This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/25cdb4-e508-4b37-81bc-36f82bd379bd/1/o40VleOLDva4l-Hlse3BxkX262M.roa File: o40VleOLDva4l-Hlse3BxkX262M.roa (raw, json) Hash identifier: vt1iL3MNmGtBJoVTbi5X0cqEnKhYSdktMc3RDciLR8w= Subject key identifier: A3:8D:15:95:E3:8B:0E:F6:B8:97:E1:E5:B1:ED:C1:C6:45:F6:EB:63 Certificate issuer: /CN=b10c3cf3dc53ca549c03e4f5f46d91ce90b8e070 Certificate serial: 019B7C80BDA3DB9C466699EC909FA8729D17 Authority key identifier: B1:0C:3C:F3:DC:53:CA:54:9C:03:E4:F5:F4:6D:91:CE:90:B8:E0:70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sQw889xTylScA-T19G2RzpC44HA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/25cdb4-e508-4b37-81bc-36f82bd379bd/1/o40VleOLDva4l-Hlse3BxkX262M.roa Signing time: Fri 02 Jan 2026 02:19:30 +0000 ROA not before: Fri 02 Jan 2026 02:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211134 IP address blocks: 185.253.184.0/22 maxlen: 22 185.253.184.0/23 maxlen: 23 185.253.184.0/24 maxlen: 24 185.253.185.0/24 maxlen: 24 185.253.186.0/23 maxlen: 23 185.253.186.0/24 maxlen: 24 185.253.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/25cdb4-e508-4b37-81bc-36f82bd379bd/1/sQw889xTylScA-T19G2RzpC44HA.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/25cdb4-e508-4b37-81bc-36f82bd379bd/1/sQw889xTylScA-T19G2RzpC44HA.mft rsync://rpki.ripe.net/repository/DEFAULT/sQw889xTylScA-T19G2RzpC44HA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 11:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:bd:a3:db:9c:46:66:99:ec:90:9f:a8:72:9d:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b10c3cf3dc53ca549c03e4f5f46d91ce90b8e070 Validity Not Before: Jan 2 02:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a38d1595e38b0ef6b897e1e5b1edc1c645f6eb63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:80:ee:37:dc:a0:13:ff:7d:a5:68:aa:6a:bb: 40:11:a3:7e:da:6c:5a:9c:54:72:c2:5a:7f:50:40: 52:4d:74:5a:bd:0d:4e:40:bd:34:8d:61:92:e7:26: fa:10:56:fa:bb:b8:c2:d5:46:93:77:bd:4b:bf:4a: eb:ee:2f:77:3d:90:a3:d0:55:73:d2:5a:1e:00:50: 85:0e:06:51:33:05:23:7c:82:97:91:00:81:c3:6e: 13:ca:4b:eb:03:d5:fc:e5:c0:c0:b3:dd:13:3a:f2: a3:b1:b1:7d:3f:4f:6f:2e:57:8d:e1:cd:49:fd:7f: d7:53:de:97:23:46:03:5a:c7:47:16:8e:49:a6:65: 5c:d6:9f:61:a3:04:d4:35:9d:c4:07:38:31:cb:08: 52:9b:8d:5b:b8:81:a7:d3:cd:1a:c2:5d:ef:e4:ec: 45:24:41:f1:43:89:52:13:1d:b0:e8:dd:72:f7:e3: 62:20:a9:d5:15:54:b5:80:60:ca:03:11:54:cb:51: 68:80:52:4c:38:e6:2e:b3:18:b3:6f:ce:48:c6:c7: c9:39:27:d7:65:e2:c9:5b:05:e2:cb:b5:2e:91:2c: 78:2b:4b:9a:90:8a:0c:cc:a3:34:64:1c:d9:63:df: 83:5b:f2:30:b9:55:3d:b8:66:2c:0d:31:4b:6f:eb: e2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:8D:15:95:E3:8B:0E:F6:B8:97:E1:E5:B1:ED:C1:C6:45:F6:EB:63 X509v3 Authority Key Identifier: