This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/CXw4IiYcMMsq5Ub-2HQJVH14IxY.roa File: CXw4IiYcMMsq5Ub-2HQJVH14IxY.roa (raw, json) Hash identifier: W9tE5EUHkQFTRiFxznT+ictJcHvJ5wZk3oWmLH3VHTs= Subject key identifier: 09:7C:38:22:26:1C:30:CB:2A:E5:46:FE:D8:74:09:54:7D:78:23:16 Certificate issuer: /CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07 Certificate serial: 019B78A32B0BE469FE15E3DEB3AB462549D6 Authority key identifier: 32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/CXw4IiYcMMsq5Ub-2HQJVH14IxY.roa Signing time: Thu 01 Jan 2026 08:18:37 +0000 ROA not before: Thu 01 Jan 2026 08:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51941 IP address blocks: 46.183.72.0/21 maxlen: 21 46.183.72.0/23 maxlen: 23 46.183.74.0/23 maxlen: 23 46.183.76.0/23 maxlen: 23 46.183.78.0/24 maxlen: 24 185.128.252.0/22 maxlen: 22 185.128.255.0/24 maxlen: 24 2a02:2380::/32 maxlen: 32 2a02:2380:1::/48 maxlen: 48 2a02:2380:2::/48 maxlen: 48 2a02:2380:3::/48 maxlen: 48 2a02:2380:4::/48 maxlen: 48 2a02:2380:ff00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:2b:0b:e4:69:fe:15:e3:de:b3:ab:46:25:49:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07 Validity Not Before: Jan 1 08:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=097c3822261c30cb2ae546fed87409547d782316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:d0:c9:19:f4:98:36:e9:bf:f4:1f:4d:8b: e8:84:d9:5b:8d:25:38:e3:3f:64:27:2d:26:0f:18: 43:a5:71:ef:6f:7c:a2:ab:4f:8a:53:6d:e2:15:e3: a2:23:59:ab:f8:c0:f4:7c:d0:f8:b5:83:a3:b3:16: d4:5a:8d:93:95:cc:3d:3b:35:c0:db:16:b4:e2:2d: cf:19:a7:5f:1b:19:74:df:98:e8:26:2d:e8:8a:3f: a4:73:12:d5:c2:f5:d7:c2:76:7d:a3:e7:00:b7:81: d1:51:ad:93:bd:bc:1c:0c:58:ea:21:63:65:b0:87: f4:a0:d8:ec:1b:85:24:ff:2b:80:1d:2e:5b:bc:b6: 2c:3f:0b:67:71:cb:8a:17:b2:17:ba:f3:e6:21:16: 1b:ec:56:60:af:ec:2b:44:52:33:35:53:87:a1:0d: ef:d4:07:bc:32:a1:f4:84:29:17:9c:b2:23:c6:3d: af:52:5b:cc:d1:8c:e5:d1:e1:22:99:e5:5b:96:22: ca:03:3c:fb:9f:09:8b:cd:2c:61:25:f1:a4:94:12: c7:6a:e8:1e:6a:71:42:eb:e4:b9:fd:0b:91:ff:0d: 6d:9d:df:ce:cc:09:65:70:74:5e:f2:1d:e8:7a:ce: ae:c9:e6:50:4e:c3:33:9b:3f:fd:5d:93:37:3e:df: c3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:7C:38:22:26:1C:30:CB:2A:E5:46:FE:D8:74:09:54:7D:78:23:16 X509v3 Authority Key Identifier: keyid:32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/CXw4IiYcMMsq5Ub-2HQJVH14IxY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.183.72.0/21 