This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/CGIudVXCrepRzQTBt85vZJmjWpo.roa File: CGIudVXCrepRzQTBt85vZJmjWpo.roa (raw, json) Hash identifier: 8O0DvJ5SLPtG+IA7H/3uG8tAsZJbbxGTVvWUhrbb/RI= Subject key identifier: 08:62:2E:75:55:C2:AD:EA:51:CD:04:C1:B7:CE:6F:64:99:A3:5A:9A Certificate issuer: /CN=845d042f65e1b1303a44e43e0e02748a75837b44 Certificate serial: 019B7F142783B836FD36A89ADD21FCD81D5D Authority key identifier: 84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/CGIudVXCrepRzQTBt85vZJmjWpo.roa Signing time: Fri 02 Jan 2026 14:19:45 +0000 ROA not before: Fri 02 Jan 2026 14:19:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201789 IP address blocks: 185.54.160.0/24 maxlen: 24 185.54.161.0/24 maxlen: 24 185.54.162.0/24 maxlen: 24 185.54.163.0/24 maxlen: 24 185.119.88.0/24 maxlen: 24 185.119.91.0/24 maxlen: 24 185.241.213.0/24 maxlen: 24 185.241.214.0/24 maxlen: 24 2a0c:bf80:1b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.mft rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:14:27:83:b8:36:fd:36:a8:9a:dd:21:fc:d8:1d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=845d042f65e1b1303a44e43e0e02748a75837b44 Validity Not Before: Jan 2 14:19:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=08622e7555c2adea51cd04c1b7ce6f6499a35a9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8f:1e:c3:53:c1:d5:e7:6b:1a:13:b9:13:6f: 63:b6:93:fa:b2:d5:1b:ba:8e:fd:b3:84:7e:7a:af: 61:af:f2:f3:15:ca:83:ca:45:49:fb:a8:5e:8a:8c: 59:c8:7a:9a:dc:8b:b3:e6:cf:b5:0b:d1:8a:9b:a9: 4f:2e:d1:c4:2c:f0:53:07:cf:76:fc:23:e8:3b:b0: d7:47:f1:37:19:66:55:ad:53:c4:72:b0:f9:79:be: 62:00:9e:2b:59:20:78:89:1d:7b:8b:c4:7d:3d:b1: 2e:94:20:c9:c7:be:d8:30:3b:b5:45:27:94:49:87: da:27:26:bd:81:70:39:ae:3b:b1:61:b1:f2:56:27: ed:b4:4f:08:22:88:48:78:a2:9e:9a:e7:be:ae:12: f0:41:df:f4:86:60:33:c8:d5:3a:74:4c:c2:7e:6a: 7b:7d:ba:58:bb:c6:66:f3:2e:1e:d4:45:a9:0f:7a: 06:a5:1d:0c:f1:85:9b:55:2b:0d:4b:72:60:2c:b3: 79:86:98:79:a7:9f:2c:d8:df:da:6d:23:0c:29:c6: de:74:90:ef:2d:9a:7e:cd:93:95:d1:2c:db:fe:90: e6:97:24:d0:e2:a8:fb:39:31:e8:e9:b7:58:d2:69: 54:d0:66:80:d9:6b:9f:bb:c4:ed:50:ef:e2:a4:61: 0f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:62:2E:75:55:C2:AD:EA:51:CD:04:C1:B7:CE:6F:64:99:A3:5A:9A X509v3 Authority Key Identifier: keyid:84:5D:04:2F:65:E1:B1:30:3A:44:E4:3E:0E:02:74:8A:75:83:7B:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/CGIudVXCrepRzQTBt85vZJmjWpo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/96dbcd-6a39-4c20-9128-d8c351d93ec6/1/hF0EL2XhsTA6ROQ-DgJ0inWDe0Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.54.160.0/22 185.119.88.0/24 185.119.91.0/24 