This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/322450-21ca-41af-9b65-cbe084872174/1/_CtWoZatOsYRtZxdTJ5TMLTNjw8.roa File: _CtWoZatOsYRtZxdTJ5TMLTNjw8.roa (raw, json) Hash identifier: LYseNoTvnl/Pp/BBmHZ1FTB2FkR4cL5AND422CQVg9w= Subject key identifier: FC:2B:56:A1:96:AD:3A:C6:11:B5:9C:5D:4C:9E:53:30:B4:CD:8F:0F Certificate issuer: /CN=4a7cfe881168b615a0bd411cc314bd040a4d27f6 Certificate serial: 019B7AC7F193B4D534CE58E204D9B6414B9C Authority key identifier: 4A:7C:FE:88:11:68:B6:15:A0:BD:41:1C:C3:14:BD:04:0A:4D:27:F6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Snz-iBFothWgvUEcwxS9BApNJ_Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/322450-21ca-41af-9b65-cbe084872174/1/_CtWoZatOsYRtZxdTJ5TMLTNjw8.roa Signing time: Thu 01 Jan 2026 18:18:02 +0000 ROA not before: Thu 01 Jan 2026 18:18:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39250 IP address blocks: 109.68.152.0/21 maxlen: 21 2a00:1d68::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/322450-21ca-41af-9b65-cbe084872174/1/Snz-iBFothWgvUEcwxS9BApNJ_Y.crl rsync://rpki.ripe.net/repository/DEFAULT/62/322450-21ca-41af-9b65-cbe084872174/1/Snz-iBFothWgvUEcwxS9BApNJ_Y.mft rsync://rpki.ripe.net/repository/DEFAULT/Snz-iBFothWgvUEcwxS9BApNJ_Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:f1:93:b4:d5:34:ce:58:e2:04:d9:b6:41:4b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a7cfe881168b615a0bd411cc314bd040a4d27f6 Validity Not Before: Jan 1 18:18:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc2b56a196ad3ac611b59c5d4c9e5330b4cd8f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a1:ed:eb:1a:12:60:fc:a8:d6:67:74:0e:70: 36:d8:95:b4:82:68:82:85:a8:47:b3:11:b1:04:63: b1:69:a2:2e:25:a7:8b:f4:4d:16:6d:07:c8:48:c3: a2:a7:d9:d8:78:e5:f1:91:79:c5:87:99:28:7e:3b: 54:32:02:09:da:64:48:29:90:f7:0a:17:41:65:e1: 87:af:73:0f:ea:ec:3d:1a:f3:c0:44:ba:73:ed:94: 70:1e:1e:6d:1b:b4:06:e5:c0:b8:c9:b1:91:5e:5e: 3f:81:4e:39:9c:aa:b6:0c:c0:c3:44:79:6e:42:3c: fa:f7:e0:b5:c5:77:05:a5:0e:5a:43:d1:54:83:bb: 26:2b:3e:2e:a3:da:0c:2a:0a:ac:98:ef:44:76:02: e3:01:99:f5:c3:66:b0:5d:5b:68:df:7e:b5:5f:ff: 07:06:2b:5a:41:f8:47:0d:25:7e:75:46:ff:87:da: 3f:a6:ac:40:14:9a:3f:92:28:8b:aa:f1:16:be:c2: d4:d6:af:17:a7:4f:1f:67:8c:81:1d:58:64:aa:23: 0e:f6:bb:91:e0:74:1b:e4:82:d1:3b:7b:3e:bd:49: 63:a5:c0:4e:7b:9b:77:36:db:45:67:5c:10:ed:c7: e4:67:3b:46:78:5a:31:c0:1b:a1:96:e7:be:44:d3: 69:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:2B:56:A1:96:AD:3A:C6:11:B5:9C:5D:4C:9E:53:30:B4:CD:8F:0F X509v3 Authority Key Identifier: keyid:4A:7C:FE:88:11:68:B6:15:A0:BD:41:1C:C3:14:BD:04:0A:4D:27:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Snz-iBFothWgvUEcwxS9BApNJ_Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/322450-21ca-41af-9b65-cbe084872174/1/_CtWoZatOsYRtZxdTJ5TMLTNjw8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/322450-21ca-41af-9b65-cbe084872174/1/Snz-iBFothWgvUEcwxS9BApNJ_Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.68.152.0/21 