This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/73d3b2-9bd1-410f-91ec-8074a55250ea/1/CT0Lo8VqgOEZdE58c7bBWBtTHnI.roa File: CT0Lo8VqgOEZdE58c7bBWBtTHnI.roa (raw, json) Hash identifier: COzxSOoTIXr0/+GY0oTls2bQVmuSF6l3DwdEZltDeBI= Subject key identifier: 09:3D:0B:A3:C5:6A:80:E1:19:74:4E:7C:73:B6:C1:58:1B:53:1E:72 Certificate issuer: /CN=ea9a580a4cf64a884190a5b0fb227f309e9040eb Certificate serial: 019B797EA8E25C13B0B22105FAEDE4212743 Authority key identifier: EA:9A:58:0A:4C:F6:4A:88:41:90:A5:B0:FB:22:7F:30:9E:90:40:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6ppYCkz2SohBkKWw-yJ_MJ6QQOs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/73d3b2-9bd1-410f-91ec-8074a55250ea/1/CT0Lo8VqgOEZdE58c7bBWBtTHnI.roa Signing time: Thu 01 Jan 2026 12:18:22 +0000 ROA not before: Thu 01 Jan 2026 12:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198498 IP address blocks: 91.235.192.0/22 maxlen: 22 176.109.160.0/22 maxlen: 22 176.109.164.0/22 maxlen: 22 185.245.192.0/22 maxlen: 22 213.108.80.0/22 maxlen: 22 213.108.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/73d3b2-9bd1-410f-91ec-8074a55250ea/1/6ppYCkz2SohBkKWw-yJ_MJ6QQOs.crl rsync://rpki.ripe.net/repository/DEFAULT/16/73d3b2-9bd1-410f-91ec-8074a55250ea/1/6ppYCkz2SohBkKWw-yJ_MJ6QQOs.mft rsync://rpki.ripe.net/repository/DEFAULT/6ppYCkz2SohBkKWw-yJ_MJ6QQOs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:a8:e2:5c:13:b0:b2:21:05:fa:ed:e4:21:27:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea9a580a4cf64a884190a5b0fb227f309e9040eb Validity Not Before: Jan 1 12:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=093d0ba3c56a80e119744e7c73b6c1581b531e72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4f:a9:11:58:30:7c:cd:2c:36:f9:50:44:2f: f3:dc:d8:d0:ff:43:2f:1c:7f:c7:1b:97:a6:71:7e: f7:d4:23:18:fb:e4:2d:8e:7d:67:5f:91:f9:ac:9c: 3a:5c:01:e0:8f:26:c6:b6:d9:96:e3:2d:0d:44:69: b8:5a:0e:fa:1d:70:df:ef:e3:04:d3:8b:e5:73:3a: 18:9b:8b:ad:0d:b6:18:ab:dd:d7:e6:0c:de:da:d6: ff:60:c4:fe:e1:a5:27:63:af:f1:18:fb:e1:89:56: 33:44:1c:8c:5f:4a:ac:f5:a5:b0:74:fd:20:e1:2c: bb:63:a4:6e:ce:82:7a:b8:60:27:02:76:a4:65:29: 3e:4a:ea:d1:e5:e8:50:70:85:55:0e:2e:5b:ed:48: 92:09:4b:dd:14:d0:bc:21:c5:1a:46:9a:46:f1:28: 6b:0e:0e:b8:15:db:8f:a3:59:49:3b:39:f1:21:f4: c2:97:c6:e4:68:a0:4b:e7:90:43:01:f7:2e:5f:31: ff:3f:3c:c7:1a:c6:5c:97:42:02:a1:5f:fc:60:a6: 9f:18:64:32:bc:e8:83:0f:56:2a:16:c9:5a:12:49: ff:bd:36:73:9a:af:b8:de:79:9f:36:80:d6:09:79: 2d:b8:1d:bf:a2:2d:b0:b2:8b:85:59:76:06:f9:81: 10:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3D:0B:A3:C5:6A:80:E1:19:74:4E:7C:73:B6:C1:58:1B:53:1E:72 X509v3 Authority Key Identifier: