This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/288416-a46e-49c3-9337-249ce0c312b3/1/CHYxKsoN6IeVA10L6kUmg387K4E.roa File: CHYxKsoN6IeVA10L6kUmg387K4E.roa (raw, json) Hash identifier: mPumrjNcFYvdRL5bdDvvsuVOxWBNEvLLvkR9dRXxG+0= Subject key identifier: 08:76:31:2A:CA:0D:E8:87:95:03:5D:0B:EA:45:26:83:7F:3B:2B:81 Certificate issuer: /CN=bfaea358aeeeb7d0b9e0f93d23f67d29a7ec62c8 Certificate serial: 019B78A2C9B3800932CCAC6632BB946321FD Authority key identifier: BF:AE:A3:58:AE:EE:B7:D0:B9:E0:F9:3D:23:F6:7D:29:A7:EC:62:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v66jWK7ut9C54Pk9I_Z9KafsYsg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/288416-a46e-49c3-9337-249ce0c312b3/1/CHYxKsoN6IeVA10L6kUmg387K4E.roa Signing time: Thu 01 Jan 2026 08:18:13 +0000 ROA not before: Thu 01 Jan 2026 08:18:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1820 IP address blocks: 146.19.54.0/24 maxlen: 32 194.246.120.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/288416-a46e-49c3-9337-249ce0c312b3/1/v66jWK7ut9C54Pk9I_Z9KafsYsg.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/288416-a46e-49c3-9337-249ce0c312b3/1/v66jWK7ut9C54Pk9I_Z9KafsYsg.mft rsync://rpki.ripe.net/repository/DEFAULT/v66jWK7ut9C54Pk9I_Z9KafsYsg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 19:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:c9:b3:80:09:32:cc:ac:66:32:bb:94:63:21:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bfaea358aeeeb7d0b9e0f93d23f67d29a7ec62c8 Validity Not Before: Jan 1 08:18:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0876312aca0de88795035d0bea4526837f3b2b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ff:7d:10:75:92:74:92:1a:83:e7:40:c4:b8: cd:c0:0f:28:d7:60:53:6f:d1:0e:b9:ba:24:c8:f3: 01:c5:50:2b:15:eb:7c:ff:03:d5:d6:cd:86:3b:84: 19:c0:fd:af:7d:69:4b:7b:99:3f:43:e8:6a:6b:73: 12:11:09:8f:52:73:2d:fc:16:31:52:e6:97:40:e1: ab:a1:f8:66:fd:f9:9b:b0:a3:e3:24:a6:2a:67:a9: 18:31:cb:80:88:31:fa:f2:30:63:2b:a4:1f:d2:f4: 0d:36:51:aa:c2:0b:92:de:a6:26:98:20:52:4b:de: ac:6f:1f:a6:e2:56:81:04:de:3d:3c:17:1c:3b:ec: 6c:f2:45:8f:40:40:b7:47:b9:85:24:da:b1:cb:64: 02:8e:1d:13:cd:66:a2:a1:3e:19:c6:03:93:26:79: 2d:75:ba:2b:b1:42:b0:bd:dc:23:e7:66:db:99:85: 6c:43:a3:61:b6:4c:4d:2e:7a:50:7b:41:35:78:44: 4e:2a:bc:09:9c:7d:73:f7:13:28:c0:90:58:2c:76: e1:59:ed:89:e0:a0:83:37:11:cf:03:83:88:49:ed: 94:2d:58:0f:33:10:0e:93:a8:dc:74:0d:5d:22:fa: 31:49:0f:12:3e:62:c0:99:c5:d1:10:26:6a:b0:d3: ff:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:76:31:2A:CA:0D:E8:87:95:03:5D:0B:EA:45:26:83:7F:3B:2B:81 X509v3 Authority Key Identifier: keyid:BF:AE:A3:58:AE:EE:B7:D0:B9:E0:F9:3D:23:F6:7D:29:A7:EC:62:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v66jWK7ut9C54Pk9I_Z9KafsYsg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/288416-a46e-49c3-9337-249ce0c312b3/1/CHYxKsoN6IeVA10L6kUmg387K4E.