This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/8c07ae-de72-476a-8029-f0816e38adde/1/a_96dgHPGfskp46QxVwlyW43OHQ.roa File: a_96dgHPGfskp46QxVwlyW43OHQ.roa (raw, json) Hash identifier: 40fkJSYqeLo91DkP9jgqjhXreqdS7UdtXQdlx4C0e90= Subject key identifier: 6B:FF:7A:76:01:CF:19:FB:24:A7:8E:90:C5:5C:25:C9:6E:37:38:74 Certificate issuer: /CN=33410875ca78cc5e3d192e054a96df0302c7f97a Certificate serial: 019B7C1127CA35DA1A190C7A0620E3F60CCB Authority key identifier: 33:41:08:75:CA:78:CC:5E:3D:19:2E:05:4A:96:DF:03:02:C7:F9:7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M0EIdcp4zF49GS4FSpbfAwLH-Xo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/8c07ae-de72-476a-8029-f0816e38adde/1/a_96dgHPGfskp46QxVwlyW43OHQ.roa Signing time: Fri 02 Jan 2026 00:17:37 +0000 ROA not before: Fri 02 Jan 2026 00:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 196968 IP address blocks: 162.208.52.0/22 maxlen: 22 176.10.48.0/21 maxlen: 21 178.21.0.0/21 maxlen: 21 185.69.180.0/22 maxlen: 22 199.247.56.0/21 maxlen: 21 217.61.232.0/22 maxlen: 22 2a00:6e00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/8c07ae-de72-476a-8029-f0816e38adde/1/M0EIdcp4zF49GS4FSpbfAwLH-Xo.crl rsync://rpki.ripe.net/repository/DEFAULT/19/8c07ae-de72-476a-8029-f0816e38adde/1/M0EIdcp4zF49GS4FSpbfAwLH-Xo.mft rsync://rpki.ripe.net/repository/DEFAULT/M0EIdcp4zF49GS4FSpbfAwLH-Xo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:27:ca:35:da:1a:19:0c:7a:06:20:e3:f6:0c:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33410875ca78cc5e3d192e054a96df0302c7f97a Validity Not Before: Jan 2 00:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6bff7a7601cf19fb24a78e90c55c25c96e373874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:31:3f:c9:0a:29:f8:04:f8:c4:93:03:50:46: 25:25:e3:0f:fb:6b:b8:11:44:c6:15:73:97:84:e5: 5a:91:08:f8:ca:16:0d:44:4d:aa:20:1b:96:0e:bc: 93:6e:f3:08:32:3a:a3:a6:bc:36:c4:4b:be:32:9f: 7e:15:e5:18:30:07:ce:e3:20:dc:a3:9b:6e:df:da: f3:8e:07:27:f7:e7:7d:97:63:60:7b:a8:2e:9a:23: 5e:13:7a:8b:f2:4c:87:bc:3b:76:d7:04:4a:7b:be: 6f:b7:b3:dd:1b:d4:90:dd:74:7c:08:71:ae:b9:e0: d5:b3:9a:7a:0c:05:25:36:ba:54:24:cf:0a:53:f4: ca:b6:31:55:58:59:d2:b8:91:39:e3:43:e4:e0:1f: 10:47:bc:f2:c6:d8:df:f9:76:40:9c:88:1d:a7:04: 0e:5e:42:08:ff:88:9a:3c:91:c4:f0:f1:98:bc:da: cf:20:52:fc:a8:e8:9b:cb:88:93:ec:55:94:a8:2a: e6:2a:b5:d5:f5:4c:bd:6b:dc:34:32:76:83:05:c1: 3a:5e:a4:f0:1e:77:54:5c:97:ca:07:37:e2:92:db: cc:87:5d:7a:76:35:24:0d:d3:b9:c9:63:9c:9d:27: 04:fc:34:30:4c:f6:a9:b5:f6:c8:24:36:96:cf:35: 0f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:FF:7A:76:01:CF:19:FB:24:A7:8E:90:C5:5C:25:C9:6E:37:38:74 X509v3 Authority Key Identifier: keyid:33:41:08:75:CA:78:CC:5E:3D:19:2E:05:4A:96:DF:03:02:C7:F9:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M0EIdcp4zF49GS4FSpbfAwLH-Xo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/8c07ae-de72-476a-8029-f0816e38adde/1/a_96dgHPGfskp46QxVwlyW43OHQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/8c07ae-de72-476a-8029-f0816e38adde/1/M0EIdcp4zF49GS4FSpbfAwLH-Xo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.52.0/22 