This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/ch32gMkwgIvhncaw2j6_w1rWqBM.roa File: ch32gMkwgIvhncaw2j6_w1rWqBM.roa (raw, json) Hash identifier: 2zNuBXW5TRNjyq7/jYrllStnRO2aSpxPfwq4qZw6++Y= Subject key identifier: 72:1D:F6:80:C9:30:80:8B:E1:9D:C6:B0:DA:3E:BF:C3:5A:D6:A8:13 Certificate issuer: /CN=c19b5a2c49e1c648a70c708ae1bde40b644c7802 Certificate serial: 019B7C808F5BDD424C67727F59E777064E4B Authority key identifier: C1:9B:5A:2C:49:E1:C6:48:A7:0C:70:8A:E1:BD:E4:0B:64:4C:78:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wZtaLEnhxkinDHCK4b3kC2RMeAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/ch32gMkwgIvhncaw2j6_w1rWqBM.roa Signing time: Fri 02 Jan 2026 02:19:18 +0000 ROA not before: Fri 02 Jan 2026 02:19:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42148 IP address blocks: 45.94.116.0/22 maxlen: 22 45.94.116.0/24 maxlen: 24 45.94.117.0/24 maxlen: 24 45.94.118.0/24 maxlen: 24 45.94.119.0/24 maxlen: 24 45.134.64.0/22 maxlen: 22 45.134.64.0/24 maxlen: 24 45.134.65.0/24 maxlen: 24 45.134.66.0/24 maxlen: 24 45.134.67.0/24 maxlen: 24 185.150.152.0/22 maxlen: 22 2a07:7180::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/wZtaLEnhxkinDHCK4b3kC2RMeAI.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/wZtaLEnhxkinDHCK4b3kC2RMeAI.mft rsync://rpki.ripe.net/repository/DEFAULT/wZtaLEnhxkinDHCK4b3kC2RMeAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:8f:5b:dd:42:4c:67:72:7f:59:e7:77:06:4e:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c19b5a2c49e1c648a70c708ae1bde40b644c7802 Validity Not Before: Jan 2 02:19:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=721df680c930808be19dc6b0da3ebfc35ad6a813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:14:09:df:48:de:1b:4c:e9:be:9f:7f:07:3a: 60:b1:d2:e6:c9:c4:96:e5:28:cb:e3:f5:48:e4:a2: 27:68:57:bf:2a:48:48:7f:65:9f:8e:83:35:04:f0: 27:c8:d3:a6:9a:8e:02:02:9f:49:69:cd:fc:03:09: e3:fc:85:34:9c:fd:0b:d8:f7:bf:dc:9f:89:9d:20: 1e:92:c3:52:5c:22:ac:e3:5b:e9:e3:f6:31:70:2f: ba:3a:96:20:56:d5:a0:bb:33:7d:f0:06:27:fd:ea: ff:04:a0:b6:f4:41:66:d4:e3:ac:fb:b8:cc:1e:85: c1:58:c0:32:0a:43:2f:6a:80:d5:82:bf:67:8a:d6: 7d:3e:f3:30:b9:c2:74:91:57:c3:55:93:98:f7:63: cd:cc:7a:5d:69:5c:3c:0d:18:5d:e3:15:53:da:13: f4:27:75:58:16:31:2d:72:01:06:8a:f6:96:52:ed: 14:23:19:ba:eb:34:9a:4a:af:12:4f:73:cf:74:1f: 5a:3c:01:77:ec:01:46:11:e4:e1:b1:80:94:f4:c5: cf:83:45:b8:56:bc:9c:47:0d:0a:4c:6b:2d:75:95: d3:99:ad:1f:bc:f8:96:9c:d4:6f:3c:29:85:15:7a: 51:cf:ac:5e:65:b1:3d:80:f5:57:a9:d0:f5:b0:a1: d1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1D:F6:80:C9:30:80:8B:E1:9D:C6:B0:DA:3E:BF:C3:5A:D6:A8:13 X509v3 Authority Key Identifier: