This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/CRVYj4NZDsTYLr2ztmZUTQipvSM.roa File: CRVYj4NZDsTYLr2ztmZUTQipvSM.roa (raw, json) Hash identifier: 7cWK9n6qHCABKdb0qA8BH/bJaK98KOF3av748QQa8AM= Subject key identifier: 09:15:58:8F:83:59:0E:C4:D8:2E:BD:B3:B6:66:54:4D:08:A9:BD:23 Certificate issuer: /CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Certificate serial: 019B78A31982E05A8B2504C078A530ED9C38 Authority key identifier: F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/CRVYj4NZDsTYLr2ztmZUTQipvSM.roa Signing time: Thu 01 Jan 2026 08:18:33 +0000 ROA not before: Thu 01 Jan 2026 08:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20473 IP address blocks: 109.205.193.0/24 maxlen: 24 2a01:fb01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.mft rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 08:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:19:82:e0:5a:8b:25:04:c0:78:a5:30:ed:9c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f324581e4368825d5e13f4f2a0d6ff8e484c95e6 Validity Not Before: Jan 1 08:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0915588f83590ec4d82ebdb3b666544d08a9bd23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4a:b6:ce:88:d5:d6:d2:7e:b6:7b:fa:41:99: d0:7a:36:2a:83:8e:82:f0:4e:b3:76:4c:5c:ce:67: 0f:86:4f:71:8a:38:dd:e7:16:af:44:7c:8a:a4:e2: 6f:2d:08:e3:a5:4e:ec:a6:5c:f3:c8:ae:61:ed:3d: c6:c7:4d:54:73:a6:cb:46:ff:11:5a:1f:e1:b4:d8: c3:6e:46:90:26:bf:9d:54:56:6c:7c:dd:18:57:55: 2d:86:1e:b1:f5:dc:48:5f:a4:f3:4a:3b:49:9a:f6: dd:e2:57:6b:09:25:0b:df:b7:bf:e4:e7:0f:c4:6e: a3:0e:3c:26:50:c1:18:b5:af:68:c9:be:d3:23:9f: 4e:91:7d:80:67:70:8b:c4:ac:be:65:f3:8e:39:43: b3:42:f3:f7:1f:98:bd:47:d8:ee:1d:5f:8c:8c:b3: 1a:0d:00:70:7a:dd:f3:68:36:c1:34:5e:11:b0:a1: 9d:6b:1a:b2:b0:c1:5a:ee:42:7e:b8:7d:aa:37:27: c2:1c:07:53:e1:8a:70:6e:f3:bf:7e:a2:38:e2:34: b7:2a:d2:c2:25:96:d1:3d:3c:2f:6b:91:9c:4a:49: 83:e5:a2:de:f0:ba:82:a6:fa:3d:9f:db:a0:80:d9: 22:90:c8:16:a7:a7:6c:ec:8b:6c:c8:5e:cb:9e:15: 99:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:15:58:8F:83:59:0E:C4:D8:2E:BD:B3:B6:66:54:4D:08:A9:BD:23 X509v3 Authority Key Identifier: keyid:F3:24:58:1E:43:68:82:5D:5E:13:F4:F2:A0:D6:FF:8E:48:4C:95:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8yRYHkNogl1eE_TyoNb_jkhMleY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/CRVYj4NZDsTYLr2ztmZUTQipvSM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/6b91ab-99db-4648-b153-6e2d97ca15ff/1/8yRYHkNogl1eE_TyoNb_jkhMleY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.205.193.0/24 