This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/CVRiR4PWA5mkMUyfsZHNmuQrLLc.roa File: CVRiR4PWA5mkMUyfsZHNmuQrLLc.roa (raw, json) Hash identifier: 5ktDsOfkaJ/bYAV74Q0Rw6jgw2aMIQHNLymwbsIWQIk= Subject key identifier: 09:54:62:47:83:D6:03:99:A4:31:4C:9F:B1:91:CD:9A:E4:2B:2C:B7 Certificate issuer: /CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f Certificate serial: 019B7AC868AF23BDE639200AA80A1CE77D46 Authority key identifier: 1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/CVRiR4PWA5mkMUyfsZHNmuQrLLc.roa Signing time: Thu 01 Jan 2026 18:18:32 +0000 ROA not before: Thu 01 Jan 2026 18:18:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 51257 IP address blocks: 171.22.146.0/24 maxlen: 24 2a05:d80::/29 maxlen: 29 2a05:d80:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.mft rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:68:af:23:bd:e6:39:20:0a:a8:0a:1c:e7:7d:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1d3d044c091e88b80b4b269ebb796b3f24544b5f Validity Not Before: Jan 1 18:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0954624783d60399a4314c9fb191cd9ae42b2cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f4:76:e2:4c:97:7c:cc:d6:45:5b:8a:ad:3f: a5:d1:ed:49:96:83:41:c1:8a:6d:c6:4f:4c:45:6d: aa:24:94:1a:7a:18:f0:4b:72:15:34:3c:55:53:99: c5:c0:08:87:39:78:bb:89:84:16:c5:27:45:6a:54: 32:df:b2:c9:89:33:ae:49:92:4d:be:50:7f:8d:d5: 47:0f:aa:f9:56:7d:e7:1b:6c:7e:0a:f9:44:45:c4: b7:57:8a:ab:84:a6:23:0d:c2:a5:93:f0:a3:c5:b8: f9:5f:19:5c:b9:ed:9c:46:21:fc:53:35:b2:35:e9: 4f:11:bb:20:21:10:3f:b0:93:19:b1:d2:4a:c1:2d: bb:c9:a1:d3:59:a2:24:4f:08:18:99:86:b8:f8:67: 4c:2d:e4:fa:0d:97:35:b0:f9:79:7a:b4:28:42:b0: bd:14:9c:4b:b1:8c:ef:71:38:bd:e9:2e:04:b4:57: 64:bb:5e:d3:af:f9:7c:8c:e5:82:f6:04:66:25:94: 43:ad:fe:22:d8:e9:dd:e6:c1:92:e7:0f:0e:9c:8b: 24:14:e6:85:36:e4:a3:24:a0:e1:a0:bb:3e:f0:51: 71:b1:68:9f:bb:68:7a:af:ec:d3:9b:65:da:eb:13: 69:aa:39:8f:e7:01:33:38:0a:b0:eb:f4:20:5f:48: 8f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:54:62:47:83:D6:03:99:A4:31:4C:9F:B1:91:CD:9A:E4:2B:2C:B7 X509v3 Authority Key Identifier: keyid:1D:3D:04:4C:09:1E:88:B8:0B:4B:26:9E:BB:79:6B:3F:24:54:4B:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HT0ETAkeiLgLSyaeu3lrPyRUS18.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/CVRiR4PWA5mkMUyfsZHNmuQrLLc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/246466-607a-44da-9cbf-c417442eff93/1/HT0ETAkeiLgLSyaeu3lrPyRUS18.