This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/4d8514-0ee5-4cdb-b078-f65a93f480a8/1/CvlT8XgWCNuSSaYILqFrDUnlk8Q.roa File: CvlT8XgWCNuSSaYILqFrDUnlk8Q.roa (raw, json) Hash identifier: /PY60x69f1RFb1+VeQA4srQb3VpoSBgqHMBssXQXw/A= Subject key identifier: 0A:F9:53:F1:78:16:08:DB:92:49:A6:08:2E:A1:6B:0D:49:E5:93:C4 Certificate issuer: /CN=1c9c0b1d2144214ea4913c7d63b26fe26a472efe Certificate serial: 019B7D5D37FE17AB6BD3F2BAF519E7E43A29 Authority key identifier: 1C:9C:0B:1D:21:44:21:4E:A4:91:3C:7D:63:B2:6F:E2:6A:47:2E:FE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJwLHSFEIU6kkTx9Y7Jv4mpHLv4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/4d8514-0ee5-4cdb-b078-f65a93f480a8/1/CvlT8XgWCNuSSaYILqFrDUnlk8Q.roa Signing time: Fri 02 Jan 2026 06:20:19 +0000 ROA not before: Fri 02 Jan 2026 06:20:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 58310 IP address blocks: 91.109.224.0/23 maxlen: 23 91.109.226.0/23 maxlen: 23 91.109.228.0/23 maxlen: 23 91.109.230.0/23 maxlen: 23 185.173.72.0/22 maxlen: 22 185.173.72.0/23 maxlen: 23 185.173.72.0/24 maxlen: 24 185.173.73.0/24 maxlen: 24 185.173.74.0/23 maxlen: 23 2a0b:3900::/29 maxlen: 29 2a0b:3901::/47 maxlen: 47 2a0b:3901::/48 maxlen: 48 2a0b:3901:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/4d8514-0ee5-4cdb-b078-f65a93f480a8/1/HJwLHSFEIU6kkTx9Y7Jv4mpHLv4.crl rsync://rpki.ripe.net/repository/DEFAULT/47/4d8514-0ee5-4cdb-b078-f65a93f480a8/1/HJwLHSFEIU6kkTx9Y7Jv4mpHLv4.mft rsync://rpki.ripe.net/repository/DEFAULT/HJwLHSFEIU6kkTx9Y7Jv4mpHLv4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:37:fe:17:ab:6b:d3:f2:ba:f5:19:e7:e4:3a:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c9c0b1d2144214ea4913c7d63b26fe26a472efe Validity Not Before: Jan 2 06:20:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0af953f1781608db9249a6082ea16b0d49e593c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9b:09:c3:d1:61:77:9c:b8:7a:a1:be:ce:90: 58:6d:ff:30:82:bb:8e:34:3d:d0:92:76:4a:b1:75: 40:ff:31:69:95:95:aa:eb:7f:bf:13:7e:5f:1d:cb: 36:75:f5:02:75:1d:18:2f:55:0a:05:5b:a5:74:f5: 28:ec:44:97:18:d4:5d:10:20:5e:1e:02:86:ec:14: 55:72:92:59:b2:3f:38:da:ca:0d:4a:9b:40:f9:e1: 84:74:d1:d0:7a:6a:2e:33:32:69:b6:2b:ed:6b:47: 08:cf:7e:d5:e1:77:3e:70:73:21:1a:69:7c:ad:68: 7c:72:db:b3:36:45:31:58:bc:e8:bc:6d:5e:23:c2: 65:43:b5:8c:91:ae:4f:61:3f:05:f3:6e:34:f0:de: ea:20:1d:07:72:ba:bc:af:a9:b8:80:45:79:94:0a: c5:35:de:d1:ce:36:54:eb:62:1c:5c:5f:8d:e0:71: b5:74:d1:c7:1e:39:bf:17:81:84:71:6f:a1:f5:2b: 86:15:82:53:fb:88:7e:e9:24:ed:6e:d8:ea:20:9b: 46:ca:0e:b8:bb:41:22:3e:e3:84:fb:74:5e:8b:b4: 5b:53:2a:ac:52:b4:32:d6:1d:ef:6f:c9:3a:a3:1c: 9e:20:7e:89:a3:b7:ab:ae:b1:c7:f2:d2:14:f5:01: da:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:F9:53:F1:78:16:08:DB:92:49:A6:08:2E:A1:6B:0D:49:E5:93:C4 X509v3 Authority Key Identifier: