This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/fa6cc2-27af-416c-a134-98f7454ba6ce/1/CXGVhKl7DsWirjDBB4d9lp0XVYo.roa File: CXGVhKl7DsWirjDBB4d9lp0XVYo.roa (raw, json) Hash identifier: vG2ULDUsBgokxLvpRChtUJL0gfvZ1Q8YEhzTpKweXsw= Subject key identifier: 09:71:95:84:A9:7B:0E:C5:A2:AE:30:C1:07:87:7D:96:9D:17:55:8A Certificate issuer: /CN=4a8ae7871525be2ea4d0dffdae4f3a8bff372496 Certificate serial: 019BE0778F0CDFFDADBF01729F61A4FDD7EF Authority key identifier: 4A:8A:E7:87:15:25:BE:2E:A4:D0:DF:FD:AE:4F:3A:8B:FF:37:24:96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SornhxUlvi6k0N_9rk86i_83JJY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/fa6cc2-27af-416c-a134-98f7454ba6ce/1/CXGVhKl7DsWirjDBB4d9lp0XVYo.roa Signing time: Wed 21 Jan 2026 12:11:30 +0000 ROA not before: Wed 21 Jan 2026 12:11:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207503 IP address blocks: 77.235.64.0/21 maxlen: 21 77.235.72.0/21 maxlen: 21 134.101.32.0/21 maxlen: 21 134.101.40.0/21 maxlen: 21 134.101.48.0/21 maxlen: 21 134.101.56.0/21 maxlen: 21 185.102.240.0/23 maxlen: 23 185.102.242.0/23 maxlen: 23 212.110.232.0/21 maxlen: 21 212.110.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/fa6cc2-27af-416c-a134-98f7454ba6ce/1/SornhxUlvi6k0N_9rk86i_83JJY.crl rsync://rpki.ripe.net/repository/DEFAULT/a8/fa6cc2-27af-416c-a134-98f7454ba6ce/1/SornhxUlvi6k0N_9rk86i_83JJY.mft rsync://rpki.ripe.net/repository/DEFAULT/SornhxUlvi6k0N_9rk86i_83JJY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:77:8f:0c:df:fd:ad:bf:01:72:9f:61:a4:fd:d7:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a8ae7871525be2ea4d0dffdae4f3a8bff372496 Validity Not Before: Jan 21 12:11:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=09719584a97b0ec5a2ae30c107877d969d17558a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f3:93:9d:eb:bf:db:a3:e0:11:42:ec:13:8d: 25:1a:5a:f0:3e:c6:5e:16:ff:32:8f:b9:9a:44:05: 05:3d:55:65:83:64:d7:48:d2:b0:1f:40:0c:1f:cb: 76:c5:32:3e:93:3a:80:3a:4c:41:9a:37:fb:8d:1e: 8c:db:78:08:37:47:0d:36:93:aa:a6:b8:33:e5:36: c0:7c:05:aa:cc:d7:8d:1d:42:50:86:36:1e:90:9f: 91:fc:aa:00:4e:97:a0:93:9d:89:b6:c6:a1:bd:c0: 58:f6:1c:49:0b:30:89:e9:67:83:0d:32:d5:ac:6a: e4:1b:ba:8c:16:62:e4:db:c8:9a:05:67:0f:a9:5b: 86:39:5f:36:57:32:59:d4:ef:c1:6b:73:51:52:6b: 11:c6:6b:2a:dd:2c:d7:2e:77:69:f8:0f:40:92:75: 0b:21:91:b5:11:91:7b:54:f9:b3:22:52:dd:97:91: e8:8a:83:4f:0f:34:1d:40:45:cc:9a:91:a1:c3:53: 9e:d0:7d:f0:05:1f:5e:bd:8d:5d:a6:36:f8:da:39: af:f1:3e:9c:13:85:0a:55:c2:10:80:09:1a:18:88: 79:1f:d7:57:7a:bf:82:07:28:20:6a:e2:68:bd:b2: f7:99:60:de:d6:13:77:ab:5d:d5:73:8d:08:55:79: 04:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:71:95:84:A9:7B:0E:C5:A2:AE:30:C1:07:87:7D:96:9D:17:55:8A X509v3 Authority Key Identifier: