This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/CwgZcUkyKLt048Oqe9IkcFcNcGM.roa File: CwgZcUkyKLt048Oqe9IkcFcNcGM.roa (raw, json) Hash identifier: 863NNHY2dcVFVj1Sa4r+ACtbVTP+iPOTXWUzEVvig7k= Subject key identifier: 0B:08:19:71:49:32:28:BB:74:E3:C3:AA:7B:D2:24:70:57:0D:70:63 Certificate issuer: /CN=97f697013433b891d64697d928663be734dba4e7 Certificate serial: 019B77C76D67AFDFFF72702E043197F3EA3C Authority key identifier: 97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/CwgZcUkyKLt048Oqe9IkcFcNcGM.roa Signing time: Thu 01 Jan 2026 04:18:36 +0000 ROA not before: Thu 01 Jan 2026 04:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 21147 IP address blocks: 195.190.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.mft rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:6d:67:af:df:ff:72:70:2e:04:31:97:f3:ea:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97f697013433b891d64697d928663be734dba4e7 Validity Not Before: Jan 1 04:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0b081971493228bb74e3c3aa7bd22470570d7063 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:70:0e:b5:63:e3:0e:59:30:11:1d:62:54:2f: 80:db:db:4c:0c:c6:0c:a2:ef:ea:bc:8b:eb:6f:56: b3:e3:38:06:05:dd:1e:52:e3:40:66:86:3e:f6:39: 9b:b8:94:ca:94:7c:3d:4a:03:58:a0:30:45:d5:46: cf:d3:2d:50:3a:1b:1b:52:b1:da:e2:49:26:d7:d9: 3f:68:c5:97:17:e8:cf:df:48:d7:bb:c4:b1:4a:a1: df:e9:23:59:e3:9c:1e:04:64:91:2e:ba:71:d8:d2: 6d:f2:49:27:e4:c0:a8:86:f3:61:48:78:67:f0:09: 0a:c7:11:b0:9a:7f:c2:07:f6:4f:29:eb:2a:00:43: e1:76:f9:41:9a:db:54:8a:70:07:e3:1f:11:ec:a6: 43:4e:18:ba:c7:b4:d3:d8:a7:ee:94:7f:e9:1d:3a: 75:61:98:14:2e:15:30:9e:54:9d:e5:59:de:9b:d1: 48:e5:7c:58:de:08:01:60:26:05:b3:3e:71:16:11: dc:ef:ca:45:01:4c:ff:ac:a6:28:eb:e4:94:76:43: 08:2b:04:fd:2b:2d:cb:f2:e6:12:cc:9c:a7:41:6a: 98:e7:11:39:cb:90:c0:47:fc:0d:4d:8e:07:41:30: 53:eb:06:2d:ef:d8:53:6d:42:d8:fc:12:ab:ce:ec: d3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:08:19:71:49:32:28:BB:74:E3:C3:AA:7B:D2:24:70:57:0D:70:63 X509v3 Authority Key Identifier: keyid:97:F6:97:01:34:33:B8:91:D6:46:97:D9:28:66:3B:E7:34:DB:A4:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l_aXATQzuJHWRpfZKGY75zTbpOc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/CwgZcUkyKLt048Oqe9IkcFcNcGM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/ae1166-d606-45b7-9a22-7bc83220fb62/1/l_aXATQzuJHWRpfZKGY75zTbpOc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.190.141.0/24 Signature Algorithm: sha256WithRSAEncryption 