This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/270d55-8fec-4d35-8282-d3fc91a2dc89/1/cgFSUs0wn8U8Vfrh2F7juQoPnIk.roa File: cgFSUs0wn8U8Vfrh2F7juQoPnIk.roa (raw, json) Hash identifier: pTDb3C/Qv0/neOWoRbgx+9OJwfcjnYBTppMtnfhxnt8= Subject key identifier: 72:01:52:52:CD:30:9F:C5:3C:55:FA:E1:D8:5E:E3:B9:0A:0F:9C:89 Certificate issuer: /CN=a7be57f26a2c107b1a756b831715ebd07a87fb93 Certificate serial: 019B7DC8A36F2C088BFE72A81DE5CF6E480E Authority key identifier: A7:BE:57:F2:6A:2C:10:7B:1A:75:6B:83:17:15:EB:D0:7A:87:FB:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p75X8mosEHsadWuDFxXr0HqH-5M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/270d55-8fec-4d35-8282-d3fc91a2dc89/1/cgFSUs0wn8U8Vfrh2F7juQoPnIk.roa Signing time: Fri 02 Jan 2026 08:17:39 +0000 ROA not before: Fri 02 Jan 2026 08:17:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205035 IP address blocks: 185.52.16.0/24 maxlen: 24 185.207.224.0/24 maxlen: 24 213.236.2.0/24 maxlen: 24 2a0f:6e40::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/270d55-8fec-4d35-8282-d3fc91a2dc89/1/p75X8mosEHsadWuDFxXr0HqH-5M.crl rsync://rpki.ripe.net/repository/DEFAULT/12/270d55-8fec-4d35-8282-d3fc91a2dc89/1/p75X8mosEHsadWuDFxXr0HqH-5M.mft rsync://rpki.ripe.net/repository/DEFAULT/p75X8mosEHsadWuDFxXr0HqH-5M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:a3:6f:2c:08:8b:fe:72:a8:1d:e5:cf:6e:48:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7be57f26a2c107b1a756b831715ebd07a87fb93 Validity Not Before: Jan 2 08:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72015252cd309fc53c55fae1d85ee3b90a0f9c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2c:80:cb:66:fb:03:30:a9:b8:f3:b6:79:f9: f1:2e:1d:4d:e5:81:55:c0:4b:e4:9b:1d:2a:97:09: ea:84:9a:26:02:5f:88:83:28:4f:f5:1c:52:66:61: 94:73:26:c8:0a:7d:ee:4b:50:84:f5:a9:d2:ee:72: 91:52:32:0a:f0:fe:71:b6:6e:f9:c0:23:ee:32:55: c4:d6:92:0d:16:d2:14:18:09:68:ad:83:b8:d4:72: 3d:83:d2:df:11:b3:18:cf:0a:43:6e:17:20:0c:81: 5d:98:6f:1b:85:c0:40:b6:ac:5b:b8:b5:a6:2d:8a: e5:e5:ed:60:a5:ac:d8:55:9e:98:a6:21:e7:f4:f0: e1:b1:21:c9:a1:28:af:fa:e7:b7:60:f6:32:62:36: e4:28:6b:57:98:ad:72:9e:23:b0:ee:5c:53:b6:6b: 2b:f4:69:49:1d:f9:cd:3f:70:5f:aa:d2:a2:42:4b: 92:ea:e3:15:58:8c:4a:fa:5c:6c:8b:f0:7e:e6:82: d2:f1:1e:a0:a5:66:52:50:87:ea:81:83:f0:c0:32: 1c:81:5b:59:ab:33:76:5b:06:75:b3:b4:3b:10:1a: c0:78:b0:ec:4c:5c:6d:9c:26:8e:6f:4e:2f:29:cc: dc:9a:d8:49:48:2c:76:0e:02:05:b7:75:5b:ed:79: 99:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:01:52:52:CD:30:9F:C5:3C:55:FA:E1:D8:5E:E3:B9:0A:0F:9C:89 X509v3 Authority Key Identifier: keyid:A7:BE:57:F2:6A:2C:10:7B:1A:75:6B:83:17:15:EB:D0:7A:87:FB:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p75X8mosEHsadWuDFxXr0HqH-5M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/270d55-8fec-4d35-8282-d3fc91a2dc89/1/cgFSUs0wn8U8Vfrh2F7juQoPnIk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/270d55-8fec-4d35-8282-d3fc91a2dc89/1/p75X8mosEHsadWuDFxXr0HqH-5M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.52.16.0/24 