This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/06998d-8cd9-4993-9fe7-8221d2143796/1/0xSPcCHliFnpwMFUmv26_TkbvbE.roa File: 0xSPcCHliFnpwMFUmv26_TkbvbE.roa (raw, json) Hash identifier: abIn3m5KuYMzd33dZvCYHDE1IStZlNhAz5LIcGESnpE= Subject key identifier: D3:14:8F:70:21:E5:88:59:E9:C0:C1:54:9A:FD:BA:FD:39:1B:BD:B1 Certificate issuer: /CN=07560e3e72c6079a04e7d1f6103b9df78979a522 Certificate serial: 019B7C135A382E52BDF5A813EEF6D0B35959 Authority key identifier: 07:56:0E:3E:72:C6:07:9A:04:E7:D1:F6:10:3B:9D:F7:89:79:A5:22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B1YOPnLGB5oE59H2EDud94l5pSI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/06998d-8cd9-4993-9fe7-8221d2143796/1/0xSPcCHliFnpwMFUmv26_TkbvbE.roa Signing time: Fri 02 Jan 2026 00:20:01 +0000 ROA not before: Fri 02 Jan 2026 00:20:01 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49635 IP address blocks: 27.0.172.0/22 maxlen: 24 46.183.112.0/21 maxlen: 24 79.143.88.0/21 maxlen: 24 80.240.126.0/23 maxlen: 24 85.208.20.0/22 maxlen: 24 93.189.88.0/21 maxlen: 24 103.23.60.0/23 maxlen: 24 161.22.40.0/21 maxlen: 24 176.100.200.0/21 maxlen: 24 185.166.212.0/22 maxlen: 24 185.214.80.0/23 maxlen: 24 185.253.152.0/22 maxlen: 24 185.254.204.0/22 maxlen: 24 187.33.144.0/20 maxlen: 24 200.234.224.0/20 maxlen: 24 217.71.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/06998d-8cd9-4993-9fe7-8221d2143796/1/B1YOPnLGB5oE59H2EDud94l5pSI.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/06998d-8cd9-4993-9fe7-8221d2143796/1/B1YOPnLGB5oE59H2EDud94l5pSI.mft rsync://rpki.ripe.net/repository/DEFAULT/B1YOPnLGB5oE59H2EDud94l5pSI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:5a:38:2e:52:bd:f5:a8:13:ee:f6:d0:b3:59:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07560e3e72c6079a04e7d1f6103b9df78979a522 Validity Not Before: Jan 2 00:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d3148f7021e58859e9c0c1549afdbafd391bbdb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:14:85:a1:67:30:0b:68:52:58:55:4d:58:1e: 3a:04:59:01:0d:a5:e1:16:61:ee:89:8a:df:35:fa: 9f:66:b3:fe:3c:ec:ac:82:dc:d6:7a:0d:9d:7c:ca: 32:75:43:b8:4d:3d:98:30:ad:e7:95:a7:e2:25:ed: 04:69:63:6a:57:5c:c6:55:44:98:05:01:52:de:d8: 8f:c4:aa:d8:f8:e3:76:c1:be:86:0e:ec:61:6a:fa: f2:71:d3:f9:98:14:c3:38:dd:71:56:6f:c0:ce:d9: ee:f2:12:b0:4c:d9:80:d9:59:1a:fc:7c:79:2f:e3: 51:b0:be:cf:a1:80:d9:73:51:e7:56:25:25:e1:47: a3:a6:08:16:46:9c:2f:19:07:aa:65:bd:3b:a3:b7: 09:68:39:0c:da:02:f5:41:88:80:7b:aa:1c:b5:cb: 60:60:57:2e:56:81:19:c4:5b:02:ac:65:19:50:fe: a4:62:47:58:24:6c:7d:29:49:6d:3b:04:fa:80:7d: d3:c3:05:dc:2a:55:0f:c1:2a:55:b8:7a:9c:1d:6f: ac:d7:ca:e5:74:8d:fd:43:fd:42:ca:58:e8:7e:00: 18:8c:36:9f:bb:01:27:bf:3c:97:a9:01:ca:ec:d9: f5:54:fe:aa:9d:ae:39:45:ca:68:6b:e2:d7:6a:7c: 83:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:14:8F:70:21:E5:88:59:E9:C0:C1:54:9A:FD:BA:FD:39:1B:BD:B1 X509v3 Authority Key Identifier: keyid:07:56:0E:3E:72:C6:07:9A:04:E7:D1:F6:10:3B:9D:F7:89:79:A5:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B1YOPnLGB5oE59H2EDud94l5pSI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/06998d-8cd9-4993-9fe7-8221d2143796/1/0xSPcCHliFnpwMFUmv26_TkbvbE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/06998d-8cd9-4993-9fe7-8221d2143796/1/B1YOPnLGB5oE59H2EDud94l5pSI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.172.0/22 