This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/c57yC7tB1OJCUcmD7P1hLz2EMFE.roa File: c57yC7tB1OJCUcmD7P1hLz2EMFE.roa (raw, json) Hash identifier: ZXukYGaWgtp5a3QMVvyaz5oNdYorD6FVcR+u7jbZN30= Subject key identifier: 73:9E:F2:0B:BB:41:D4:E2:42:51:C9:83:EC:FD:61:2F:3D:84:30:51 Certificate issuer: /CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1 Certificate serial: 019B7FF1A12A3B1ADAECF1FF39E10BCA8DB2 Authority key identifier: 1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/c57yC7tB1OJCUcmD7P1hLz2EMFE.roa Signing time: Fri 02 Jan 2026 18:21:40 +0000 ROA not before: Fri 02 Jan 2026 18:21:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48258 IP address blocks: 185.254.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.mft rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:a1:2a:3b:1a:da:ec:f1:ff:39:e1:0b:ca:8d:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d9c072f2db3ef1f260505bbfa0efea18c2970b1 Validity Not Before: Jan 2 18:21:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=739ef20bbb41d4e24251c983ecfd612f3d843051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c2:6d:69:6c:7e:25:78:a2:ea:fb:07:9c:28: 70:24:4c:e3:2d:d9:31:41:fc:57:4a:c8:78:38:33: 9f:e0:08:30:b4:02:37:4f:b9:a1:b2:3e:44:4f:f9: 63:91:33:e5:ca:2d:35:fc:1a:3f:aa:84:25:2d:30: 4c:37:01:4c:43:43:eb:ee:3f:83:60:88:b3:05:59: c4:40:7c:73:96:3e:6d:bd:4e:c3:bf:49:e5:34:76: a2:b2:7d:40:e8:18:21:e9:43:19:e8:21:55:44:35: af:e3:ba:95:25:a7:7d:8c:19:87:f8:9c:2e:f6:a6: e8:0a:23:60:e3:cc:35:dc:80:30:c9:47:a8:75:94: 50:2f:e5:6b:b2:d2:22:0a:27:94:45:15:b5:47:6b: 79:22:c5:a3:aa:89:7a:41:79:41:99:60:fc:5e:78: b4:62:d3:8d:46:9f:0b:e6:dd:86:49:cd:0b:84:f5: 53:68:7b:39:b4:9c:af:51:e8:ef:d7:08:77:d7:25: 71:0e:9d:97:46:dd:f3:b8:64:ef:a0:d7:3d:bb:85: 3d:90:5f:c7:cc:28:6a:32:5c:71:42:a4:62:c8:25: e0:0b:c4:f9:93:b1:b0:91:a2:69:77:d8:55:7e:e3: 9b:22:ba:ef:4d:c4:02:28:c9:6a:4c:f6:14:2f:4d: 43:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9E:F2:0B:BB:41:D4:E2:42:51:C9:83:EC:FD:61:2F:3D:84:30:51 X509v3 Authority Key Identifier: keyid:1D:9C:07:2F:2D:B3:EF:1F:26:05:05:BB:FA:0E:FE:A1:8C:29:70:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HZwHLy2z7x8mBQW7-g7-oYwpcLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/c57yC7tB1OJCUcmD7P1hLz2EMFE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/c550e3-f024-46b8-87ec-450e24e0891d/1/HZwHLy2z7x8mBQW7-g7-oYwpcLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.254.224.0/22 