This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/d7b006-2527-44e5-a401-5bd4dcc5d6ed/1/cVlURNqZQAh6Qe1KHamU9SvF4u8.roa File: cVlURNqZQAh6Qe1KHamU9SvF4u8.roa (raw, json) Hash identifier: GimlEEISLfZZspdQqTlAmRyOG3nJltXybDu3f42C8MQ= Subject key identifier: 71:59:54:44:DA:99:40:08:7A:41:ED:4A:1D:A9:94:F5:2B:C5:E2:EF Certificate issuer: /CN=858e95622fd5445d6ed343f80e053eaffb118b2c Certificate serial: 019B77C6A6332FDD6BE2F7E316140ABCE0A5 Authority key identifier: 85:8E:95:62:2F:D5:44:5D:6E:D3:43:F8:0E:05:3E:AF:FB:11:8B:2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hY6VYi_VRF1u00P4DgU-r_sRiyw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/d7b006-2527-44e5-a401-5bd4dcc5d6ed/1/cVlURNqZQAh6Qe1KHamU9SvF4u8.roa Signing time: Thu 01 Jan 2026 04:17:45 +0000 ROA not before: Thu 01 Jan 2026 04:17:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 25389 IP address blocks: 217.12.80.0/24 maxlen: 24 217.12.81.0/24 maxlen: 24 217.12.82.0/24 maxlen: 24 217.12.83.0/24 maxlen: 24 217.12.84.0/24 maxlen: 24 217.12.85.0/24 maxlen: 24 217.12.86.0/24 maxlen: 24 217.12.87.0/24 maxlen: 24 217.12.88.0/24 maxlen: 24 217.12.89.0/24 maxlen: 24 2a07:93c0::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/d7b006-2527-44e5-a401-5bd4dcc5d6ed/1/hY6VYi_VRF1u00P4DgU-r_sRiyw.crl rsync://rpki.ripe.net/repository/DEFAULT/de/d7b006-2527-44e5-a401-5bd4dcc5d6ed/1/hY6VYi_VRF1u00P4DgU-r_sRiyw.mft rsync://rpki.ripe.net/repository/DEFAULT/hY6VYi_VRF1u00P4DgU-r_sRiyw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:a6:33:2f:dd:6b:e2:f7:e3:16:14:0a:bc:e0:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=858e95622fd5445d6ed343f80e053eaffb118b2c Validity Not Before: Jan 1 04:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71595444da9940087a41ed4a1da994f52bc5e2ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5f:a3:fc:9a:1b:4e:fe:6d:79:47:9a:a4:ed: ff:ef:4d:0a:8f:fa:3c:3e:4d:78:b0:6c:22:64:b6: 85:d5:c9:d9:bd:1c:4f:62:b7:8f:2f:91:3d:52:23: f7:28:c9:0d:91:77:3b:f9:0e:56:a7:65:d0:3e:97: 0e:c7:15:ae:9d:f7:ee:c8:36:a0:85:57:2b:6d:27: b4:a2:02:04:47:4d:c2:bd:46:18:f9:8a:01:fe:80: 90:ff:30:21:13:2a:b4:26:7e:f5:07:b3:d1:bf:39: 98:72:40:25:04:4a:85:83:83:58:32:ea:e2:92:5e: 26:a2:1d:4e:f7:51:f5:68:79:91:89:18:8b:ca:41: 92:19:4e:0f:85:cc:89:d5:e3:f4:bf:22:b6:87:b6: 6f:4e:d5:d0:3d:07:81:a5:66:24:f7:99:82:6a:0a: 9a:e8:f9:c7:81:b9:7c:f3:b7:b1:08:91:a7:75:74: a7:18:4a:d3:98:6b:70:51:3e:70:62:f3:14:87:f1: 13:87:21:f9:d2:3e:5f:2f:9f:33:f3:ec:b4:b4:ff: 66:34:15:83:df:be:03:56:81:d7:59:5b:2b:d8:0f: bf:d0:30:84:5c:22:ed:37:12:0b:5c:02:8f:99:91: 2c:bc:0d:da:26:82:a5:dc:4c:c6:4b:6e:5c:af:21: 41:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:59:54:44:DA:99:40:08:7A:41:ED:4A:1D:A9:94:F5:2B:C5:E2:EF X509v3 Authority Key Identifier: keyid:85:8E:95:62:2F:D5:44:5D:6E:D3:43:F8:0E:05:3E:AF:FB:11:8B:2C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hY6VYi_VRF1u00P4DgU-r_sRiyw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/d7b006-2527-44e5-a401-5bd4dcc5d6ed/1/cVlURNqZQAh6Qe1KHamU9SvF4u8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/d7b006-2527-44e5-a401-5bd4dcc5d6ed/1/hY6VYi_VRF1u00P4DgU-r_sRiyw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.12.80.0-217.12.89.255 IPv6: 2a07:93c0::/29 Signature Algorithm: sha256WithRSAEncryption 09:81:98:b6:97:3a:e1:fe:6e:6e:82:e0:a5:7b:e6:b8:1b:f6: c8:9c:ea:9b:8a:24:2c:ba:7a:21:4e:7e:15:06:ca:b9:56:e0: 0d:df:c2:42:e3:cd:65:df:7c:8e:76:3a:88:15:cc:9c:7f:27: 22:32:1c:d8:ee:42:e0:f4:6b:b0:66:7c:e8:69:a2:ff:50:d0: 64:71:51:22:57:c3:00:57:57:c1:e6:1a:3d:50:22:c4:7f:ed: 63:48:75:e6:02:ca:e6:b7:9b:31:45:fa:4b:2a:74:31:a1:21: 64:0c:91:a2:b9:d3:b9:3a:1c:97:34:01:08:a2:ed:32:da:59: 70:9e:7c:30:20:55:81:41:83:a9:45:d5:fa:53:5f:1e:db:77: b3:6b:40:eb:d6:6a:0c:4d:f7:37:88:c4:28:5d:9f:40:e3:3a: 4f:33:18:e4:57:e4:fd:56:be:62:de:5f:69:98:da:08:15:c3: 18:8c:71:2e:81:e7:34:2e:20:21:9b:6a:df:a0:9a:18:c3:e3: f5:1c:d6:61:ea:61:55:92:44:66:08:d0:9e:c2:75:d2:3c:b6: 1d:ef:a4:e8:7b:42:2c:24:48:67:6f:a7:0c:23:c7:7e:06:97: 97:d1:57:74:36:d6:bb:f3:ff:b5:f1:79:65:a2:94:42:8e:8d: 65:3a:be:44 -----BEGIN CERTIFICATE----- MIIFFDCCA/ygAwIBAgISAZt3xqYzL91r4vfjFhQKvOClMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1OGU5NTYyMmZkNTQ0NWQ2ZWQzNDNmODBlMDUzZWFmZmIx MThiMmMwHhcNMjYwMTAxMDQxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTU5NTQ0NGRhOTk0MDA4N2E0MWVkNGExZGE5OTRmNTJiYzVlMmVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAml+j/JobTv5teUeapO3/700Kj/o8 Pk14sGwiZLaF1cnZvRxPYrePL5E9UiP3KMkNkXc7+Q5Wp2XQPpcOxxWunffuyDag hVcrbSe0ogIER03CvUYY+YoB/oCQ/zAhEyq0Jn71B7PRvzmYckAlBEqFg4NYMuri kl4moh1O91H1aHmRiRiLykGSGU4PhcyJ1eP0vyK2h7ZvTtXQPQeBpWYk95mCagqa 6PnHgbl887exCJGndXSnGErTmGtwUT5wYvMUh/EThyH50j5fL58z8+y0tP9mNBWD 374DVoHXWVsr2A+/0DCEXCLtNxILXAKPmZEsvA3aJoKl3EzGS25cryFBeQIDAQAB o4ICIDCCAhwwHQYDVR0OBBYEFHFZVETamUAIekHtSh2plPUrxeLvMB8GA1UdIwQY MBaAFIWOlWIv1URdbtND+A4FPq/7EYssMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFk2VllpX1ZSRjF1MDBQNERnVS1yX3NSaXl3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS9kN2IwMDYtMjUyNy00NGU1LWE0MDEt NWJkNGRjYzVkNmVkLzEvY1ZsVVJOcVpRQWg2UWUxS0hhbVU5U3ZGNHU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS9kN2IwMDYtMjUyNy00NGU1LWE0MDEtNWJkNGRjYzVkNmVk LzEvaFk2VllpX1ZSRjF1MDBQNERnVS1yX3NSaXl3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAUBAIAATAOMAwDBATZDFAD BAHZDFgwDQQCAAIwBwMFAyoHk8AwDQYJKoZIhvcNAQELBQADggEBAAmBmLaXOuH+ bm6C4KV75rgb9sic6puKJCy6eiFOfhUGyrlW4A3fwkLjzWXffI52OogVzJx/JyIy HNjuQuD0a7BmfOhpov9Q0GRxUSJXwwBXV8HmGj1QIsR/7WNIdeYCyua3mzFF+ksq dDGhIWQMkaK507k6HJc0AQii7TLaWXCefDAgVYFBg6lF1fpTXx7bd7NrQOvWagxN 9zeIxChdn0DjOk8zGORX5P1WvmLeX2mY2ggVwxiMcS6B5zQuICGbat+gmhjD4/Uc 1mHqYVWSRGYI0J7CddI8th3vpOh7QiwkSGdvpwwjx34Gl5fRV3Q21rvz/7XxeWWi lEKOjWU6vkQ= -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:27 2026 by rpki-client