This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9e16d2-d3b9-4efa-9c3d-e4961852c8b6/1/c0zEfFDSZZWFy-vBS9NWpwPjwoE.roa File: c0zEfFDSZZWFy-vBS9NWpwPjwoE.roa (raw, json) Hash identifier: Degy9LDZTNrQEBY/nXvirHbXKz42WXh/PcwFt1G3pj4= Subject key identifier: 73:4C:C4:7C:50:D2:65:95:85:CB:EB:C1:4B:D3:56:A7:03:E3:C2:81 Certificate issuer: /CN=66f04275253f967384c4973758a54b7fd085fe45 Certificate serial: 019B7DCAC9CEE8B1BE4FD95EF8EE02787C6A Authority key identifier: 66:F0:42:75:25:3F:96:73:84:C4:97:37:58:A5:4B:7F:D0:85:FE:45 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvBCdSU_lnOExJc3WKVLf9CF_kU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9e16d2-d3b9-4efa-9c3d-e4961852c8b6/1/c0zEfFDSZZWFy-vBS9NWpwPjwoE.roa Signing time: Fri 02 Jan 2026 08:20:00 +0000 ROA not before: Fri 02 Jan 2026 08:20:00 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204645 IP address blocks: 185.109.172.0/22 maxlen: 24 2a02:4e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9e16d2-d3b9-4efa-9c3d-e4961852c8b6/1/ZvBCdSU_lnOExJc3WKVLf9CF_kU.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/9e16d2-d3b9-4efa-9c3d-e4961852c8b6/1/ZvBCdSU_lnOExJc3WKVLf9CF_kU.mft rsync://rpki.ripe.net/repository/DEFAULT/ZvBCdSU_lnOExJc3WKVLf9CF_kU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:c9:ce:e8:b1:be:4f:d9:5e:f8:ee:02:78:7c:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66f04275253f967384c4973758a54b7fd085fe45 Validity Not Before: Jan 2 08:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=734cc47c50d2659585cbebc14bd356a703e3c281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:9d:75:4f:74:7e:fe:b9:5f:65:1c:53:52:9b: b2:db:a2:90:ab:7f:62:2f:89:9e:3e:2a:7b:51:a0: 9d:24:9c:02:a7:72:74:54:a9:14:a0:8a:4b:07:ff: 76:d4:09:d6:f8:38:9c:dc:43:32:fb:2d:67:ac:f9: a1:57:2a:29:b6:d3:38:22:b9:69:da:2f:2a:b3:6f: df:1a:65:c5:c1:d3:2c:a4:54:df:20:10:04:59:b7: 91:60:87:0e:eb:39:10:45:aa:bc:80:5c:bf:d2:ce: 92:da:58:b5:4e:e7:c2:84:33:99:d0:f7:33:05:65: d6:29:be:1b:dc:af:64:d3:90:e2:d7:5b:6a:6a:1f: 17:9a:49:80:9b:20:6a:3c:a5:c6:f5:95:ba:67:53: 0e:a3:93:2a:cc:27:92:58:c2:be:f5:d0:45:c5:be: 69:03:d0:2a:6b:f8:2e:ca:98:57:d9:e5:dd:67:9f: c7:bc:08:e0:a4:15:07:51:c1:29:8b:88:85:fb:60: a4:d5:e6:50:b9:7b:3c:f1:6a:bf:2c:98:2f:d1:62: a0:76:46:a6:d9:33:6b:38:b0:81:d5:ca:a6:ff:63: b4:63:48:f4:78:77:af:3d:ef:75:eb:2e:ff:97:b0: 32:1b:3e:46:71:ca:26:19:31:6e:7d:6e:dd:37:a3: 7a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4C:C4:7C:50:D2:65:95:85:CB:EB:C1:4B:D3:56:A7:03:E3:C2:81 X509v3 Authority Key Identifier: keyid:66:F0:42:75:25:3F:96:73:84:C4:97:37:58:A5:4B:7F:D0:85:FE:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvBCdSU_lnOExJc3WKVLf9CF_kU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9e16d2-d3b9-4efa-9c3d-e4961852c8b6/1/c0zEfFDSZZWFy-vBS9NWpwPjwoE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9e16d2-d3b9-4efa-9c3d-e4961852c8b6/1/ZvBCdSU_lnOExJc3WKVLf9CF_kU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.109.172.0/22 