This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/71owHX4S2u2lF3E_BCb4Gt1KJaM.roa File: 71owHX4S2u2lF3E_BCb4Gt1KJaM.roa (raw, json) Hash identifier: C8aJgnSvLd5vqx93bG6/27ca+qWBm6BMec2VKfAW2bA= Subject key identifier: EF:5A:30:1D:7E:12:DA:ED:A5:17:71:3F:04:26:F8:1A:DD:4A:25:A3 Certificate issuer: /CN=1b0bb51a7b532be4d44ba604ae6e063f063f37d4 Certificate serial: 019B79ECE333E4990E4DEFDD965B863DA354 Authority key identifier: 1B:0B:B5:1A:7B:53:2B:E4:D4:4B:A6:04:AE:6E:06:3F:06:3F:37:D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gwu1GntTK-TUS6YErm4GPwY_N9Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/71owHX4S2u2lF3E_BCb4Gt1KJaM.roa Signing time: Thu 01 Jan 2026 14:18:46 +0000 ROA not before: Thu 01 Jan 2026 14:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206429 IP address blocks: 185.186.196.0/22 maxlen: 22 185.252.152.0/22 maxlen: 22 2a0b:8580::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/Gwu1GntTK-TUS6YErm4GPwY_N9Q.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/Gwu1GntTK-TUS6YErm4GPwY_N9Q.mft rsync://rpki.ripe.net/repository/DEFAULT/Gwu1GntTK-TUS6YErm4GPwY_N9Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:e3:33:e4:99:0e:4d:ef:dd:96:5b:86:3d:a3:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1b0bb51a7b532be4d44ba604ae6e063f063f37d4 Validity Not Before: Jan 1 14:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ef5a301d7e12daeda517713f0426f81add4a25a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ec:49:62:2f:9f:88:8d:34:3f:42:e0:8b:5c: 9b:dd:d0:fb:c9:44:f9:c9:31:bc:88:b8:2b:4d:1b: b3:10:99:bf:65:d7:9c:27:77:59:a8:61:7b:2c:d8: b1:a7:17:9e:3f:70:52:20:37:3d:5b:b1:d2:bf:39: ce:f0:0f:91:61:63:b6:aa:ae:dd:7f:28:0f:7d:2f: 99:82:3e:9e:c7:c9:97:05:80:74:ee:a9:36:c4:04: bc:cd:da:74:6b:61:64:12:f0:b8:ec:c9:9a:5d:4e: 1d:1f:81:91:e9:2c:bf:36:86:60:d4:fd:6f:96:11: f5:7c:6d:62:15:1b:8e:2e:9b:bd:24:72:69:1a:28: e9:c5:41:ac:a8:7a:4d:b0:aa:4f:35:ad:d5:aa:7e: b0:66:58:6b:b9:3e:f8:e7:10:81:49:23:6f:52:d8: c3:bb:8e:35:db:7f:01:b1:c8:67:ba:ab:65:12:a9: 85:f8:9b:d6:e6:33:33:19:8d:c6:49:ce:8b:e0:1b: 05:3f:27:c5:22:cd:1a:61:e8:96:25:8f:9c:b4:1a: 38:3d:c0:a1:f5:13:e5:94:02:d6:ad:35:c1:04:a9: b6:58:56:05:fe:18:b2:d4:48:0a:32:24:e8:88:a9: b2:b2:64:d5:4b:9f:80:d2:17:3d:b1:7b:dd:ed:09: 6e:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:5A:30:1D:7E:12:DA:ED:A5:17:71:3F:04:26:F8:1A:DD:4A:25:A3 X509v3 Authority Key Identifier: keyid:1B:0B:B5:1A:7B:53:2B:E4:D4:4B:A6:04:AE:6E:06:3F:06:3F:37:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gwu1GntTK-TUS6YErm4GPwY_N9Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/71owHX4S2u2lF3E_BCb4Gt1KJaM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/Gwu1GntTK-TUS6YErm4GPwY_N9Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.186.196.0/22 