This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/bc51f4-61f2-4faa-a02a-602936539405/1/_rghgGhHIYbLY2yOEoA9mmW7wqg.roa File: _rghgGhHIYbLY2yOEoA9mmW7wqg.roa (raw, json) Hash identifier: LafLigZh1QXUn5FQibqQ6Xl17st+BespqipLbfL+dgY= Subject key identifier: FE:B8:21:80:68:47:21:86:CB:63:6C:8E:12:80:3D:9A:65:BB:C2:A8 Certificate issuer: /CN=916033dd557447965bdaef8b4724a5e77d3c05ae Certificate serial: 019B78A26C3F2CE2AFAF49DFC4BC080310D0 Authority key identifier: 91:60:33:DD:55:74:47:96:5B:DA:EF:8B:47:24:A5:E7:7D:3C:05:AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kWAz3VV0R5Zb2u-LRySl5308Ba4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/bc51f4-61f2-4faa-a02a-602936539405/1/_rghgGhHIYbLY2yOEoA9mmW7wqg.roa Signing time: Thu 01 Jan 2026 08:17:49 +0000 ROA not before: Thu 01 Jan 2026 08:17:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29574 IP address blocks: 194.146.140.0/22 maxlen: 22 194.146.140.0/24 maxlen: 24 194.146.141.0/24 maxlen: 24 194.146.142.0/24 maxlen: 24 194.146.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/bc51f4-61f2-4faa-a02a-602936539405/1/kWAz3VV0R5Zb2u-LRySl5308Ba4.crl rsync://rpki.ripe.net/repository/DEFAULT/06/bc51f4-61f2-4faa-a02a-602936539405/1/kWAz3VV0R5Zb2u-LRySl5308Ba4.mft rsync://rpki.ripe.net/repository/DEFAULT/kWAz3VV0R5Zb2u-LRySl5308Ba4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:6c:3f:2c:e2:af:af:49:df:c4:bc:08:03:10:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=916033dd557447965bdaef8b4724a5e77d3c05ae Validity Not Before: Jan 1 08:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=feb8218068472186cb636c8e12803d9a65bbc2a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ea:63:04:61:68:96:8e:cd:71:32:95:04:10: 2c:0f:85:86:1f:5d:ca:5f:8e:ce:17:a7:44:af:31: 46:53:df:b0:b5:77:af:77:4c:da:83:e9:b2:e1:81: a1:2b:d9:7a:1c:5e:a1:04:66:4a:e6:0d:9a:d5:bc: 7f:f8:de:22:cb:32:af:06:ef:bb:77:ca:90:42:c3: 62:cd:99:53:67:80:ac:71:9c:2f:4d:43:4a:b1:7d: e1:00:a7:32:56:69:21:78:9e:db:5c:40:1d:fc:fa: da:e9:b3:37:99:6e:0f:ff:a0:4c:d5:6b:0d:3e:52: 99:ae:f6:ff:44:42:03:36:6c:b4:3e:a5:c3:82:be: 88:18:3b:31:a7:d8:6f:2c:fb:01:05:b2:c9:af:f7: 30:4b:5b:e4:15:61:f5:e8:d0:bd:6e:90:56:eb:25: 78:9c:ae:e5:22:83:73:59:9f:05:9b:99:3a:7b:61: ab:a4:55:1a:fd:dd:4f:bf:27:ef:59:79:69:f1:c3: 79:a2:07:71:c8:4d:9b:26:4e:81:18:83:dd:c3:a0: 2e:a2:2f:67:ca:5e:73:d8:29:e8:41:fd:76:77:c1: 94:0f:cf:f3:fa:d5:93:9c:c6:7e:a4:5c:37:ac:eb: cb:63:6d:28:f9:38:94:49:bc:3b:08:05:5f:74:4b: a4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:B8:21:80:68:47:21:86:CB:63:6C:8E:12:80:3D:9A:65:BB:C2:A8 X509v3 Authority Key Identifier: