This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/cowiEY4LpotW_FI6i6NIxMkzq_M.roa File: cowiEY4LpotW_FI6i6NIxMkzq_M.roa (raw, json) Hash identifier: CVVDglQk6Sk1jW5b5HdU0v+jUDJ+LW3BSjI0Z8Zod7U= Subject key identifier: 72:8C:22:11:8E:0B:A6:8B:56:FC:52:3A:8B:A3:48:C4:C9:33:AB:F3 Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Certificate serial: 019B7D5C78D5724F2283C89A2FCBB31EFD2E Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/cowiEY4LpotW_FI6i6NIxMkzq_M.roa Signing time: Fri 02 Jan 2026 06:19:30 +0000 ROA not before: Fri 02 Jan 2026 06:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211803 IP address blocks: 185.238.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:78:d5:72:4f:22:83:c8:9a:2f:cb:b3:1e:fd:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Validity Not Before: Jan 2 06:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=728c22118e0ba68b56fc523a8ba348c4c933abf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:bd:44:4c:2f:80:a8:ed:2e:ea:a2:fd:b4: 1a:e8:98:81:54:b7:ee:b8:ac:0b:82:f0:cb:4d:0b: 73:ea:44:d9:81:5a:8b:a8:9e:b1:9a:54:87:3a:86: 9b:d1:0e:5e:77:2a:2d:6a:69:05:ed:0e:9a:9a:37: 9d:0d:0c:a6:94:8e:64:59:6c:7b:77:37:b3:99:39: 22:28:00:75:6c:ff:b5:a6:d0:23:01:1c:ec:88:d5: 48:97:67:f7:3f:46:d9:f4:4e:ab:92:f6:5d:60:4b: bc:83:a9:5d:91:4b:8e:25:ff:ef:cd:7d:1c:84:b5: 36:d5:46:fe:e4:e2:35:2a:70:00:e5:37:bb:2f:55: 25:f4:00:2d:94:eb:16:cb:b3:b7:b4:44:f1:a1:6b: 4d:80:4b:70:83:aa:dc:9a:6f:c8:46:ca:6e:22:5a: 86:e4:57:64:fa:a8:db:c9:ef:ff:8a:08:7a:38:9e: 93:a8:0f:be:92:62:73:16:38:62:9e:b6:3f:ff:71: 62:68:b9:48:ef:e1:32:94:b1:3e:89:f3:52:95:9a: 51:b0:c3:9d:5a:13:f5:71:9a:53:50:1c:cf:ad:ad: e6:b6:81:b5:81:9d:e4:db:15:9d:0c:c0:8f:18:bc: 52:9a:21:c8:5f:3d:b0:83:60:7c:03:af:c8:a5:34: 0b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:8C:22:11:8E:0B:A6:8B:56:FC:52:3A:8B:A3:48:C4:C9:33:AB:F3 X509v3 Authority Key Identifier: keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/cowiEY4LpotW_FI6i6NIxMkzq_M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.238.112.0/24 Signature Algorithm: sha256WithRSAEncryption 10:22:e9:d7:aa:31:55:1d:56:dc:28:ae:a4:76:36:f7:33:10: 53:cc:fc:cb:b4:db:fa:fa:52:b4:e9:b6:08:a2:6a:55:b3:80: 19:f8:23:bc:cc:e5:ab:56:45:04:f5:b0:34:f6:a6:13:a1:48: e7:2f:77:1f:92:ef:88:69:14:81:74:65:da:7c:3e:bb:f7:ab: 9f:1a:17:db:9e:50:cf:95:e2:28:3b:25:c3:87:85:1d:30:86: 98:26:53:89:8a:b7:34:32:c0:23:ec:73:13:70:67:56:89:c8: 6d:3a:be:f3:5c:78:0a:05:68:28:5c:81:ea:44:b4:ef:cd:f3: e5:76:53:7a:02:84:7a:95:be:d5:85:d8:e6:f9:06:bd:2b:8a: 36:c0:fe:91:2e:d5:fb:ea:cb:33:7e:4a:84:71:33:1e:f2:d5: b6:20:c4:85:66:be:1d:86:9f:ae:ce:17:c1:c4:7f:35:3c:d8: ec:36:24:6e:a3:19:4f:01:ff:63:38:91:51:63:d9:0c:6f:e9: 9a:8a:2d:3a:2b:fc:60:cf:9a:96:18:40:e2:25:49:e3:32:3c: 5b:82:03:42:bf:f3:8b:e0:5c:6a:57:e7:16:ca:d7:92:92:4f: e7:6d:52:35:88:6c:60:17:82:83:c3:b3:e7:ea:d1:23:b8:b7: d2:2a:3d:0f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XHjVck8ig8iaL8uzHv0uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1 YmE2ODEwHhcNMjYwMTAyMDYxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjhjMjIxMThlMGJhNjhiNTZmYzUyM2E4YmEzNDhjNGM5MzNhYmYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsia9REwvgKjtLuqi/bQa6JiBVLfu uKwLgvDLTQtz6kTZgVqLqJ6xmlSHOoab0Q5edyotamkF7Q6amjedDQymlI5kWWx7 dzezmTkiKAB1bP+1ptAjARzsiNVIl2f3P0bZ9E6rkvZdYEu8g6ldkUuOJf/vzX0c hLU21Ub+5OI1KnAA5Te7L1Ul9AAtlOsWy7O3tETxoWtNgEtwg6rcmm/IRspuIlqG 5Fdk+qjbye//igh6OJ6TqA++kmJzFjhinrY//3FiaLlI7+EylLE+ifNSlZpRsMOd WhP1cZpTUBzPra3mtoG1gZ3k2xWdDMCPGLxSmiHIXz2wg2B8A6/IpTQL3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHKMIhGOC6aLVvxSOoujSMTJM6vzMB8GA1UdIwQY MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt YTg3NzNkZTc2OGY3LzEvY293aUVZNExwb3RXX0ZJNmk2Tkl4TWt6cV9NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3 LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAue5wMA0G CSqGSIb3DQEBCwUAA4IBAQAQIunXqjFVHVbcKK6kdjb3MxBTzPzLtNv6+lK06bYI ompVs4AZ+CO8zOWrVkUE9bA09qYToUjnL3cfku+IaRSBdGXafD6796ufGhfbnlDP leIoOyXDh4UdMIaYJlOJirc0MsAj7HMTcGdWichtOr7zXHgKBWgoXIHqRLTvzfPl dlN6AoR6lb7Vhdjm+Qa9K4o2wP6RLtX76sszfkqEcTMe8tW2IMSFZr4dhp+uzhfB xH81PNjsNiRuoxlPAf9jOJFRY9kMb+maii06K/xgz5qWGEDiJUnjMjxbggNCv/OL 4FxqV+cWyteSkk/nbVI1iGxgF4KDw7Pn6tEjuLfSKj0P -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:39 2026 by rpki-client