46.183.112.0/21 79.143.88.0/21 80.240.126.0/23 85.208.20.0/22 93.189.88.0/21 103.23.60.0/23 161.22.40.0/21 176.100.200.0/21 185.166.212.0/22 185.214.80.0/23 185.253.152.0/22 185.254.204.0/22 187.33.144.0/20 200.234.224.0/20 217.71.200.0/21 Signature Algorithm: sha256WithRSAEncryption 50:a4:fd:00:e9:df:57:38:fa:8e:ab:23:c2:4e:af:2f:4a:73: e7:32:56:83:17:92:03:8d:44:18:51:58:3f:1b:84:1c:87:d4: 39:ea:e5:2b:9a:1e:c3:b9:59:ba:e0:c2:bb:5a:6d:db:0b:df: 06:ca:06:1a:cc:ca:22:58:04:b8:c2:66:21:a6:87:00:ee:0d: 7d:d6:85:8d:9a:d2:9d:eb:6d:b4:a5:d8:f5:56:0f:80:f5:1c: 57:8c:ea:b7:e8:38:75:38:31:d7:e5:57:de:f0:10:2e:67:72: b3:db:ef:d2:d6:ad:c0:0e:78:5b:bc:43:6c:9e:2a:89:ae:ae: 33:d2:e4:48:35:78:a6:56:d5:a9:b3:26:cf:ea:18:88:c2:d2: da:6e:1e:ab:ff:2c:c6:8c:22:c7:4b:93:d6:27:cf:23:ab:7d: 22:04:29:05:71:e2:df:54:69:89:48:d2:56:44:24:0c:f4:89: a2:74:24:97:3a:59:e0:17:66:99:9f:c6:b3:e5:a4:5e:96:bc: a1:db:0d:0c:d9:46:da:b3:78:cc:98:0d:19:3a:88:42:c2:93: f2:57:a5:89:8c:56:80:23:bf:25:3f:a1:31:2c:41:02:57:36: 6e:07:b3:6e:09:a3:80:74:4c:df:6e:f1:d1:31:e6:58:7f:dd: 7b:5e:a7:a9 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgISAZt8E1o4LlK99agT7vbQs1lZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA3NTYwZTNlNzJjNjA3OWEwNGU3ZDFmNjEwM2I5ZGY3ODk3 OWE1MjIwHhcNMjYwMTAyMDAyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzE0OGY3MDIxZTU4ODU5ZTljMGMxNTQ5YWZkYmFmZDM5MWJiZGIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxBSFoWcwC2hSWFVNWB46BFkBDaXh FmHuiYrfNfqfZrP+POysgtzWeg2dfMoydUO4TT2YMK3nlafiJe0EaWNqV1zGVUSY BQFS3tiPxKrY+ON2wb6GDuxhavrycdP5mBTDON1xVm/Aztnu8hKwTNmA2Vka/Hx5 L+NRsL7PoYDZc1HnViUl4UejpggWRpwvGQeqZb07o7cJaDkM2gL1QYiAe6octctg YFcuVoEZxFsCrGUZUP6kYkdYJGx9KUltOwT6gH3TwwXcKlUPwSpVuHqcHW+s18rl dI39Q/1CyljofgAYjDafuwEnvzyXqQHK7Nn1VP6qna45Rcpoa+LXanyDqwIDAQAB o4ICYzCCAl8wHQYDVR0OBBYEFNMUj3Ah5YhZ6cDBVJr9uv05G72xMB8GA1UdIwQY MBaAFAdWDj5yxgeaBOfR9hA7nfeJeaUiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQjFZT1BuTEdCNW9FNTlIMkVEdWQ5NGw1cFNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8wNjk5OGQtOGNkOS00OTkzLTlmZTct ODIyMWQyMTQzNzk2LzEvMHhTUGNDSGxpRm5wd01GVW12MjZfVGtidmJFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC8wNjk5OGQtOGNkOS00OTkzLTlmZTctODIyMWQyMTQzNzk2 LzEvQjFZT1BuTEdCNW9FNTlIMkVEdWQ5NGw1cFNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMHkGCCsGAQUFBwEHAQH/BGowaDBmBAIAATBgAwQCGwCsAwQD LrdwAwQDT49YAwQBUPB+AwQCVdAUAwQDXb1YAwQBZxc8AwQDoRYoAwQDsGTIAwQC uabUAwQBudZQAwQCuf2YAwQCuf7MAwQEuyGQAwQEyOrgAwQD2UfIMA0GCSqGSIb3 DQEBCwUAA4IBAQBQpP0A6d9XOPqOqyPCTq8vSnPnMlaDF5IDjUQYUVg/G4Qch9Q5 6uUrmh7DuVm64MK7Wm3bC98GygYazMoiWAS4wmYhpocA7g191oWNmtKd6220pdj1 Vg+A9RxXjOq36Dh1ODHX5Vfe8BAuZ3Kz2+/S1q3ADnhbvENsniqJrq4z0uRINXim VtWpsybP6hiIwtLabh6r/yzGjCLHS5PWJ88jq30iBCkFceLfVGmJSNJWRCQM9Imi dCSXOlngF2aZn8az5aRelryh2w0M2Ubas3jMmA0ZOohCwpPyV6WJjFaAI78lP6Ex LEECVzZuB7NuCaOAdEzfbvHRMeZYf917Xqep -----END CERTIFICATE-----Generated at Tue Feb 10 03:06:08 2026 by rpki-client