This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/64666e-af1b-4118-823d-5de99a52aa39/1/ChSIg1aH6Sa_zZYL915QNKTUErU.roa File: ChSIg1aH6Sa_zZYL915QNKTUErU.roa (raw, json) Hash identifier: qJ341GmlhFr65YVSbjKJGdZNne3uNTbQkMWmODy8law= Subject key identifier: 0A:14:88:83:56:87:E9:26:BF:CD:96:0B:F7:5E:50:34:A4:D4:12:B5 Certificate issuer: /CN=d26e4538f1ddea77f57396bb93b907f152df697c Certificate serial: 019B7EA6A3458940C384FD027F2AF5DB7903 Authority key identifier: D2:6E:45:38:F1:DD:EA:77:F5:73:96:BB:93:B9:07:F1:52:DF:69:7C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0m5FOPHd6nf1c5a7k7kH8VLfaXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/64666e-af1b-4118-823d-5de99a52aa39/1/ChSIg1aH6Sa_zZYL915QNKTUErU.roa Signing time: Fri 02 Jan 2026 12:20:08 +0000 ROA not before: Fri 02 Jan 2026 12:20:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204983 IP address blocks: 185.233.172.0/22 maxlen: 22 2a0c:eb00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/64666e-af1b-4118-823d-5de99a52aa39/1/0m5FOPHd6nf1c5a7k7kH8VLfaXw.crl rsync://rpki.ripe.net/repository/DEFAULT/7a/64666e-af1b-4118-823d-5de99a52aa39/1/0m5FOPHd6nf1c5a7k7kH8VLfaXw.mft rsync://rpki.ripe.net/repository/DEFAULT/0m5FOPHd6nf1c5a7k7kH8VLfaXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a3:45:89:40:c3:84:fd:02:7f:2a:f5:db:79:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d26e4538f1ddea77f57396bb93b907f152df697c Validity Not Before: Jan 2 12:20:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a1488835687e926bfcd960bf75e5034a4d412b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:74:8b:b1:96:b8:0f:55:c2:8d:26:8d:95:b9: b6:a0:3e:24:e9:d2:3c:7d:ee:26:ca:7a:b5:6e:7b: 1b:3c:d8:3e:57:fe:d0:dd:83:c4:d8:0c:b1:d0:8b: 14:06:ef:4c:c3:1e:98:f3:98:9c:13:d5:35:70:60: da:78:94:c2:6f:02:33:e7:ff:17:e8:67:ca:ef:15: 49:d9:f7:89:94:7c:c3:7b:79:54:ed:c4:65:b9:26: f0:ed:8f:49:e1:67:c0:89:4b:44:33:06:6d:46:67: 54:1d:d0:36:bb:45:08:68:f0:75:d9:58:b8:92:f4: e9:72:cc:69:ab:4c:52:d3:ca:07:ac:30:47:76:64: cb:05:52:e2:30:a9:4b:e9:f2:3d:83:a7:92:40:f6: 50:b9:aa:aa:8f:af:8a:2a:35:16:99:41:b4:93:4f: 07:24:8f:cb:9c:ad:e9:c8:54:9c:33:45:50:af:1a: 65:1a:c1:c4:44:7d:6d:f0:21:34:40:3b:0f:ec:41: 78:5d:a0:0c:11:aa:37:23:89:2c:ae:00:47:07:94: 82:60:54:86:d9:8e:99:8e:69:c1:ee:f6:06:43:11: e9:29:2d:86:11:0d:58:5e:cd:fb:87:d2:c1:06:65: 0b:db:21:74:5a:09:26:d1:f1:1b:2c:63:d9:14:d8: 96:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:14:88:83:56:87:E9:26:BF:CD:96:0B:F7:5E:50:34:A4:D4:12:B5 X509v3 Authority Key Identifier: keyid:D2:6E:45:38:F1:DD:EA:77:F5:73:96:BB:93:B9:07:F1:52:DF:69:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0m5FOPHd6nf1c5a7k7kH8VLfaXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/64666e-af1b-4118-823d-5de99a52aa39/1/ChSIg1aH6Sa_zZYL915QNKTUErU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/64666e-af1b-4118-823d-5de99a52aa39/1/0m5FOPHd6nf1c5a7k7kH8VLfaXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.233.172.0/22 