185.207.224.0/24 213.236.2.0/24 IPv6: 2a0f:6e40::/29 Signature Algorithm: sha256WithRSAEncryption 3f:e0:31:51:ce:65:05:49:d3:af:9e:06:10:f8:17:0b:46:71: e5:b1:ed:f1:f2:95:2b:00:d5:8c:f6:85:6b:b2:72:bf:23:b8: d3:b3:84:e8:5a:fd:90:d9:4c:94:c6:26:14:af:6e:ab:3d:9c: 2d:5e:3d:e4:b3:aa:0b:de:f0:04:20:a9:ae:7c:58:e4:89:8f: f7:2f:ee:71:53:f8:81:70:bc:f2:59:21:fb:d2:d1:01:ca:02: a2:3f:ab:4a:d5:1f:28:3b:c5:e8:a8:30:2e:56:8a:e5:88:38: 61:1a:e0:2f:42:aa:04:86:75:96:95:37:99:33:a3:9c:e0:b9: f2:63:a7:b2:b1:58:80:f2:3c:69:6f:d5:55:99:6c:3c:1e:c8: d8:d0:fb:52:eb:e0:cc:ae:5b:74:49:49:81:50:73:28:d2:da: da:c0:94:7d:5e:85:f1:a2:10:93:b4:a6:f1:43:f1:c0:cf:bf: 5c:48:ff:fd:84:ee:d1:f9:be:4f:50:55:ff:b5:36:7c:89:99: b8:2b:82:43:53:43:2d:bd:a6:8f:f6:25:b4:a4:aa:a2:61:16: f4:db:8a:3a:5e:07:a5:2e:03:94:d2:e3:dc:35:41:e8:2a:e1: 73:fa:a4:80:3e:06:03:8b:31:23:8a:c9:5c:2a:72:1a:b6:10: 75:0c:84:13 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt9yKNvLAiL/nKoHeXPbkgOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3YmU1N2YyNmEyYzEwN2IxYTc1NmI4MzE3MTVlYmQwN2E4 N2ZiOTMwHhcNMjYwMTAyMDgxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjAxNTI1MmNkMzA5ZmM1M2M1NWZhZTFkODVlZTNiOTBhMGY5Yzg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnyyAy2b7AzCpuPO2efnxLh1N5YFV wEvkmx0qlwnqhJomAl+IgyhP9RxSZmGUcybICn3uS1CE9anS7nKRUjIK8P5xtm75 wCPuMlXE1pINFtIUGAlorYO41HI9g9LfEbMYzwpDbhcgDIFdmG8bhcBAtqxbuLWm LYrl5e1gpazYVZ6YpiHn9PDhsSHJoSiv+ue3YPYyYjbkKGtXmK1yniOw7lxTtmsr 9GlJHfnNP3BfqtKiQkuS6uMVWIxK+lxsi/B+5oLS8R6gpWZSUIfqgYPwwDIcgVtZ qzN2WwZ1s7Q7EBrAeLDsTFxtnCaOb04vKczcmthJSCx2DgIFt3Vb7XmZwwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFHIBUlLNMJ/FPFX64dhe47kKD5yJMB8GA1UdIwQY MBaAFKe+V/JqLBB7GnVrgxcV69B6h/uTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcDc1WDhtb3NFSHNhZFd1REZ4WHIwSHFILTVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8yNzBkNTUtOGZlYy00ZDM1LTgyODIt ZDNmYzkxYTJkYzg5LzEvY2dGU1VzMHduOFU4VmZyaDJGN2p1UW9QbklrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi8yNzBkNTUtOGZlYy00ZDM1LTgyODItZDNmYzkxYTJkYzg5 LzEvcDc1WDhtb3NFSHNhZFd1REZ4WHIwSHFILTVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAuTQQAwQA uc/gAwQA1ewCMA0EAgACMAcDBQMqD25AMA0GCSqGSIb3DQEBCwUAA4IBAQA/4DFR zmUFSdOvngYQ+BcLRnHlse3x8pUrANWM9oVrsnK/I7jTs4ToWv2Q2UyUxiYUr26r PZwtXj3ks6oL3vAEIKmufFjkiY/3L+5xU/iBcLzyWSH70tEBygKiP6tK1R8oO8Xo qDAuVorliDhhGuAvQqoEhnWWlTeZM6Oc4LnyY6eysViA8jxpb9VVmWw8HsjY0PtS 6+DMrlt0SUmBUHMo0trawJR9XoXxohCTtKbxQ/HAz79cSP/9hO7R+b5PUFX/tTZ8 iZm4K4JDU0MtvaaP9iW0pKqiYRb024o6XgelLgOU0uPcNUHoKuFz+qSAPgYDizEj islcKnIathB1DIQT -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:37 2026 by rpki-client