keyid:EA:9A:58:0A:4C:F6:4A:88:41:90:A5:B0:FB:22:7F:30:9E:90:40:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ppYCkz2SohBkKWw-yJ_MJ6QQOs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/73d3b2-9bd1-410f-91ec-8074a55250ea/1/CT0Lo8VqgOEZdE58c7bBWBtTHnI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/73d3b2-9bd1-410f-91ec-8074a55250ea/1/6ppYCkz2SohBkKWw-yJ_MJ6QQOs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.235.192.0/22 176.109.160.0/21 185.245.192.0/22 213.108.80.0/21 Signature Algorithm: sha256WithRSAEncryption a4:ac:c2:fb:6c:38:eb:b9:7e:bc:70:36:d2:ab:07:23:ac:02: ee:35:06:ca:46:cd:97:9d:45:50:44:f1:38:0f:da:71:b7:f1: 74:38:b0:e3:79:2e:8f:a8:af:80:eb:b6:57:70:64:20:71:af: 29:ea:1e:ce:4f:d1:08:c4:b6:6b:3e:dc:2c:ac:60:76:8a:51: 1d:70:32:d2:cb:07:e9:f3:0d:87:41:95:28:b9:28:2d:84:3b: 45:8a:91:0c:3d:fe:c4:73:57:e3:3d:6a:90:dc:7c:dc:3b:12: a7:e8:1a:75:f9:c8:39:ee:f1:a8:84:01:7c:52:40:c9:17:58: 5e:6f:e0:fb:91:64:be:e8:b4:49:54:f9:a3:46:10:41:17:92: ec:23:89:02:53:92:4f:20:c2:dd:aa:5a:9a:77:01:75:cd:a3: 3a:f7:1d:d2:59:4b:c1:44:6c:c9:aa:8e:5c:a0:c1:ef:f4:76: f2:5e:cc:9c:7d:10:9a:3f:95:1c:c8:d4:73:52:37:e7:df:3c: 7e:91:ff:e5:ba:d2:96:d3:cf:b2:0f:a2:37:59:2e:e9:57:07: 06:ba:e1:e1:b4:e8:7c:5f:29:b8:0d:f1:af:0d:ad:a0:92:b7: 62:5b:64:02:5f:e7:8e:04:d3:ea:95:db:03:79:39:5a:54:c9: dd:4b:5b:c8 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt5fqjiXBOwsiEF+u3kISdDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhOWE1ODBhNGNmNjRhODg0MTkwYTViMGZiMjI3ZjMwOWU5 MDQwZWIwHhcNMjYwMTAxMTIxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTNkMGJhM2M1NmE4MGUxMTk3NDRlN2M3M2I2YzE1ODFiNTMxZTcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1k+pEVgwfM0sNvlQRC/z3NjQ/0Mv HH/HG5emcX731CMY++Qtjn1nX5H5rJw6XAHgjybGttmW4y0NRGm4Wg76HXDf7+ME 04vlczoYm4utDbYYq93X5gze2tb/YMT+4aUnY6/xGPvhiVYzRByMX0qs9aWwdP0g 4Sy7Y6RuzoJ6uGAnAnakZSk+SurR5ehQcIVVDi5b7UiSCUvdFNC8IcUaRppG8Shr Dg64FduPo1lJOznxIfTCl8bkaKBL55BDAfcuXzH/PzzHGsZcl0ICoV/8YKafGGQy vOiDD1YqFslaEkn/vTZzmq+43nmfNoDWCXktuB2/oi2wsouFWXYG+YEQgwIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFAk9C6PFaoDhGXROfHO2wVgbUx5yMB8GA1UdIwQY MBaAFOqaWApM9kqIQZClsPsifzCekEDrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNnBwWUNrejJTb2hCa0tXdy15Sl9NSjZRUU9zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83M2QzYjItOWJkMS00MTBmLTkxZWMt ODA3NGE1NTI1MGVhLzEvQ1QwTG84VnFnT0VaZEU1OGM3YkJXQnRUSG5JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi83M2QzYjItOWJkMS00MTBmLTkxZWMtODA3NGE1NTI1MGVh LzEvNnBwWUNrejJTb2hCa0tXdy15Sl9NSjZRUU9zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQCW+vAAwQD sG2gAwQCufXAAwQD1WxQMA0GCSqGSIb3DQEBCwUAA4IBAQCkrML7bDjruX68cDbS qwcjrALuNQbKRs2XnUVQRPE4D9pxt/F0OLDjeS6PqK+A67ZXcGQgca8p6h7OT9EI xLZrPtwsrGB2ilEdcDLSywfp8w2HQZUouSgthDtFipEMPf7Ec1fjPWqQ3HzcOxKn 6Bp1+cg57vGohAF8UkDJF1heb+D7kWS+6LRJVPmjRhBBF5LsI4kCU5JPIMLdqlqa dwF1zaM69x3SWUvBRGzJqo5coMHv9HbyXsycfRCaP5UcyNRzUjfn3zx+kf/lutKW 08+yD6I3WS7pVwcGuuHhtOh8Xym4DfGvDa2gkrdiW2QCX+eOBNPqldsDeTlaVMnd S1vI -----END CERTIFICATE-----Generated at Tue Feb 10 03:11:26 2026 by rpki-client