:FF:7D:0B:FD:E3:28:39:C2:8F:EC:81:C6:27:5C:04:D3:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x24D_30L_eMoOcKP7IHGJ1wE0z8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/_8hAdBxzAFnC0h4YarC8ytTSTGE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/3347f7-5259-4238-adb6-835de0f5892e/1/x24D_30L_eMoOcKP7IHGJ1wE0z8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.107.123.0/24 IPv6: 2a00:cb40:200::/48 Signature Algorithm: sha256WithRSAEncryption 88:cc:7d:c5:3e:25:9c:88:cd:e3:f1:da:62:d1:37:59:79:c0: a8:a6:11:22:dc:98:46:72:4d:f0:11:25:2e:b5:cf:29:d3:72: d3:9b:a2:1c:cd:73:15:2c:5c:19:2b:71:94:18:fd:98:1a:b0: d0:52:67:d3:b5:61:c5:4e:f9:64:0a:58:a5:d3:b6:07:84:1a: fc:68:3e:53:dd:e8:ff:ff:0e:a1:78:ad:01:38:8a:0e:e5:eb: 6a:e0:b6:40:fd:4e:4c:06:96:59:f8:57:25:41:b8:c6:82:bc: 4a:c4:b7:34:7b:a0:3a:59:5d:c4:fb:5e:1a:e2:98:99:aa:d3: c2:5c:5c:f1:1a:1b:b3:2d:4e:f1:00:fc:d8:7e:d3:f1:2d:c4: 20:0b:07:e3:41:ff:a9:0f:0e:6e:46:86:df:b5:b7:40:e0:e8: 2f:43:51:33:0e:b4:04:73:6a:84:c2:06:59:b1:51:ae:de:67: 42:07:a8:c4:36:1a:e2:1f:7c:0d:0e:82:d8:58:36:4e:97:2e: 9b:52:bd:6f:f3:09:58:13:8b:4e:79:bd:cf:a3:58:81:41:37: 35:96:f4:98:25:29:a0:20:6d:11:4e:cf:3c:24:0d:c8:ed:56: 31:26:2d:d9:3f:30:06:f7:c3:47:55:1e:31:c6:b4:46:f0:a2: b2:fd:74:9d -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt3xs89rxcTKc5mi9YEOnXnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM3NmUwM2ZmN2QwYmZkZTMyODM5YzI4ZmVjODFjNjI3NWMw NGQzM2YwHhcNMjYwMTAxMDQxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZmM4NDA3NDFjNzMwMDU5YzJkMjFlMTg2YWIwYmNjYWQ0ZDI0YzYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArT/tjS1KCef9a7YGqQS6bmx78BJW lQVhMm186P8OEreoWJatThGHvtPbZlLDIMM4d2Kx9sKilMYh5XMu9jFaT6yG2k3D OoBynJMYzvKC4zc0a/lGE4SXpz2LNXlBEQ43gBloPdLpwhd0sz80Cw5JW4/wvwcv Cextm6HpsGmJRqNieUtMqtCVo0C3BA/q3GVVifQuRRw0LHBVqFfRFISjUQXhS1o9 Wjz96QDiSI+1y4h5ZOPv7buJewiGyvIABzQdiBFEEhBCIBkoUUErSLbO7Zmobffi mBOTIr+J6tmzZyykV/3dAVGf4YqagGa8EnW1KgeH/jIh3MSy1YgR4Fs8ywIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFP/IQHQccwBZwtIeGGqwvMrU0kxhMB8GA1UdIwQY MBaAFMduA/99C/3jKDnCj+yBxidcBNM/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveDI0RF8zMExfZU1vT2NLUDdJSEdKMXdFMHo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8zMzQ3ZjctNTI1OS00MjM4LWFkYjYt ODM1ZGUwZjU4OTJlLzEvXzhoQWRCeHpBRm5DMGg0WWFyQzh5dFRTVEdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8zMzQ3ZjctNTI1OS00MjM4LWFkYjYtODM1ZGUwZjU4OTJl LzEveDI0RF8zMExfZU1vT2NLUDdJSEdKMXdFMHo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuWt7MA8E AgACMAkDBwAqAMtAAgAwDQYJKoZIhvcNAQELBQADggEBAIjMfcU+JZyIzePx2mLR N1l5wKimESLcmEZyTfARJS61zynTctObohzNcxUsXBkrcZQY/ZgasNBSZ9O1YcVO +WQKWKXTtgeEGvxoPlPd6P//DqF4rQE4ig7l62rgtkD9TkwGlln4VyVBuMaCvErE tzR7oDpZXcT7XhrimJmq08JcXPEaG7MtTvEA/Nh+0/EtxCALB+NB/6kPDm5Ght+1 t0Dg6C9DUTMOtARzaoTCBlmxUa7eZ0IHqMQ2GuIffA0OgthYNk6XLptSvW/zCVgT i055vc+jWIFBNzWW9JglKaAgbRFOzzwkDcjtVjEmLdk/MAb3w0dVHjHGtEbworL9 dJ0= -----END CERTIFICATE-----Generated at Mon Jan 12 04:56:13 2026 by rpki-client