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 171.22.146.0/24 IPv6: 2a05:d80::/29 Signature Algorithm: sha256WithRSAEncryption 32:09:a2:af:81:c8:39:fd:c1:7f:cc:99:df:92:4a:11:e6:11: e1:f8:34:4e:fb:d1:eb:8c:15:3d:3e:96:8d:d3:ea:04:65:35: e1:5f:3f:a9:4d:2e:eb:c4:35:bb:6c:c6:bc:05:09:34:a6:b9: d5:b3:9f:5a:d8:7c:b4:bc:e5:e3:ca:3a:38:9a:1f:75:4f:53: 32:87:e3:d7:51:64:d0:ec:fd:ce:c5:28:93:11:02:ff:bd:5e: 63:d4:d2:37:dd:73:fb:80:25:40:db:c9:f6:0f:14:50:b7:43: 14:5d:03:46:e5:0e:11:17:38:d8:5b:7d:e2:b0:fd:3e:f9:e0: bf:e6:8f:1e:79:5b:c5:09:97:c3:62:58:0c:fc:99:4b:e2:e3: 2c:56:88:ba:4a:7e:a6:e6:3e:ce:25:7f:af:04:6c:6b:a7:a1: 43:fc:9c:70:ca:f4:59:5d:29:86:41:6b:3b:fb:15:36:b7:07: 1c:6c:05:43:94:93:74:54:2c:95:4f:53:43:73:c2:fe:93:a4: b6:79:03:8d:54:a3:20:72:22:d1:ff:66:a6:08:8f:f3:e2:03: 26:61:f0:aa:9d:6e:bd:e2:c5:95:94:45:28:20:d8:28:58:0d: 2d:45:c0:af:97:da:9b:6f:35:e6:43:5e:7f:57:ed:4e:fa:d1: 84:e4:0f:d4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6yGivI73mOSAKqAoc531GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFkM2QwNDRjMDkxZTg4YjgwYjRiMjY5ZWJiNzk2YjNmMjQ1 NDRiNWYwHhcNMjYwMTAxMTgxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTU0NjI0NzgzZDYwMzk5YTQzMTRjOWZiMTkxY2Q5YWU0MmIyY2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vR24kyXfMzWRVuKrT+l0e1JloNB wYptxk9MRW2qJJQaehjwS3IVNDxVU5nFwAiHOXi7iYQWxSdFalQy37LJiTOuSZJN vlB/jdVHD6r5Vn3nG2x+CvlERcS3V4qrhKYjDcKlk/Cjxbj5Xxlcue2cRiH8UzWy NelPEbsgIRA/sJMZsdJKwS27yaHTWaIkTwgYmYa4+GdMLeT6DZc1sPl5erQoQrC9 FJxLsYzvcTi96S4EtFdku17Tr/l8jOWC9gRmJZRDrf4i2Ond5sGS5w8OnIskFOaF NuSjJKDhoLs+8FFxsWifu2h6r+zTm2Xa6xNpqjmP5wEzOAqw6/QgX0iPmwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAlUYkeD1gOZpDFMn7GRzZrkKyy3MB8GA1UdIwQY MBaAFB09BEwJHoi4C0smnrt5az8kVEtfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSFQwRVRBa2VpTGdMU3lhZXUzbHJQeVJVUzE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8yNDY0NjYtNjA3YS00NGRhLTljYmYt YzQxNzQ0MmVmZjkzLzEvQ1ZSaVI0UFdBNW1rTVV5ZnNaSE5tdVFyTExjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8yNDY0NjYtNjA3YS00NGRhLTljYmYtYzQxNzQ0MmVmZjkz LzEvSFQwRVRBa2VpTGdMU3lhZXUzbHJQeVJVUzE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAqxaSMA0E AgACMAcDBQMqBQ2AMA0GCSqGSIb3DQEBCwUAA4IBAQAyCaKvgcg5/cF/zJnfkkoR 5hHh+DRO+9HrjBU9PpaN0+oEZTXhXz+pTS7rxDW7bMa8BQk0prnVs59a2Hy0vOXj yjo4mh91T1Myh+PXUWTQ7P3OxSiTEQL/vV5j1NI33XP7gCVA28n2DxRQt0MUXQNG 5Q4RFzjYW33isP0++eC/5o8eeVvFCZfDYlgM/JlL4uMsVoi6Sn6m5j7OJX+vBGxr p6FD/JxwyvRZXSmGQWs7+xU2twccbAVDlJN0VCyVT1NDc8L+k6S2eQONVKMgciLR /2amCI/z4gMmYfCqnW694sWVlEUoINgoWA0tRcCvl9qbbzXmQ15/V+1O+tGE5A/U -----END CERTIFICATE-----Generated at Mon Feb 9 20:59:59 2026 by rpki-client