185.241.213.0-185.241.214.255 IPv6: 2a0c:bf80:1b::/48 Signature Algorithm: sha256WithRSAEncryption 1e:2a:9b:41:29:cf:15:97:94:34:e7:2c:a0:09:4d:aa:7a:32: aa:87:47:95:7c:3b:32:bc:40:81:92:03:8e:ff:3a:90:d9:41: 28:fa:e5:12:d0:35:c7:48:03:c5:fd:bd:cc:2c:9f:ed:18:8f: dd:4a:90:ef:a6:d5:9c:91:16:27:d4:93:fb:9a:f2:53:59:f0: 3d:54:29:23:e2:b5:9d:d9:8f:6e:c6:b8:c2:79:c6:be:25:bb: ac:99:68:da:64:85:fb:b8:1b:db:19:c3:cc:4c:e3:20:70:48: a8:47:8e:43:51:11:68:df:39:c2:cf:00:b9:cc:8d:1d:f6:8b: 17:7d:98:59:db:c4:fc:11:91:af:ce:d0:f9:56:3a:a7:f8:cf: e9:f3:64:27:c4:02:6f:d6:7c:f6:56:de:e6:84:9a:7b:13:e4: b0:43:13:7a:17:b9:ad:3d:86:1f:49:15:8e:c4:2c:11:7e:23: 87:b5:46:bd:44:5b:52:cb:9e:ef:dd:ef:40:d4:16:40:41:bf: 1b:ff:4d:9a:1a:f4:59:1d:1b:aa:ff:5d:40:f0:a5:8d:f3:9d: 43:e9:73:3c:6e:8f:ee:df:cb:ad:d5:ba:fa:5d:9b:22:a0:68: 5d:ac:87:cf:34:4d:b7:43:c6:c0:c1:20:39:2a:dc:91:9d:9a: 80:c1:9d:d1 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgISAZt/FCeDuDb9Nqia3SH82B1dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0NWQwNDJmNjVlMWIxMzAzYTQ0ZTQzZTBlMDI3NDhhNzU4 MzdiNDQwHhcNMjYwMTAyMTQxOTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODYyMmU3NTU1YzJhZGVhNTFjZDA0YzFiN2NlNmY2NDk5YTM1YTlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2I8ew1PB1edrGhO5E29jtpP6stUb uo79s4R+eq9hr/LzFcqDykVJ+6heioxZyHqa3Iuz5s+1C9GKm6lPLtHELPBTB892 /CPoO7DXR/E3GWZVrVPEcrD5eb5iAJ4rWSB4iR17i8R9PbEulCDJx77YMDu1RSeU SYfaJya9gXA5rjuxYbHyVifttE8IIohIeKKemue+rhLwQd/0hmAzyNU6dEzCfmp7 fbpYu8Zm8y4e1EWpD3oGpR0M8YWbVSsNS3JgLLN5hph5p58s2N/abSMMKcbedJDv LZp+zZOV0Szb/pDmlyTQ4qj7OTHo6bdY0mlU0GaA2Wufu8TtUO/ipGEPDwIDAQAB o4ICNDCCAjAwHQYDVR0OBBYEFAhiLnVVwq3qUc0EwbfOb2SZo1qaMB8GA1UdIwQY MBaAFIRdBC9l4bEwOkTkPg4CdIp1g3tEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaEYwRUwyWGhzVEE2Uk9RLURnSjBpbldEZTBRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS85NmRiY2QtNmEzOS00YzIwLTkxMjgt ZDhjMzUxZDkzZWM2LzEvQ0dJdWRWWENyZXBSelFUQnQ4NXZaSm1qV3BvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS85NmRiY2QtNmEzOS00YzIwLTkxMjgtZDhjMzUxZDkzZWM2 LzEvaEYwRUwyWGhzVEE2Uk9RLURnSjBpbldEZTBRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTAmBAIAATAgAwQCuTagAwQA uXdYAwQAuXdbMAwDBAC58dUDBAC58dYwDwQCAAIwCQMHACoMv4AAGzANBgkqhkiG 9w0BAQsFAAOCAQEAHiqbQSnPFZeUNOcsoAlNqnoyqodHlXw7MrxAgZIDjv86kNlB KPrlEtA1x0gDxf29zCyf7RiP3UqQ76bVnJEWJ9ST+5ryU1nwPVQpI+K1ndmPbsa4 wnnGviW7rJlo2mSF+7gb2xnDzEzjIHBIqEeOQ1ERaN85ws8AucyNHfaLF32YWdvE /BGRr87Q+VY6p/jP6fNkJ8QCb9Z89lbe5oSaexPksEMTehe5rT2GH0kVjsQsEX4j h7VGvURbUsue793vQNQWQEG/G/9Nmhr0WR0bqv9dQPCljfOdQ+lzPG6P7t/LrdW6 +l2bIqBoXayHzzRNt0PGwMEgOSrckZ2agMGd0Q== -----END CERTIFICATE-----Generated at Tue Feb 10 02:58:52 2026 by rpki-client