This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CuNMqMuKFaZ6XCAVF8k4MRJXgJw.roa File: CuNMqMuKFaZ6XCAVF8k4MRJXgJw.roa (raw, json) Hash identifier: hFGBiBVtjM0GYPF3grxz7jITT2+PHHfS8BXCUFgO39Q= Subject key identifier: 0A:E3:4C:A8:CB:8A:15:A6:7A:5C:20:15:17:C9:38:31:12:57:80:9C Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Certificate serial: 019C0989A4665AFFC4A124CC335A041EADC1 Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CuNMqMuKFaZ6XCAVF8k4MRJXgJw.roa Signing time: Thu 29 Jan 2026 11:35:41 +0000 ROA not before: Thu 29 Jan 2026 11:35:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 29802 IP address blocks: 176.125.248.0/24 maxlen: 24 185.206.251.0/24 maxlen: 24 185.210.232.0/24 maxlen: 24 185.210.235.0/24 maxlen: 24 185.214.102.0/24 maxlen: 24 185.225.0.0/24 maxlen: 24 185.225.2.0/24 maxlen: 24 185.251.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.mft rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 30 Jan 2026 11:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:09:89:a4:66:5a:ff:c4:a1:24:cc:33:5a:04:1e:ad:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf Validity Not Before: Jan 29 11:35:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0ae34ca8cb8a15a67a5c201517c938311257809c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:c4:43:13:a2:e9:76:4e:96:26:c4:d1:d8:02: 99:26:c9:46:5d:21:b3:b0:7c:da:07:54:c4:9b:30: 2f:95:c2:d4:cd:5c:63:14:b7:02:b8:4c:87:51:0e: 90:6e:e1:31:ec:b3:ad:b4:e3:a5:5c:df:2a:42:01: 74:9e:a5:e8:c8:c4:d9:2b:9a:64:50:e3:1e:0b:18: b7:8e:c2:d9:1e:aa:4f:cd:a7:34:6f:53:fb:8b:19: 96:eb:b0:ff:1b:86:40:f1:e0:bd:61:ca:05:35:a6: 43:f8:ce:bd:fc:97:90:56:45:99:af:75:d4:81:d2: 71:3e:96:bf:07:57:48:f4:f4:66:f1:f6:83:84:40: 26:26:0f:ec:44:82:7d:56:b4:22:41:05:60:9d:52: 69:81:38:3f:77:ba:4b:32:ac:43:b9:fb:1e:92:ae: ed:6a:6f:27:4c:8b:82:0d:c3:b8:5e:e9:74:5a:96: d0:ce:da:c8:fc:52:0c:8e:fe:51:89:7b:61:0e:cc: 63:bd:84:92:36:a4:d8:12:2b:1b:4b:84:96:12:c6: 6f:08:ad:db:07:96:f5:4e:c8:01:8c:c9:61:66:c1: 94:f7:aa:22:99:9d:33:b1:d5:4c:04:20:a5:e6:84: fd:26:fe:e2:01:23:97:99:e5:f6:1f:78:10:4c:3d: 13:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E3:4C:A8:CB:8A:15:A6:7A:5C:20:15:17:C9:38:31:12:57:80:9C X509v3 Authority Key Identifier: keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/CuNMqMuKFaZ6XCAVF8k4MRJXgJw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.125.248.0/24 185.206.251.0/24 185.210.232.0/24 185.210.235.0/24 185.214.102.0/24 185.225.0.0/24 185.225.2.0/24 185.251.231.