This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/163b28-4821-469d-8367-2185fa3d27b2/1/P0WHBH0gpRTm6vJYqBGWGauKjFs.roa File: P0WHBH0gpRTm6vJYqBGWGauKjFs.roa (raw, json) Hash identifier: /o5NA6BgivGFlv+dRNyYsszJeWtK7hLgc9YXTsQygw0= Subject key identifier: 3F:45:87:04:7D:20:A5:14:E6:EA:F2:58:A8:11:96:19:AB:8A:8C:5B Certificate issuer: /CN=6c0afeb6f24ad1274ac2255d1f9c5a2f4135b770 Certificate serial: 019B7A59D763D69B255370615F78A32F42FA Authority key identifier: 6C:0A:FE:B6:F2:4A:D1:27:4A:C2:25:5D:1F:9C:5A:2F:41:35:B7:70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bAr-tvJK0SdKwiVdH5xaL0E1t3A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/163b28-4821-469d-8367-2185fa3d27b2/1/P0WHBH0gpRTm6vJYqBGWGauKjFs.roa Signing time: Thu 01 Jan 2026 16:17:46 +0000 ROA not before: Thu 01 Jan 2026 16:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201637 IP address blocks: 91.196.108.0/22 maxlen: 22 194.116.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/163b28-4821-469d-8367-2185fa3d27b2/1/bAr-tvJK0SdKwiVdH5xaL0E1t3A.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/163b28-4821-469d-8367-2185fa3d27b2/1/bAr-tvJK0SdKwiVdH5xaL0E1t3A.mft rsync://rpki.ripe.net/repository/DEFAULT/bAr-tvJK0SdKwiVdH5xaL0E1t3A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:d7:63:d6:9b:25:53:70:61:5f:78:a3:2f:42:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c0afeb6f24ad1274ac2255d1f9c5a2f4135b770 Validity Not Before: Jan 1 16:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3f4587047d20a514e6eaf258a8119619ab8a8c5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ce:84:52:be:0c:61:c1:f8:a3:04:23:67:ed: 7a:ab:30:f8:69:a5:52:9c:4d:06:4c:be:04:14:91: 73:4d:88:53:0b:42:ae:57:21:43:65:18:21:1f:57: d0:0a:b6:09:dc:02:c8:3b:fb:a4:72:8f:74:7d:4e: 32:8b:d0:18:70:07:b3:da:04:cd:63:1f:64:aa:99: 98:f3:b3:3c:9e:28:81:99:49:d5:3f:9e:02:39:e5: a9:a3:46:7e:0e:af:db:8c:73:3a:d9:08:8b:ad:a4: b6:27:45:b0:18:7b:4e:c0:bf:92:17:22:f7:47:d5: 2d:41:96:f3:c7:a3:e0:c3:73:98:81:ad:a8:46:00: c3:01:7f:ef:90:50:2c:42:57:c0:12:74:c6:cc:02: e0:66:d5:e3:e8:5c:ff:0e:30:3a:a4:0c:8f:14:4f: 74:dd:11:c1:6b:d1:40:4a:d7:0a:9a:41:26:98:10: d5:fb:21:be:95:21:a3:80:f1:d5:6d:a5:64:be:45: ad:57:a1:7a:a8:8e:c7:b0:8e:26:b0:6b:9c:e3:2b: a2:27:aa:0d:a6:bd:9a:0c:4d:86:3d:68:bc:6e:81: 0d:9d:7d:da:1f:a1:29:87:9c:ad:44:48:50:f3:f5: 0f:36:19:9b:27:10:98:39:44:bf:79:ce:10:20:78: ff:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:45:87:04:7D:20:A5:14:E6:EA:F2:58:A8:11:96:19:AB:8A:8C:5B X509v3 Authority Key Identifier: keyid:6C:0A:FE:B6:F2:4A:D1:27:4A:C2:25:5D:1F:9C:5A:2F:41:35:B7:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bAr-tvJK0SdKwiVdH5xaL0E1t3A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/163b28-4821-469d-8367-2185fa3d27b2/1/P0WHBH0gpRTm6vJYqBGWGauKjFs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/163b28-4821-469d-8367-2185fa3d27b2/1/bAr-tvJK0SdKwiVdH5xaL0E1t3A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.196.108.0/22 