keyid:4A:8A:E7:87:15:25:BE:2E:A4:D0:DF:FD:AE:4F:3A:8B:FF:37:24:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SornhxUlvi6k0N_9rk86i_83JJY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/fa6cc2-27af-416c-a134-98f7454ba6ce/1/CXGVhKl7DsWirjDBB4d9lp0XVYo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/fa6cc2-27af-416c-a134-98f7454ba6ce/1/SornhxUlvi6k0N_9rk86i_83JJY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.235.64.0/20 134.101.32.0/19 185.102.240.0/22 212.110.232.0-212.110.247.255 Signature Algorithm: sha256WithRSAEncryption 34:90:55:3f:99:82:e8:5d:63:c4:1b:c5:83:3b:da:d7:8e:7a: 7d:4b:1e:01:3b:df:52:3d:ee:d0:e8:21:2c:11:2e:1b:56:3a: d1:51:ed:39:7e:68:64:3e:7a:cf:61:06:a9:24:c0:ad:76:6a: 10:d5:26:5d:33:d6:7b:0b:97:83:1c:5d:c3:c2:c6:65:57:6d: 89:09:c7:e3:1c:4c:67:59:11:b5:92:7d:1f:3c:c4:72:ba:28: e0:aa:fb:5f:05:ab:cc:09:88:d6:1a:21:ca:b9:e6:a9:13:9d: 49:9d:a3:3b:25:2a:2f:f7:6c:40:94:10:b8:78:e3:8d:ee:b1: 78:07:90:a5:2b:59:86:00:ed:42:03:fa:de:fc:5d:07:1a:75: ae:00:95:2a:cc:48:84:bb:44:b5:b7:81:a7:b7:f2:40:fe:f5: 0e:15:7e:90:e1:ba:bd:58:18:86:e5:f1:94:d0:27:06:b9:ba: 7a:1b:9d:64:7f:a6:ed:df:07:de:b4:97:58:88:6a:e4:a8:31: fd:98:a9:e7:42:97:c5:a2:2f:74:38:6e:1b:d3:9a:a7:ea:fc: 86:7a:b9:d6:52:ef:3a:54:d7:83:b1:79:0c:cc:ac:be:9f:5e: d8:a9:48:2f:2c:45:0e:5b:b8:b5:7f:3b:5c:f0:ad:c6:de:07: 2e:63:fa:4a -----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISAZvgd48M3/2tvwFyn2Gk/dfvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhOGFlNzg3MTUyNWJlMmVhNGQwZGZmZGFlNGYzYThiZmYz NzI0OTYwHhcNMjYwMTIxMTIxMTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTcxOTU4NGE5N2IwZWM1YTJhZTMwYzEwNzg3N2Q5NjlkMTc1NThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfOTneu/26PgEULsE40lGlrwPsZe Fv8yj7maRAUFPVVlg2TXSNKwH0AMH8t2xTI+kzqAOkxBmjf7jR6M23gIN0cNNpOq prgz5TbAfAWqzNeNHUJQhjYekJ+R/KoATpegk52JtsahvcBY9hxJCzCJ6WeDDTLV rGrkG7qMFmLk28iaBWcPqVuGOV82VzJZ1O/Ba3NRUmsRxmsq3SzXLndp+A9AknUL IZG1EZF7VPmzIlLdl5HoioNPDzQdQEXMmpGhw1Oe0H3wBR9evY1dpjb42jmv8T6c E4UKVcIQgAkaGIh5H9dXer+CByggauJovbL3mWDe1hN3q13Vc40IVXkEaQIDAQAB o4ICIzCCAh8wHQYDVR0OBBYEFAlxlYSpew7Foq4wwQeHfZadF1WKMB8GA1UdIwQY MBaAFEqK54cVJb4upNDf/a5POov/NySWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU29ybmh4VWx2aTZrME5fOXJrODZpXzgzSkpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9mYTZjYzItMjdhZi00MTZjLWExMzQt OThmNzQ1NGJhNmNlLzEvQ1hHVmhLbDdEc1dpcmpEQkI0ZDlscDBYVllvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hOC9mYTZjYzItMjdhZi00MTZjLWExMzQtOThmNzQ1NGJhNmNl LzEvU29ybmh4VWx2aTZrME5fOXJrODZpXzgzSkpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQETetAAwQF hmUgAwQCuWbwMAwDBAPUbugDBAPUbvAwDQYJKoZIhvcNAQELBQADggEBADSQVT+Z guhdY8QbxYM72teOen1LHgE731I97tDoISwRLhtWOtFR7Tl+aGQ+es9hBqkkwK12 ahDVJl0z1nsLl4McXcPCxmVXbYkJx+McTGdZEbWSfR88xHK6KOCq+18Fq8wJiNYa Icq55qkTnUmdozslKi/3bECUELh4443usXgHkKUrWYYA7UID+t78XQcada4AlSrM SIS7RLW3gae38kD+9Q4VfpDhur1YGIbl8ZTQJwa5unobnWR/pu3fB960l1iIauSo Mf2YqedCl8WiL3Q4bhvTmqfq/IZ6udZS7zpU14OxeQzMrL6fXtipSC8sRQ5buLV/ O1zwrcbeBy5j+ko= -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:32 2026 by rpki-client