This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/1gUVsb5eptHPfkWeIDJOnBtjCdM.roa File: 1gUVsb5eptHPfkWeIDJOnBtjCdM.roa (raw, json) Hash identifier: 9UbrzakbahLSL538GmtoWSL/CzBIwVc0sR6kEFLy4PE= Subject key identifier: D6:05:15:B1:BE:5E:A6:D1:CF:7E:45:9E:20:32:4E:9C:1B:63:09:D3 Certificate issuer: /CN=64b59ae521952da55e03f779b885031c0c809cf9 Certificate serial: 019B797EACC562690DA9C3996ADC2C67FCF0 Authority key identifier: 64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/1gUVsb5eptHPfkWeIDJOnBtjCdM.roa Signing time: Thu 01 Jan 2026 12:18:23 +0000 ROA not before: Thu 01 Jan 2026 12:18:23 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215603 IP address blocks: 209.177.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.crl rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.mft rsync://rpki.ripe.net/repository/DEFAULT/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:ac:c5:62:69:0d:a9:c3:99:6a:dc:2c:67:fc:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64b59ae521952da55e03f779b885031c0c809cf9 Validity Not Before: Jan 1 12:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d60515b1be5ea6d1cf7e459e20324e9c1b6309d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:84:d2:fb:95:4e:9b:53:49:5f:18:58:d9:b3: de:c7:b4:b7:df:38:20:bb:ca:e6:dd:9b:85:1c:d4: 9a:68:de:77:be:d9:41:00:5d:6a:b8:54:ca:e3:36: ee:e3:41:c1:95:80:6e:bf:19:ae:17:48:c7:55:06: 01:a9:a0:61:f2:1a:5d:fa:18:da:9b:ff:51:a5:2e: 8a:48:6e:f4:a1:e8:e9:57:ee:58:85:9e:48:d6:af: e7:67:ff:22:25:e9:f6:16:a7:6a:d0:79:fd:9a:1a: 67:7c:e2:62:f8:55:1c:98:16:47:1b:7b:84:62:93: d8:1a:2b:63:3a:3d:e8:f1:91:bd:ff:dc:3e:64:93: aa:d5:38:2c:e1:3a:69:bb:f0:4e:05:82:88:86:2a: 88:99:57:e7:db:c8:9d:7e:d1:8a:ef:2a:8a:2a:b5: bf:13:c7:f2:e2:47:9d:84:8d:56:04:8c:fc:8b:a8: d8:9e:b5:0b:ad:f7:e6:57:44:e7:54:5d:b8:c3:f7: f8:4f:1a:02:f7:52:d4:eb:10:c7:5a:69:5c:76:27: 0d:83:a7:f4:0e:6f:0b:3c:7d:a4:b1:0c:03:b4:7e: 6c:57:86:4a:f2:c2:01:3c:7a:cf:a0:e4:59:6b:9c: 28:7d:36:d6:f1:35:00:38:fe:6c:e4:c8:41:e9:82: bb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:05:15:B1:BE:5E:A6:D1:CF:7E:45:9E:20:32:4E:9C:1B:63:09:D3 X509v3 Authority Key Identifier: keyid:64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/1gUVsb5eptHPfkWeIDJOnBtjCdM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.177.176.0/23 Signature Algorithm: sha256WithRSAEncryption 50:1c:72:0a:7f:71:eb:69:05:eb:a1:22:1c:70:8b:ae:5b:84: