This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/P79D1v19Ian523KEZhSWszXoZD0.roa File: P79D1v19Ian523KEZhSWszXoZD0.roa (raw, json) Hash identifier: XkrTvVGVwlwgPhzg8wu1CLzCIaP1i1FjUsoY2a47FY8= Subject key identifier: 3F:BF:43:D6:FD:7D:21:A9:F9:DB:72:84:66:14:96:B3:35:E8:64:3D Certificate issuer: /CN=d5f94786d036685440901a3dce5a334cf13272a0 Certificate serial: 019B79EBD66ECE5EF01BAD9B2A03295B0018 Authority key identifier: D5:F9:47:86:D0:36:68:54:40:90:1A:3D:CE:5A:33:4C:F1:32:72:A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1flHhtA2aFRAkBo9zlozTPEycqA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/P79D1v19Ian523KEZhSWszXoZD0.roa Signing time: Thu 01 Jan 2026 14:17:37 +0000 ROA not before: Thu 01 Jan 2026 14:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 62093 IP address blocks: 171.22.211.0/24 maxlen: 24 185.110.20.0/22 maxlen: 22 2a02:c540::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/1flHhtA2aFRAkBo9zlozTPEycqA.crl rsync://rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/1flHhtA2aFRAkBo9zlozTPEycqA.mft rsync://rpki.ripe.net/repository/DEFAULT/1flHhtA2aFRAkBo9zlozTPEycqA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:d6:6e:ce:5e:f0:1b:ad:9b:2a:03:29:5b:00:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d5f94786d036685440901a3dce5a334cf13272a0 Validity Not Before: Jan 1 14:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3fbf43d6fd7d21a9f9db7284661496b335e8643d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e8:92:53:3c:73:b6:b5:97:05:d8:8a:5d:6b: 2e:9c:35:4f:30:d9:f1:94:94:25:06:e8:7c:0c:ba: dd:a5:27:94:5d:c7:c1:44:01:22:1f:fb:eb:f7:81: dc:89:da:ec:d8:1c:fd:b6:74:c8:4a:d1:e8:e9:fa: 6d:ad:79:59:cb:ec:4b:df:62:ab:aa:94:e6:23:26: ec:7e:3b:68:00:b0:9d:1c:33:94:91:46:a5:aa:49: 8c:1c:1c:86:09:9e:1c:71:41:f4:f9:4d:45:f4:be: cf:68:a3:5e:ea:60:00:d1:28:38:38:4b:de:54:1a: d6:8f:87:70:82:aa:32:55:2c:c7:5a:20:fe:3f:31: 83:61:57:0c:31:53:70:54:7d:60:93:1a:1a:6a:6e: 95:ff:d0:98:db:d9:60:3a:bd:db:ea:62:36:45:ba: 55:f5:43:4f:69:9a:1d:71:0a:54:26:26:2c:b2:c9: 00:45:7b:5f:9c:bb:9c:39:fb:97:df:a2:74:61:81: da:4c:2f:48:79:5c:40:16:a1:a7:4a:51:f3:1b:4f: 9f:04:16:f5:88:94:e6:80:7b:e7:6b:a5:ba:60:18: 24:eb:41:99:86:cf:5f:c5:48:d1:af:61:14:5e:49: 7c:bd:ea:33:33:fb:ba:bc:3a:f7:37:c8:16:2c:13: e4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BF:43:D6:FD:7D:21:A9:F9:DB:72:84:66:14:96:B3:35:E8:64:3D X509v3 Authority Key Identifier: keyid:D5:F9:47:86:D0:36:68:54:40:90:1A:3D:CE:5A:33:4C:F1:32:72:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1flHhtA2aFRAkBo9zlozTPEycqA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/P79D1v19Ian523KEZhSWszXoZD0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/70496c-63b8-47c8-a769-c9a69683a8e8/1/1flHhtA2aFRAkBo9zlozTPEycqA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 