This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/aRFGRkrVW4tSAzMOBGbwJhIU8vI.roa File: aRFGRkrVW4tSAzMOBGbwJhIU8vI.roa (raw, json) Hash identifier: Lo8StkiOJatbskiLh2LCukF3ojNljMu1U3MvMXSb67w= Subject key identifier: 69:11:46:46:4A:D5:5B:8B:52:03:33:0E:04:66:F0:26:12:14:F2:F2 Certificate issuer: /CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294 Certificate serial: 019C297696908EB9BE794BB5D7EFC175A09B Authority key identifier: 91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/aRFGRkrVW4tSAzMOBGbwJhIU8vI.roa Signing time: Wed 04 Feb 2026 16:22:43 +0000 ROA not before: Wed 04 Feb 2026 16:22:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 398478 IP address blocks: 222.167.192.0/24 maxlen: 24 222.167.194.0/24 maxlen: 24 222.167.196.0/24 maxlen: 24 222.167.197.0/24 maxlen: 24 222.167.199.0/24 maxlen: 24 222.167.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.mft rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:29:76:96:90:8e:b9:be:79:4b:b5:d7:ef:c1:75:a0:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=914aa557c3d3d1e6b7f0525c34cc1d488a5a9294 Validity Not Before: Feb 4 16:22:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=691146464ad55b8b5203330e0466f0261214f2f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2c:5e:3d:2b:fc:d4:02:39:d1:ec:af:47:2e: 15:b2:f2:87:50:92:da:5d:b5:02:60:a6:c5:5a:0e: cf:7c:33:82:74:37:12:1d:2e:72:a6:50:11:88:a6: 62:23:ae:2b:59:00:e2:76:40:91:b1:55:f4:d1:83: fb:bc:92:a9:9f:35:ae:27:8a:c0:2c:18:47:ff:7e: 8c:6b:63:1f:c0:26:26:1d:42:76:c9:f6:4f:a9:33: 47:5f:34:c8:63:16:28:10:2e:4d:10:91:45:49:6b: 5b:38:c2:88:89:0e:47:09:66:2b:2b:b1:62:8f:31: 51:8b:a2:a2:1e:da:e8:8c:f3:11:50:d6:74:31:f0: 59:a0:50:89:4e:d4:10:a2:ab:89:b2:1e:e4:b1:df: be:7c:1d:d6:22:5c:04:8b:04:2a:0b:28:b2:2d:3d: 2e:b2:29:24:13:df:ba:e2:c4:3a:cc:3a:6d:47:e1: d5:1c:74:83:f6:09:eb:15:93:f8:94:3c:73:bc:08: 5a:e0:14:d6:46:3a:7f:6b:ed:db:a7:1a:68:22:6c: 70:d0:f8:95:39:3a:e7:d6:4c:72:18:d0:42:1f:d1: 49:de:27:23:8a:0b:d8:34:b6:fb:ce:c5:3e:a3:2b: cb:34:4e:89:6f:ac:04:47:f0:19:cd:e4:e0:63:93: 89:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:11:46:46:4A:D5:5B:8B:52:03:33:0E:04:66:F0:26:12:14:F2:F2 X509v3 Authority Key Identifier: keyid:91:4A:A5:57:C3:D3:D1:E6:B7:F0:52:5C:34:CC:1D:48:8A:5A:92:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUqlV8PT0ea38FJcNMwdSIpakpQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/aRFGRkrVW4tSAzMOBGbwJhIU8vI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/99/db97d0-28f2-4329-b856-4a348e7be441/1/kUqlV8PT0ea38FJcNMwdSIpakpQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 222.167.192.0/24 222.167.194.0/24 