IPv6: 2a0c:eb00::/32 Signature Algorithm: sha256WithRSAEncryption 90:5a:f1:1c:c3:1e:4e:aa:47:ba:d7:bf:00:cc:55:a8:7f:4c: e1:cd:62:e4:b8:05:c3:d5:d4:07:82:79:16:62:cc:e5:d1:d4: 65:05:67:95:b0:cc:d3:05:07:df:72:12:f4:9e:70:dc:83:1b: d3:69:e2:51:d9:34:a7:c9:95:ba:c7:36:99:55:d8:d0:df:16: ff:dc:1e:e9:77:f4:2d:c5:ed:9a:14:d6:05:5f:fe:43:ce:fd: fd:67:b9:5b:67:c4:58:1c:18:9b:cd:16:23:de:6b:6c:8d:cc: 5f:11:17:36:f4:cc:6b:32:55:5b:60:26:59:d7:3a:84:5d:97: 76:06:8e:a4:d6:52:cd:95:cd:4a:10:7e:00:5e:31:f3:f1:05: 3a:a6:63:d9:eb:ad:ea:f0:f9:ce:f6:d3:2c:71:14:f0:cc:61: a9:21:ad:6d:66:73:16:13:2a:d6:15:40:06:90:1e:01:df:4a: a1:86:39:e9:9a:2a:1e:58:35:11:48:b4:0c:6a:00:f7:c6:c9: 34:64:30:f4:21:d7:ed:28:3e:ea:27:9d:09:cd:ce:09:78:b4: 65:74:e4:94:5b:16:79:8a:f0:64:61:0b:6c:55:24:a7:54:b0: b8:fc:30:5f:bb:b0:41:54:29:03:41:65:e7:94:67:69:10:ad: 2e:77:94:2c -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+pqNFiUDDhP0Cfyr123kDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNmU0NTM4ZjFkZGVhNzdmNTczOTZiYjkzYjkwN2YxNTJk ZjY5N2MwHhcNMjYwMTAyMTIyMDA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTE0ODg4MzU2ODdlOTI2YmZjZDk2MGJmNzVlNTAzNGE0ZDQxMmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhXSLsZa4D1XCjSaNlbm2oD4k6dI8 fe4mynq1bnsbPNg+V/7Q3YPE2Ayx0IsUBu9Mwx6Y85icE9U1cGDaeJTCbwIz5/8X 6GfK7xVJ2feJlHzDe3lU7cRluSbw7Y9J4WfAiUtEMwZtRmdUHdA2u0UIaPB12Vi4 kvTpcsxpq0xS08oHrDBHdmTLBVLiMKlL6fI9g6eSQPZQuaqqj6+KKjUWmUG0k08H JI/LnK3pyFScM0VQrxplGsHERH1t8CE0QDsP7EF4XaAMEao3I4ksrgBHB5SCYFSG 2Y6ZjmnB7vYGQxHpKS2GEQ1YXs37h9LBBmUL2yF0Wgkm0fEbLGPZFNiWvwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAoUiINWh+kmv82WC/deUDSk1BK1MB8GA1UdIwQY MBaAFNJuRTjx3ep39XOWu5O5B/FS32l8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG01Rk9QSGQ2bmYxYzVhN2s3a0g4VkxmYVh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS82NDY2NmUtYWYxYi00MTE4LTgyM2Qt NWRlOTlhNTJhYTM5LzEvQ2hTSWcxYUg2U2FfelpZTDkxNVFOS1RVRXJVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83YS82NDY2NmUtYWYxYi00MTE4LTgyM2QtNWRlOTlhNTJhYTM5 LzEvMG01Rk9QSGQ2bmYxYzVhN2s3a0g4VkxmYVh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuemsMA0E AgACMAcDBQAqDOsAMA0GCSqGSIb3DQEBCwUAA4IBAQCQWvEcwx5Oqke6178AzFWo f0zhzWLkuAXD1dQHgnkWYszl0dRlBWeVsMzTBQffchL0nnDcgxvTaeJR2TSnyZW6 xzaZVdjQ3xb/3B7pd/Qtxe2aFNYFX/5Dzv39Z7lbZ8RYHBibzRYj3mtsjcxfERc2 9MxrMlVbYCZZ1zqEXZd2Bo6k1lLNlc1KEH4AXjHz8QU6pmPZ663q8PnO9tMscRTw zGGpIa1tZnMWEyrWFUAGkB4B30qhhjnpmioeWDURSLQMagD3xsk0ZDD0IdftKD7q J50Jzc4JeLRldOSUWxZ5ivBkYQtsVSSnVLC4/DBfu7BBVCkDQWXnlGdpEK0ud5Qs -----END CERTIFICATE-----Generated at Tue Feb 10 00:08:24 2026 by rpki-client