171.22.211.0/24 185.110.20.0/22 IPv6: 2a02:c540::/29 Signature Algorithm: sha256WithRSAEncryption 69:8b:2c:20:4f:39:08:84:75:31:b1:7d:8b:99:d0:f4:5b:5f: 1f:9f:57:26:3b:a5:ee:c3:ef:f7:4c:75:db:34:ff:8e:dc:37: 32:06:8e:d5:e3:76:c6:0c:5d:1a:f4:36:d1:c0:fd:ca:58:b2: 37:d5:a4:58:cb:44:a7:25:b4:72:39:07:05:cf:86:d1:2c:3b: cd:43:17:05:bb:34:89:75:89:e3:56:20:59:75:5a:02:54:c3: 21:7e:e0:49:10:c5:f8:90:99:60:bb:fb:d4:2e:85:c4:2e:c7: 42:99:c7:ec:8f:2d:54:32:c3:10:b9:67:b8:b1:bf:0d:68:52: ec:d3:92:01:a3:90:35:74:20:1e:05:6c:61:05:4a:a7:56:37: 87:6d:f8:50:39:8e:5a:1e:f5:9c:14:93:0b:f6:09:63:c7:38: ae:4f:6c:89:05:2a:96:a0:b3:08:05:d8:f2:fa:6d:a0:53:d2: d2:e6:85:14:44:b0:c0:80:cd:db:0d:4e:97:10:e5:30:21:c3: b3:20:fd:d3:b6:60:96:9b:f0:15:25:8d:6a:cf:f2:ab:62:46: 12:5a:62:03:66:e4:02:57:66:07:11:76:ea:de:08:69:f5:ed: 9c:99:f4:a2:a5:dd:7c:db:92:0e:7e:5f:a7:c5:94:ba:2f:2a: 8c:53:59:d6 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt569Zuzl7wG62bKgMpWwAYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ1Zjk0Nzg2ZDAzNjY4NTQ0MDkwMWEzZGNlNWEzMzRjZjEz MjcyYTAwHhcNMjYwMTAxMTQxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZmJmNDNkNmZkN2QyMWE5ZjlkYjcyODQ2NjE0OTZiMzM1ZTg2NDNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuiSUzxztrWXBdiKXWsunDVPMNnx lJQlBuh8DLrdpSeUXcfBRAEiH/vr94Hcidrs2Bz9tnTIStHo6fptrXlZy+xL32Kr qpTmIybsfjtoALCdHDOUkUalqkmMHByGCZ4ccUH0+U1F9L7PaKNe6mAA0Sg4OEve VBrWj4dwgqoyVSzHWiD+PzGDYVcMMVNwVH1gkxoaam6V/9CY29lgOr3b6mI2RbpV 9UNPaZodcQpUJiYssskARXtfnLucOfuX36J0YYHaTC9IeVxAFqGnSlHzG0+fBBb1 iJTmgHvna6W6YBgk60GZhs9fxUjRr2EUXkl8veozM/u6vDr3N8gWLBPkQQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFD+/Q9b9fSGp+dtyhGYUlrM16GQ9MB8GA1UdIwQY MBaAFNX5R4bQNmhUQJAaPc5aM0zxMnKgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMWZsSGh0QTJhRlJBa0JvOXpsb3pUUEV5Y3FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy83MDQ5NmMtNjNiOC00N2M4LWE3Njkt YzlhNjk2ODNhOGU4LzEvUDc5RDF2MTlJYW41MjNLRVpoU1dzelhvWkQwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yy83MDQ5NmMtNjNiOC00N2M4LWE3NjktYzlhNjk2ODNhOGU4 LzEvMWZsSGh0QTJhRlJBa0JvOXpsb3pUUEV5Y3FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQAqxbTAwQC uW4UMA0EAgACMAcDBQMqAsVAMA0GCSqGSIb3DQEBCwUAA4IBAQBpiywgTzkIhHUx sX2LmdD0W18fn1cmO6Xuw+/3THXbNP+O3DcyBo7V43bGDF0a9DbRwP3KWLI31aRY y0SnJbRyOQcFz4bRLDvNQxcFuzSJdYnjViBZdVoCVMMhfuBJEMX4kJlgu/vULoXE LsdCmcfsjy1UMsMQuWe4sb8NaFLs05IBo5A1dCAeBWxhBUqnVjeHbfhQOY5aHvWc FJML9gljxziuT2yJBSqWoLMIBdjy+m2gU9LS5oUURLDAgM3bDU6XEOUwIcOzIP3T tmCWm/AVJY1qz/KrYkYSWmIDZuQCV2YHEXbq3ghp9e2cmfSipd1825IOfl+nxZS6 LyqMU1nW -----END CERTIFICATE-----Generated at Tue Feb 10 00:13:17 2026 by rpki-client