This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/e6506e-7685-48e7-a583-21af3dee8ee9/1/CTvb0FUa15u0RFsbQjogkyjXQEo.roa File: CTvb0FUa15u0RFsbQjogkyjXQEo.roa (raw, json) Hash identifier: rc8P8+g7ke0pQjl95RJtZC0Plvgs/SZq9fu71nIHzfo= Subject key identifier: 09:3B:DB:D0:55:1A:D7:9B:B4:44:5B:1B:42:3A:20:93:28:D7:40:4A Certificate issuer: /CN=7f1d0e3298bed3a7f39fb3b244ed918bf6c4d7bf Certificate serial: 019B7C7FD1D560014C90DB9FA6161481855E Authority key identifier: 7F:1D:0E:32:98:BE:D3:A7:F3:9F:B3:B2:44:ED:91:8B:F6:C4:D7:BF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fx0OMpi-06fzn7OyRO2Ri_bE178.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/e6506e-7685-48e7-a583-21af3dee8ee9/1/CTvb0FUa15u0RFsbQjogkyjXQEo.roa Signing time: Fri 02 Jan 2026 02:18:30 +0000 ROA not before: Fri 02 Jan 2026 02:18:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 9558 IP address blocks: 194.24.250.0/24 maxlen: 24 194.24.251.0/24 maxlen: 24 217.195.144.0/24 maxlen: 24 217.195.145.0/24 maxlen: 24 2a06:2340:1000::/44 maxlen: 44 2a06:2340:2000::/44 maxlen: 44 2a06:2340:3000::/44 maxlen: 44 2a0d:9e40:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/e6506e-7685-48e7-a583-21af3dee8ee9/1/fx0OMpi-06fzn7OyRO2Ri_bE178.crl rsync://rpki.ripe.net/repository/DEFAULT/f7/e6506e-7685-48e7-a583-21af3dee8ee9/1/fx0OMpi-06fzn7OyRO2Ri_bE178.mft rsync://rpki.ripe.net/repository/DEFAULT/fx0OMpi-06fzn7OyRO2Ri_bE178.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:d1:d5:60:01:4c:90:db:9f:a6:16:14:81:85:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f1d0e3298bed3a7f39fb3b244ed918bf6c4d7bf Validity Not Before: Jan 2 02:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=093bdbd0551ad79bb4445b1b423a209328d7404a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6b:0e:14:1b:9d:bc:7e:ec:38:bc:71:2f:a4: 05:bf:7a:1f:43:f9:38:25:fb:d9:ce:ac:13:04:72: 5f:13:28:47:17:57:85:46:7e:ff:4e:1c:7b:b1:cc: 04:c9:a8:bc:b8:c7:88:ef:2e:f5:b2:8c:2a:34:59: d4:2f:2a:95:32:6c:fc:45:e5:04:eb:d4:4b:20:3a: da:a7:fa:92:4d:24:8d:ae:f8:9e:54:d0:e8:a7:6d: 25:00:8e:3d:a3:b7:fd:e6:61:2c:45:20:e6:cb:ff: 54:8e:3b:1b:94:0f:50:05:9a:19:b7:97:1c:13:38: e9:09:f6:8a:2b:5d:38:00:5d:a9:66:b8:69:1d:d8: a5:5e:e5:b4:f1:60:37:05:aa:8f:f3:fc:9d:38:a1: 02:fd:4d:7c:2a:c9:ef:dc:01:79:c8:ca:70:60:e8: 7d:63:2a:53:c2:40:f2:a7:a3:60:02:03:f3:67:d9: 44:84:a6:f0:6a:66:8b:4d:36:d3:80:d1:46:d8:bb: 67:ec:eb:7c:69:70:0c:0e:ba:6c:8d:00:2f:61:cb: 86:c4:a0:39:3c:21:aa:ea:53:b0:1d:01:a1:ad:d3: 60:38:dc:c8:75:32:aa:1c:d9:08:83:e6:13:de:d5: cd:f1:71:86:3f:c0:23:f8:d2:2c:f2:31:7f:0d:6b: 14:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3B:DB:D0:55:1A:D7:9B:B4:44:5B:1B:42:3A:20:93:28:D7:40:4A X509v3 Authority Key Identifier: keyid:7F:1D:0E:32:98:BE:D3:A7:F3:9F:B3:B2:44:ED:91:8B:F6:C4:D7:BF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fx0OMpi-06fzn7OyRO2Ri_bE178.