This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/a918cb-2044-4f1c-9700-93601a34f62f/1/tCG1FeRfHW_nriK48nPwFZvr8aA.roa File: tCG1FeRfHW_nriK48nPwFZvr8aA.roa (raw, json) Hash identifier: 1uIdhKpi1jrMe+aiCHw9SG1ZaSILM55F3BJ28+kk3Es= Subject key identifier: B4:21:B5:15:E4:5F:1D:6F:E7:AE:22:B8:F2:73:F0:15:9B:EB:F1:A0 Certificate issuer: /CN=7fb50e7d3b7fd2894cfb70e494608b320cc215c1 Certificate serial: 019B79ECD432D7A653DCA59861EAD720371E Authority key identifier: 7F:B5:0E:7D:3B:7F:D2:89:4C:FB:70:E4:94:60:8B:32:0C:C2:15:C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f7UOfTt_0olM-3DklGCLMgzCFcE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/a918cb-2044-4f1c-9700-93601a34f62f/1/tCG1FeRfHW_nriK48nPwFZvr8aA.roa Signing time: Thu 01 Jan 2026 14:18:42 +0000 ROA not before: Thu 01 Jan 2026 14:18:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198104 IP address blocks: 2.57.237.0/24 maxlen: 24 2a12:a440::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/a918cb-2044-4f1c-9700-93601a34f62f/1/f7UOfTt_0olM-3DklGCLMgzCFcE.crl rsync://rpki.ripe.net/repository/DEFAULT/96/a918cb-2044-4f1c-9700-93601a34f62f/1/f7UOfTt_0olM-3DklGCLMgzCFcE.mft rsync://rpki.ripe.net/repository/DEFAULT/f7UOfTt_0olM-3DklGCLMgzCFcE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:d4:32:d7:a6:53:dc:a5:98:61:ea:d7:20:37:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7fb50e7d3b7fd2894cfb70e494608b320cc215c1 Validity Not Before: Jan 1 14:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b421b515e45f1d6fe7ae22b8f273f0159bebf1a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ae:74:a2:8e:bf:d0:20:2d:15:64:13:59:59: 4b:27:b6:c5:3d:9f:b5:b5:ec:8d:e8:0e:d0:6c:00: 2e:0a:43:fe:ea:78:cb:29:cb:fd:d0:dd:ee:11:55: fe:ec:19:7b:6a:1c:e2:e6:bc:48:99:da:64:cc:06: 58:44:93:ee:f2:3b:48:14:f1:9d:51:4b:6b:ac:14: 0a:52:30:46:01:47:30:ac:2a:15:91:96:97:05:42: 1f:49:7a:8b:84:52:5e:21:9a:9c:8d:19:65:a1:cc: 5b:1b:54:bb:31:d5:b1:53:c6:50:ac:87:97:5f:64: 26:cb:9f:80:0f:7e:42:71:cd:92:50:2d:27:fa:5e: 67:43:61:85:ac:02:cb:ce:7b:6c:21:84:01:f9:64: 16:0d:ff:a4:8a:82:12:b2:43:f3:df:5f:ca:1d:da: 21:4a:78:5f:ff:9d:78:80:e7:78:e9:5f:fa:77:93: bc:df:b2:80:73:2f:1d:31:26:20:48:10:8f:b5:03: 2b:e0:b6:79:33:8b:df:bb:13:5b:50:83:88:32:d3: fb:bc:3a:d4:1b:f2:ed:02:73:29:d5:0e:cc:80:f0: a5:68:60:c4:6d:d9:6f:fb:0b:ff:a0:7d:26:3e:1e: 65:4e:f3:77:6f:dd:39:82:af:ac:be:08:74:b6:a5: 37:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:21:B5:15:E4:5F:1D:6F:E7:AE:22:B8:F2:73:F0:15:9B:EB:F1:A0 X509v3 Authority Key Identifier: keyid:7F:B5:0E:7D:3B:7F:D2:89:4C:FB:70:E4:94:60:8B:32:0C:C2:15:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7UOfTt_0olM-3DklGCLMgzCFcE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a918cb-2044-4f1c-9700-93601a34f62f/1/tCG1FeRfHW_nriK48nPwFZvr8aA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/96/a918cb-2044-4f1c-9700-93601a34f62f/1/f7UOfTt_0olM-3DklGCLMgzCFcE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.237.0/24 