This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/CjTHzz_pedQNs9Wy-ktvieMeLZU.roa File: CjTHzz_pedQNs9Wy-ktvieMeLZU.roa (raw, json) Hash identifier: GewhMZdSVK/eP+WdUo1TepjK8vxWB2eP26Uvtne0FXk= Subject key identifier: 0A:34:C7:CF:3F:E9:79:D4:0D:B3:D5:B2:FA:4B:6F:89:E3:1E:2D:95 Certificate issuer: /CN=c9633fa6fc66b43639c056d02174f80c2426614b Certificate serial: 019B7F1567AF8720C640B73F2B191D763486 Authority key identifier: C9:63:3F:A6:FC:66:B4:36:39:C0:56:D0:21:74:F8:0C:24:26:61:4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yWM_pvxmtDY5wFbQIXT4DCQmYUs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/CjTHzz_pedQNs9Wy-ktvieMeLZU.roa Signing time: Fri 02 Jan 2026 14:21:07 +0000 ROA not before: Fri 02 Jan 2026 14:21:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 185.166.140.0/23 maxlen: 24 185.166.142.0/24 maxlen: 24 185.166.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/yWM_pvxmtDY5wFbQIXT4DCQmYUs.crl rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/yWM_pvxmtDY5wFbQIXT4DCQmYUs.mft rsync://rpki.ripe.net/repository/DEFAULT/yWM_pvxmtDY5wFbQIXT4DCQmYUs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:67:af:87:20:c6:40:b7:3f:2b:19:1d:76:34:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c9633fa6fc66b43639c056d02174f80c2426614b Validity Not Before: Jan 2 14:21:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a34c7cf3fe979d40db3d5b2fa4b6f89e31e2d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:80:ae:77:ae:29:62:77:95:8f:1c:76:46:75: f3:27:b6:44:7d:a2:a4:29:83:f4:85:d5:83:39:9f: 87:35:0d:04:c6:f8:a6:cd:97:55:74:b1:07:25:ed: 5b:f0:32:5a:1e:34:71:48:10:29:36:f4:94:22:8a: fc:28:07:11:cc:88:60:6f:ca:b8:6f:73:03:8c:bb: 86:a8:bd:a4:fe:16:98:f1:ae:1e:93:3c:6d:6a:6e: 55:5c:22:37:1e:ba:be:74:20:3d:83:c3:76:03:8e: db:95:da:c8:73:5a:42:6f:1f:62:d9:ba:32:94:f0: 87:7b:20:84:32:0e:5a:a1:29:a4:55:54:40:59:b1: d1:ac:9f:36:da:1c:22:7c:e4:66:c7:53:80:0c:b2: 03:82:a8:ff:a4:1c:5f:fb:a7:1e:0d:c4:9c:01:4b: fd:8e:f8:fc:14:95:7e:40:19:bd:8c:84:02:d3:03: 50:2e:f1:9d:04:8a:2f:10:75:44:b3:d9:7e:6b:df: 01:27:c3:31:16:e7:43:f3:bc:09:45:fd:98:ec:e2: c1:3a:75:5f:64:fa:36:19:80:4c:ec:ff:44:9a:54: 0b:fe:47:38:00:db:35:18:6a:47:7f:d8:35:56:22: 18:46:e3:6e:6a:65:6e:ae:66:4d:db:94:10:5e:48: 1a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:34:C7:CF:3F:E9:79:D4:0D:B3:D5:B2:FA:4B:6F:89:E3:1E:2D:95 X509v3 Authority Key Identifier: keyid:C9:63:3F:A6:FC:66:B4:36:39:C0:56:D0:21:74:F8:0C:24:26:61:4B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yWM_pvxmtDY5wFbQIXT4DCQmYUs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/CjTHzz_pedQNs9Wy-ktvieMeLZU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/9cb329-0fe9-4ffe-be5f-038a54e3912f/1/yWM_pvxmtDY5wFbQIXT4DCQmYUs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.140.0/22 