176.10.48.0/21 178.21.0.0/21 185.69.180.0/22 199.247.56.0/21 217.61.232.0/22 IPv6: 2a00:6e00::/32 Signature Algorithm: sha256WithRSAEncryption 0b:59:26:0a:8c:20:37:8b:80:60:25:06:e3:df:d3:78:e9:06: 9e:30:fd:ba:75:86:f9:8b:99:24:90:64:bf:a4:76:88:13:54: ca:84:34:5c:78:73:d1:13:25:95:fc:0b:f7:3a:17:b0:42:98: ca:5c:b0:33:84:c3:7a:f8:2f:60:85:84:30:6b:c6:8e:d3:c3: e8:9e:c3:86:5c:7a:fc:ef:48:f0:8d:cf:be:71:11:46:5e:a6: a6:67:b3:df:80:7c:9c:03:0b:75:68:b1:da:6c:d4:a4:93:c7: bf:f2:90:6f:7e:be:0c:a1:fa:09:7d:ac:ee:b9:17:e8:a7:95: 96:5a:a9:83:1a:f8:ee:50:7c:0b:9a:a4:af:6f:79:b9:aa:51: 75:5b:b8:6b:35:d9:62:0a:d7:60:f7:41:80:3e:69:9d:0f:44: 86:5b:7d:87:62:10:5a:07:78:ce:16:d4:67:ea:b0:dd:fe:72: db:3c:75:32:00:07:84:00:e1:1a:f5:93:8e:63:61:43:99:db: 86:be:3c:cd:8d:02:15:71:b3:f7:32:de:63:e3:c2:17:2b:57: ab:9e:c6:dd:3b:16:89:03:a2:55:75:8c:41:4e:69:1c:1c:02: 31:39:3f:fb:d1:aa:9c:83:2c:e2:0c:a2:d5:17:28:7b:7e:b9: 34:9e:23:d9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt8ESfKNdoaGQx6BiDj9gzLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzNDEwODc1Y2E3OGNjNWUzZDE5MmUwNTRhOTZkZjAzMDJj N2Y5N2EwHhcNMjYwMTAyMDAxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2YmZmN2E3NjAxY2YxOWZiMjRhNzhlOTBjNTVjMjVjOTZlMzczODc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzE/yQop+AT4xJMDUEYlJeMP+2u4 EUTGFXOXhOVakQj4yhYNRE2qIBuWDryTbvMIMjqjprw2xEu+Mp9+FeUYMAfO4yDc o5tu39rzjgcn9+d9l2Nge6gumiNeE3qL8kyHvDt21wRKe75vt7PdG9SQ3XR8CHGu ueDVs5p6DAUlNrpUJM8KU/TKtjFVWFnSuJE540Pk4B8QR7zyxtjf+XZAnIgdpwQO XkII/4iaPJHE8PGYvNrPIFL8qOiby4iT7FWUqCrmKrXV9Uy9a9w0MnaDBcE6XqTw HndUXJfKBzfiktvMh116djUkDdO5yWOcnScE/DQwTPaptfbIJDaWzzUPfwIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFGv/enYBzxn7JKeOkMVcJcluNzh0MB8GA1UdIwQY MBaAFDNBCHXKeMxePRkuBUqW3wMCx/l6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTTBFSWRjcDR6RjQ5R1M0RlNwYmZBd0xILVhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS84YzA3YWUtZGU3Mi00NzZhLTgwMjkt ZjA4MTZlMzhhZGRlLzEvYV85NmRnSFBHZnNrcDQ2UXhWd2x5VzQzT0hRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS84YzA3YWUtZGU3Mi00NzZhLTgwMjktZjA4MTZlMzhhZGRl LzEvTTBFSWRjcDR6RjQ5R1M0RlNwYmZBd0xILVhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQCotA0AwQD sAowAwQDshUAAwQCuUW0AwQDx/c4AwQC2T3oMA0EAgACMAcDBQAqAG4AMA0GCSqG SIb3DQEBCwUAA4IBAQALWSYKjCA3i4BgJQbj39N46QaeMP26dYb5i5kkkGS/pHaI E1TKhDRceHPREyWV/Av3OhewQpjKXLAzhMN6+C9ghYQwa8aO08PonsOGXHr870jw jc++cRFGXqamZ7PfgHycAwt1aLHabNSkk8e/8pBvfr4MofoJfazuuRfop5WWWqmD GvjuUHwLmqSvb3m5qlF1W7hrNdliCtdg90GAPmmdD0SGW32HYhBaB3jOFtRn6rDd /nLbPHUyAAeEAOEa9ZOOY2FDmduGvjzNjQIVcbP3Mt5j48IXK1ernsbdOxaJA6JV dYxBTmkcHAIxOT/70aqcgyziDKLVFyh7frk0niPZ -----END CERTIFICATE-----Generated at Mon Feb 9 22:30:42 2026 by rpki-client