This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/8f7138-46d9-498b-af6d-6d6582b2b5b6/1/r0kmA8KLPJyGWZOOvwVJTGeF-U4.roa File: r0kmA8KLPJyGWZOOvwVJTGeF-U4.roa (raw, json) Hash identifier: LClJs+JlqTHZyPqNwNqgghz6JF/6AHMaeJCgatSBq2A= Subject key identifier: AF:49:26:03:C2:8B:3C:9C:86:59:93:8E:BF:05:49:4C:67:85:F9:4E Certificate issuer: /CN=36c7b44e7c5f29b9dea402ac805160b298cf0da6 Certificate serial: 019B7C8098B9C21C764C79BD665F2AD345EC Authority key identifier: 36:C7:B4:4E:7C:5F:29:B9:DE:A4:02:AC:80:51:60:B2:98:CF:0D:A6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nse0TnxfKbnepAKsgFFgspjPDaY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f7138-46d9-498b-af6d-6d6582b2b5b6/1/r0kmA8KLPJyGWZOOvwVJTGeF-U4.roa Signing time: Fri 02 Jan 2026 02:19:21 +0000 ROA not before: Fri 02 Jan 2026 02:19:21 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200941 IP address blocks: 185.90.172.0/24 maxlen: 24 185.90.173.0/24 maxlen: 24 185.90.174.0/24 maxlen: 24 185.90.175.0/24 maxlen: 24 2a05:e180::/32 maxlen: 32 2a05:e181::/32 maxlen: 32 2a05:e186::/32 maxlen: 32 2a05:e187::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/8f7138-46d9-498b-af6d-6d6582b2b5b6/1/Nse0TnxfKbnepAKsgFFgspjPDaY.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/8f7138-46d9-498b-af6d-6d6582b2b5b6/1/Nse0TnxfKbnepAKsgFFgspjPDaY.mft rsync://rpki.ripe.net/repository/DEFAULT/Nse0TnxfKbnepAKsgFFgspjPDaY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 20:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:98:b9:c2:1c:76:4c:79:bd:66:5f:2a:d3:45:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36c7b44e7c5f29b9dea402ac805160b298cf0da6 Validity Not Before: Jan 2 02:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af492603c28b3c9c8659938ebf05494c6785f94e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ca:72:1e:46:14:33:3c:fa:e6:ba:e9:8e:a6: 72:ca:55:c5:c0:c9:fe:81:04:11:44:08:f9:23:bc: 30:e2:73:4f:bb:85:ea:04:a8:0d:c9:dd:e2:52:18: 9a:54:01:c7:b7:bd:b5:8b:7c:85:05:17:71:31:30: 1c:c7:be:b0:6e:f4:ae:bc:8d:91:4b:b9:cd:59:73: b0:19:1e:d3:b4:c2:aa:45:ce:0c:80:e5:38:11:44: fc:6c:00:c5:a5:59:d6:dd:1e:81:d0:86:eb:7a:cf: 29:a3:77:05:cf:64:51:68:d1:9e:ec:ad:d2:02:51: c3:4a:e6:e0:0f:aa:ca:23:74:95:ad:71:5a:3b:71: eb:d4:9a:5b:9a:96:59:54:1c:ec:ee:f7:b2:4c:a3: 8c:c9:98:79:38:de:0c:40:ed:67:8d:fb:ba:0c:a5: f8:75:49:7d:33:35:31:e7:e5:ff:d1:8c:96:df:f0: 89:03:ec:0a:b3:a8:14:e4:fd:88:20:8c:83:0d:d9: 34:52:1d:b1:b4:f7:a6:eb:ce:72:80:0d:27:cc:79: 01:fe:3c:6e:85:e7:43:2c:83:33:8a:f5:56:4b:cf: 6d:d8:0f:a8:81:2b:9f:9d:5f:77:c7:05:b7:cb:11: 54:c1:65:3f:8b:45:dc:36:8f:19:d1:2c:9a:35:14: 20:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:49:26:03:C2:8B:3C:9C:86:59:93:8E:BF:05:49:4C:67:85:F9:4E X509v3 Authority Key Identifier: keyid:36:C7:B4:4E:7C:5F:29:B9:DE:A4:02:AC:80:51:60:B2:98:CF:0D:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nse0TnxfKbnepAKsgFFgspjPDaY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f7138-46d9-498b-af6d-6d6582b2b5b6/1/r0kmA8KLPJyGWZOOvwVJTGeF-U4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/8f7138-46d9-498b-af6d-6d6582b2b5b6/1/Nse0TnxfKbnepAKsgFFgspjPDaY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.90.172.0/22 IPv6: 2a05:e180::/31 2a05:e186::/31 Signature Algorithm: sha256WithRSAEncryption 45:b7:62:78:84:1e:62:43:97:56:29:35:db:f7:a4:15:50:90: 26:0f:f0:12:24:5b:0a:1c:a2:ba:2d:ff:d1:cb:04:fc:ea:48: 24:8c:1d:e3:86:ba:ad:8e:5e:ca:a4:54:2d:fc:ee:1d:67:f1: 58:c7:fb:4b:b8:60:7a:25:2e:1c:5f:90:09:0c:6d:4b:a1:35: c3:5b:c2:83:57:da:cd:3c:5b:f9:55:85:0f:12:be:08:6a:b9: 47:ca:ad:7a:93:3c:6a:13:1c:99:5e:d4:87:ca:dd:29:6b:66: e6:f2:9d:b3:18:68:77:42:d5:f1:f6:8b:59:0d:12:7a:24:18: 9e:26:d0:25:5a:00:94:8f:4b:da:f2:dd:5f:49:5c:df:84:8c: 68:66:b4:57:ba:eb:a8:05:9a:39:07:85:be:fb:df:d4:bf:c1: 93:80:7d:63:6e:6b:6e:5b:0e:cb:28:73:36:d5:c3:40:74:5f: 14:cd:4d:78:3d:ec:7f:30:19:67:fa:ba:51:ce:c7:f7:29:c4: 3e:08:a1:df:af:2d:29:1f:d7:34:b4:8e:29:7c:34:4d:7d:fe: 1f:c3:d7:9d:11:64:f5:ca:80:23:1c:fb:8a:e6:8c:66:00:43: 4b:b8:f2:b5:80:03:8a:98:cd:1d:5c:82:ac:27:13:2a:fe:c3: 42:13:6b:a9 -----BEGIN CERTIFICATE----- MIIFEzCCA/ugAwIBAgISAZt8gJi5whx2THm9Zl8q00XsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2YzdiNDRlN2M1ZjI5YjlkZWE0MDJhYzgwNTE2MGIyOThj ZjBkYTYwHhcNMjYwMTAyMDIxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjQ5MjYwM2MyOGIzYzljODY1OTkzOGViZjA1NDk0YzY3ODVmOTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0spyHkYUMzz65rrpjqZyylXFwMn+ gQQRRAj5I7ww4nNPu4XqBKgNyd3iUhiaVAHHt721i3yFBRdxMTAcx76wbvSuvI2R S7nNWXOwGR7TtMKqRc4MgOU4EUT8bADFpVnW3R6B0Ibres8po3cFz2RRaNGe7K3S AlHDSubgD6rKI3SVrXFaO3Hr1JpbmpZZVBzs7veyTKOMyZh5ON4MQO1njfu6DKX4 dUl9MzUx5+X/0YyW3/CJA+wKs6gU5P2IIIyDDdk0Uh2xtPem685ygA0nzHkB/jxu hedDLIMzivVWS89t2A+ogSufnV93xwW3yxFUwWU/i0XcNo8Z0SyaNRQgrQIDAQAB o4ICHzCCAhswHQYDVR0OBBYEFK9JJgPCizychlmTjr8FSUxnhflOMB8GA1UdIwQY MBaAFDbHtE58Xym53qQCrIBRYLKYzw2mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnNlMFRueGZLYm5lcEFLc2dGRmdzcGpQRGFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy84ZjcxMzgtNDZkOS00OThiLWFmNmQt NmQ2NTgyYjJiNWI2LzEvcjBrbUE4S0xQSnlHV1pPT3Z3VkpUR2VGLVU0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy84ZjcxMzgtNDZkOS00OThiLWFmNmQtNmQ2NTgyYjJiNWI2 LzEvTnNlMFRueGZLYm5lcEFLc2dGRmdzcGpQRGFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAMBAIAATAGAwQCuVqsMBQE AgACMA4DBQEqBeGAAwUBKgXhhjANBgkqhkiG9w0BAQsFAAOCAQEARbdieIQeYkOX Vik12/ekFVCQJg/wEiRbChyiui3/0csE/OpIJIwd44a6rY5eyqRULfzuHWfxWMf7 S7hgeiUuHF+QCQxtS6E1w1vCg1fazTxb+VWFDxK+CGq5R8qtepM8ahMcmV7Uh8rd KWtm5vKdsxhod0LV8faLWQ0SeiQYnibQJVoAlI9L2vLdX0lc34SMaGa0V7rrqAWa OQeFvvvf1L/Bk4B9Y25rblsOyyhzNtXDQHRfFM1NeD3sfzAZZ/q6Uc7H9ynEPgih 368tKR/XNLSOKXw0TX3+H8PXnRFk9cqAIxz7iuaMZgBDS7jytYADipjNHVyCrCcT Kv7DQhNrqQ== -----END CERTIFICATE-----Generated at Sat Jan 3 02:49:13 2026 by rpki-client