This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/CIwlYwnQgY17UeavMkm13EVL2n8.roa File: CIwlYwnQgY17UeavMkm13EVL2n8.roa (raw, json) Hash identifier: r4bZKQmC1Ctifqf/+GSiUbszN3swZZeF7mrqnTsUuQ8= Subject key identifier: 08:8C:25:63:09:D0:81:8D:7B:51:E6:AF:32:49:B5:DC:45:4B:DA:7F Certificate issuer: /CN=1ea0a9eb47d824b51f154442481a257168394551 Certificate serial: 019B77592F5CBAAC473D4D11F7421C24E0CA Authority key identifier: 1E:A0:A9:EB:47:D8:24:B5:1F:15:44:42:48:1A:25:71:68:39:45:51 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/CIwlYwnQgY17UeavMkm13EVL2n8.roa Signing time: Thu 01 Jan 2026 02:18:12 +0000 ROA not before: Thu 01 Jan 2026 02:18:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210743 IP address blocks: 217.113.194.0/24 maxlen: 24 217.113.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/HqCp60fYJLUfFURCSBolcWg5RVE.crl rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/HqCp60fYJLUfFURCSBolcWg5RVE.mft rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:2f:5c:ba:ac:47:3d:4d:11:f7:42:1c:24:e0:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ea0a9eb47d824b51f154442481a257168394551 Validity Not Before: Jan 1 02:18:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=088c256309d0818d7b51e6af3249b5dc454bda7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:25:7b:d7:38:f3:ae:8e:27:d4:bf:5b:a0:d4: 4e:09:f2:32:d6:8f:99:ba:95:7b:ab:b2:8d:33:41: 4e:7e:1b:be:bd:a6:38:18:ec:32:5a:cf:91:21:2c: a9:91:d0:b6:e6:ef:8c:6f:65:08:02:1a:7f:0e:72: 1c:f1:7a:6c:17:60:79:1d:f5:a9:c6:61:93:34:4c: 6d:f9:7c:97:2f:27:18:19:91:6e:d4:45:65:fc:c5: 2c:bc:c0:32:91:b2:14:c6:3b:c6:a9:68:cc:b3:93: 7c:34:1f:2b:6e:cb:64:10:6f:2c:0f:4f:99:fa:09: a8:d6:72:e0:33:21:5b:21:35:62:ed:ae:42:34:83: 90:35:c2:d1:49:92:0d:06:f1:a6:09:76:5b:7f:6f: a7:09:4e:2e:cf:23:df:7e:67:93:fa:8f:68:39:9a: 0a:d6:91:5b:ee:93:60:63:d7:ae:2a:e9:82:ad:d0: c5:b7:1a:91:ea:01:53:83:59:83:c5:da:b4:58:06: 52:2f:51:e3:ec:05:3f:f7:92:98:45:55:7b:ff:5c: 5b:cf:be:0f:5c:da:00:0f:03:9d:75:5f:5d:7b:cd: 8e:4a:3c:8f:31:1e:36:76:63:17:25:08:a2:a2:53: 23:6d:2a:cd:03:75:78:87:28:c8:c6:3c:82:82:de: 1c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8C:25:63:09:D0:81:8D:7B:51:E6:AF:32:49:B5:DC:45:4B:DA:7F X509v3 Authority Key Identifier: keyid:1E:A0:A9:EB:47:D8:24:B5:1F:15:44:42:48:1A:25:71:68:39:45:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HqCp60fYJLUfFURCSBolcWg5RVE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/CIwlYwnQgY17UeavMkm13EVL2n8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/3033c6-cce8-450d-a0c9-8418a96f6795/1/HqCp60fYJLUfFURCSBolcWg5RVE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.113.194.0/24 217.113.196.