This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/5fa681-2566-40ee-9f04-5df44295b4c9/1/0nPKlV2FgZ0LZAZQ71hQLBw38Uo.roa File: 0nPKlV2FgZ0LZAZQ71hQLBw38Uo.roa (raw, json) Hash identifier: Fb/Fjfm/zNM0E1C+LzpEdYLGiz1+AVF8bxpn6ETeoj4= Subject key identifier: D2:73:CA:95:5D:85:81:9D:0B:64:06:50:EF:58:50:2C:1C:37:F1:4A Certificate issuer: /CN=91045c57996c9a3c9e6277a4326b1183215d5b6a Certificate serial: 019B79ED05923111A97F896FCDCF0F09FBC9 Authority key identifier: 91:04:5C:57:99:6C:9A:3C:9E:62:77:A4:32:6B:11:83:21:5D:5B:6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kQRcV5lsmjyeYnekMmsRgyFdW2o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/5fa681-2566-40ee-9f04-5df44295b4c9/1/0nPKlV2FgZ0LZAZQ71hQLBw38Uo.roa Signing time: Thu 01 Jan 2026 14:18:55 +0000 ROA not before: Thu 01 Jan 2026 14:18:55 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15822 IP address blocks: 194.176.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/5fa681-2566-40ee-9f04-5df44295b4c9/1/kQRcV5lsmjyeYnekMmsRgyFdW2o.crl rsync://rpki.ripe.net/repository/DEFAULT/da/5fa681-2566-40ee-9f04-5df44295b4c9/1/kQRcV5lsmjyeYnekMmsRgyFdW2o.mft rsync://rpki.ripe.net/repository/DEFAULT/kQRcV5lsmjyeYnekMmsRgyFdW2o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:05:92:31:11:a9:7f:89:6f:cd:cf:0f:09:fb:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91045c57996c9a3c9e6277a4326b1183215d5b6a Validity Not Before: Jan 1 14:18:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d273ca955d85819d0b640650ef58502c1c37f14a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:52:64:ea:0a:c1:67:cb:44:8b:c2:52:ac:35: 2f:c8:b7:f1:d6:14:b8:8d:04:4d:75:d4:c0:c3:d9: 85:3f:6b:09:82:ca:76:cc:90:84:c6:87:61:78:38: 83:da:36:e3:3e:14:b5:86:0e:e3:3f:b9:cf:4b:8d: ef:19:4c:41:b0:e0:32:e0:24:f0:d3:45:a8:b8:3c: c2:11:61:55:4c:2d:1b:90:46:39:2b:8f:6e:40:60: 52:21:38:f7:fe:1d:12:a8:2e:d9:f3:c3:7b:b1:a4: 2d:04:d0:12:65:85:d4:8e:24:0d:35:db:10:80:6e: 0a:9d:76:60:aa:40:fc:67:da:ae:27:9c:39:5d:91: 5b:5c:3b:96:3d:42:b6:cc:d6:89:45:d0:a2:cf:63: 10:a6:6f:34:53:e6:a9:6f:e0:12:ca:af:cd:38:17: bc:a2:88:0c:b8:a1:4b:0a:ac:d5:76:95:7c:6a:9c: 00:8f:27:a9:5b:ed:6a:3d:6a:75:e4:64:f7:30:0f: ed:70:ae:1b:ca:9f:3a:b4:19:8b:88:58:75:2d:69: 65:db:de:c2:43:c8:c8:17:e6:4a:25:33:6e:76:6f: b7:e5:35:c8:2e:be:15:e6:43:77:34:3f:3a:89:63: 20:1d:28:72:98:06:92:14:3a:2c:25:ff:e1:9c:16: e8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:73:CA:95:5D:85:81:9D:0B:64:06:50:EF:58:50:2C:1C:37:F1:4A X509v3 Authority Key Identifier: keyid:91:04:5C:57:99:6C:9A:3C:9E:62:77:A4:32:6B:11:83:21:5D:5B:6A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kQRcV5lsmjyeYnekMmsRgyFdW2o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa681-2566-40ee-9f04-5df44295b4c9/1/0nPKlV2FgZ0LZAZQ71hQLBw38Uo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa681-2566-40ee-9f04-5df44295b4c9/1/kQRcV5lsmjyeYnekMmsRgyFdW2o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.176.112.0/24 