222.167.196.0/23 222.167.199.0-222.167.207.255 Signature Algorithm: sha256WithRSAEncryption 51:aa:73:9e:fa:c2:c6:68:83:e2:da:53:2a:bc:04:e1:0f:b0: e4:44:81:4a:cb:0f:5c:63:ab:0a:b9:e3:dd:40:c3:26:68:b2: 11:6b:9a:df:b4:27:d0:34:98:33:9a:98:f5:0d:fb:72:f5:45: 51:e3:cd:ef:3f:a7:9c:86:d3:12:3f:33:8d:29:5b:95:2d:7f: 8a:6e:1d:bf:c1:76:a7:a6:15:1c:07:49:18:20:cd:82:b3:09: 8f:86:61:43:36:65:6a:9b:ba:1c:42:e0:20:a3:23:72:7a:54: d4:af:9f:f8:89:53:ca:42:dd:48:a7:56:56:34:68:b7:50:27: 53:eb:9b:fb:f9:a6:7b:4c:be:9e:f0:36:68:9a:29:89:18:4a: 7c:a5:ed:12:39:f7:64:03:69:84:4c:05:41:c2:8d:e4:da:f4: ec:c2:89:83:a8:32:4d:14:a9:da:9c:af:46:7e:e4:af:09:32: de:50:2c:02:a2:44:b1:18:fe:e0:f6:48:25:9b:ee:39:77:bb: f2:2a:ea:60:ee:21:5a:b0:6f:0d:e4:2e:3f:cc:6f:19:52:00: d6:b0:ac:13:07:32:bb:8d:4c:4c:aa:6a:9e:ab:40:2f:ef:38: 51:73:c6:ad:36:4e:6b:bb:34:c9:21:96:f0:86:d0:c5:db:04: b7:d5:23:84 -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZwpdpaQjrm+eUu11+/BdaCbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxNGFhNTU3YzNkM2QxZTZiN2YwNTI1YzM0Y2MxZDQ4OGE1 YTkyOTQwHhcNMjYwMjA0MTYyMjQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTExNDY0NjRhZDU1YjhiNTIwMzMzMGUwNDY2ZjAyNjEyMTRmMmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSxePSv81AI50eyvRy4VsvKHUJLa XbUCYKbFWg7PfDOCdDcSHS5yplARiKZiI64rWQDidkCRsVX00YP7vJKpnzWuJ4rA LBhH/36Ma2MfwCYmHUJ2yfZPqTNHXzTIYxYoEC5NEJFFSWtbOMKIiQ5HCWYrK7Fi jzFRi6KiHtrojPMRUNZ0MfBZoFCJTtQQoquJsh7ksd++fB3WIlwEiwQqCyiyLT0u sikkE9+64sQ6zDptR+HVHHSD9gnrFZP4lDxzvAha4BTWRjp/a+3bpxpoImxw0PiV OTrn1kxyGNBCH9FJ3icjigvYNLb7zsU+oyvLNE6Jb6wER/AZzeTgY5OJ9wIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFGkRRkZK1VuLUgMzDgRm8CYSFPLyMB8GA1UdIwQY MBaAFJFKpVfD09Hmt/BSXDTMHUiKWpKUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1VxbFY4UFQwZWEzOEZKY05Nd2RTSXBha3BRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9kYjk3ZDAtMjhmMi00MzI5LWI4NTYt NGEzNDhlN2JlNDQxLzEvYVJGR1JrclZXNHRTQXpNT0JHYndKaElVOHZJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85OS9kYjk3ZDAtMjhmMi00MzI5LWI4NTYtNGEzNDhlN2JlNDQx LzEva1VxbFY4UFQwZWEzOEZKY05Nd2RTSXBha3BRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQA3qfAAwQA 3qfCAwQB3qfEMAwDBADep8cDBATep8AwDQYJKoZIhvcNAQELBQADggEBAFGqc576 wsZog+LaUyq8BOEPsOREgUrLD1xjqwq5491AwyZoshFrmt+0J9A0mDOamPUN+3L1 RVHjze8/p5yG0xI/M40pW5Utf4puHb/BdqemFRwHSRggzYKzCY+GYUM2ZWqbuhxC 4CCjI3J6VNSvn/iJU8pC3UinVlY0aLdQJ1Prm/v5pntMvp7wNmiaKYkYSnyl7RI5 92QDaYRMBUHCjeTa9OzCiYOoMk0Uqdqcr0Z+5K8JMt5QLAKiRLEY/uD2SCWb7jl3 u/Iq6mDuIVqwbw3kLj/MbxlSANawrBMHMruNTEyqap6rQC/vOFFzxq02Tmu7NMkh lvCG0MXbBLfVI4Q= -----END CERTIFICATE-----Generated at Tue Feb 10 04:15:34 2026 by rpki-client