This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/Ko6ayuDYOxyaZR1lB_4YUKhJxd8.roa File: Ko6ayuDYOxyaZR1lB_4YUKhJxd8.roa (raw, json) Hash identifier: Guqjr9wNF8VXnju8V9KS/FQotrR92a30mYmLze8RF50= Subject key identifier: 2A:8E:9A:CA:E0:D8:3B:1C:9A:65:1D:65:07:FE:18:50:A8:49:C5:DF Certificate issuer: /CN=d8679f95ca9b656b7ca221be6eb24f95e328b010 Certificate serial: 019C106E9C91118CF1E61BC3058C977AAB5D Authority key identifier: D8:67:9F:95:CA:9B:65:6B:7C:A2:21:BE:6E:B2:4F:95:E3:28:B0:10 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GeflcqbZWt8oiG-brJPleMosBA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/Ko6ayuDYOxyaZR1lB_4YUKhJxd8.roa Signing time: Fri 30 Jan 2026 19:43:30 +0000 ROA not before: Fri 30 Jan 2026 19:43:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215137 IP address blocks: 194.238.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.crl rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.mft rsync://rpki.ripe.net/repository/DEFAULT/2GeflcqbZWt8oiG-brJPleMosBA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:10:6e:9c:91:11:8c:f1:e6:1b:c3:05:8c:97:7a:ab:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d8679f95ca9b656b7ca221be6eb24f95e328b010 Validity Not Before: Jan 30 19:43:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2a8e9acae0d83b1c9a651d6507fe1850a849c5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:1f:ed:31:a7:1e:96:b9:c3:db:50:3c:2e: db:3d:68:ac:cd:7e:5b:1c:e9:59:24:a5:e4:69:97: 8b:ae:cf:a4:63:9f:3f:15:67:a5:88:83:ea:0b:74: 97:e8:68:2e:31:92:16:85:dd:1c:fc:69:eb:bc:6a: 6d:dc:af:f3:3f:7d:73:5f:46:bb:d8:94:b0:ae:d2: c2:7a:1e:4e:b8:97:9e:1f:96:6c:c0:33:25:9d:6c: 1b:47:4c:a3:a4:4e:95:76:cc:09:68:0e:33:c0:4a: 19:50:d9:96:cc:a1:25:99:f7:a0:f7:97:11:6c:50: b5:9b:af:a5:c6:97:a3:b0:d5:7b:2f:cb:cc:a3:ea: 64:1f:ea:40:ff:d0:0d:cf:b4:00:5a:8c:1e:4b:3d: 83:c5:b0:03:7b:ca:41:c9:e4:ea:09:09:7e:44:5e: f8:39:9a:c3:72:7e:d8:26:23:7b:75:26:f0:0e:16: 02:31:3b:81:27:51:77:6d:96:e6:5a:8c:67:bd:48: 61:27:c5:57:65:90:38:c9:5b:f7:e7:93:83:90:d5: 58:dc:49:a2:d9:67:e1:d8:f2:09:1b:30:ab:c8:4a: 58:30:77:86:6c:9b:07:36:75:cf:5e:e4:11:d5:db: a5:fb:50:f1:22:c8:85:d7:4f:ae:1b:2b:aa:9f:83: aa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:8E:9A:CA:E0:D8:3B:1C:9A:65:1D:65:07:FE:18:50:A8:49:C5:DF X509v3 Authority Key Identifier: keyid:D8:67:9F:95:CA:9B:65:6B:7C:A2:21:BE:6E:B2:4F:95:E3:28:B0:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GeflcqbZWt8oiG-brJPleMosBA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/Ko6ayuDYOxyaZR1lB_4YUKhJxd8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c4d05f-10d5-4f8f-9a37-e5229ad5214e/1/2GeflcqbZWt8oiG-brJPleMosBA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.238.59.0/24 