This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cAt58g0xkrFHt9-N3ZykhWH0ReM.roa File: cAt58g0xkrFHt9-N3ZykhWH0ReM.roa (raw, json) Hash identifier: zJIgtJYw+ptpKpZht1FAofTALod8Sw1aXf2YLrLjs1s= Subject key identifier: 70:0B:79:F2:0D:31:92:B1:47:B7:DF:8D:DD:9C:A4:85:61:F4:45:E3 Certificate issuer: /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd Certificate serial: 019B7C80BFB298132225F4DC43C7C762627D Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cAt58g0xkrFHt9-N3ZykhWH0ReM.roa Signing time: Fri 02 Jan 2026 02:19:30 +0000 ROA not before: Fri 02 Jan 2026 02:19:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 200044 IP address blocks: 89.249.16.0/20 maxlen: 24 89.249.31.0/24 maxlen: 24 93.158.192.0/21 maxlen: 21 93.158.192.0/22 maxlen: 22 93.158.192.0/23 maxlen: 23 93.158.192.0/24 maxlen: 24 93.158.193.0/24 maxlen: 24 93.158.194.0/23 maxlen: 23 93.158.194.0/24 maxlen: 24 93.158.195.0/24 maxlen: 24 93.158.196.0/24 maxlen: 24 93.158.197.0/24 maxlen: 24 93.158.198.0/23 maxlen: 23 93.158.198.0/24 maxlen: 24 93.158.199.0/24 maxlen: 24 109.238.240.0/20 maxlen: 24 109.238.246.0/24 maxlen: 24 185.159.64.0/22 maxlen: 24 185.159.64.0/24 maxlen: 24 2a00:eb8::/32 maxlen: 32 2a0d:380::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:bf:b2:98:13:22:25:f4:dc:43:c7:c7:62:62:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd Validity Not Before: Jan 2 02:19:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=700b79f20d3192b147b7df8ddd9ca48561f445e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:20:03:19:37:f0:50:d3:78:d0:cc:97:0e:d6: dc:b5:75:ef:15:c0:51:fb:9e:d3:b0:52:bc:4f:8b: dd:1b:8c:8d:ad:d9:76:2a:1f:70:c8:ce:27:cd:b8: 8b:3a:0d:24:01:80:50:93:de:c2:1e:30:83:69:d1: 4a:42:95:9e:60:1c:f0:f6:df:1f:6c:85:25:07:70: 49:23:4f:70:08:0f:9f:08:c4:3c:d4:a7:78:b4:9e: b6:fa:e4:8a:f2:9e:41:fd:dc:a1:6c:a9:16:a4:ff: 71:69:e2:73:dc:08:90:d6:a8:39:7e:ca:d2:58:b3: f1:d4:2a:74:13:3f:b3:d3:d4:82:f7:86:0d:48:0b: e7:4e:3b:17:d7:1f:98:7e:97:f6:a5:ac:35:a6:c7: a6:31:0a:5c:dd:61:ef:c7:43:09:6e:da:88:f9:fa: b4:dd:67:39:8d:01:99:10:15:63:69:34:63:d5:c0: 91:76:1a:4a:ae:95:f3:d3:9a:c0:5a:af:51:b1:31: 3e:38:79:34:bf:10:50:cc:e6:c7:5e:7e:2d:0c:e3: bc:5f:36:cb:c9:c9:a0:09:40:cc:6e:19:a8:c1:86: f5:37:b0:08:e2:51:c9:6a:d2:68:62:65:d4:ae:e5: 65:d9:31:d8:a8:58:95:ad:3a:59:ff:40:c8:68:99: 0c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0B:79:F2:0D:31:92:B1:47:B7:DF:8D:DD:9C:A4:85:61:F4:45:E3 X509v3 Authority Key Identifier: keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cAt58g0xkrFHt9-N3ZykhWH0ReM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.249.16.0/20 