This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/660cca-c1aa-4558-ad1e-e53f904a1f58/1/U1i2p1mwMwcMPAenuBEHdijiIZE.roa File: U1i2p1mwMwcMPAenuBEHdijiIZE.roa (raw, json) Hash identifier: AHlcD8BHVzzh2oESK4HUkXMAua5AnRRE5iMN+WNNbdQ= Subject key identifier: 53:58:B6:A7:59:B0:33:07:0C:3C:07:A7:B8:11:07:76:28:E2:21:91 Certificate issuer: /CN=37778681361b1fff87ce398402efa63869e5bfd1 Certificate serial: 019B7F8596B16777EA4B101D4DD20D34EE16 Authority key identifier: 37:77:86:81:36:1B:1F:FF:87:CE:39:84:02:EF:A6:38:69:E5:BF:D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N3eGgTYbH_-HzjmEAu-mOGnlv9E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/660cca-c1aa-4558-ad1e-e53f904a1f58/1/U1i2p1mwMwcMPAenuBEHdijiIZE.roa Signing time: Fri 02 Jan 2026 16:23:39 +0000 ROA not before: Fri 02 Jan 2026 16:23:39 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 203971 IP address blocks: 185.118.48.0/22 maxlen: 22 185.118.48.0/24 maxlen: 24 185.118.49.0/24 maxlen: 24 185.118.50.0/24 maxlen: 24 185.118.51.0/24 maxlen: 24 185.222.92.0/22 maxlen: 22 185.222.92.0/24 maxlen: 24 185.222.93.0/24 maxlen: 24 185.222.94.0/24 maxlen: 24 185.222.95.0/24 maxlen: 24 217.179.126.0/24 maxlen: 24 2a06:91c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/660cca-c1aa-4558-ad1e-e53f904a1f58/1/N3eGgTYbH_-HzjmEAu-mOGnlv9E.crl rsync://rpki.ripe.net/repository/DEFAULT/64/660cca-c1aa-4558-ad1e-e53f904a1f58/1/N3eGgTYbH_-HzjmEAu-mOGnlv9E.mft rsync://rpki.ripe.net/repository/DEFAULT/N3eGgTYbH_-HzjmEAu-mOGnlv9E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:96:b1:67:77:ea:4b:10:1d:4d:d2:0d:34:ee:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=37778681361b1fff87ce398402efa63869e5bfd1 Validity Not Before: Jan 2 16:23:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5358b6a759b033070c3c07a7b811077628e22191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e2:1b:29:f9:f4:e3:ec:76:bc:a2:81:d9:ed: 21:6a:ae:4f:4d:26:c4:22:b4:38:40:1e:53:11:b1: 49:e9:e1:95:e7:c1:21:0e:ec:76:2c:52:3d:84:1b: c9:b5:76:04:09:b3:c9:3f:2f:b3:ba:9b:b1:be:cc: ef:eb:e3:00:61:0c:08:e7:40:fd:ff:14:8f:6c:e6: 0c:37:d3:8b:06:6d:3a:d3:f6:fc:23:e1:06:e9:b6: 3b:ed:46:ca:fc:92:6b:e3:eb:56:6c:f4:a0:2c:6f: 4e:75:38:19:d4:c5:07:6b:79:99:43:1a:89:de:08: c2:c3:55:0f:a1:fb:5a:cb:a2:04:05:6d:a9:6c:26: f7:95:c8:ad:9c:a4:77:9d:4a:4d:1e:e1:b1:d2:30: 11:65:28:ff:f4:ca:2f:6f:e9:bd:45:a7:88:99:38: df:43:8c:b2:4f:0a:14:b1:5a:c5:28:a1:12:13:13: bf:78:61:17:a2:35:67:d6:53:46:19:a6:4a:56:92: a9:86:df:c0:ee:ed:33:08:8e:3a:d5:39:85:7d:db: 58:a9:d9:3c:74:a9:1e:ee:6d:fa:e3:69:ac:81:93: a6:03:cd:76:f6:c9:93:6e:28:17:54:02:08:40:2c: 12:64:31:c6:93:80:19:35:7d:50:7c:a3:4b:33:93: 4c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:58:B6:A7:59:B0:33:07:0C:3C:07:A7:B8:11:07:76:28:E2:21:91 X509v3 Authority Key Identifier: keyid:37:77:86:81:36:1B:1F:FF:87:CE:39:84:02:EF:A6:38:69:E5:BF:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N3eGgTYbH_-HzjmEAu-mOGnlv9E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/660cca-c1aa-4558-ad1e-e53f904a1f58/1/U1i2p1mwMwcMPAenuBEHdijiIZE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/660cca-c1aa-4558-ad1e-e53f904a1f58/1/N3eGgTYbH_-HzjmEAu-mOGnlv9E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.118.48.0/22 185.222.92.0/22 217.179.126.0/24 IPv6: 2a06:91c0::/29 Signature Algorithm: sha256WithRSAEncryption 6d:63:87:19:10:8b:f3:d6:ac:24:6b:a7:05:96:7b:ca:3f:53: 64:62:3a:9f:bd:5f:33:c3:f9:fb:1e:6f:57:1e:9e:3b:52:0e: 73:d0:49:c7:74:d4:46:57:15:50:cf:f4:3f:94:5f:5c:09:87: 88:ec:e2:4f:ad:0e:85:4e:fc:6c:c5:ad:0d:be:27:41:1e:20: 25:41:3b:00:bc:58:4a:ca:f5:2f:a1:fe:d7:e2:32:b0:64:a5: 3c:ba:27:2b:fd:23:06:a7:0c:e6:d7:08:1f:0e:5e:b1:cb:f6: 28:42:07:2b:3c:d3:e6:2a:4e:d7:cf:6a:03:c5:32:2b:81:45: c5:bb:3d:2e:1b:4a:61:66:62:bc:35:0e:9f:b4:1f:3c:74:96: 98:7e:ae:53:41:54:52:62:e7:09:b2:93:98:10:64:ab:84:72: 92:0c:5f:d3:19:fd:fd:6e:28:1e:a5:13:e6:89:a1:15:a3:bd: 8d:c4:3a:53:1e:66:27:06:5f:ee:12:38:f1:e8:e0:b8:69:f8: a4:10:da:54:c3:7f:19:ef:97:c8:ad:18:93:0a:40:f0:fc:1c: 20:a1:0c:72:34:b4:52:d3:8f:dd:8f:fc:f4:87:a6:b8:70:55: cf:34:b6:e2:11:d5:44:dc:bd:03:6e:7e:56:9f:ec:91:55:ae: de:18:ed:d8 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt/hZaxZ3fqSxAdTdINNO4WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3Nzc4NjgxMzYxYjFmZmY4N2NlMzk4NDAyZWZhNjM4Njll NWJmZDEwHhcNMjYwMTAyMTYyMzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MzU4YjZhNzU5YjAzMzA3MGMzYzA3YTdiODExMDc3NjI4ZTIyMTkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquIbKfn04+x2vKKB2e0haq5PTSbE IrQ4QB5TEbFJ6eGV58EhDux2LFI9hBvJtXYECbPJPy+zupuxvszv6+MAYQwI50D9 /xSPbOYMN9OLBm060/b8I+EG6bY77UbK/JJr4+tWbPSgLG9OdTgZ1MUHa3mZQxqJ 3gjCw1UPoftay6IEBW2pbCb3lcitnKR3nUpNHuGx0jARZSj/9Movb+m9RaeImTjf Q4yyTwoUsVrFKKESExO/eGEXojVn1lNGGaZKVpKpht/A7u0zCI461TmFfdtYqdk8 dKke7m3642msgZOmA8129smTbigXVAIIQCwSZDHGk4AZNX1QfKNLM5NMdQIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFFNYtqdZsDMHDDwHp7gRB3Yo4iGRMB8GA1UdIwQY MBaAFDd3hoE2Gx//h845hALvpjhp5b/RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjNlR2dUWWJIXy1IemptRUF1LW1PR25sdjlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC82NjBjY2EtYzFhYS00NTU4LWFkMWUt ZTUzZjkwNGExZjU4LzEvVTFpMnAxbXdNd2NNUEFlbnVCRUhkaWppSVpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC82NjBjY2EtYzFhYS00NTU4LWFkMWUtZTUzZjkwNGExZjU4 LzEvTjNlR2dUWWJIXy1IemptRUF1LW1PR25sdjlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCuXYwAwQC ud5cAwQA2bN+MA0EAgACMAcDBQMqBpHAMA0GCSqGSIb3DQEBCwUAA4IBAQBtY4cZ EIvz1qwka6cFlnvKP1NkYjqfvV8zw/n7Hm9XHp47Ug5z0EnHdNRGVxVQz/Q/lF9c CYeI7OJPrQ6FTvxsxa0NvidBHiAlQTsAvFhKyvUvof7X4jKwZKU8uicr/SMGpwzm 1wgfDl6xy/YoQgcrPNPmKk7Xz2oDxTIrgUXFuz0uG0phZmK8NQ6ftB88dJaYfq5T QVRSYucJspOYEGSrhHKSDF/TGf39bigepRPmiaEVo72NxDpTHmYnBl/uEjjx6OC4 afikENpUw38Z75fIrRiTCkDw/BwgoQxyNLRS04/dj/z0h6a4cFXPNLbiEdVE3L0D bn5Wn+yRVa7eGO3Y -----END CERTIFICATE-----Generated at Tue Feb 10 00:13:29 2026 by rpki-client