keyid:B1:0C:3C:F3:DC:53:CA:54:9C:03:E4:F5:F4:6D:91:CE:90:B8:E0:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sQw889xTylScA-T19G2RzpC44HA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/25cdb4-e508-4b37-81bc-36f82bd379bd/1/o40VleOLDva4l-Hlse3BxkX262M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/25cdb4-e508-4b37-81bc-36f82bd379bd/1/sQw889xTylScA-T19G2RzpC44HA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.253.184.0/22 Signature Algorithm: sha256WithRSAEncryption 83:f3:65:d0:a6:ed:b1:97:b3:05:32:ef:68:e2:27:19:d7:ed: 49:0b:b8:7c:7f:0b:73:3a:7f:5b:bb:11:73:f1:67:7a:3e:6e: a6:1d:36:89:5d:57:f5:7e:0d:69:5f:56:17:17:f2:b9:e7:15: 13:b1:9c:2e:fa:a2:c2:37:99:62:d1:39:8f:6b:83:89:21:84: bb:0a:70:ee:31:0e:4a:9a:82:02:fb:3c:ad:a9:c1:99:ae:11: f5:a1:e2:6e:89:fe:65:69:bd:64:ea:9e:df:b7:4d:1f:4c:d1: 5e:ea:ed:f7:95:9b:c7:bf:17:d1:fd:32:d6:33:0a:49:28:cc: a7:b0:02:fb:16:76:fa:88:5c:9a:40:12:fa:5e:9f:cf:53:fc: 65:0a:c0:00:90:f6:cd:c0:f7:61:cf:b6:b4:de:d0:d8:45:c5: b0:8a:2e:d0:c6:2a:84:30:b2:4c:0f:75:ec:25:72:e0:41:76: 3c:25:42:4c:30:39:2f:26:1d:4c:25:88:93:03:b5:cd:4f:f1: 37:34:e0:db:50:ba:82:a2:83:f6:f4:18:94:93:f3:00:56:79: b8:a6:ac:2b:a3:b9:c3:fd:8f:83:db:0d:e9:2c:cd:7b:44:e5: 01:5c:70:4a:89:bc:e8:05:12:73:ed:4b:bf:ca:55:2f:87:c4: d1:4f:a7:bf -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gL2j25xGZpnskJ+ocp0XMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIxMGMzY2YzZGM1M2NhNTQ5YzAzZTRmNWY0NmQ5MWNlOTBi OGUwNzAwHhcNMjYwMTAyMDIxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMzhkMTU5NWUzOGIwZWY2Yjg5N2UxZTViMWVkYzFjNjQ1ZjZlYjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYDuN9ygE/99pWiqartAEaN+2mxa nFRywlp/UEBSTXRavQ1OQL00jWGS5yb6EFb6u7jC1UaTd71Lv0rr7i93PZCj0FVz 0loeAFCFDgZRMwUjfIKXkQCBw24TykvrA9X85cDAs90TOvKjsbF9P09vLleN4c1J /X/XU96XI0YDWsdHFo5JpmVc1p9howTUNZ3EBzgxywhSm41buIGn080awl3v5OxF JEHxQ4lSEx2w6N1y9+NiIKnVFVS1gGDKAxFUy1FogFJMOOYusxizb85IxsfJOSfX ZeLJWwXiy7UukSx4K0uakIoMzKM0ZBzZY9+DW/IwuVU9uGYsDTFLb+vinQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKONFZXjiw72uJfh5bHtwcZF9utjMB8GA1UdIwQY MBaAFLEMPPPcU8pUnAPk9fRtkc6QuOBwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc1F3ODg5eFR5bFNjQS1UMTlHMlJ6cEM0NEhBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8yNWNkYjQtZTUwOC00YjM3LTgxYmMt MzZmODJiZDM3OWJkLzEvbzQwVmxlT0xEdmE0bC1IbHNlM0J4a1gyNjJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS8yNWNkYjQtZTUwOC00YjM3LTgxYmMtMzZmODJiZDM3OWJk LzEvc1F3ODg5eFR5bFNjQS1UMTlHMlJ6cEM0NEhBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuf24MA0G CSqGSIb3DQEBCwUAA4IBAQCD82XQpu2xl7MFMu9o4icZ1+1JC7h8fwtzOn9buxFz 8Wd6Pm6mHTaJXVf1fg1pX1YXF/K55xUTsZwu+qLCN5li0TmPa4OJIYS7CnDuMQ5K moIC+zytqcGZrhH1oeJuif5lab1k6p7ft00fTNFe6u33lZvHvxfR/TLWMwpJKMyn sAL7Fnb6iFyaQBL6Xp/PU/xlCsAAkPbNwPdhz7a03tDYRcWwii7QxiqEMLJMD3Xs JXLgQXY8JUJMMDkvJh1MJYiTA7XNT/E3NODbULqCooP29BiUk/MAVnm4pqwro7nD /Y+D2w3pLM17ROUBXHBKibzoBRJz7Uu/ylUvh8TRT6e/ -----END CERTIFICATE-----Generated at Sun Jan 11 20:35:09 2026 by rpki-client