This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/cmKY5ceisIdSEDxZAHQoFXS37F0.roa File: cmKY5ceisIdSEDxZAHQoFXS37F0.roa (raw, json) Hash identifier: sNf/iuxeatsIfNnR4y3DdWxX9LCuZ9ar0ao5hSS62EY= Subject key identifier: 72:62:98:E5:C7:A2:B0:87:52:10:3C:59:00:74:28:15:74:B7:EC:5D Certificate issuer: /CN=e920237e725cf0a53ef43a74b5569551aff74e04 Certificate serial: 019B7F1543AF7850D7A95C25EEAF952A854E Authority key identifier: E9:20:23:7E:72:5C:F0:A5:3E:F4:3A:74:B5:56:95:51:AF:F7:4E:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/cmKY5ceisIdSEDxZAHQoFXS37F0.roa Signing time: Fri 02 Jan 2026 14:20:58 +0000 ROA not before: Fri 02 Jan 2026 14:20:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61999 IP address blocks: 185.52.104.0/23 maxlen: 23 185.52.104.0/24 maxlen: 24 185.52.105.0/24 maxlen: 24 185.52.106.0/23 maxlen: 23 185.52.106.0/24 maxlen: 24 185.52.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.mft rsync://rpki.ripe.net/repository/DEFAULT/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:43:af:78:50:d7:a9:5c:25:ee:af:95:2a:85:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e920237e725cf0a53ef43a74b5569551aff74e04 Validity Not Before: Jan 2 14:20:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=726298e5c7a2b08752103c590074281574b7ec5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6b:b5:60:e1:34:86:db:c8:8b:be:a3:13:79: f1:0a:a0:ea:f7:37:91:76:34:85:a0:ee:9a:a6:29: 5d:fd:d1:00:7e:0c:40:0d:7f:65:ff:3d:0e:07:dc: d1:08:4e:4f:37:fd:95:c9:61:50:7b:0e:90:40:4e: c3:4f:45:4e:94:f3:22:fe:73:2d:23:74:fa:14:6f: 85:4f:e9:d4:ea:b6:ac:22:3e:3c:79:38:00:d5:1e: f7:35:30:b9:00:14:c6:db:87:c7:cb:87:2e:c6:00: 45:bd:b8:6a:b8:ed:57:c6:33:a2:60:bb:95:b3:03: 62:e8:da:78:11:e2:21:f2:2a:13:38:2e:e6:e7:c4: c2:05:3b:cb:ae:12:fd:bb:8a:98:81:52:b0:64:c9: e1:fd:47:27:8e:c9:b3:b9:51:fb:72:05:3c:7c:0a: a1:84:0b:39:03:36:2c:36:b5:3b:22:0c:6d:e9:f3: 17:b6:95:42:ee:c4:10:05:27:0d:5d:71:ec:44:99: 3e:87:4e:b6:3c:c1:d8:69:8c:05:a1:39:44:d2:e3: b2:e2:ea:58:46:2f:a1:75:f6:fb:a9:c3:cb:97:65: bd:aa:b8:0d:3f:01:df:50:b9:f2:2a:c9:b2:e9:39: 3c:db:2b:56:45:8d:49:15:60:ec:84:e8:62:11:bc: da:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:62:98:E5:C7:A2:B0:87:52:10:3C:59:00:74:28:15:74:B7:EC:5D X509v3 Authority Key Identifier: keyid:E9:20:23:7E:72:5C:F0:A5:3E:F4:3A:74:B5:56:95:51:AF:F7:4E:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/cmKY5ceisIdSEDxZAHQoFXS37F0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/a560d0-0368-49c3-9b88-eb1139a33d0a/1/6SAjfnJc8KU-9Dp0tVaVUa_3TgQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.52.104.