This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/CvfDNt_o3V9Xyed6qs_Km7x3Pic.roa File: CvfDNt_o3V9Xyed6qs_Km7x3Pic.roa (raw, json) Hash identifier: vJACC0uKZmQi+4OgqVZ0iCIi7einYP0jPPi7IU1FuY4= Subject key identifier: 0A:F7:C3:36:DF:E8:DD:5F:57:C9:E7:7A:AA:CF:CA:9B:BC:77:3E:27 Certificate issuer: /CN=fe414ea21a9116d2cdf8f5c02d08673afa576893 Certificate serial: 019B797E0BEB51CFF04A10899027CDD8236C Authority key identifier: FE:41:4E:A2:1A:91:16:D2:CD:F8:F5:C0:2D:08:67:3A:FA:57:68:93 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/CvfDNt_o3V9Xyed6qs_Km7x3Pic.roa Signing time: Thu 01 Jan 2026 12:17:42 +0000 ROA not before: Thu 01 Jan 2026 12:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 59533 IP address blocks: 91.218.100.0/24 maxlen: 24 91.218.101.0/24 maxlen: 24 91.218.102.0/24 maxlen: 24 91.218.103.0/24 maxlen: 24 91.219.200.0/24 maxlen: 24 91.219.201.0/24 maxlen: 24 91.219.202.0/24 maxlen: 24 91.219.203.0/24 maxlen: 24 91.235.180.0/24 maxlen: 24 91.235.181.0/24 maxlen: 24 91.240.112.0/24 maxlen: 24 91.240.113.0/24 maxlen: 24 193.150.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.crl rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.mft rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:0b:eb:51:cf:f0:4a:10:89:90:27:cd:d8:23:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe414ea21a9116d2cdf8f5c02d08673afa576893 Validity Not Before: Jan 1 12:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0af7c336dfe8dd5f57c9e77aaacfca9bbc773e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:51:e1:b0:b9:be:ab:41:10:0e:26:4a:0b:1d: 29:6f:7f:7e:4f:e1:00:da:7f:c7:d7:0c:d9:ed:f9: 14:35:30:21:4d:72:26:d4:c7:93:4c:b4:93:df:e6: b1:d1:91:51:d1:ec:3a:7f:d9:2b:ff:12:c5:4f:6b: 2d:72:4e:e1:2d:2e:f9:64:0d:4e:03:d7:2c:3e:92: b8:6f:32:05:12:38:dd:e3:f6:47:1a:9f:5b:bc:e7: f0:7f:e2:70:20:8b:4e:0f:60:0d:fe:ce:12:01:9c: 04:a5:ff:07:35:36:ee:8c:ed:9f:0e:23:ad:ce:49: 35:ff:c7:f8:90:c0:b6:ce:28:38:9a:94:a8:98:09: 39:f8:15:37:8b:ad:55:2d:21:8e:13:02:00:67:45: 69:42:25:5c:72:54:4e:77:bd:51:21:49:4f:f7:84: 3f:c7:a5:01:39:02:2d:af:97:e0:f8:e1:d2:3e:75: 3d:6b:5c:96:75:9c:cd:b5:03:c9:6a:5e:67:d8:32: 71:89:ff:a7:34:29:cf:b2:e3:a3:b7:9a:54:15:b5: 79:d5:70:b2:a9:f3:58:10:d4:8c:cc:00:3e:8b:cf: a4:a0:b3:e8:95:be:73:6f:23:03:c8:66:a8:a5:89: 4f:4b:19:67:db:7c:40:26:d6:18:63:33:0f:d5:79: c6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:F7:C3:36:DF:E8:DD:5F:57:C9:E7:7A:AA:CF:CA:9B:BC:77:3E:27 X509v3 Authority Key Identifier: keyid:FE:41:4E:A2:1A:91:16:D2:CD:F8:F5:C0:2D:08:67:3A:FA:57:68:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_kFOohqRFtLN-PXALQhnOvpXaJM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/CvfDNt_o3V9Xyed6qs_Km7x3Pic.