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:ef:14:07:1d:0f:c3:06:50:08:83:9a:7c:be:8e:f3:80:8c: 57:0c:02:24:42:6e:22:8b:fa:1a:41:40:9d:f4:12:00:2d:6b: 26:f0:c9:29:b2:ba:a2:53:88:19:3d:43:73:89:6d:f1:6f:b1: ec:08:05:e8:0f:11:87:8c:13:c4:d5:22:d4:18:1d:7d:ac:83: 15:ea:1b:ad:8a:2e:7d:52:e2:27:5e:b9:03:9d:6f:e9:d8:03: 01:6f:74:37:33:71:db:50:b7:cf:db:6f:59:b2:b0:ed:3f:4a: cf:29:ee:68:b0:4f:a1:56:4b:15:75:9c:09:5f:c2:3c:ba:da: f3:48:24:59:62:03:73:2b:e5:6f:ef:14:ee:31:52:d0:1d:7a: 94:e3:27:56:e9:24:be:f9:09:9f:af:e4:2d:f9:86:5b:26:50: c7:05:60:48:c2:11:e8:36:cf:4f:2f:a4:05:f9:ec:fb:f4:ad: c2:36:08:79:bd:68:f2:9c:1e:8d:e3:9d:52:b7:ca:ef:ff:e8: 56:a3:11:24:1f:66:24:68:69:70:41:54:1e:a4:54:d0:e4:5a: e0:0e:d4:2e:6c:f7:f1:e6:c0:fd:f5:de:c1:c4:ee:11:a9:9d: d0:25:20:e0:27:64:d7:76:f0:d6:8e:a2:50:09:70:17:fe:16: 84:2c:58:7a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3WS9cuqxHPU0R90IcJODKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlYTBhOWViNDdkODI0YjUxZjE1NDQ0MjQ4MWEyNTcxNjgz OTQ1NTEwHhcNMjYwMTAxMDIxODEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODhjMjU2MzA5ZDA4MThkN2I1MWU2YWYzMjQ5YjVkYzQ1NGJkYTdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxiV71zjzro4n1L9boNROCfIy1o+Z upV7q7KNM0FOfhu+vaY4GOwyWs+RISypkdC25u+Mb2UIAhp/DnIc8XpsF2B5HfWp xmGTNExt+XyXLycYGZFu1EVl/MUsvMAykbIUxjvGqWjMs5N8NB8rbstkEG8sD0+Z +gmo1nLgMyFbITVi7a5CNIOQNcLRSZINBvGmCXZbf2+nCU4uzyPffmeT+o9oOZoK 1pFb7pNgY9euKumCrdDFtxqR6gFTg1mDxdq0WAZSL1Hj7AU/95KYRVV7/1xbz74P XNoADwOddV9de82OSjyPMR42dmMXJQiiolMjbSrNA3V4hyjIxjyCgt4cLwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFAiMJWMJ0IGNe1HmrzJJtdxFS9p/MB8GA1UdIwQY MBaAFB6gqetH2CS1HxVEQkgaJXFoOUVRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHFDcDYwZllKTFVmRlVSQ1NCb2xjV2c1UlZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi8zMDMzYzYtY2NlOC00NTBkLWEwYzkt ODQxOGE5NmY2Nzk1LzEvQ0l3bFl3blFnWTE3VWVhdk1rbTEzRVZMMm44LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi8zMDMzYzYtY2NlOC00NTBkLWEwYzktODQxOGE5NmY2Nzk1 LzEvSHFDcDYwZllKTFVmRlVSQ1NCb2xjV2c1UlZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQA2XHCAwQA 2XHEMA0GCSqGSIb3DQEBCwUAA4IBAQAu7xQHHQ/DBlAIg5p8vo7zgIxXDAIkQm4i i/oaQUCd9BIALWsm8MkpsrqiU4gZPUNziW3xb7HsCAXoDxGHjBPE1SLUGB19rIMV 6hutii59UuInXrkDnW/p2AMBb3Q3M3HbULfP229ZsrDtP0rPKe5osE+hVksVdZwJ X8I8utrzSCRZYgNzK+Vv7xTuMVLQHXqU4ydW6SS++Qmfr+Qt+YZbJlDHBWBIwhHo Ns9PL6QF+ez79K3CNgh5vWjynB6N451St8rv/+hWoxEkH2YkaGlwQVQepFTQ5Frg DtQubPfx5sD99d7BxO4RqZ3QJSDgJ2TXdvDWjqJQCXAX/haELFh6 -----END CERTIFICATE-----Generated at Mon Feb 9 22:36:45 2026 by rpki-client