This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/D-LoIPh4w6ZRPr6EB3oORu8b_qM.roa File: D-LoIPh4w6ZRPr6EB3oORu8b_qM.roa (raw, json) Hash identifier: IJEKqU/hmkuGGlwqmZo6DWM0XWvE4LTwDePizqu7MS0= Subject key identifier: 0F:E2:E8:20:F8:78:C3:A6:51:3E:BE:84:07:7A:0E:46:EF:1B:FE:A3 Certificate issuer: /CN=be370733b8db614daa760a002c24048028300e2d Certificate serial: 019B7EA6B1F43E85C8B8D284F0C311190FC8 Authority key identifier: BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/D-LoIPh4w6ZRPr6EB3oORu8b_qM.roa Signing time: Fri 02 Jan 2026 12:20:12 +0000 ROA not before: Fri 02 Jan 2026 12:20:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57657 IP address blocks: 37.17.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:b1:f4:3e:85:c8:b8:d2:84:f0:c3:11:19:0f:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=be370733b8db614daa760a002c24048028300e2d Validity Not Before: Jan 2 12:20:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0fe2e820f878c3a6513ebe84077a0e46ef1bfea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f5:2a:90:ff:86:c6:3e:03:94:02:38:3c:6f: 5d:4b:10:16:ba:17:83:23:69:45:f1:57:a8:74:8f: 3f:e0:47:a4:cf:ea:70:62:95:d9:2a:9f:27:9d:ef: 75:53:04:cf:6d:2d:59:ff:d2:ae:44:c9:f4:7b:9f: a8:37:37:92:de:2e:15:ba:6f:bd:5b:eb:bc:cd:d1: 78:fa:ab:e0:68:36:8b:02:1c:73:ed:9a:14:e9:a9: a5:2e:af:9f:d0:54:ec:2f:cf:30:55:b6:43:67:41: ca:17:56:22:3a:72:69:75:7b:ba:03:43:7f:e3:a2: a1:12:a3:92:75:9e:7d:8a:d1:e2:b3:9a:30:22:f4: 19:92:a9:45:dc:dc:62:65:29:10:6f:11:3d:70:6d: 94:e8:ce:e8:d8:f6:48:c2:a4:dd:8c:fd:a8:50:f1: 82:d5:69:1b:f4:e7:c7:e2:d7:f8:bf:ce:c2:be:0c: 4a:b4:19:e9:8a:65:8c:5f:b1:15:38:ba:54:11:e0: dc:5f:91:10:e7:f8:59:96:d8:71:23:16:17:e7:c7: 4e:4c:d9:9e:84:b6:b3:d9:23:ae:89:e9:4c:e6:60: 16:ba:cc:39:34:1d:23:96:42:8f:51:48:af:57:65: f7:58:87:7c:d7:dc:b6:9f:15:4b:be:76:d0:a8:39: fb:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E2:E8:20:F8:78:C3:A6:51:3E:BE:84:07:7A:0E:46:EF:1B:FE:A3 X509v3 Authority Key Identifier: keyid:BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/D-LoIPh4w6ZRPr6EB3oORu8b_qM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.17.163.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:d8:ec:e3:c7:4d:1a:8e:1e:16:77:3c:e3:fa:20:73:b9:04: 23:07:d2:5d:7c:a2:f8:43:21:ae:39:50:e5:b9:78:96:81:b2: 82:b3:85:c1:af:a0:47:43:24:c6:5b:1a:6c:43:63:31:18:43: 27:b3:3b:8f:5e:6a:44:79:1a:34:d2:25:91:4e:28:bd:fc:8b: 8a:80:c5:49:e2:bf:d4:91:50:e6:6a:78:92:dd:30:e6:63:8e: 81:f3:19:5f:ae:c2:66:a9:5e:f6:30:01:25:d0:d9:85:fe:71: 32:a9:9e:62:3c:a0:bb:81:f3:a4:39:10:01:8d:55:87:d0:49: 83:39:92:51:ad:cc:fb:a0:fb:99:ea:0f:d9:61:a9:79:1f:7f: 76:a4:cd:b8:ec:2c:36:1f:5c:dd:33:f3:d1:7b:9a:37:1d:89: 18:7a:34:db:90:2a:00:4b:92:0a:49:cc:ce:43:db:2b:17:57: 4c:3e:2f:24:76:cb:ac:be:89:72:6c:1a:91:66:70:c0:68:14: 94:ab:c5:4c:e6:67:cb:33:28:bf:d3:17:56:fa:45:5e:74:2e: ed:e0:a2:92:a9:a0:60:c9:81:cf:38:28:b1:47:11:7c:17:a4: af:9f:b3:d9:98:87:13:73:c4:ec:f0:27:80:fb:14:6c:cc:ca: 1d:ec:67:87 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+prH0PoXIuNKE8MMRGQ/IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJlMzcwNzMzYjhkYjYxNGRhYTc2MGEwMDJjMjQwNDgwMjgz MDBlMmQwHhcNMjYwMTAyMTIyMDEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZmUyZTgyMGY4NzhjM2E2NTEzZWJlODQwNzdhMGU0NmVmMWJmZWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/UqkP+Gxj4DlAI4PG9dSxAWuheD I2lF8VeodI8/4Eekz+pwYpXZKp8nne91UwTPbS1Z/9KuRMn0e5+oNzeS3i4Vum+9 W+u8zdF4+qvgaDaLAhxz7ZoU6amlLq+f0FTsL88wVbZDZ0HKF1YiOnJpdXu6A0N/ 46KhEqOSdZ59itHis5owIvQZkqlF3NxiZSkQbxE9cG2U6M7o2PZIwqTdjP2oUPGC 1Wkb9OfH4tf4v87CvgxKtBnpimWMX7EVOLpUEeDcX5EQ5/hZlthxIxYX58dOTNme hLaz2SOuielM5mAWusw5NB0jlkKPUUivV2X3WId819y2nxVLvnbQqDn7EQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFA/i6CD4eMOmUT6+hAd6DkbvG/6jMB8GA1UdIwQY MBaAFL43BzO422FNqnYKACwkBIAoMA4tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmpjSE03amJZVTJxZGdvQUxDUUVnQ2d3RGkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84OTZhYjMtYzQ3OS00NzBhLThiYjkt MjQyMjJkODdmODhkLzEvRC1Mb0lQaDR3NlpSUHI2RUIzb09SdThiX3FNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy84OTZhYjMtYzQ3OS00NzBhLThiYjktMjQyMjJkODdmODhk LzEvdmpjSE03amJZVTJxZGdvQUxDUUVnQ2d3RGkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJRGjMA0G CSqGSIb3DQEBCwUAA4IBAQA82Ozjx00ajh4Wdzzj+iBzuQQjB9JdfKL4QyGuOVDl uXiWgbKCs4XBr6BHQyTGWxpsQ2MxGEMnszuPXmpEeRo00iWRTii9/IuKgMVJ4r/U kVDmaniS3TDmY46B8xlfrsJmqV72MAEl0NmF/nEyqZ5iPKC7gfOkORABjVWH0EmD OZJRrcz7oPuZ6g/ZYal5H392pM247Cw2H1zdM/PRe5o3HYkYejTbkCoAS5IKSczO Q9srF1dMPi8kdsusvolybBqRZnDAaBSUq8VM5mfLMyi/0xdW+kVedC7t4KKSqaBg yYHPOCixRxF8F6Svn7PZmIcTc8Ts8CeA+xRszMod7GeH -----END CERTIFICATE-----Generated at Tue Feb 10 03:10:24 2026 by rpki-client