This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/2ff98e-6ff9-4233-b9f1-227e21e691e7/1/cJd8S-uaABuXAFfWeDiL3NUesCo.roa File: cJd8S-uaABuXAFfWeDiL3NUesCo.roa (raw, json) Hash identifier: 0fC3HtMmFazUCnfsakHQvupcYRxYZ5KP3wkprur/geI= Subject key identifier: 70:97:7C:4B:EB:9A:00:1B:97:00:57:D6:78:38:8B:DC:D5:1E:B0:2A Certificate issuer: /CN=a68ff9229efd8d12b4273f346f8c6454ea587ecc Certificate serial: 019B7F156EBC5857A39B6DCD9DD593A32F33 Authority key identifier: A6:8F:F9:22:9E:FD:8D:12:B4:27:3F:34:6F:8C:64:54:EA:58:7E:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/po_5Ip79jRK0Jz80b4xkVOpYfsw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/2ff98e-6ff9-4233-b9f1-227e21e691e7/1/cJd8S-uaABuXAFfWeDiL3NUesCo.roa Signing time: Fri 02 Jan 2026 14:21:09 +0000 ROA not before: Fri 02 Jan 2026 14:21:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 396982 IP address blocks: 46.16.160.0/23 maxlen: 23 46.16.160.0/24 maxlen: 24 46.16.161.0/24 maxlen: 24 46.16.164.0/24 maxlen: 24 46.16.166.0/24 maxlen: 24 91.197.140.0/22 maxlen: 22 91.197.140.0/24 maxlen: 24 91.197.141.0/24 maxlen: 24 91.197.142.0/23 maxlen: 23 91.197.142.0/24 maxlen: 24 91.197.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/2ff98e-6ff9-4233-b9f1-227e21e691e7/1/po_5Ip79jRK0Jz80b4xkVOpYfsw.crl rsync://rpki.ripe.net/repository/DEFAULT/da/2ff98e-6ff9-4233-b9f1-227e21e691e7/1/po_5Ip79jRK0Jz80b4xkVOpYfsw.mft rsync://rpki.ripe.net/repository/DEFAULT/po_5Ip79jRK0Jz80b4xkVOpYfsw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:6e:bc:58:57:a3:9b:6d:cd:9d:d5:93:a3:2f:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a68ff9229efd8d12b4273f346f8c6454ea587ecc Validity Not Before: Jan 2 14:21:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=70977c4beb9a001b970057d678388bdcd51eb02a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6c:19:6a:9d:43:85:d8:76:72:fb:d7:be:92: ee:cc:0d:ca:01:ce:26:1d:20:ab:72:77:f3:f7:7a: fd:7f:28:55:0e:dd:11:a5:66:e2:43:1c:64:bd:19: 5b:f6:89:87:20:22:54:e8:ee:14:6e:c2:52:d3:ba: 06:53:a5:18:9d:9f:f5:47:9b:14:1b:30:09:29:19: c8:e2:64:3d:48:5c:20:24:7e:9e:30:94:3c:6e:6e: 43:1c:d2:82:88:32:07:85:93:1e:33:25:59:8e:90: 71:df:d5:16:0f:90:65:21:0b:ce:d2:a1:1a:3a:3c: 84:f8:a1:a5:dd:2f:12:c5:96:bb:5a:65:fa:07:7d: 38:0d:3b:ae:e1:68:38:9d:0c:95:14:64:84:54:5d: 84:c6:a8:bd:91:1c:0e:f7:f9:03:74:54:e4:b0:56: bb:72:fb:de:74:5a:5a:ca:d3:1f:60:90:4a:e4:c8: 9e:d4:84:42:5d:1a:48:60:3a:95:97:94:0d:50:a7: 60:81:8a:f6:85:52:ea:8f:3b:2b:b6:04:c5:80:de: 32:8d:b2:2c:b9:d4:73:5e:79:d6:6a:10:f9:0e:2f: d9:35:0d:f9:bd:f2:f6:83:3f:8e:6b:6c:5d:80:a9: 7a:93:78:b4:ca:d0:60:1b:fb:fb:01:c1:92:72:7b: 13:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:97:7C:4B:EB:9A:00:1B:97:00:57:D6:78:38:8B:DC:D5:1E:B0:2A X509v3 Authority Key Identifier: keyid:A6:8F:F9:22:9E:FD:8D:12:B4:27:3F:34:6F:8C:64:54:EA:58:7E:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/po_5Ip79jRK0Jz80b4xkVOpYfsw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/2ff98e-6ff9-4233-b9f1-227e21e691e7/1/cJd8S-uaABuXAFfWeDiL3NUesCo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/2ff98e-6ff9-4233-b9f1-227e21e691e7/1/po_5Ip79jRK0Jz80b4xkVOpYfsw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.16.160.0/23 46.16.164.0/24 46.16.166.0/24 91.197.140.