185.252.152.0/22 IPv6: 2a0b:8580::/29 Signature Algorithm: sha256WithRSAEncryption b3:28:45:ba:94:5f:c5:51:86:0a:51:b2:40:5e:73:fd:ee:24: e5:f5:3d:2a:99:09:0b:47:58:46:d7:02:aa:42:c6:61:73:a3: 2e:d4:44:7f:1c:be:22:ae:67:27:5e:79:29:fd:a4:63:5d:af: 9a:ec:a0:f5:fe:ab:ae:2d:67:96:93:6a:33:2c:1c:01:f7:71: 3f:70:96:a0:14:6d:8c:e6:1f:09:1a:a8:e8:86:8e:06:cf:0d: 6e:46:c8:ce:45:c5:9a:34:fe:d4:62:09:28:0b:46:b0:52:89: 17:99:e4:19:aa:b9:ad:93:98:0f:17:f0:32:65:a5:eb:1e:20: 0f:70:d5:ca:30:5d:e7:90:ff:26:96:c4:48:f2:05:bd:88:03: 24:b3:74:53:2f:fc:4a:d5:c3:75:71:b3:6e:35:ec:56:54:9f: 6e:08:73:5c:03:6d:c0:c0:67:10:a4:38:84:ff:5e:63:b2:e3: 10:f9:a4:b7:9f:34:d0:55:85:d1:77:9d:74:88:12:8f:e5:2e: be:73:60:f4:d7:8a:bf:6f:5d:aa:12:26:8d:f8:1e:8c:0e:dd: c0:9f:b4:a5:b8:29:61:8e:59:47:14:d8:ca:ff:dc:ab:22:cf: 28:71:f1:5e:a9:67:25:9e:72:fb:d6:42:8a:1f:a6:18:85:df: f2:b4:6d:7a -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt57OMz5JkOTe/dlluGPaNUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFiMGJiNTFhN2I1MzJiZTRkNDRiYTYwNGFlNmUwNjNmMDYz ZjM3ZDQwHhcNMjYwMTAxMTQxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlZjVhMzAxZDdlMTJkYWVkYTUxNzcxM2YwNDI2ZjgxYWRkNGEyNWEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6OxJYi+fiI00P0Lgi1yb3dD7yUT5 yTG8iLgrTRuzEJm/ZdecJ3dZqGF7LNixpxeeP3BSIDc9W7HSvznO8A+RYWO2qq7d fygPfS+Zgj6ex8mXBYB07qk2xAS8zdp0a2FkEvC47MmaXU4dH4GR6Sy/NoZg1P1v lhH1fG1iFRuOLpu9JHJpGijpxUGsqHpNsKpPNa3Vqn6wZlhruT745xCBSSNvUtjD u441238BschnuqtlEqmF+JvW5jMzGY3GSc6L4BsFPyfFIs0aYeiWJY+ctBo4PcCh 9RPllALWrTXBBKm2WFYF/hiy1EgKMiToiKmysmTVS5+A0hc9sXvd7QluqwIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFO9aMB1+EtrtpRdxPwQm+BrdSiWjMB8GA1UdIwQY MBaAFBsLtRp7Uyvk1EumBK5uBj8GPzfUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR3d1MUdudFRLLVRVUzZZRXJtNEdQd1lfTjlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi81ZTZhOGYtMGI3OS00ODk0LWI5MWMt ZWVjZWU4OTNjNTI3LzEvNzFvd0hYNFMydTJsRjNFX0JDYjRHdDFLSmFNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi81ZTZhOGYtMGI3OS00ODk0LWI5MWMtZWVjZWU4OTNjNTI3 LzEvR3d1MUdudFRLLVRVUzZZRXJtNEdQd1lfTjlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCubrEAwQC ufyYMA0EAgACMAcDBQMqC4WAMA0GCSqGSIb3DQEBCwUAA4IBAQCzKEW6lF/FUYYK UbJAXnP97iTl9T0qmQkLR1hG1wKqQsZhc6Mu1ER/HL4irmcnXnkp/aRjXa+a7KD1 /quuLWeWk2ozLBwB93E/cJagFG2M5h8JGqjoho4Gzw1uRsjORcWaNP7UYgkoC0aw UokXmeQZqrmtk5gPF/AyZaXrHiAPcNXKMF3nkP8mlsRI8gW9iAMks3RTL/xK1cN1 cbNuNexWVJ9uCHNcA23AwGcQpDiE/15jsuMQ+aS3nzTQVYXRd510iBKP5S6+c2D0 14q/b12qEiaN+B6MDt3An7SluClhjllHFNjK/9yrIs8ocfFeqWclnnL71kKKH6YY hd/ytG16 -----END CERTIFICATE-----Generated at Tue Feb 10 02:54:52 2026 by rpki-client