Signature Algorithm: sha256WithRSAEncryption 92:bb:2a:c7:6f:49:78:82:90:51:e7:c4:e4:e6:2d:34:80:86: 38:68:29:fd:30:c5:1d:97:37:5c:fe:94:7c:0b:ec:fe:da:f0: bb:7a:c4:67:f5:17:18:dc:d1:91:7d:1d:d9:c6:a0:ee:58:9d: ea:55:27:36:5b:1e:d6:db:83:17:16:9c:23:2c:96:80:e0:92: 30:a7:82:8f:1c:c9:20:11:b5:ec:62:2a:b5:23:ec:e6:42:3f: bc:d9:95:76:2d:79:93:f7:a2:fc:f0:5c:0b:58:a3:05:db:36: cd:68:23:f4:36:39:f2:fc:7e:7d:a8:2b:c4:1f:8d:7c:38:14: 7a:05:e0:a6:bc:29:46:58:72:e0:41:a8:e4:cf:c6:9f:08:af: fa:73:0a:a6:74:e0:e3:41:c4:1e:2e:78:12:cc:73:f1:a4:4e: 08:2e:f9:3a:01:a1:ad:d5:51:fd:8f:b8:52:a3:c9:36:cc:53: a0:84:46:a9:30:1b:d0:b7:0b:de:b4:ba:04:fc:70:64:e0:f9: 92:24:a4:33:c1:0c:6a:81:97:e6:43:f3:73:78:2e:bb:a3:3c: 77:20:3c:15:03:4e:55:fc:b0:52:c9:1a:ff:a0:f8:cd:0c:ba: 85:c3:e4:e5:72:87:e9:79:03:29:39:59:5d:f8:9f:2c:5a:ac: 61:28:09:79 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FWevhyDGQLc/KxkddjSGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM5NjMzZmE2ZmM2NmI0MzYzOWMwNTZkMDIxNzRmODBjMjQy NjYxNGIwHhcNMjYwMTAyMTQyMTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTM0YzdjZjNmZTk3OWQ0MGRiM2Q1YjJmYTRiNmY4OWUzMWUyZDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroCud64pYneVjxx2RnXzJ7ZEfaKk KYP0hdWDOZ+HNQ0ExvimzZdVdLEHJe1b8DJaHjRxSBApNvSUIor8KAcRzIhgb8q4 b3MDjLuGqL2k/haY8a4ekzxtam5VXCI3Hrq+dCA9g8N2A47bldrIc1pCbx9i2boy lPCHeyCEMg5aoSmkVVRAWbHRrJ822hwifORmx1OADLIDgqj/pBxf+6ceDcScAUv9 jvj8FJV+QBm9jIQC0wNQLvGdBIovEHVEs9l+a98BJ8MxFudD87wJRf2Y7OLBOnVf ZPo2GYBM7P9EmlQL/kc4ANs1GGpHf9g1ViIYRuNuamVurmZN25QQXkgaxQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAo0x88/6XnUDbPVsvpLb4njHi2VMB8GA1UdIwQY MBaAFMljP6b8ZrQ2OcBW0CF0+AwkJmFLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveVdNX3B2eG10RFk1d0ZiUUlYVDREQ1FtWVVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi85Y2IzMjktMGZlOS00ZmZlLWJlNWYt MDM4YTU0ZTM5MTJmLzEvQ2pUSHp6X3BlZFFOczlXeS1rdHZpZU1lTFpVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi85Y2IzMjktMGZlOS00ZmZlLWJlNWYtMDM4YTU0ZTM5MTJm LzEveVdNX3B2eG10RFk1d0ZiUUlYVDREQ1FtWVVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuaaMMA0G CSqGSIb3DQEBCwUAA4IBAQCSuyrHb0l4gpBR58Tk5i00gIY4aCn9MMUdlzdc/pR8 C+z+2vC7esRn9RcY3NGRfR3ZxqDuWJ3qVSc2Wx7W24MXFpwjLJaA4JIwp4KPHMkg EbXsYiq1I+zmQj+82ZV2LXmT96L88FwLWKMF2zbNaCP0Njny/H59qCvEH418OBR6 BeCmvClGWHLgQajkz8afCK/6cwqmdODjQcQeLngSzHPxpE4ILvk6AaGt1VH9j7hS o8k2zFOghEapMBvQtwvetLoE/HBk4PmSJKQzwQxqgZfmQ/NzeC67ozx3IDwVA05V /LBSyRr/oPjNDLqFw+TlcofpeQMpOVld+J8sWqxhKAl5 -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:04 2026 by rpki-client