IPv6: 2a12:a440::/29 Signature Algorithm: sha256WithRSAEncryption 22:df:bc:24:88:d0:e5:25:bc:a5:47:55:9f:7d:a9:81:af:30: 63:ec:33:59:43:ac:22:23:0a:90:06:a5:7d:a9:64:6a:8a:9e: 14:f1:ca:d8:df:d1:8c:f2:4e:28:b4:f7:e6:0a:b1:29:43:db: 95:f0:90:15:4e:eb:bc:3c:82:71:c9:17:e2:80:54:cb:10:a7: 53:8e:c9:6a:55:a5:9e:79:a0:77:9f:64:aa:cc:05:4e:ba:21: bc:23:2c:4f:d0:60:32:92:58:3a:16:4c:c1:6a:fd:6a:c9:6f: 99:cb:50:6d:6f:80:dc:1f:04:a1:97:88:d4:13:87:61:8f:e0: 53:1b:b9:10:3e:9a:cd:c9:77:b3:5a:a2:5a:cc:0b:72:6f:16: b1:cf:df:78:2a:6f:a5:a4:a3:58:2d:d9:90:3d:33:87:60:16: 33:76:c5:d3:de:9b:6e:8a:4c:cb:08:2c:69:a5:1a:78:e1:28: 09:7e:d8:6c:9c:fa:af:ff:bb:2d:a4:9a:bc:13:b0:9d:eb:98: ae:13:09:2a:cf:31:a3:6f:d0:0f:03:a6:05:1a:69:04:84:cc: c7:eb:85:1f:1f:3c:8f:65:5c:6f:38:60:a7:46:58:03:c2:c9: 2d:1f:60:e4:97:ee:55:c9:31:40:5f:9f:99:e5:34:8f:52:90: dc:46:6b:c3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt57NQy16ZT3KWYYerXIDceMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmYjUwZTdkM2I3ZmQyODk0Y2ZiNzBlNDk0NjA4YjMyMGNj MjE1YzEwHhcNMjYwMTAxMTQxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDIxYjUxNWU0NWYxZDZmZTdhZTIyYjhmMjczZjAxNTliZWJmMWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq650oo6/0CAtFWQTWVlLJ7bFPZ+1 teyN6A7QbAAuCkP+6njLKcv90N3uEVX+7Bl7ahzi5rxImdpkzAZYRJPu8jtIFPGd UUtrrBQKUjBGAUcwrCoVkZaXBUIfSXqLhFJeIZqcjRllocxbG1S7MdWxU8ZQrIeX X2Qmy5+AD35Ccc2SUC0n+l5nQ2GFrALLzntsIYQB+WQWDf+kioISskPz31/KHdoh Snhf/514gOd46V/6d5O837KAcy8dMSYgSBCPtQMr4LZ5M4vfuxNbUIOIMtP7vDrU G/LtAnMp1Q7MgPClaGDEbdlv+wv/oH0mPh5lTvN3b905gq+svgh0tqU3fQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFLQhtRXkXx1v564iuPJz8BWb6/GgMB8GA1UdIwQY MBaAFH+1Dn07f9KJTPtw5JRgizIMwhXBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZjdVT2ZUdF8wb2xNLTNEa2xHQ0xNZ3pDRmNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni9hOTE4Y2ItMjA0NC00ZjFjLTk3MDAt OTM2MDFhMzRmNjJmLzEvdENHMUZlUmZIV19ucmlLNDhuUHdGWnZyOGFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Ni9hOTE4Y2ItMjA0NC00ZjFjLTk3MDAtOTM2MDFhMzRmNjJm LzEvZjdVT2ZUdF8wb2xNLTNEa2xHQ0xNZ3pDRmNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAAjntMA0E AgACMAcDBQMqEqRAMA0GCSqGSIb3DQEBCwUAA4IBAQAi37wkiNDlJbylR1WffamB rzBj7DNZQ6wiIwqQBqV9qWRqip4U8crY39GM8k4otPfmCrEpQ9uV8JAVTuu8PIJx yRfigFTLEKdTjslqVaWeeaB3n2SqzAVOuiG8IyxP0GAyklg6FkzBav1qyW+Zy1Bt b4DcHwShl4jUE4dhj+BTG7kQPprNyXezWqJazAtybxaxz994Km+lpKNYLdmQPTOH YBYzdsXT3ptuikzLCCxppRp44SgJfthsnPqv/7stpJq8E7Cd65iuEwkqzzGjb9AP A6YFGmkEhMzH64UfHzyPZVxvOGCnRlgDwsktH2Dkl+5VyTFAX5+Z5TSPUpDcRmvD -----END CERTIFICATE-----Generated at Mon Feb 9 19:39:18 2026 by rpki-client