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:1d:4b:e4:3b:d0:e2:98:97:f5:cd:f6:82:5c:c4:29:0b:ee: 5f:bb:57:83:ab:12:02:b9:03:51:ce:d5:04:20:d3:3b:59:41: c5:b7:73:17:64:14:ed:eb:af:4b:1f:71:73:22:70:c2:35:bf: 6d:39:63:dd:a3:5f:70:b1:fe:85:a6:62:8e:ce:cd:e2:73:fe: e0:04:90:a8:02:d2:78:38:6f:dc:9b:ec:54:c2:17:e2:01:eb: 3f:ea:32:84:8e:01:66:a4:a1:53:5a:25:78:df:96:37:c0:15: ce:ae:86:58:29:c6:67:10:7f:91:51:65:12:f2:a1:ac:28:c8: c8:7c:88:fb:1e:7a:3f:b6:4b:98:77:87:8d:8c:d5:b7:fb:90: 1b:f1:53:d9:8e:70:62:ae:28:12:3a:ed:1b:e1:88:26:e2:ef: fc:aa:ee:6f:b5:54:b9:3b:35:10:db:c4:dc:69:19:52:99:cb: e8:a1:d1:43:bd:e8:6b:ef:66:31:09:e7:b4:1a:c2:60:ba:75: 7d:c8:4d:44:21:58:a1:fb:3b:96:a7:f3:0e:02:8a:9d:6d:11: 34:5b:4d:e3:c6:55:a8:f3:8f:4e:84:1b:af:22:0d:7e:a8:56: 92:03:6b:81:86:44:d4:54:74:a7:43:34:95:30:82:cf:07:a9: 09:b9:ab:e7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FUOveFDXqVwl7q+VKoVOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU5MjAyMzdlNzI1Y2YwYTUzZWY0M2E3NGI1NTY5NTUxYWZm NzRlMDQwHhcNMjYwMTAyMTQyMDU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjYyOThlNWM3YTJiMDg3NTIxMDNjNTkwMDc0MjgxNTc0YjdlYzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Gu1YOE0htvIi76jE3nxCqDq9zeR djSFoO6apild/dEAfgxADX9l/z0OB9zRCE5PN/2VyWFQew6QQE7DT0VOlPMi/nMt I3T6FG+FT+nU6rasIj48eTgA1R73NTC5ABTG24fHy4cuxgBFvbhquO1XxjOiYLuV swNi6Np4EeIh8ioTOC7m58TCBTvLrhL9u4qYgVKwZMnh/UcnjsmzuVH7cgU8fAqh hAs5AzYsNrU7Igxt6fMXtpVC7sQQBScNXXHsRJk+h062PMHYaYwFoTlE0uOy4upY Ri+hdfb7qcPLl2W9qrgNPwHfULnyKsmy6Tk82ytWRY1JFWDshOhiEbzaswIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHJimOXHorCHUhA8WQB0KBV0t+xdMB8GA1UdIwQY MBaAFOkgI35yXPClPvQ6dLVWlVGv904EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNlNBamZuSmM4S1UtOURwMHRWYVZVYV8zVGdRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy9hNTYwZDAtMDM2OC00OWMzLTliODgt ZWIxMTM5YTMzZDBhLzEvY21LWTVjZWlzSWRTRUR4WkFIUW9GWFMzN0YwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy9hNTYwZDAtMDM2OC00OWMzLTliODgtZWIxMTM5YTMzZDBh LzEvNlNBamZuSmM4S1UtOURwMHRWYVZVYV8zVGdRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTRoMA0G CSqGSIb3DQEBCwUAA4IBAQCdHUvkO9DimJf1zfaCXMQpC+5fu1eDqxICuQNRztUE INM7WUHFt3MXZBTt669LH3FzInDCNb9tOWPdo19wsf6FpmKOzs3ic/7gBJCoAtJ4 OG/cm+xUwhfiAes/6jKEjgFmpKFTWiV435Y3wBXOroZYKcZnEH+RUWUS8qGsKMjI fIj7Hno/tkuYd4eNjNW3+5Ab8VPZjnBirigSOu0b4Ygm4u/8qu5vtVS5OzUQ28Tc aRlSmcvoodFDvehr72YxCee0GsJgunV9yE1EIVih+zuWp/MOAoqdbRE0W03jxlWo 849OhBuvIg1+qFaSA2uBhkTUVHSnQzSVMILPB6kJuavn -----END CERTIFICATE-----Generated at Mon Feb 9 19:55:00 2026 by rpki-client