IPv6: 2a02:4e80::/32 Signature Algorithm: sha256WithRSAEncryption 5f:00:6d:81:54:3e:2f:de:30:17:03:fd:70:6c:bd:86:7b:f1: 37:f8:93:7f:58:31:76:06:6e:ca:c1:47:e9:0a:c7:02:2f:b4: b1:47:0b:a8:37:c9:3a:52:46:d9:e7:8c:b3:f4:f1:8c:a3:26: 1a:7b:49:66:ae:36:c5:c1:ec:e0:01:33:c1:a4:51:02:10:8e: 15:f7:b3:6b:26:ae:13:2a:d3:61:74:08:84:9d:cd:49:1b:d8: 18:13:d2:80:ff:44:0b:15:c0:d6:5e:be:d1:88:e3:6e:7b:14: 55:c2:02:68:37:9b:5b:ad:a7:c8:e0:a4:6f:29:0b:2b:63:37: ac:cb:ca:f3:e5:47:2c:42:6e:f1:24:4c:85:f8:63:b1:06:07: ea:c4:dd:fa:0b:ea:5d:2d:ab:3e:d0:08:3f:d2:79:7f:b8:d2: 43:75:d1:b6:7e:e8:ee:28:e1:3e:cf:87:8c:c2:cc:44:b1:99: cc:53:e1:e8:a2:40:b1:11:25:29:2c:f7:4c:44:6c:32:8e:af: f3:6d:84:8d:ef:d8:1d:fa:69:a8:9b:df:f7:2a:18:62:c2:51: cd:93:d5:00:7a:84:4f:d8:2a:75:47:b1:d6:1d:b4:b1:7e:a2: d7:0f:18:e3:6b:f3:77:73:95:5e:3f:29:19:8e:c9:ae:8a:a4: ef:c2:1e:be -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9ysnO6LG+T9le+O4CeHxqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2ZjA0Mjc1MjUzZjk2NzM4NGM0OTczNzU4YTU0YjdmZDA4 NWZlNDUwHhcNMjYwMTAyMDgyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzRjYzQ3YzUwZDI2NTk1ODVjYmViYzE0YmQzNTZhNzAzZTNjMjgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3p11T3R+/rlfZRxTUpuy26KQq39i L4mePip7UaCdJJwCp3J0VKkUoIpLB/921AnW+Dic3EMy+y1nrPmhVyopttM4Irlp 2i8qs2/fGmXFwdMspFTfIBAEWbeRYIcO6zkQRaq8gFy/0s6S2li1TufChDOZ0Pcz BWXWKb4b3K9k05Di11tqah8XmkmAmyBqPKXG9ZW6Z1MOo5MqzCeSWMK+9dBFxb5p A9Aqa/guyphX2eXdZ5/HvAjgpBUHUcEpi4iF+2Ck1eZQuXs88Wq/LJgv0WKgdkam 2TNrOLCB1cqm/2O0Y0j0eHevPe916y7/l7AyGz5GccomGTFufW7dN6N6QwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFHNMxHxQ0mWVhcvrwUvTVqcD48KBMB8GA1UdIwQY MBaAFGbwQnUlP5ZzhMSXN1ilS3/Qhf5FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnZCQ2RTVV9sbk9FeEpjM1dLVkxmOUNGX2tVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS85ZTE2ZDItZDNiOS00ZWZhLTljM2Qt ZTQ5NjE4NTJjOGI2LzEvYzB6RWZGRFNaWldGeS12QlM5Tldwd1Bqd29FLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS85ZTE2ZDItZDNiOS00ZWZhLTljM2QtZTQ5NjE4NTJjOGI2 LzEvWnZCQ2RTVV9sbk9FeEpjM1dLVkxmOUNGX2tVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuW2sMA0E AgACMAcDBQAqAk6AMA0GCSqGSIb3DQEBCwUAA4IBAQBfAG2BVD4v3jAXA/1wbL2G e/E3+JN/WDF2Bm7KwUfpCscCL7SxRwuoN8k6UkbZ54yz9PGMoyYae0lmrjbFwezg ATPBpFECEI4V97NrJq4TKtNhdAiEnc1JG9gYE9KA/0QLFcDWXr7RiONuexRVwgJo N5tbrafI4KRvKQsrYzesy8rz5UcsQm7xJEyF+GOxBgfqxN36C+pdLas+0Ag/0nl/ uNJDddG2fujuKOE+z4eMwsxEsZnMU+HookCxESUpLPdMRGwyjq/zbYSN79gd+mmo m9/3KhhiwlHNk9UAeoRP2Cp1R7HWHbSxfqLXDxjja/N3c5VePykZjsmuiqTvwh6+ -----END CERTIFICATE-----Generated at Mon Feb 9 23:41:50 2026 by rpki-client