This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/CoFj8wqKTvU7pOYnL2WgDpvdELY.roa File: CoFj8wqKTvU7pOYnL2WgDpvdELY.roa (raw, json) Hash identifier: SwwUsyZHkvE2PDZCEhOVTo7T7TrLwZ2CcQ1+6tgDIC0= Subject key identifier: 0A:81:63:F3:0A:8A:4E:F5:3B:A4:E6:27:2F:65:A0:0E:9B:DD:10:B6 Certificate issuer: /CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486 Certificate serial: 019B7F85912993920E52E7277D0A448B1C3D Authority key identifier: 8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/CoFj8wqKTvU7pOYnL2WgDpvdELY.roa Signing time: Fri 02 Jan 2026 16:23:38 +0000 ROA not before: Fri 02 Jan 2026 16:23:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50473 IP address blocks: 46.151.152.0/21 maxlen: 21 46.151.155.0/24 maxlen: 24 80.251.224.0/20 maxlen: 20 91.214.240.0/22 maxlen: 22 185.21.156.0/22 maxlen: 22 185.42.124.0/23 maxlen: 23 185.42.126.0/23 maxlen: 23 185.61.76.0/22 maxlen: 22 188.64.165.0/24 maxlen: 24 188.64.166.0/23 maxlen: 23 193.105.59.0/24 maxlen: 24 195.216.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.mft rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:91:29:93:92:0e:52:e7:27:7d:0a:44:8b:1c:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a8fa992bc0a61db2cbe786e1c59d360cce54486 Validity Not Before: Jan 2 16:23:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a8163f30a8a4ef53ba4e6272f65a00e9bdd10b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bb:c8:3f:4c:6a:50:fe:c8:6c:5a:69:01:d9: 8e:03:12:0e:18:51:c7:fb:9a:dd:e7:7d:34:53:d2: a0:4a:10:72:6f:5f:c5:b4:3b:ce:2a:2d:0d:ff:31: ac:55:86:51:84:c3:46:a3:1c:b9:7a:a3:05:af:ee: 87:22:fc:20:1a:83:53:8b:be:91:1f:93:f7:5f:3a: aa:1f:00:db:73:28:4b:2e:bc:74:00:b3:c1:53:ee: dd:e5:f7:99:63:2c:92:9a:29:68:73:0d:2f:02:1c: d0:ad:51:80:b2:1e:28:89:f1:44:8f:3f:c2:00:71: 09:22:99:95:fc:c8:b6:09:72:1b:1d:63:51:df:f1: 4d:7a:2c:c4:29:dd:3d:90:71:f7:71:12:5e:b6:75: 65:a9:22:22:25:5f:fb:e1:62:91:b9:aa:f9:95:96: de:11:df:87:8a:26:c2:1f:98:9e:35:c8:7b:d0:d1: d1:ab:91:b6:88:54:7d:31:34:41:3f:81:82:3e:67: 35:c8:63:55:67:0d:80:ac:45:db:cb:8c:a3:de:cd: 5b:16:ac:f8:fc:a4:05:b0:e0:3b:74:1c:c6:c5:79: 37:17:46:20:88:a2:c1:ce:24:73:c0:ae:92:29:84: 6b:ea:eb:49:03:7b:c1:73:1c:08:b5:c7:c4:a9:04: 74:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:81:63:F3:0A:8A:4E:F5:3B:A4:E6:27:2F:65:A0:0E:9B:DD:10:B6 X509v3 Authority Key Identifier: keyid:8A:8F:A9:92:BC:0A:61:DB:2C:BE:78:6E:1C:59:D3:60:CC:E5:44:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/io-pkrwKYdssvnhuHFnTYMzlRIY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/CoFj8wqKTvU7pOYnL2WgDpvdELY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/18022c-2d9d-4380-a15b-96a601bb6ba8/1/io-pkrwKYdssvnhuHFnTYMzlRIY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.151.152.0/21 80.251.224.0/20 91.214.240.0/22 185.21.156.0/22 185.42.124.0/22 185.61.76.0/22 188.64.165.0-188.64.167.255 193.105.59.0/24 195.216.241.