keyid:C1:9B:5A:2C:49:E1:C6:48:A7:0C:70:8A:E1:BD:E4:0B:64:4C:78:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wZtaLEnhxkinDHCK4b3kC2RMeAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/ch32gMkwgIvhncaw2j6_w1rWqBM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/035e8a-70e3-487b-a04d-3d461dade4a9/1/wZtaLEnhxkinDHCK4b3kC2RMeAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.94.116.0/22 45.134.64.0/22 185.150.152.0/22 IPv6: 2a07:7180::/29 Signature Algorithm: sha256WithRSAEncryption 60:66:a2:0f:ba:19:6e:10:01:0b:d8:08:5d:b1:b4:d9:06:55: 02:17:46:7a:df:ac:17:e1:45:3c:9d:13:d3:26:31:5c:30:fe: 50:41:1a:63:42:ca:5d:45:7d:c3:d3:b2:ed:49:0b:5f:4c:fc: fe:7d:19:95:2b:4e:91:ca:a5:ae:0a:38:2c:fa:bb:aa:f3:2a: 4f:41:de:ec:c7:a9:a5:7d:0f:7d:2f:23:b6:b4:a0:c1:89:e7: a7:57:5e:0e:53:68:db:f3:70:ea:c5:77:59:95:ff:32:ef:d6: 95:c1:e1:ac:56:72:fe:50:8a:56:c9:8b:40:b2:1a:09:7d:86: 00:f4:e5:4f:1b:83:0c:3b:d9:f6:4c:fb:81:35:47:4a:6c:98: c0:49:3a:58:3b:ab:e0:db:7a:10:b3:05:08:c4:92:4e:2e:fa: 23:51:9b:c7:a1:bd:a0:15:85:9a:40:0e:81:a0:3a:39:c6:12: bb:66:67:6d:5c:08:e1:b0:89:71:ff:b5:c1:c3:cf:f6:c9:d6: 1d:25:81:54:27:b2:ab:d6:5b:36:34:b2:c9:ea:47:4b:de:e6: 0b:9e:d7:58:e5:69:b4:43:53:84:6b:ec:fe:a8:c6:70:5f:fd: b6:1e:12:d4:a7:00:7d:2b:a5:05:e0:7b:49:f4:7a:aa:5e:cb: 75:5f:a5:38 -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt8gI9b3UJMZ3J/Wed3Bk5LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxOWI1YTJjNDllMWM2NDhhNzBjNzA4YWUxYmRlNDBiNjQ0 Yzc4MDIwHhcNMjYwMTAyMDIxOTE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjFkZjY4MGM5MzA4MDhiZTE5ZGM2YjBkYTNlYmZjMzVhZDZhODEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxQJ30jeG0zpvp9/BzpgsdLmycSW 5SjL4/VI5KInaFe/KkhIf2WfjoM1BPAnyNOmmo4CAp9Jac38Awnj/IU0nP0L2Pe/ 3J+JnSAeksNSXCKs41vp4/YxcC+6OpYgVtWguzN98AYn/er/BKC29EFm1OOs+7jM HoXBWMAyCkMvaoDVgr9nitZ9PvMwucJ0kVfDVZOY92PNzHpdaVw8DRhd4xVT2hP0 J3VYFjEtcgEGivaWUu0UIxm66zSaSq8ST3PPdB9aPAF37AFGEeThsYCU9MXPg0W4 VrycRw0KTGstdZXTma0fvPiWnNRvPCmFFXpRz6xeZbE9gPVXqdD1sKHRBwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFHId9oDJMICL4Z3GsNo+v8Na1qgTMB8GA1UdIwQY MBaAFMGbWixJ4cZIpwxwiuG95AtkTHgCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd1p0YUxFbmh4a2luREhDSzRiM2tDMlJNZUFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS8wMzVlOGEtNzBlMy00ODdiLWEwNGQt M2Q0NjFkYWRlNGE5LzEvY2gzMmdNa3dnSXZobmNhdzJqNl93MXJXcUJNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS8wMzVlOGEtNzBlMy00ODdiLWEwNGQtM2Q0NjFkYWRlNGE5 LzEvd1p0YUxFbmh4a2luREhDSzRiM2tDMlJNZUFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCLV50AwQC LYZAAwQCuZaYMA0EAgACMAcDBQMqB3GAMA0GCSqGSIb3DQEBCwUAA4IBAQBgZqIP uhluEAEL2AhdsbTZBlUCF0Z636wX4UU8nRPTJjFcMP5QQRpjQspdRX3D07LtSQtf TPz+fRmVK06RyqWuCjgs+ruq8ypPQd7sx6mlfQ99LyO2tKDBieenV14OU2jb83Dq xXdZlf8y79aVweGsVnL+UIpWyYtAshoJfYYA9OVPG4MMO9n2TPuBNUdKbJjASTpY O6vg23oQswUIxJJOLvojUZvHob2gFYWaQA6BoDo5xhK7ZmdtXAjhsIlx/7XBw8/2 ydYdJYFUJ7Kr1ls2NLLJ6kdL3uYLntdY5Wm0Q1OEa+z+qMZwX/22HhLUpwB9K6UF 4HtJ9HqqXst1X6U4 -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:19 2026 by rpki-client