This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/CODBHLL76kvV5Qoxx12ifwuJ430.roa File: CODBHLL76kvV5Qoxx12ifwuJ430.roa (raw, json) Hash identifier: aYjgy7JYh3+PwYmVg/lQZAVSTIaumS2/ByrRxhGDLbo= Subject key identifier: 08:E0:C1:1C:B2:FB:EA:4B:D5:E5:0A:31:C7:5D:A2:7F:0B:89:E3:7D Certificate issuer: /CN=66a2fe934ed1def75f0636ae7cf0198c81d348b4 Certificate serial: 019B7C1233009008188D49A431456CA691C2 Authority key identifier: 66:A2:FE:93:4E:D1:DE:F7:5F:06:36:AE:7C:F0:19:8C:81:D3:48:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZqL-k07R3vdfBjaufPAZjIHTSLQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/CODBHLL76kvV5Qoxx12ifwuJ430.roa Signing time: Fri 02 Jan 2026 00:18:45 +0000 ROA not before: Fri 02 Jan 2026 00:18:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204897 IP address blocks: 217.26.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/ZqL-k07R3vdfBjaufPAZjIHTSLQ.crl rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/ZqL-k07R3vdfBjaufPAZjIHTSLQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ZqL-k07R3vdfBjaufPAZjIHTSLQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:33:00:90:08:18:8d:49:a4:31:45:6c:a6:91:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66a2fe934ed1def75f0636ae7cf0198c81d348b4 Validity Not Before: Jan 2 00:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=08e0c11cb2fbea4bd5e50a31c75da27f0b89e37d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:41:b5:cb:b7:45:48:ce:85:ae:40:2a:1f:ae: f0:2b:d6:08:65:19:6c:a1:e9:b5:7a:51:90:e6:3a: 35:e9:db:7a:c2:7c:5b:9f:e9:8a:2e:5a:33:f2:cc: 73:70:e2:6c:61:e3:c3:78:c4:86:a7:ef:7c:a4:70: db:17:70:69:a2:45:fc:27:fc:b6:d5:96:73:eb:90: e1:2c:82:d7:69:11:72:ab:50:df:94:75:d0:e5:3a: be:3c:ae:ea:33:cc:0a:63:14:7c:6f:bd:20:39:00: c4:fe:7d:05:b4:e1:a1:8a:07:5c:6e:23:a0:21:77: dc:41:f1:a7:c3:09:e1:5d:c3:7a:18:ec:94:81:f0: b4:f9:fc:4d:67:0e:a6:16:c4:c5:c0:33:19:75:e7: 66:e7:45:8b:31:dd:d3:3f:e7:47:0c:b1:ab:a0:96: cf:23:4d:8f:58:1a:b7:1e:ee:bb:69:62:4d:68:ea: d1:4a:66:52:b2:44:fd:0d:68:92:42:e0:1d:5c:a1: ea:e6:db:1c:08:60:4e:55:36:84:ec:46:4d:57:b6: 58:48:87:a5:fa:74:91:e2:70:6c:d1:8f:c1:8d:20: a5:3e:7c:3b:e0:22:c6:3a:37:f7:8d:0a:db:3b:90: 16:8e:93:66:ba:83:9a:bd:22:8d:cb:6b:e2:18:a8: 8c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E0:C1:1C:B2:FB:EA:4B:D5:E5:0A:31:C7:5D:A2:7F:0B:89:E3:7D X509v3 Authority Key Identifier: keyid:66:A2:FE:93:4E:D1:DE:F7:5F:06:36:AE:7C:F0:19:8C:81:D3:48:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZqL-k07R3vdfBjaufPAZjIHTSLQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/CODBHLL76kvV5Qoxx12ifwuJ430.