keyid:91:60:33:DD:55:74:47:96:5B:DA:EF:8B:47:24:A5:E7:7D:3C:05:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kWAz3VV0R5Zb2u-LRySl5308Ba4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bc51f4-61f2-4faa-a02a-602936539405/1/_rghgGhHIYbLY2yOEoA9mmW7wqg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/06/bc51f4-61f2-4faa-a02a-602936539405/1/kWAz3VV0R5Zb2u-LRySl5308Ba4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.146.140.0/22 Signature Algorithm: sha256WithRSAEncryption 00:7e:d3:44:09:b1:eb:de:8f:47:43:b1:f9:98:a3:e9:43:19: 36:75:22:db:ac:3a:8f:25:c1:62:4e:f5:5e:1f:56:9f:f2:6d: 4f:65:a7:69:fd:69:20:44:cb:e3:f2:b1:db:4f:b8:35:b3:28: 9c:28:52:1f:bb:15:37:df:bf:4a:8c:e5:f0:18:52:90:09:bf: b5:89:1e:24:d4:6b:2d:a6:fa:8d:4d:57:5b:ef:0c:b0:29:a3: b5:27:4d:48:c3:46:5b:48:a1:b0:a2:24:7a:25:41:99:07:f5: 2a:52:36:e0:5b:8c:e8:1f:59:a9:f0:c2:a5:50:47:43:db:25: e8:d0:bc:95:e8:03:24:8b:7f:ae:4a:c6:99:a3:fc:6d:72:0b: fc:43:5c:7c:12:2d:9a:78:1e:5e:0f:73:d2:9c:84:cb:67:91: 3c:c5:a7:60:20:49:d5:87:e2:75:c2:f6:5a:ce:8d:be:2d:1a: a4:f8:43:da:24:20:f3:13:e4:bd:b1:e3:55:9c:a0:53:63:11: a1:87:84:a4:69:29:99:c7:75:d5:2e:05:92:32:38:55:c6:7c: 23:2f:37:cb:9b:49:e1:ad:34:d5:d6:7e:a4:79:08:75:e9:62: d5:c0:4a:dc:18:45:54:cb:a2:4e:0d:63:a8:90:1d:bd:09:03: a1:44:96:2e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4omw/LOKvr0nfxLwIAxDQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNjAzM2RkNTU3NDQ3OTY1YmRhZWY4YjQ3MjRhNWU3N2Qz YzA1YWUwHhcNMjYwMTAxMDgxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZWI4MjE4MDY4NDcyMTg2Y2I2MzZjOGUxMjgwM2Q5YTY1YmJjMmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyupjBGFolo7NcTKVBBAsD4WGH13K X47OF6dErzFGU9+wtXevd0zag+my4YGhK9l6HF6hBGZK5g2a1bx/+N4iyzKvBu+7 d8qQQsNizZlTZ4CscZwvTUNKsX3hAKcyVmkheJ7bXEAd/Pra6bM3mW4P/6BM1WsN PlKZrvb/REIDNmy0PqXDgr6IGDsxp9hvLPsBBbLJr/cwS1vkFWH16NC9bpBW6yV4 nK7lIoNzWZ8Fm5k6e2GrpFUa/d1PvyfvWXlp8cN5ogdxyE2bJk6BGIPdw6Auoi9n yl5z2CnoQf12d8GUD8/z+tWTnMZ+pFw3rOvLY20o+TiUSbw7CAVfdEukDwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFP64IYBoRyGGy2NsjhKAPZplu8KoMB8GA1UdIwQY MBaAFJFgM91VdEeWW9rvi0ckped9PAWuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1dBejNWVjBSNVpiMnUtTFJ5U2w1MzA4QmE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9iYzUxZjQtNjFmMi00ZmFhLWEwMmEt NjAyOTM2NTM5NDA1LzEvX3JnaGdHaEhJWWJMWTJ5T0VvQTltbVc3d3FnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNi9iYzUxZjQtNjFmMi00ZmFhLWEwMmEtNjAyOTM2NTM5NDA1 LzEva1dBejNWVjBSNVpiMnUtTFJ5U2w1MzA4QmE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwpKMMA0G CSqGSIb3DQEBCwUAA4IBAQAAftNECbHr3o9HQ7H5mKPpQxk2dSLbrDqPJcFiTvVe H1af8m1PZadp/WkgRMvj8rHbT7g1syicKFIfuxU3379KjOXwGFKQCb+1iR4k1Gst pvqNTVdb7wywKaO1J01Iw0ZbSKGwoiR6JUGZB/UqUjbgW4zoH1mp8MKlUEdD2yXo 0LyV6AMki3+uSsaZo/xtcgv8Q1x8Ei2aeB5eD3PSnITLZ5E8xadgIEnVh+J1wvZa zo2+LRqk+EPaJCDzE+S9seNVnKBTYxGhh4SkaSmZx3XVLgWSMjhVxnwjLzfLm0nh rTTV1n6keQh16WLVwErcGEVUy6JODWOokB29CQOhRJYu -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:32 2026 by rpki-client