keyid:1C:9C:0B:1D:21:44:21:4E:A4:91:3C:7D:63:B2:6F:E2:6A:47:2E:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJwLHSFEIU6kkTx9Y7Jv4mpHLv4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4d8514-0ee5-4cdb-b078-f65a93f480a8/1/CvlT8XgWCNuSSaYILqFrDUnlk8Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4d8514-0ee5-4cdb-b078-f65a93f480a8/1/HJwLHSFEIU6kkTx9Y7Jv4mpHLv4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.109.224.0/21 185.173.72.0/22 IPv6: 2a0b:3900::/29 Signature Algorithm: sha256WithRSAEncryption 30:20:c4:b9:78:8a:a9:90:f9:e9:bf:72:36:6e:38:fc:76:46: 77:8f:ef:4e:16:f3:fb:f6:3d:6c:12:09:fe:19:22:cb:5a:dc: 91:a3:e8:fd:fb:12:a6:8f:70:ea:ea:9b:a3:94:e4:89:35:38: 25:8a:82:5a:d9:20:e9:43:da:c3:fe:6c:58:31:05:80:ec:87: ae:36:f6:d5:31:d0:0f:56:8d:b4:94:bc:3b:64:48:e5:d8:17: 4b:5c:3b:ce:df:3e:e5:4e:40:56:79:b6:1e:49:df:60:10:29: 0d:24:c5:2e:2d:48:ab:41:45:f2:29:1c:d0:f1:4f:f1:fc:ce: 58:f4:4f:08:7e:d5:e5:36:81:e8:82:d4:fd:f7:d7:32:35:26: b4:38:52:72:08:f0:b5:47:41:9e:62:16:f3:8d:24:99:2b:df: 50:67:c5:33:99:70:1e:ba:49:de:bd:e1:5c:dd:7d:87:6b:ad: a3:65:49:9e:f7:93:e7:59:e2:a2:d0:dc:e5:c0:d3:44:25:3f: f9:16:7e:74:a9:9e:4b:0a:81:16:fd:5e:ac:c8:53:dd:42:90: c6:6e:8e:dd:b9:00:1b:0a:14:d7:71:1a:ae:ed:db:ff:43:3a: 25:1b:12:31:7d:f7:b7:b5:28:6f:43:6c:4e:f3:02:30:bd:2f: a9:e8:0f:0b -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt9XTf+F6tr0/K69Rnn5DopMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjOWMwYjFkMjE0NDIxNGVhNDkxM2M3ZDYzYjI2ZmUyNmE0 NzJlZmUwHhcNMjYwMTAyMDYyMDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYWY5NTNmMTc4MTYwOGRiOTI0OWE2MDgyZWExNmIwZDQ5ZTU5M2M0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJsJw9Fhd5y4eqG+zpBYbf8wgruO ND3QknZKsXVA/zFplZWq63+/E35fHcs2dfUCdR0YL1UKBVuldPUo7ESXGNRdECBe HgKG7BRVcpJZsj842soNSptA+eGEdNHQemouMzJptivta0cIz37V4Xc+cHMhGml8 rWh8ctuzNkUxWLzovG1eI8JlQ7WMka5PYT8F82408N7qIB0Hcrq8r6m4gEV5lArF Nd7RzjZU62IcXF+N4HG1dNHHHjm/F4GEcW+h9SuGFYJT+4h+6STtbtjqIJtGyg64 u0EiPuOE+3Rei7RbUyqsUrQy1h3vb8k6oxyeIH6Jo7errrHH8tIU9QHa/wIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFAr5U/F4FgjbkkmmCC6haw1J5ZPEMB8GA1UdIwQY MBaAFBycCx0hRCFOpJE8fWOyb+JqRy7+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSEp3TEhTRkVJVTZra1R4OVk3SnY0bXBITHY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny80ZDg1MTQtMGVlNS00Y2RiLWIwNzgt ZjY1YTkzZjQ4MGE4LzEvQ3ZsVDhYZ1dDTnVTU2FZSUxxRnJEVW5sazhRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny80ZDg1MTQtMGVlNS00Y2RiLWIwNzgtZjY1YTkzZjQ4MGE4 LzEvSEp3TEhTRkVJVTZra1R4OVk3SnY0bXBITHY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQDW23gAwQC ua1IMA0EAgACMAcDBQMqCzkAMA0GCSqGSIb3DQEBCwUAA4IBAQAwIMS5eIqpkPnp v3I2bjj8dkZ3j+9OFvP79j1sEgn+GSLLWtyRo+j9+xKmj3Dq6pujlOSJNTglioJa 2SDpQ9rD/mxYMQWA7IeuNvbVMdAPVo20lLw7ZEjl2BdLXDvO3z7lTkBWebYeSd9g ECkNJMUuLUirQUXyKRzQ8U/x/M5Y9E8IftXlNoHogtT999cyNSa0OFJyCPC1R0Ge YhbzjSSZK99QZ8UzmXAeukneveFc3X2Ha62jZUme95PnWeKi0NzlwNNEJT/5Fn50 qZ5LCoEW/V6syFPdQpDGbo7duQAbChTXcRqu7dv/QzolGxIxffe3tShvQ2xO8wIw vS+p6A8L -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:18 2026 by rpki-client