93.158.192.0/21 109.238.240.0/20 185.159.64.0/22 IPv6: 2a00:eb8::/32 2a0d:380::/29 Signature Algorithm: sha256WithRSAEncryption 8a:af:70:bf:e0:7b:17:0c:1f:ac:60:1f:e3:4c:01:9b:91:f2: 83:5d:fb:1c:f3:bd:0c:1d:ce:03:7f:f6:b4:8f:c3:f2:9f:8a: 01:34:83:89:87:df:55:5a:68:3a:28:35:03:e8:82:03:f4:71: 3b:aa:3b:c5:a5:bd:42:c8:9e:e1:53:d1:5f:93:ea:4f:9f:5e: 8c:47:45:27:d1:e9:9e:ab:93:16:2b:32:b4:76:32:4e:5d:11: 17:73:ee:63:6e:eb:91:89:c9:d7:b1:11:f3:2c:02:23:68:4e: 94:68:ee:7a:bb:b4:77:07:ca:d0:0b:65:57:54:06:9c:90:6d: 23:7e:2a:77:33:a7:d5:10:af:7f:a9:a9:5d:1e:a3:56:82:81: a6:52:7e:19:fe:10:41:aa:4e:00:eb:ed:82:a4:5d:6e:ac:b9: 8c:b6:99:6c:c7:fb:0b:71:22:a5:63:6f:14:bf:a4:25:a5:20: 77:11:76:ff:a4:2b:ca:9d:32:4b:62:6e:64:30:0d:57:fa:c6: 66:d9:87:90:0f:30:4e:de:6b:33:9f:30:a6:9d:f6:04:2e:31: 3c:21:49:e1:f1:4d:c1:ce:07:3f:b8:08:e1:92:d9:6b:88:59: c9:e2:27:e1:c2:c5:65:6a:12:53:c8:8c:3d:8e:a0:f2:27:29: 8f:b6:4c:dc -----BEGIN CERTIFICATE----- MIIFJTCCBA2gAwIBAgISAZt8gL+ymBMiJfTcQ8fHYmJ9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwNzk3ZGIwN2JmNmQ0NTk3YWMyZGM4YmUzNGY4OTI5ODAw OGYyY2QwHhcNMjYwMTAyMDIxOTMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDBiNzlmMjBkMzE5MmIxNDdiN2RmOGRkZDljYTQ4NTYxZjQ0NWUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAliADGTfwUNN40MyXDtbctXXvFcBR +57TsFK8T4vdG4yNrdl2Kh9wyM4nzbiLOg0kAYBQk97CHjCDadFKQpWeYBzw9t8f bIUlB3BJI09wCA+fCMQ81Kd4tJ62+uSK8p5B/dyhbKkWpP9xaeJz3AiQ1qg5fsrS WLPx1Cp0Ez+z09SC94YNSAvnTjsX1x+Yfpf2paw1psemMQpc3WHvx0MJbtqI+fq0 3Wc5jQGZEBVjaTRj1cCRdhpKrpXz05rAWq9RsTE+OHk0vxBQzObHXn4tDOO8XzbL ycmgCUDMbhmowYb1N7AI4lHJatJoYmXUruVl2THYqFiVrTpZ/0DIaJkM+QIDAQAB o4ICMTCCAi0wHQYDVR0OBBYEFHALefINMZKxR7ffjd2cpIVh9EXjMB8GA1UdIwQY MBaAFHB5fbB79tRZesLci+NPiSmACPLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUt OTA3ZGFhNDY0NjNiLzEvY0F0NThnMHhrckZIdDktTjNaeWtoV0gwUmVNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9jMmVlN2EtY2JiNy00NzBlLWI5NjUtOTA3ZGFhNDY0NjNi LzEvY0hsOXNIdjIxRmw2d3R5TDQwLUpLWUFJOHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEcGCCsGAQUFBwEHAQH/BDgwNjAeBAIAATAYAwQEWfkQAwQD XZ7AAwQEbe7wAwQCuZ9AMBQEAgACMA4DBQAqAA64AwUDKg0DgDANBgkqhkiG9w0B AQsFAAOCAQEAiq9wv+B7FwwfrGAf40wBm5Hyg137HPO9DB3OA3/2tI/D8p+KATSD iYffVVpoOig1A+iCA/RxO6o7xaW9Qsie4VPRX5PqT59ejEdFJ9HpnquTFisytHYy Tl0RF3PuY27rkYnJ17ER8ywCI2hOlGjueru0dwfK0AtlV1QGnJBtI34qdzOn1RCv f6mpXR6jVoKBplJ+Gf4QQapOAOvtgqRdbqy5jLaZbMf7C3EipWNvFL+kJaUgdxF2 /6Qryp0yS2JuZDANV/rGZtmHkA8wTt5rM58wpp32BC4xPCFJ4fFNwc4HP7gI4ZLZ a4hZyeIn4cLFZWoSU8iMPY6g8icpj7ZM3A== -----END CERTIFICATE-----Generated at Mon Feb 9 23:43:02 2026 by rpki-client