185.128.252.0/22 IPv6: 2a02:2380::/32 Signature Algorithm: sha256WithRSAEncryption 0b:5f:eb:07:f7:59:d2:b7:a7:af:f6:78:8e:f7:73:b0:21:a6: 81:1a:09:8a:d1:df:0a:af:0d:61:4b:2a:39:30:cb:64:fe:6e: fc:da:d9:0d:fa:66:44:75:7a:9e:95:b9:44:d3:33:f7:0b:70: 1a:fc:83:d9:a3:ec:96:44:f2:58:cd:ad:ab:24:d5:2b:25:c3: 74:b0:cf:b4:b1:79:16:a7:3d:3a:17:78:67:8e:f3:f4:4b:d9: 32:00:ef:3d:b8:03:21:74:a8:0e:91:54:ca:07:32:18:a1:a2: e9:4c:1c:55:98:ed:bd:ce:5a:e0:ee:7a:e9:64:66:59:03:00: d2:11:bf:74:17:07:8f:91:5e:65:c4:90:a7:d9:b2:f4:73:e8: 15:db:c4:29:b1:1c:18:69:f4:bd:b4:0a:d1:0c:03:6b:18:a9: 7b:3b:c6:9a:55:b8:b7:7f:35:d8:d5:5b:a9:66:c8:e8:ec:4a: 79:14:d8:f3:98:16:70:3d:ef:b6:08:80:27:18:5d:fd:51:1b: 59:7f:6d:0d:7f:ea:cf:de:3c:63:2c:65:42:59:05:1c:a4:bb: eb:43:1e:03:fe:c1:6f:34:95:8e:7c:1b:c1:49:ee:7c:99:9d: 87:13:5d:3e:99:75:f8:49:65:82:09:a8:25:08:a5:a1:82:73: d1:94:96:9a -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt4oysL5Gn+FePes6tGJUnWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyYzJiZTQ4M2ZmMjdiYjhmMGRjMDljZTBmNzFmMmE4OGVh ZjdlMDcwHhcNMjYwMTAxMDgxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTdjMzgyMjI2MWMzMGNiMmFlNTQ2ZmVkODc0MDk1NDdkNzgyMzE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmDQyRn0mDbpv/QfTYvohNlbjSU4 4z9kJy0mDxhDpXHvb3yiq0+KU23iFeOiI1mr+MD0fND4tYOjsxbUWo2Tlcw9OzXA 2xa04i3PGadfGxl035joJi3oij+kcxLVwvXXwnZ9o+cAt4HRUa2TvbwcDFjqIWNl sIf0oNjsG4Uk/yuAHS5bvLYsPwtnccuKF7IXuvPmIRYb7FZgr+wrRFIzNVOHoQ3v 1Ae8MqH0hCkXnLIjxj2vUlvM0Yzl0eEimeVbliLKAzz7nwmLzSxhJfGklBLHauge anFC6+S5/QuR/w1tnd/OzAllcHRe8h3oes6uyeZQTsMzmz/9XZM3Pt/DVQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFAl8OCImHDDLKuVG/th0CVR9eCMWMB8GA1UdIwQY MBaAFDLCvkg/8nu48NwJzg9x8qiOr34HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQt OTczZGI5Y2U2OGI1LzEvQ1h3NElpWWNNTXNxNVViLTJIUUpWSDE0SXhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQtOTczZGI5Y2U2OGI1 LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDLrdIAwQC uYD8MA0EAgACMAcDBQAqAiOAMA0GCSqGSIb3DQEBCwUAA4IBAQALX+sH91nSt6ev 9niO93OwIaaBGgmK0d8Krw1hSyo5MMtk/m782tkN+mZEdXqelblE0zP3C3Aa/IPZ o+yWRPJYza2rJNUrJcN0sM+0sXkWpz06F3hnjvP0S9kyAO89uAMhdKgOkVTKBzIY oaLpTBxVmO29zlrg7nrpZGZZAwDSEb90FwePkV5lxJCn2bL0c+gV28QpsRwYafS9 tArRDANrGKl7O8aaVbi3fzXY1VupZsjo7Ep5FNjzmBZwPe+2CIAnGF39URtZf20N f+rP3jxjLGVCWQUcpLvrQx4D/sFvNJWOfBvBSe58mZ2HE10+mXX4SWWCCaglCKWh gnPRlJaa -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:36 2026 by rpki-client