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:48:59:f3:db:73:bd:a4:dc:b9:60:b9:64:1a:79:d3:94:fa: 8e:3c:4a:8c:27:32:3a:67:3c:d7:05:09:5f:66:0e:8b:10:37: 79:ab:9c:4b:47:81:27:92:73:00:82:90:19:54:00:fe:ca:55: ee:b3:cb:59:e8:ce:c8:1b:63:94:05:6c:66:1a:cf:d1:b7:93: 33:7d:04:e7:34:6e:1a:38:c3:69:aa:e5:92:d7:3b:5a:de:ff: 6d:3e:a1:96:1d:0f:80:31:34:11:da:95:3a:51:bd:60:41:10: a7:5f:0e:bd:ff:ce:52:c4:5d:04:6b:66:de:fb:16:77:7c:6e: a0:d0:2e:1a:20:31:5f:e4:6e:1f:0a:0d:8c:57:b5:17:26:ab: b2:8b:17:93:5c:fc:84:52:1a:ef:8a:34:3b:4e:0a:65:15:d2: da:66:49:42:15:df:f9:32:c8:a9:9d:55:f2:fc:0a:9b:66:86: 12:62:20:b1:42:28:a4:2c:f0:d4:d9:99:56:9e:ca:73:70:0f: 7c:8a:8d:c9:59:3e:38:2a:70:52:de:05:64:4c:5f:da:e1:2e: ea:15:9e:f6:41:88:80:19:89:3c:fb:eb:28:85:c5:a3:b0:9b: 90:fa:8c:fc:f5:ce:4e:b0:08:74:40:fd:1b:eb:0d:e9:21:67: 3e:56:dd:ec -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgISAZt/hZEpk5IOUucnfQpEixw9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhOGZhOTkyYmMwYTYxZGIyY2JlNzg2ZTFjNTlkMzYwY2Nl NTQ0ODYwHhcNMjYwMTAyMTYyMzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTgxNjNmMzBhOGE0ZWY1M2JhNGU2MjcyZjY1YTAwZTliZGQxMGI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLvIP0xqUP7IbFppAdmOAxIOGFHH +5rd5300U9KgShByb1/FtDvOKi0N/zGsVYZRhMNGoxy5eqMFr+6HIvwgGoNTi76R H5P3XzqqHwDbcyhLLrx0ALPBU+7d5feZYyySmilocw0vAhzQrVGAsh4oifFEjz/C AHEJIpmV/Mi2CXIbHWNR3/FNeizEKd09kHH3cRJetnVlqSIiJV/74WKRuar5lZbe Ed+HiibCH5ieNch70NHRq5G2iFR9MTRBP4GCPmc1yGNVZw2ArEXby4yj3s1bFqz4 /KQFsOA7dBzGxXk3F0YgiKLBziRzwK6SKYRr6utJA3vBcxwItcfEqQR0gwIDAQAB o4ICQTCCAj0wHQYDVR0OBBYEFAqBY/MKik71O6TmJy9loA6b3RC2MB8GA1UdIwQY MBaAFIqPqZK8CmHbLL54bhxZ02DM5USGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaW8tcGtyd0tZZHNzdm5odUhGblRZTXpsUklZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS8xODAyMmMtMmQ5ZC00MzgwLWExNWIt OTZhNjAxYmI2YmE4LzEvQ29Gajh3cUtUdlU3cE9ZbkwyV2dEcHZkRUxZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS8xODAyMmMtMmQ5ZC00MzgwLWExNWItOTZhNjAxYmI2YmE4 LzEvaW8tcGtyd0tZZHNzdm5odUhGblRZTXpsUklZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFcGCCsGAQUFBwEHAQH/BEgwRjBEBAIAATA+AwQDLpeYAwQE UPvgAwQCW9bwAwQCuRWcAwQCuSp8AwQCuT1MMAwDBAC8QKUDBAO8QKADBADBaTsD BADD2PEwDQYJKoZIhvcNAQELBQADggEBAA9IWfPbc72k3LlguWQaedOU+o48Sown MjpnPNcFCV9mDosQN3mrnEtHgSeScwCCkBlUAP7KVe6zy1nozsgbY5QFbGYaz9G3 kzN9BOc0bho4w2mq5ZLXO1re/20+oZYdD4AxNBHalTpRvWBBEKdfDr3/zlLEXQRr Zt77Fnd8bqDQLhogMV/kbh8KDYxXtRcmq7KLF5Nc/IRSGu+KNDtOCmUV0tpmSUIV 3/kyyKmdVfL8CptmhhJiILFCKKQs8NTZmVaeynNwD3yKjclZPjgqcFLeBWRMX9rh LuoVnvZBiIAZiTz76yiFxaOwm5D6jPz1zk6wCHRA/RvrDekhZz5W3ew= -----END CERTIFICATE-----Generated at Mon Feb 9 22:26:52 2026 by rpki-client