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:cc:07:4a:74:74:64:86:ec:3b:8f:ab:5c:a4:cd:ec:00:0c: ae:37:55:5f:15:76:f5:47:67:e5:7a:19:c1:a9:dd:cb:78:d5: 75:a9:29:74:47:79:b7:44:1a:b5:29:33:e9:3b:75:6f:b0:c5: d6:fd:b3:0e:68:38:cb:75:ba:6a:b2:86:db:25:38:0a:97:c4: 0f:7f:c2:4b:83:a3:30:ef:d5:15:8b:b6:39:63:8e:25:7e:d0: 6a:cb:e3:3d:6a:84:cf:cf:42:a5:9f:a8:bf:51:9c:d0:63:33: 95:5e:57:34:91:08:22:e4:1b:0d:0a:56:79:80:7e:b5:0b:bf: 44:d0:30:da:86:53:a5:7d:c6:76:0b:ea:83:c5:38:45:23:4e: 5a:f9:f2:31:d5:d0:f4:d1:f2:69:7a:15:97:c7:61:0a:d4:11: af:52:1d:e9:5e:6d:2e:5a:8c:c3:a2:15:26:02:f7:7e:08:72: 64:56:7b:f0:bb:d5:6b:f2:90:16:a9:e7:e3:28:4c:f5:b0:fd: bf:94:8c:25:b2:15:d9:68:4c:40:38:1c:58:aa:95:e1:a4:5f: 9d:33:61:c4:c1:bd:d5:e3:2e:95:c6:a8:8c:a7:20:5e:80:e6: ef:7e:22:8d:8c:66:f7:2f:59:30:16:0f:e3:a4:23:53:5c:e2: 2d:9d:e0:c6 -----BEGIN CERTIFICATE----- MIIFJzCCBA+gAwIBAgISAZwJiaRmWv/EoSTMM1oEHq3BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx MTRjYWYwHhcNMjYwMTI5MTEzNTQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYWUzNGNhOGNiOGExNWE2N2E1YzIwMTUxN2M5MzgzMTEyNTc4MDljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8RDE6Lpdk6WJsTR2AKZJslGXSGz sHzaB1TEmzAvlcLUzVxjFLcCuEyHUQ6QbuEx7LOttOOlXN8qQgF0nqXoyMTZK5pk UOMeCxi3jsLZHqpPzac0b1P7ixmW67D/G4ZA8eC9YcoFNaZD+M69/JeQVkWZr3XU gdJxPpa/B1dI9PRm8faDhEAmJg/sRIJ9VrQiQQVgnVJpgTg/d7pLMqxDufsekq7t am8nTIuCDcO4Xul0WpbQztrI/FIMjv5RiXthDsxjvYSSNqTYEisbS4SWEsZvCK3b B5b1TsgBjMlhZsGU96oimZ0zsdVMBCCl5oT9Jv7iASOXmeX2H3gQTD0TwQIDAQAB o4ICMzCCAi8wHQYDVR0OBBYEFArjTKjLihWmelwgFRfJODESV4CcMB8GA1UdIwQY MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt YjQzNDJiYTkxYWJjLzEvQ3VOTXFNdUtGYVo2WENBVkY4azRNUkpYZ0p3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODA2BAIAATAwAwQAsH34AwQA uc77AwQAudLoAwQAudLrAwQAudZmAwQAueEAAwQAueECAwQAufvnMA0GCSqGSIb3 DQEBCwUAA4IBAQB7zAdKdHRkhuw7j6tcpM3sAAyuN1VfFXb1R2flehnBqd3LeNV1 qSl0R3m3RBq1KTPpO3VvsMXW/bMOaDjLdbpqsobbJTgKl8QPf8JLg6Mw79UVi7Y5 Y44lftBqy+M9aoTPz0Kln6i/UZzQYzOVXlc0kQgi5BsNClZ5gH61C79E0DDahlOl fcZ2C+qDxThFI05a+fIx1dD00fJpehWXx2EK1BGvUh3pXm0uWozDohUmAvd+CHJk Vnvwu9Vr8pAWqefjKEz1sP2/lIwlshXZaExAOBxYqpXhpF+dM2HEwb3V4y6VxqiM pyBegObvfiKNjGb3L1kwFg/jpCNTXOItneDG -----END CERTIFICATE-----Generated at Thu Jan 29 17:48:17 2026 by rpki-client