b7:df:88:80:a8:d5:42:8c:37:59:61:f4:7b:15:03:c9:b1:51: bd:45:f9:90:d1:00:d8:cd:3a:b8:9f:f1:f2:6f:a5:e1:e9:22: 4a:ea:04:af:73:7f:06:1a:75:94:c3:2c:f5:0c:e1:0e:24:87: b4:04:aa:30:f7:f1:2e:8e:b7:39:9a:23:2b:f8:bb:7c:66:73: eb:e6:59:e7:38:bf:5f:3d:c3:69:d2:fd:70:6b:50:62:2e:08: 3b:a1:a3:df:26:3a:d7:c3:ad:99:18:23:96:66:bc:e1:32:bb: eb:15:1b:47:42:9e:64:0b:69:b1:87:ed:b6:3b:e2:5b:8c:54: 57:fb:6a:80:3e:e2:80:68:c7:ad:78:3a:aa:aa:fe:9f:42:6e: 0c:b5:d9:f3:d7:14:f5:1a:55:d8:20:4c:26:07:ca:0e:01:3f: f0:e3:4e:6b:22:30:de:92:c0:3a:fd:03:b3:8e:ea:f5:7e:39: 66:1a:e5:5c:5f:39:6e:89:c6:e9:f7:15:4a:3f:9a:0b:4c:6e: 0a:50:8a:df:ea:80:c9:8f:e1:65:25:51:a7:ce:fe:60:89:32: 54:2c:ec:a2:51:00:49:30:85:ca:65:dc:d7:e1:82:09:bb:92: 80:69:4f:b7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fqzFYmkNqcOZatwsZ/zwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0YjU5YWU1MjE5NTJkYTU1ZTAzZjc3OWI4ODUwMzFjMGM4 MDljZjkwHhcNMjYwMTAxMTIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNjA1MTViMWJlNWVhNmQxY2Y3ZTQ1OWUyMDMyNGU5YzFiNjMwOWQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuITS+5VOm1NJXxhY2bPex7S33zgg u8rm3ZuFHNSaaN53vtlBAF1quFTK4zbu40HBlYBuvxmuF0jHVQYBqaBh8hpd+hja m/9RpS6KSG70oejpV+5YhZ5I1q/nZ/8iJen2Fqdq0Hn9mhpnfOJi+FUcmBZHG3uE YpPYGitjOj3o8ZG9/9w+ZJOq1Tgs4Tppu/BOBYKIhiqImVfn28idftGK7yqKKrW/ E8fy4kedhI1WBIz8i6jYnrULrffmV0TnVF24w/f4TxoC91LU6xDHWmlcdicNg6f0 Dm8LPH2ksQwDtH5sV4ZK8sIBPHrPoORZa5wofTbW8TUAOP5s5MhB6YK79QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNYFFbG+XqbRz35FniAyTpwbYwnTMB8GA1UdIwQY MBaAFGS1muUhlS2lXgP3ebiFAxwMgJz5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkxXYTVTR1ZMYVZlQV9kNXVJVURIQXlBblBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi82YTZiMjItZmU2Ny00MjAyLWFjOTQt NTFhZDAwZTU0MzMyLzEvMWdVVnNiNWVwdEhQZmtXZUlESk9uQnRqQ2RNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi82YTZiMjItZmU2Ny00MjAyLWFjOTQtNTFhZDAwZTU0MzMy LzEvWkxXYTVTR1ZMYVZlQV9kNXVJVURIQXlBblBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0bGwMA0G CSqGSIb3DQEBCwUAA4IBAQBQHHIKf3HraQXroSIccIuuW4S334iAqNVCjDdZYfR7 FQPJsVG9RfmQ0QDYzTq4n/Hyb6Xh6SJK6gSvc38GGnWUwyz1DOEOJIe0BKow9/Eu jrc5miMr+Lt8ZnPr5lnnOL9fPcNp0v1wa1BiLgg7oaPfJjrXw62ZGCOWZrzhMrvr FRtHQp5kC2mxh+22O+JbjFRX+2qAPuKAaMeteDqqqv6fQm4Mtdnz1xT1GlXYIEwm B8oOAT/w405rIjDeksA6/QOzjur1fjlmGuVcXzluicbp9xVKP5oLTG4KUIrf6oDJ j+FlJVGnzv5giTJULOyiUQBJMIXKZdzX4YIJu5KAaU+3 -----END CERTIFICATE-----Generated at Mon Feb 9 22:37:06 2026 by rpki-client