IPv6: 2a01:fb01::/32 Signature Algorithm: sha256WithRSAEncryption 31:61:96:ef:78:fd:74:4c:f6:9f:8a:84:42:ab:e5:d6:58:49: 5a:cb:19:da:37:84:01:ad:19:a2:5f:f2:92:30:ff:1d:1c:3c: 61:59:a3:9f:b6:c1:d8:c7:45:39:f0:f7:03:05:14:b6:43:5d: f6:ab:a9:d6:45:7a:e3:aa:3b:db:06:c3:d7:ea:80:42:28:1b: 4d:cf:c2:ce:5a:89:6b:2f:90:d0:55:41:da:58:a8:c8:1f:ea: 97:79:e5:e0:39:c6:ea:2a:e7:aa:7d:08:97:bc:fe:0b:d9:f0: 84:06:a5:e6:f8:2c:ba:0c:91:f7:f2:89:39:0f:31:51:d2:8a: 16:55:62:f6:a8:e5:37:27:e3:7b:34:7d:00:d6:d7:1b:ba:27: d3:7d:4e:a5:df:79:af:83:f7:e9:9c:c1:21:94:c2:ab:70:51: 64:f8:8c:a8:2f:79:57:8a:57:1e:0b:ad:61:a3:82:3c:d9:4b: 65:f1:a0:ee:aa:0a:e4:68:08:ff:bb:ef:e3:11:72:a3:6b:ac: 06:d9:ef:30:d0:c4:e4:c7:05:21:56:1e:3d:90:59:87:76:da: c6:79:cd:9a:aa:a5:20:8e:bb:76:56:45:75:9e:f8:4b:38:09: 5a:10:d1:e5:6b:01:57:8d:9b:55:db:e4:5f:0b:69:01:b3:d7: bf:05:7a:d4 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt4oxmC4FqLJQTAeKUw7Zw4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYzMjQ1ODFlNDM2ODgyNWQ1ZTEzZjRmMmEwZDZmZjhlNDg0 Yzk1ZTYwHhcNMjYwMTAxMDgxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTE1NTg4ZjgzNTkwZWM0ZDgyZWJkYjNiNjY2NTQ0ZDA4YTliZDIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Uq2zojV1tJ+tnv6QZnQejYqg46C 8E6zdkxczmcPhk9xijjd5xavRHyKpOJvLQjjpU7splzzyK5h7T3Gx01Uc6bLRv8R Wh/htNjDbkaQJr+dVFZsfN0YV1Uthh6x9dxIX6TzSjtJmvbd4ldrCSUL37e/5OcP xG6jDjwmUMEYta9oyb7TI59OkX2AZ3CLxKy+ZfOOOUOzQvP3H5i9R9juHV+MjLMa DQBwet3zaDbBNF4RsKGdaxqysMFa7kJ+uH2qNyfCHAdT4YpwbvO/fqI44jS3KtLC JZbRPTwva5GcSkmD5aLe8LqCpvo9n9uggNkikMgWp6ds7ItsyF7LnhWZ0wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAkVWI+DWQ7E2C69s7ZmVE0Iqb0jMB8GA1UdIwQY MBaAFPMkWB5DaIJdXhP08qDW/45ITJXmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMt NmUyZDk3Y2ExNWZmLzEvQ1JWWWo0TlpEc1RZTHIyenRtWlVUUWlwdlNNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS82YjkxYWItOTlkYi00NjQ4LWIxNTMtNmUyZDk3Y2ExNWZm LzEvOHlSWUhrTm9nbDFlRV9UeW9OYl9qa2hNbGVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAbc3BMA0E AgACMAcDBQAqAfsBMA0GCSqGSIb3DQEBCwUAA4IBAQAxYZbveP10TPafioRCq+XW WElayxnaN4QBrRmiX/KSMP8dHDxhWaOftsHYx0U58PcDBRS2Q132q6nWRXrjqjvb BsPX6oBCKBtNz8LOWolrL5DQVUHaWKjIH+qXeeXgOcbqKueqfQiXvP4L2fCEBqXm +Cy6DJH38ok5DzFR0ooWVWL2qOU3J+N7NH0A1tcbuifTfU6l33mvg/fpnMEhlMKr cFFk+IyoL3lXilceC61ho4I82Utl8aDuqgrkaAj/u+/jEXKja6wG2e8w0MTkxwUh Vh49kFmHdtrGec2aqqUgjrt2VkV1nvhLOAlaENHlawFXjZtV2+RfC2kBs9e/BXrU -----END CERTIFICATE-----Generated at Mon Jan 19 14:40:08 2026 by rpki-client