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/e71d21-a360-4579-81a0-bcca26fc8945/1/_kFOohqRFtLN-PXALQhnOvpXaJM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.218.100.0/22 91.219.200.0/22 91.235.180.0/23 91.240.112.0/23 193.150.52.0/23 Signature Algorithm: sha256WithRSAEncryption 68:bf:f4:08:27:48:b2:61:3a:7c:d4:f8:f3:d9:07:af:a8:2c: 11:48:ae:66:95:56:96:d2:43:ec:5a:53:d6:21:a8:43:2d:10: 9b:fd:95:bd:36:b7:38:01:0f:47:b7:3d:a2:a7:e0:62:31:82: aa:39:eb:96:83:c8:c1:0d:dd:45:54:8f:e6:83:68:f3:c3:18: 38:11:96:19:71:f6:db:d9:59:43:6e:ba:9b:c2:52:ac:ca:5a: b8:9b:23:c2:5d:46:d0:70:5b:ca:51:c0:5e:1d:b5:ed:88:7a: b1:e2:f3:b5:54:c3:95:78:86:17:62:f6:ae:73:e9:62:05:67: b7:71:63:8d:f9:24:a8:6f:93:f6:38:07:25:36:74:d9:37:2f: 7c:e0:79:d4:4b:0a:ed:93:05:15:f9:cb:f9:e3:71:c3:ae:bf: d0:3a:99:01:f2:0e:e0:23:d8:b6:9f:81:a5:a8:cd:72:cb:21: 55:46:30:21:5e:ee:0d:5c:97:0e:80:65:53:40:3d:36:e9:61: de:66:bb:3c:c3:ae:eb:34:e1:a6:b8:9d:43:df:2e:bd:a9:d3: f3:07:de:b2:d2:86:b0:b0:e5:0f:20:3e:4b:e6:f3:19:9d:f4: df:2e:aa:d7:b3:80:68:f9:58:d4:3f:0d:51:4a:96:13:b3:17: ee:c7:49:81 -----BEGIN CERTIFICATE----- MIIFFTCCA/2gAwIBAgISAZt5fgvrUc/wShCJkCfN2CNsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlNDE0ZWEyMWE5MTE2ZDJjZGY4ZjVjMDJkMDg2NzNhZmE1 NzY4OTMwHhcNMjYwMTAxMTIxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYWY3YzMzNmRmZThkZDVmNTdjOWU3N2FhYWNmY2E5YmJjNzczZTI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFHhsLm+q0EQDiZKCx0pb39+T+EA 2n/H1wzZ7fkUNTAhTXIm1MeTTLST3+ax0ZFR0ew6f9kr/xLFT2stck7hLS75ZA1O A9csPpK4bzIFEjjd4/ZHGp9bvOfwf+JwIItOD2AN/s4SAZwEpf8HNTbujO2fDiOt zkk1/8f4kMC2zig4mpSomAk5+BU3i61VLSGOEwIAZ0VpQiVcclROd71RIUlP94Q/ x6UBOQItr5fg+OHSPnU9a1yWdZzNtQPJal5n2DJxif+nNCnPsuOjt5pUFbV51XCy qfNYENSMzAA+i8+koLPolb5zbyMDyGaopYlPSxln23xAJtYYYzMP1XnGqQIDAQAB o4ICITCCAh0wHQYDVR0OBBYEFAr3wzbf6N1fV8nneqrPypu8dz4nMB8GA1UdIwQY MBaAFP5BTqIakRbSzfj1wC0IZzr6V2iTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2tGT29ocVJGdExOLVBYQUxRaG5PdnBYYUpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9lNzFkMjEtYTM2MC00NTc5LTgxYTAt YmNjYTI2ZmM4OTQ1LzEvQ3ZmRE50X28zVjlYeWVkNnFzX0ttN3gzUGljLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9lNzFkMjEtYTM2MC00NTc5LTgxYTAtYmNjYTI2ZmM4OTQ1 LzEvX2tGT29ocVJGdExOLVBYQUxRaG5PdnBYYUpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQCW9pkAwQC W9vIAwQBW+u0AwQBW/BwAwQBwZY0MA0GCSqGSIb3DQEBCwUAA4IBAQBov/QIJ0iy YTp81Pjz2QevqCwRSK5mlVaW0kPsWlPWIahDLRCb/ZW9Nrc4AQ9Htz2ip+BiMYKq OeuWg8jBDd1FVI/mg2jzwxg4EZYZcfbb2VlDbrqbwlKsylq4myPCXUbQcFvKUcBe HbXtiHqx4vO1VMOVeIYXYvauc+liBWe3cWON+SSob5P2OAclNnTZNy984HnUSwrt kwUV+cv543HDrr/QOpkB8g7gI9i2n4GlqM1yyyFVRjAhXu4NXJcOgGVTQD026WHe Zrs8w67rNOGmuJ1D3y69qdPzB96y0oawsOUPID5L5vMZnfTfLqrXs4Bo+VjUPw1R SpYTsxfux0mB -----END CERTIFICATE-----Generated at Tue Feb 10 04:53:37 2026 by rpki-client