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/288416-a46e-49c3-9337-249ce0c312b3/1/v66jWK7ut9C54Pk9I_Z9KafsYsg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.19.54.0/24 194.246.120.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:61:59:b5:d2:d8:de:b1:31:4d:cb:2a:a9:96:0a:f2:57:54: 57:a0:5d:13:e7:63:fc:d1:e1:99:6c:d3:ee:67:52:2f:93:dc: b7:4b:43:fb:68:79:28:c9:8f:60:bd:bb:86:07:16:c9:fe:0d: d8:c4:30:b3:13:c0:eb:b0:a5:3a:70:7a:40:ee:f2:94:bc:9c: 9f:28:e5:51:1f:26:4a:bb:d4:76:e9:28:fa:2c:81:c3:23:a4: cf:2e:55:09:55:36:26:9d:c1:d6:4a:00:6f:bc:1a:4e:2f:44: e3:9a:67:09:ae:91:42:92:3f:24:81:8e:5c:c9:b4:ae:dc:5e: 20:51:20:7c:b2:9e:80:f7:2a:84:b7:bf:bb:c1:5e:68:5c:b0: 47:4f:53:75:4f:da:bc:ea:95:98:14:d9:8f:b9:82:b9:55:2d: 2b:82:0f:fc:cf:3b:da:0e:0b:fa:b4:a9:c6:f0:e9:67:cf:f6: 01:16:7f:00:77:4a:fc:ec:04:97:6c:23:07:80:89:db:78:58: 76:21:40:80:51:ff:ea:ae:eb:40:d7:f3:f3:23:8b:11:ce:e0: 37:07:ae:ab:b5:ce:0f:4d:9e:ae:e3:3b:40:78:a6:15:56:eb: a1:c3:c6:41:cc:16:01:f0:74:0d:82:50:fa:c4:04:98:f7:06: 7d:8b:03:f6 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt4osmzgAkyzKxmMruUYyH9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJmYWVhMzU4YWVlZWI3ZDBiOWUwZjkzZDIzZjY3ZDI5YTdl YzYyYzgwHhcNMjYwMTAxMDgxODEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODc2MzEyYWNhMGRlODg3OTUwMzVkMGJlYTQ1MjY4MzdmM2IyYjgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuP99EHWSdJIag+dAxLjNwA8o12BT b9EOubokyPMBxVArFet8/wPV1s2GO4QZwP2vfWlLe5k/Q+hqa3MSEQmPUnMt/BYx UuaXQOGrofhm/fmbsKPjJKYqZ6kYMcuAiDH68jBjK6Qf0vQNNlGqwguS3qYmmCBS S96sbx+m4laBBN49PBccO+xs8kWPQEC3R7mFJNqxy2QCjh0TzWaioT4ZxgOTJnkt dborsUKwvdwj52bbmYVsQ6NhtkxNLnpQe0E1eEROKrwJnH1z9xMowJBYLHbhWe2J 4KCDNxHPA4OISe2ULVgPMxAOk6jcdA1dIvoxSQ8SPmLAmcXRECZqsNP/+QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAh2MSrKDeiHlQNdC+pFJoN/OyuBMB8GA1UdIwQY MBaAFL+uo1iu7rfQueD5PSP2fSmn7GLIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdjY2aldLN3V0OUM1NFBrOUlfWjlLYWZzWXNnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC8yODg0MTYtYTQ2ZS00OWMzLTkzMzct MjQ5Y2UwYzMxMmIzLzEvQ0hZeEtzb042SWVWQTEwTDZrVW1nMzg3SzRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC8yODg0MTYtYTQ2ZS00OWMzLTkzMzctMjQ5Y2UwYzMxMmIz LzEvdjY2aldLN3V0OUM1NFBrOUlfWjlLYWZzWXNnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAkhM2AwQB wvZ4MA0GCSqGSIb3DQEBCwUAA4IBAQCNYVm10tjesTFNyyqplgryV1RXoF0T52P8 0eGZbNPuZ1Ivk9y3S0P7aHkoyY9gvbuGBxbJ/g3YxDCzE8DrsKU6cHpA7vKUvJyf KOVRHyZKu9R26Sj6LIHDI6TPLlUJVTYmncHWSgBvvBpOL0TjmmcJrpFCkj8kgY5c ybSu3F4gUSB8sp6A9yqEt7+7wV5oXLBHT1N1T9q86pWYFNmPuYK5VS0rgg/8zzva Dgv6tKnG8Olnz/YBFn8Ad0r87ASXbCMHgInbeFh2IUCAUf/qrutA1/PzI4sRzuA3 B66rtc4PTZ6u4ztAeKYVVuuhw8ZBzBYB8HQNglD6xASY9wZ9iwP2 -----END CERTIFICATE-----Generated at Sun Feb 8 04:51:16 2026 by rpki-client