194.116.166.0/24 Signature Algorithm: sha256WithRSAEncryption 92:f8:be:0f:43:08:8a:75:09:24:6d:22:80:4a:66:48:f5:b9: 98:21:62:fe:58:75:57:88:3e:52:eb:54:e3:8b:4d:a4:2e:a2: 98:10:d5:c9:2c:7d:2f:8c:0e:fa:ae:75:8c:71:30:3f:a1:51: d5:c8:69:cc:c8:ed:34:ef:24:9b:18:35:e1:ab:f1:b0:19:d4: 46:ad:e9:f8:ae:61:dc:82:6a:de:a2:c7:47:8b:17:b2:e7:ab: 9f:df:49:25:f4:e8:92:6c:38:42:7f:de:a8:9a:bb:59:42:3d: d6:30:a8:86:ea:61:3e:c7:5e:43:d9:7e:6c:ee:22:ec:3f:1b: 71:3c:c1:e4:22:35:a6:68:e2:54:a9:b6:13:64:d9:39:61:13: 62:8b:d1:87:3c:6b:ef:f3:27:7e:71:3c:9e:b6:d7:53:07:b9: 4d:a0:0c:b2:e1:49:89:f1:89:0a:67:7b:21:36:07:02:ff:85: c4:ad:5f:d2:7a:7d:22:a8:a7:78:2f:35:00:ce:fd:78:d7:74: 16:8c:8a:75:10:5e:e5:54:f8:de:6f:6a:ab:82:ac:de:c9:20: b5:95:5f:ae:84:0e:24:5d:bb:e3:c0:84:0d:89:e6:a1:da:ae: c1:ab:75:28:e9:0f:66:23:4c:f8:13:8b:73:28:3a:45:d4:a5: b1:a0:c1:a8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6Wddj1pslU3BhX3ijL0L6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjMGFmZWI2ZjI0YWQxMjc0YWMyMjU1ZDFmOWM1YTJmNDEz NWI3NzAwHhcNMjYwMTAxMTYxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZjQ1ODcwNDdkMjBhNTE0ZTZlYWYyNThhODExOTYxOWFiOGE4YzViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyM6EUr4MYcH4owQjZ+16qzD4aaVS nE0GTL4EFJFzTYhTC0KuVyFDZRghH1fQCrYJ3ALIO/ukco90fU4yi9AYcAez2gTN Yx9kqpmY87M8niiBmUnVP54COeWpo0Z+Dq/bjHM62QiLraS2J0WwGHtOwL+SFyL3 R9UtQZbzx6Pgw3OYga2oRgDDAX/vkFAsQlfAEnTGzALgZtXj6Fz/DjA6pAyPFE90 3RHBa9FAStcKmkEmmBDV+yG+lSGjgPHVbaVkvkWtV6F6qI7HsI4msGuc4yuiJ6oN pr2aDE2GPWi8boENnX3aH6Eph5ytREhQ8/UPNhmbJxCYOUS/ec4QIHj/mQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFD9FhwR9IKUU5uryWKgRlhmrioxbMB8GA1UdIwQY MBaAFGwK/rbyStEnSsIlXR+cWi9BNbdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkFyLXR2SkswU2RLd2lWZEg1eGFMMEUxdDNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS8xNjNiMjgtNDgyMS00NjlkLTgzNjct MjE4NWZhM2QyN2IyLzEvUDBXSEJIMGdwUlRtNnZKWXFCR1dHYXVLakZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS8xNjNiMjgtNDgyMS00NjlkLTgzNjctMjE4NWZhM2QyN2Iy LzEvYkFyLXR2SkswU2RLd2lWZEg1eGFMMEUxdDNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCW8RsAwQA wnSmMA0GCSqGSIb3DQEBCwUAA4IBAQCS+L4PQwiKdQkkbSKASmZI9bmYIWL+WHVX iD5S61Tji02kLqKYENXJLH0vjA76rnWMcTA/oVHVyGnMyO007ySbGDXhq/GwGdRG ren4rmHcgmreosdHixey56uf30kl9OiSbDhCf96omrtZQj3WMKiG6mE+x15D2X5s 7iLsPxtxPMHkIjWmaOJUqbYTZNk5YRNii9GHPGvv8yd+cTyettdTB7lNoAyy4UmJ 8YkKZ3shNgcC/4XErV/Sen0iqKd4LzUAzv1413QWjIp1EF7lVPjeb2qrgqzeySC1 lV+uhA4kXbvjwIQNieah2q7Bq3Uo6Q9mI0z4E4tzKDpF1KWxoMGo -----END CERTIFICATE-----Generated at Mon Feb 9 20:45:35 2026 by rpki-client