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/ce8e59-e062-421a-9f46-4edf19b35eca/1/ZqL-k07R3vdfBjaufPAZjIHTSLQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.26.218.0/24 Signature Algorithm: sha256WithRSAEncryption 47:6f:4b:9f:da:db:1f:42:69:75:1f:58:a0:9b:c3:eb:4f:af: be:00:7b:97:01:63:df:40:24:f1:12:8f:2e:14:11:7a:59:68: 2d:f3:85:4d:bb:5b:dc:de:8c:fd:fa:0c:d0:f0:9f:fc:06:05: 0e:b9:0a:10:8a:be:99:df:40:1b:44:71:56:d3:e8:96:83:3f: 3b:0c:b0:0f:e0:29:ed:56:39:9a:3f:13:ac:b2:a9:50:2a:f3: 7a:53:25:35:85:9d:e5:02:f2:48:b5:a7:fa:a3:27:69:80:7b: ca:3d:9b:f1:38:ca:85:13:d5:29:1f:70:14:99:68:33:44:9d: 0b:4e:77:e4:5a:44:84:c5:ba:77:17:05:bd:36:91:6c:73:86: 90:23:26:f6:d3:7f:ba:40:7b:35:2e:b0:ad:fb:8e:66:52:bd: 15:af:7f:d4:1c:ec:71:db:8f:88:06:97:c3:e9:b5:88:0d:23: be:5b:ba:bd:5c:52:41:a6:2b:3e:8e:9e:59:79:44:06:ed:23: d0:33:fd:ee:0f:55:92:d2:38:39:3b:9d:1d:0b:ef:5f:96:48: c4:1c:4a:84:08:14:ff:5d:c9:b6:f2:8a:ca:fc:71:e0:9d:0a: 2d:3d:6e:69:fd:c8:02:64:ca:7e:de:89:e3:4c:57:d5:7f:e2: 6a:d8:bc:16 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EjMAkAgYjUmkMUVsppHCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2YTJmZTkzNGVkMWRlZjc1ZjA2MzZhZTdjZjAxOThjODFk MzQ4YjQwHhcNMjYwMTAyMDAxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOGUwYzExY2IyZmJlYTRiZDVlNTBhMzFjNzVkYTI3ZjBiODllMzdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu0G1y7dFSM6FrkAqH67wK9YIZRls oem1elGQ5jo16dt6wnxbn+mKLloz8sxzcOJsYePDeMSGp+98pHDbF3BpokX8J/y2 1ZZz65DhLILXaRFyq1DflHXQ5Tq+PK7qM8wKYxR8b70gOQDE/n0FtOGhigdcbiOg IXfcQfGnwwnhXcN6GOyUgfC0+fxNZw6mFsTFwDMZdedm50WLMd3TP+dHDLGroJbP I02PWBq3Hu67aWJNaOrRSmZSskT9DWiSQuAdXKHq5tscCGBOVTaE7EZNV7ZYSIel +nSR4nBs0Y/BjSClPnw74CLGOjf3jQrbO5AWjpNmuoOavSKNy2viGKiMFwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAjgwRyy++pL1eUKMcddon8LieN9MB8GA1UdIwQY MBaAFGai/pNO0d73XwY2rnzwGYyB00i0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnFMLWswN1IzdmRmQmphdWZQQVpqSUhUU0xRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9jZThlNTktZTA2Mi00MjFhLTlmNDYt NGVkZjE5YjM1ZWNhLzEvQ09EQkhMTDc2a3ZWNVFveHgxMmlmd3VKNDMwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS9jZThlNTktZTA2Mi00MjFhLTlmNDYtNGVkZjE5YjM1ZWNh LzEvWnFMLWswN1IzdmRmQmphdWZQQVpqSUhUU0xRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2RraMA0G CSqGSIb3DQEBCwUAA4IBAQBHb0uf2tsfQml1H1igm8PrT6++AHuXAWPfQCTxEo8u FBF6WWgt84VNu1vc3oz9+gzQ8J/8BgUOuQoQir6Z30AbRHFW0+iWgz87DLAP4Cnt VjmaPxOssqlQKvN6UyU1hZ3lAvJItaf6oydpgHvKPZvxOMqFE9UpH3AUmWgzRJ0L TnfkWkSExbp3FwW9NpFsc4aQIyb203+6QHs1LrCt+45mUr0Vr3/UHOxx24+IBpfD 6bWIDSO+W7q9XFJBpis+jp5ZeUQG7SPQM/3uD1WS0jg5O50dC+9flkjEHEqECBT/ Xcm28orK/HHgnQotPW5p/cgCZMp+3onjTFfVf+Jq2LwW -----END CERTIFICATE-----Generated at Tue Feb 10 04:27:46 2026 by rpki-client