Signature Algorithm: sha256WithRSAEncryption 53:0e:4a:b6:2a:5e:00:60:f4:22:08:9a:1c:ce:24:a4:21:9d: 41:f4:8e:ea:7d:f2:7d:27:df:7b:ee:72:52:c3:be:db:ea:b8: d9:06:28:d6:31:d8:5f:89:f5:cf:a5:e1:f4:b7:9e:56:d2:c6: d7:20:f2:21:26:63:e3:f8:b3:03:c9:9d:7e:2d:74:b5:22:0a: 8f:db:7b:cf:17:fe:a7:de:ac:0d:ac:e4:ca:80:e6:d0:33:89: 9b:17:48:8a:cc:4a:67:9c:2e:3a:95:6f:c5:36:a6:3c:28:2a: 62:08:a2:72:dd:1c:16:a6:39:54:04:40:ff:61:3d:96:3a:d4: c5:45:dc:37:6f:b9:a8:b7:62:6a:fb:bb:3c:f7:09:66:f3:4f: 4b:2c:6b:8c:77:e2:b5:06:1e:da:d8:40:f5:e4:44:8f:8f:a8: 3e:76:bb:42:32:d2:9f:c7:e2:57:22:59:59:d5:ad:10:a5:39: 6f:e1:5e:d3:da:9f:a7:eb:90:37:4f:61:16:8b:37:69:57:53: 94:e4:4a:d2:de:96:f9:61:d1:1a:c9:fe:f4:61:53:25:31:14: 85:16:64:04:31:8d:8f:ef:69:8f:72:e2:60:a1:aa:dd:1f:55: b7:e0:16:dc:a0:27:f6:2d:b1:ba:e5:f4:76:78:b2:da:0f:8a: 7a:d9:49:cd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZwQbpyREYzx5hvDBYyXeqtdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ4Njc5Zjk1Y2E5YjY1NmI3Y2EyMjFiZTZlYjI0Zjk1ZTMy OGIwMTAwHhcNMjYwMTMwMTk0MzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYThlOWFjYWUwZDgzYjFjOWE2NTFkNjUwN2ZlMTg1MGE4NDljNWRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZof7TGnHpa5w9tQPC7bPWiszX5b HOlZJKXkaZeLrs+kY58/FWeliIPqC3SX6GguMZIWhd0c/GnrvGpt3K/zP31zX0a7 2JSwrtLCeh5OuJeeH5ZswDMlnWwbR0yjpE6VdswJaA4zwEoZUNmWzKElmfeg95cR bFC1m6+lxpejsNV7L8vMo+pkH+pA/9ANz7QAWoweSz2DxbADe8pByeTqCQl+RF74 OZrDcn7YJiN7dSbwDhYCMTuBJ1F3bZbmWoxnvUhhJ8VXZZA4yVv355ODkNVY3Emi 2Wfh2PIJGzCryEpYMHeGbJsHNnXPXuQR1dul+1DxIsiF10+uGyuqn4OqsQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCqOmsrg2DscmmUdZQf+GFCoScXfMB8GA1UdIwQY MBaAFNhnn5XKm2VrfKIhvm6yT5XjKLAQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMkdlZmxjcWJaV3Q4b2lHLWJySlBsZU1vc0JBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni9jNGQwNWYtMTBkNS00ZjhmLTlhMzct ZTUyMjlhZDUyMTRlLzEvS282YXl1RFlPeHlhWlIxbEJfNFlVS2hKeGQ4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni9jNGQwNWYtMTBkNS00ZjhmLTlhMzctZTUyMjlhZDUyMTRl LzEvMkdlZmxjcWJaV3Q4b2lHLWJySlBsZU1vc0JBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwu47MA0G CSqGSIb3DQEBCwUAA4IBAQBTDkq2Kl4AYPQiCJocziSkIZ1B9I7qffJ9J9977nJS w77b6rjZBijWMdhfifXPpeH0t55W0sbXIPIhJmPj+LMDyZ1+LXS1IgqP23vPF/6n 3qwNrOTKgObQM4mbF0iKzEpnnC46lW/FNqY8KCpiCKJy3RwWpjlUBED/YT2WOtTF Rdw3b7mot2Jq+7s89wlm809LLGuMd+K1Bh7a2ED15ESPj6g+drtCMtKfx+JXIllZ 1a0QpTlv4V7T2p+n65A3T2EWizdpV1OU5ErS3pb5YdEayf70YVMlMRSFFmQEMY2P 72mPcuJgoardH1W34BbcoCf2LbG65fR2eLLaD4p62UnN -----END CERTIFICATE-----Generated at Tue Feb 10 02:46:16 2026 by rpki-client