Signature Algorithm: sha256WithRSAEncryption 44:2c:00:7d:1d:9e:63:37:93:79:16:4b:ca:c5:34:33:f7:11: 1d:a5:72:81:94:15:07:61:a9:93:ef:34:f7:30:f8:1e:90:09: bf:fc:71:b2:82:31:50:d6:92:92:f3:57:29:20:cc:64:10:b3: 0d:93:36:be:72:5a:e9:d5:30:e7:a5:93:ec:1e:52:91:24:0f: 53:22:70:dc:ee:31:72:34:0a:fa:1c:37:b0:83:a4:33:75:da: db:35:b6:9a:a9:80:7d:2b:61:c7:3e:2c:c3:39:99:3c:98:89: e9:4c:7d:e4:2b:e3:c7:7a:e3:1d:9c:8b:17:79:1b:90:19:9c: 55:8f:b8:6e:1e:94:ad:0f:43:1a:ca:20:d0:c0:f4:c5:46:20: 36:99:c1:b8:29:57:0a:b7:fa:70:95:ad:4c:f9:45:bd:f2:80: 0f:47:11:f2:08:2f:77:45:53:f5:84:34:a5:c6:01:ca:ec:73: 34:17:0a:c9:c8:90:e3:d7:2b:e4:47:7e:84:8d:3b:da:11:ea: 85:6f:39:d3:54:05:93:bc:41:77:99:53:b5:df:ea:94:16:9f: 75:b4:aa:2f:b1:41:69:1d:fb:cb:93:d3:4c:f5:b5:ee:1e:a3: a8:48:d9:29:f2:50:db:f6:72:e1:21:e8:4b:f7:58:f0:e0:69: ea:86:24:21 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57QWSMRGpf4lvzc8PCfvJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxMDQ1YzU3OTk2YzlhM2M5ZTYyNzdhNDMyNmIxMTgzMjE1 ZDViNmEwHhcNMjYwMTAxMTQxODU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMjczY2E5NTVkODU4MTlkMGI2NDA2NTBlZjU4NTAyYzFjMzdmMTRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArFJk6grBZ8tEi8JSrDUvyLfx1hS4 jQRNddTAw9mFP2sJgsp2zJCExodheDiD2jbjPhS1hg7jP7nPS43vGUxBsOAy4CTw 00WouDzCEWFVTC0bkEY5K49uQGBSITj3/h0SqC7Z88N7saQtBNASZYXUjiQNNdsQ gG4KnXZgqkD8Z9quJ5w5XZFbXDuWPUK2zNaJRdCiz2MQpm80U+apb+ASyq/NOBe8 oogMuKFLCqzVdpV8apwAjyepW+1qPWp15GT3MA/tcK4byp86tBmLiFh1LWll297C Q8jIF+ZKJTNudm+35TXILr4V5kN3ND86iWMgHShymAaSFDosJf/hnBbo3wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNJzypVdhYGdC2QGUO9YUCwcN/FKMB8GA1UdIwQY MBaAFJEEXFeZbJo8nmJ3pDJrEYMhXVtqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva1FSY1Y1bHNtanllWW5la01tc1JneUZkVzJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81ZmE2ODEtMjU2Ni00MGVlLTlmMDQt NWRmNDQyOTViNGM5LzEvMG5QS2xWMkZnWjBMWkFaUTcxaFFMQnczOFVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS81ZmE2ODEtMjU2Ni00MGVlLTlmMDQtNWRmNDQyOTViNGM5 LzEva1FSY1Y1bHNtanllWW5la01tc1JneUZkVzJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwrBwMA0G CSqGSIb3DQEBCwUAA4IBAQBELAB9HZ5jN5N5FkvKxTQz9xEdpXKBlBUHYamT7zT3 MPgekAm//HGygjFQ1pKS81cpIMxkELMNkza+clrp1TDnpZPsHlKRJA9TInDc7jFy NAr6HDewg6QzddrbNbaaqYB9K2HHPizDOZk8mInpTH3kK+PHeuMdnIsXeRuQGZxV j7huHpStD0MayiDQwPTFRiA2mcG4KVcKt/pwla1M+UW98oAPRxHyCC93RVP1hDSl xgHK7HM0FwrJyJDj1yvkR36EjTvaEeqFbznTVAWTvEF3mVO13+qUFp91tKovsUFp HfvLk9NM9bXuHqOoSNkp8lDb9nLhIehL91jw4GnqhiQh -----END CERTIFICATE-----Generated at Mon Feb 9 19:54:55 2026 by rpki-client