58:46:0e:54:f2:d2:07:3e:94:7e:b0:75:b0:0e:41:01:36:84: 48:fe:69:cc:c5:da:22:d9:74:4f:a1:8d:8c:84:0f:60:e5:35: 34:2e:b3:29:c0:8d:28:ef:46:84:6e:e7:62:34:7c:e6:f2:26: d1:3d:47:32:b9:c5:ae:92:99:55:77:ea:b5:51:3a:61:a5:43: 4d:c0:19:fd:d5:e6:69:b0:99:f0:6b:27:df:f7:21:48:09:81: 22:42:ed:64:3c:3e:8e:20:67:d8:d6:17:3f:c9:32:93:6b:bd: 5d:13:10:25:f8:0f:10:e5:c5:78:21:48:dd:1b:60:2d:d0:2a: 49:77:55:ae:64:68:5a:da:26:ef:43:5d:cf:9c:f6:9a:35:1e: 17:60:ac:d2:51:c4:b5:1b:df:d2:6b:6d:0c:95:e7:e9:88:8f: 9f:7a:a3:dc:c7:b1:6b:5c:e3:a2:f7:27:40:e3:d7:cf:da:e1: e2:47:ff:f9:e9:d8:6f:a6:59:5e:34:db:c4:ea:d5:0e:bd:bf: 88:53:46:2c:ed:a5:7a:b4:bf:22:36:e8:e8:06:61:2b:38:d7: f4:a7:c1:96:ac:e9:a9:23:cd:df:7c:aa:ed:e9:57:a5:38:59: 7a:15:90:0e:f1:28:e8:3a:7a:e5:5b:8f:cd:ff:dc:28:5f:99: 26:4f:f0:ee -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt3x21nr9//cnAuBDGX8+o8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3ZjY5NzAxMzQzM2I4OTFkNjQ2OTdkOTI4NjYzYmU3MzRk YmE0ZTcwHhcNMjYwMTAxMDQxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYjA4MTk3MTQ5MzIyOGJiNzRlM2MzYWE3YmQyMjQ3MDU3MGQ3MDYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj3AOtWPjDlkwER1iVC+A29tMDMYM ou/qvIvrb1az4zgGBd0eUuNAZoY+9jmbuJTKlHw9SgNYoDBF1UbP0y1QOhsbUrHa 4kkm19k/aMWXF+jP30jXu8SxSqHf6SNZ45weBGSRLrpx2NJt8kkn5MCohvNhSHhn 8AkKxxGwmn/CB/ZPKesqAEPhdvlBmttUinAH4x8R7KZDThi6x7TT2KfulH/pHTp1 YZgULhUwnlSd5Vnem9FI5XxY3ggBYCYFsz5xFhHc78pFAUz/rKYo6+SUdkMIKwT9 Ky3L8uYSzJynQWqY5xE5y5DAR/wNTY4HQTBT6wYt79hTbULY/BKrzuzTNwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAsIGXFJMii7dOPDqnvSJHBXDXBjMB8GA1UdIwQY MBaAFJf2lwE0M7iR1kaX2ShmO+c026TnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbF9hWEFUUXp1SkhXUnBmWktHWTc1elRicE9jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hZTExNjYtZDYwNi00NWI3LTlhMjIt N2JjODMyMjBmYjYyLzEvQ3dnWmNVa3lLTHQwNDhPcWU5SWtjRmNOY0dNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9hZTExNjYtZDYwNi00NWI3LTlhMjItN2JjODMyMjBmYjYy LzEvbF9hWEFUUXp1SkhXUnBmWktHWTc1elRicE9jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw76NMA0G CSqGSIb3DQEBCwUAA4IBAQBYRg5U8tIHPpR+sHWwDkEBNoRI/mnMxdoi2XRPoY2M hA9g5TU0LrMpwI0o70aEbudiNHzm8ibRPUcyucWukplVd+q1UTphpUNNwBn91eZp sJnwayff9yFICYEiQu1kPD6OIGfY1hc/yTKTa71dExAl+A8Q5cV4IUjdG2At0CpJ d1WuZGha2ibvQ13PnPaaNR4XYKzSUcS1G9/Sa20MlefpiI+feqPcx7FrXOOi9ydA 49fP2uHiR//56dhvplleNNvE6tUOvb+IU0Ys7aV6tL8iNujoBmErONf0p8GWrOmp I83ffKrt6VelOFl6FZAO8SjoOnrlW4/N/9woX5kmT/Du -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:28 2026 by rpki-client