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:0c:7b:ad:70:13:19:88:d0:cf:fc:0d:fc:8a:8d:d2:a3:40: e1:74:08:e7:4f:19:fe:a0:ab:09:12:48:c3:09:c1:c8:44:86: da:b8:c0:dd:fa:fa:4a:e5:95:8a:76:01:92:69:e8:79:27:8a: 36:41:e5:5d:09:79:1e:50:88:f1:93:63:36:54:77:cd:f3:e8: 6d:ac:cd:a7:70:1f:ae:32:c8:96:28:3c:71:7a:87:b3:8c:99: 99:fd:a9:e3:8e:ee:c6:04:14:20:cc:c9:dd:17:a9:6d:1f:c5: d7:ee:6b:0f:2c:08:99:5a:3e:b4:56:bb:b7:a4:48:c2:fe:0d: 46:95:7d:25:e0:5d:74:8a:0a:83:f6:35:54:4e:c4:9b:fc:24: 9a:2c:ee:84:3b:8a:54:48:55:da:b4:1d:bb:f0:68:b3:bd:58: be:89:13:06:fa:da:7a:3e:b2:a3:54:aa:4d:98:b3:40:7e:5a: 59:df:f8:0d:05:91:2e:fa:b7:14:71:a4:89:6c:b2:a3:95:b6: aa:0c:62:7f:83:1d:b0:88:a5:25:74:93:bb:b4:20:ff:a2:56: 38:40:66:ea:47:96:8f:df:52:56:fe:fd:15:4b:70:50:56:a8: c1:71:02:49:c3:af:c1:e1:3e:64:f4:22:31:30:8a:35:7a:8a: b5:5d:ca:f9 -----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISAZt/FW68WFejm23NndWToy8zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2OGZmOTIyOWVmZDhkMTJiNDI3M2YzNDZmOGM2NDU0ZWE1 ODdlY2MwHhcNMjYwMTAyMTQyMTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDk3N2M0YmViOWEwMDFiOTcwMDU3ZDY3ODM4OGJkY2Q1MWViMDJhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWwZap1Dhdh2cvvXvpLuzA3KAc4m HSCrcnfz93r9fyhVDt0RpWbiQxxkvRlb9omHICJU6O4UbsJS07oGU6UYnZ/1R5sU GzAJKRnI4mQ9SFwgJH6eMJQ8bm5DHNKCiDIHhZMeMyVZjpBx39UWD5BlIQvO0qEa OjyE+KGl3S8SxZa7WmX6B304DTuu4Wg4nQyVFGSEVF2Exqi9kRwO9/kDdFTksFa7 cvvedFpaytMfYJBK5Mie1IRCXRpIYDqVl5QNUKdggYr2hVLqjzsrtgTFgN4yjbIs udRzXnnWahD5Di/ZNQ35vfL2gz+Oa2xdgKl6k3i0ytBgG/v7AcGScnsTyQIDAQAB o4ICGzCCAhcwHQYDVR0OBBYEFHCXfEvrmgAblwBX1ng4i9zVHrAqMB8GA1UdIwQY MBaAFKaP+SKe/Y0StCc/NG+MZFTqWH7MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG9fNUlwNzlqUkswSno4MGI0eGtWT3BZZnN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS8yZmY5OGUtNmZmOS00MjMzLWI5ZjEt MjI3ZTIxZTY5MWU3LzEvY0pkOFMtdWFBQnVYQUZmV2VEaUwzTlVlc0NvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS8yZmY5OGUtNmZmOS00MjMzLWI5ZjEtMjI3ZTIxZTY5MWU3 LzEvcG9fNUlwNzlqUkswSno4MGI0eGtWT3BZZnN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQBLhCgAwQA LhCkAwQALhCmAwQCW8WMMA0GCSqGSIb3DQEBCwUAA4IBAQAvDHutcBMZiNDP/A38 io3So0DhdAjnTxn+oKsJEkjDCcHIRIbauMDd+vpK5ZWKdgGSaeh5J4o2QeVdCXke UIjxk2M2VHfN8+htrM2ncB+uMsiWKDxxeoezjJmZ/anjju7GBBQgzMndF6ltH8XX 7msPLAiZWj60Vru3pEjC/g1GlX0l4F10igqD9jVUTsSb/CSaLO6EO4pUSFXatB27 8GizvVi+iRMG+tp6PrKjVKpNmLNAflpZ3/gNBZEu+rcUcaSJbLKjlbaqDGJ/gx2w iKUldJO7tCD/olY4QGbqR5aP31JW/v0VS3BQVqjBcQJJw6/B4T5k9CIxMIo1eoq1 Xcr5 -----END CERTIFICATE-----Generated at Fri Jan 9 06:24:36 2026 by rpki-client