Signature Algorithm: sha256WithRSAEncryption b8:d9:4f:83:9c:bb:6c:01:8f:88:40:bb:da:cc:41:ad:3e:60: df:aa:4e:17:bc:1d:63:cf:27:72:88:8d:37:a3:8c:03:35:7c: fb:9b:f9:0f:77:b9:b1:0d:0b:2f:3c:b6:b0:65:71:b6:56:92: a1:f8:d6:47:5c:5b:25:32:c3:d7:9d:9e:4f:f1:f0:b4:32:4b: 4b:2a:4f:4f:6e:33:65:ac:9c:2f:89:55:41:85:cf:24:9a:74: c1:a9:91:bd:e8:b4:b6:02:d0:67:e9:9e:c0:17:23:6e:af:d0: 2f:81:ca:22:2f:82:33:1a:e6:6b:e2:be:c0:ee:89:39:a4:f6: 00:ef:d6:65:26:04:40:56:a6:66:7e:2a:50:c9:16:20:fd:c3: 31:91:40:2f:67:b4:17:26:b6:1b:81:2b:dc:14:23:30:38:ff: ad:1e:d5:70:8a:2b:4f:29:c9:5f:71:ff:52:b9:81:90:6c:4f: c1:49:1b:79:d0:ce:59:1f:ba:51:28:6b:17:44:14:ab:38:43: 5b:24:72:0a:e5:ae:5b:fc:e1:ff:26:1a:bf:ee:8e:ec:36:fe: 3a:cb:47:11:84:a0:f2:a9:47:2d:aa:bb:fd:54:f7:c0:9c:d8: 51:be:58:49:15:00:bf:48:66:55:5c:9d:e9:bc:fa:2c:1d:c0: ef:f0:0b:52 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8aEqOxra7PH/OeELyo2yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkOWMwNzJmMmRiM2VmMWYyNjA1MDViYmZhMGVmZWExOGMy OTcwYjEwHhcNMjYwMTAyMTgyMTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzllZjIwYmJiNDFkNGUyNDI1MWM5ODNlY2ZkNjEyZjNkODQzMDUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcJtaWx+JXii6vsHnChwJEzjLdkx QfxXSsh4ODOf4AgwtAI3T7mhsj5ET/ljkTPlyi01/Bo/qoQlLTBMNwFMQ0Pr7j+D YIizBVnEQHxzlj5tvU7Dv0nlNHaisn1A6Bgh6UMZ6CFVRDWv47qVJad9jBmH+Jwu 9qboCiNg48w13IAwyUeodZRQL+VrstIiCieURRW1R2t5IsWjqol6QXlBmWD8Xni0 YtONRp8L5t2GSc0LhPVTaHs5tJyvUejv1wh31yVxDp2XRt3zuGTvoNc9u4U9kF/H zChqMlxxQqRiyCXgC8T5k7GwkaJpd9hVfuObIrrvTcQCKMlqTPYUL01DLwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHOe8gu7QdTiQlHJg+z9YS89hDBRMB8GA1UdIwQY MBaAFB2cBy8ts+8fJgUFu/oO/qGMKXCxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9jNTUwZTMtZjAyNC00NmI4LTg3ZWMt NDUwZTI0ZTA4OTFkLzEvYzU3eUM3dEIxT0pDVWNtRDdQMWhMejJFTUZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy9jNTUwZTMtZjAyNC00NmI4LTg3ZWMtNDUwZTI0ZTA4OTFk LzEvSFp3SEx5Mno3eDhtQlFXNy1nNy1vWXdwY0xFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuf7gMA0G CSqGSIb3DQEBCwUAA4IBAQC42U+DnLtsAY+IQLvazEGtPmDfqk4XvB1jzydyiI03 o4wDNXz7m/kPd7mxDQsvPLawZXG2VpKh+NZHXFslMsPXnZ5P8fC0MktLKk9PbjNl rJwviVVBhc8kmnTBqZG96LS2AtBn6Z7AFyNur9AvgcoiL4IzGuZr4r7A7ok5pPYA 79ZlJgRAVqZmfipQyRYg/cMxkUAvZ7QXJrYbgSvcFCMwOP+tHtVwiitPKclfcf9S uYGQbE/BSRt50M5ZH7pRKGsXRBSrOENbJHIK5a5b/OH/Jhq/7o7sNv46y0cRhKDy qUctqrv9VPfAnNhRvlhJFQC/SGZVXJ3pvPosHcDv8AtS -----END CERTIFICATE-----Generated at Tue Feb 10 02:22:30 2026 by rpki-client