IPv6: 2a00:1d68::/32 Signature Algorithm: sha256WithRSAEncryption c9:88:bc:95:51:d3:d4:2f:30:04:75:e9:62:8a:b1:c6:71:13: 2c:ba:b4:bc:79:c2:17:49:d5:2d:91:9d:27:cb:73:d2:ce:46: 1c:bb:d4:3e:35:b5:ef:05:18:6f:69:49:83:b9:aa:05:23:7e: f5:3f:0a:f1:4c:b3:3a:c9:4e:e2:e7:57:ec:a6:95:8d:52:ba: 87:2e:e1:27:63:78:5c:06:77:f7:8d:82:eb:10:9e:df:14:ca: af:c2:4f:4d:4b:b2:86:70:86:11:2e:9b:ec:fe:8e:48:ec:bf: ac:f2:a4:07:55:fe:7b:1b:ec:ea:40:f2:de:93:c0:82:85:bd: b1:a4:1a:75:f9:b5:3d:6d:33:b6:5c:d5:63:45:3a:34:70:1c: 56:fa:f0:5a:d5:99:98:bc:b7:d2:a8:a5:60:64:e3:80:96:f5: 47:86:4d:fa:79:10:96:b5:ce:85:72:75:af:6d:aa:e1:4f:34: 80:ad:c1:6b:13:60:9c:64:40:fe:0a:fd:5a:39:1b:b2:4e:21: 4b:b5:0c:f7:fc:7d:29:63:61:57:51:0e:b5:b4:3f:84:b2:40: d9:8b:c5:ce:30:39:bb:e3:55:7b:1d:3f:8b:50:6a:28:8d:f6: c0:31:4f:bf:44:a4:6e:84:e9:50:8a:65:55:73:b6:8b:42:ba: ad:fc:ce:4c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6x/GTtNU0zljiBNm2QUucMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhN2NmZTg4MTE2OGI2MTVhMGJkNDExY2MzMTRiZDA0MGE0 ZDI3ZjYwHhcNMjYwMTAxMTgxODAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzJiNTZhMTk2YWQzYWM2MTFiNTljNWQ0YzllNTMzMGI0Y2Q4ZjBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6Ht6xoSYPyo1md0DnA22JW0gmiC hahHsxGxBGOxaaIuJaeL9E0WbQfISMOip9nYeOXxkXnFh5kofjtUMgIJ2mRIKZD3 ChdBZeGHr3MP6uw9GvPARLpz7ZRwHh5tG7QG5cC4ybGRXl4/gU45nKq2DMDDRHlu Qjz69+C1xXcFpQ5aQ9FUg7smKz4uo9oMKgqsmO9EdgLjAZn1w2awXVto3361X/8H BitaQfhHDSV+dUb/h9o/pqxAFJo/kiiLqvEWvsLU1q8Xp08fZ4yBHVhkqiMO9ruR 4HQb5ILRO3s+vUljpcBOe5t3NttFZ1wQ7cfkZztGeFoxwBuhlue+RNNpuQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFPwrVqGWrTrGEbWcXUyeUzC0zY8PMB8GA1UdIwQY MBaAFEp8/ogRaLYVoL1BHMMUvQQKTSf2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU256LWlCRm90aFdndlVFY3d4UzlCQXBOSl9ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMjI0NTAtMjFjYS00MWFmLTliNjUt Y2JlMDg0ODcyMTc0LzEvX0N0V29aYXRPc1lSdFp4ZFRKNVRNTFROanc4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8zMjI0NTAtMjFjYS00MWFmLTliNjUtY2JlMDg0ODcyMTc0 LzEvU256LWlCRm90aFdndlVFY3d4UzlCQXBOSl9ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDbUSYMA0E AgACMAcDBQAqAB1oMA0GCSqGSIb3DQEBCwUAA4IBAQDJiLyVUdPULzAEdeliirHG cRMsurS8ecIXSdUtkZ0ny3PSzkYcu9Q+NbXvBRhvaUmDuaoFI371PwrxTLM6yU7i 51fsppWNUrqHLuEnY3hcBnf3jYLrEJ7fFMqvwk9NS7KGcIYRLpvs/o5I7L+s8qQH Vf57G+zqQPLek8CChb2xpBp1+bU9bTO2XNVjRTo0cBxW+vBa1ZmYvLfSqKVgZOOA lvVHhk36eRCWtc6FcnWvbarhTzSArcFrE2CcZED+Cv1aORuyTiFLtQz3/H0pY2FX UQ61tD+EskDZi8XOMDm741V7HT+LUGoojfbAMU+/RKRuhOlQimVVc7aLQrqt/M5M -----END CERTIFICATE-----Generated at Mon Feb 9 18:21:38 2026 by rpki-client