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/e6506e-7685-48e7-a583-21af3dee8ee9/1/CTvb0FUa15u0RFsbQjogkyjXQEo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/e6506e-7685-48e7-a583-21af3dee8ee9/1/fx0OMpi-06fzn7OyRO2Ri_bE178.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.24.250.0/23 217.195.144.0/23 IPv6: 2a06:2340:1000::/44 2a06:2340:2000::/44 2a06:2340:3000::/44 2a0d:9e40:1000::/36 Signature Algorithm: sha256WithRSAEncryption 9e:b3:29:c4:aa:f8:9f:be:52:19:36:a4:b0:c2:36:eb:36:ac: 91:14:49:b5:f6:97:49:7c:8a:84:75:42:81:1e:5a:42:04:36: 0c:25:8b:66:54:8c:6f:fa:63:ac:9b:62:fb:28:1a:96:4c:36: 6d:97:f3:a7:be:48:13:d4:14:df:56:c9:43:af:63:90:3d:cb: e2:a5:78:0d:41:37:4d:8d:bd:fe:63:c2:4e:28:34:17:bc:62: 66:47:ad:2e:c4:89:d9:c8:69:95:ef:b8:df:89:14:f2:58:1b: 9b:25:95:d3:42:34:51:0a:7e:a2:e5:9c:61:eb:43:2f:0d:dd: 2b:be:c5:fa:ae:d1:99:c3:23:93:19:a6:25:50:2b:6b:ed:8b: 63:0b:ca:c6:42:f0:68:79:c6:12:d2:c6:86:33:93:b9:b0:68: 65:92:f9:e7:ab:7a:0e:27:e7:4c:a6:f2:56:db:2c:08:94:79: 84:c1:53:83:06:8f:e7:1d:4f:07:ad:20:6e:ed:9c:ea:66:7f: 44:42:dd:d1:d4:b0:2b:2d:7c:47:84:6b:44:e3:05:09:ef:4c: 65:bd:e1:fb:70:28:22:7e:f5:ae:e6:56:7b:52:28:63:50:0a: 53:7b:71:1a:5d:da:64:35:7a:bb:bd:24:bf:a5:68:f4:d4:18: c9:32:d2:ef -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISAZt8f9HVYAFMkNufphYUgYVeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmMWQwZTMyOThiZWQzYTdmMzlmYjNiMjQ0ZWQ5MThiZjZj NGQ3YmYwHhcNMjYwMTAyMDIxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTNiZGJkMDU1MWFkNzliYjQ0NDViMWI0MjNhMjA5MzI4ZDc0MDRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumsOFBudvH7sOLxxL6QFv3ofQ/k4 JfvZzqwTBHJfEyhHF1eFRn7/Thx7scwEyai8uMeI7y71sowqNFnULyqVMmz8ReUE 69RLIDrap/qSTSSNrvieVNDop20lAI49o7f95mEsRSDmy/9UjjsblA9QBZoZt5cc EzjpCfaKK104AF2pZrhpHdilXuW08WA3BaqP8/ydOKEC/U18Ksnv3AF5yMpwYOh9 YypTwkDyp6NgAgPzZ9lEhKbwamaLTTbTgNFG2Ltn7Ot8aXAMDrpsjQAvYcuGxKA5 PCGq6lOwHQGhrdNgONzIdTKqHNkIg+YT3tXN8XGGP8Aj+NIs8jF/DWsUMQIDAQAB o4ICOjCCAjYwHQYDVR0OBBYEFAk729BVGtebtERbG0I6IJMo10BKMB8GA1UdIwQY MBaAFH8dDjKYvtOn85+zskTtkYv2xNe/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZngwT01waS0wNmZ6bjdPeVJPMlJpX2JFMTc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9lNjUwNmUtNzY4NS00OGU3LWE1ODMt MjFhZjNkZWU4ZWU5LzEvQ1R2YjBGVWExNXUwUkZzYlFqb2dreWpYUUVvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNy9lNjUwNmUtNzY4NS00OGU3LWE1ODMtMjFhZjNkZWU4ZWU5 LzEvZngwT01waS0wNmZ6bjdPeVJPMlJpX2JFMTc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzASBAIAATAMAwQBwhj6AwQB 2cOQMCkEAgACMCMDBwQqBiNAEAADBwQqBiNAIAADBwQqBiNAMAADBgQqDZ5AEDAN BgkqhkiG9w0BAQsFAAOCAQEAnrMpxKr4n75SGTaksMI26zaskRRJtfaXSXyKhHVC gR5aQgQ2DCWLZlSMb/pjrJti+ygalkw2bZfzp75IE9QU31bJQ69jkD3L4qV4DUE3 TY29/mPCTig0F7xiZketLsSJ2chple+434kU8lgbmyWV00I0UQp+ouWcYetDLw3d K77F+q7RmcMjkxmmJVAra+2LYwvKxkLwaHnGEtLGhjOTubBoZZL556t6DifnTKby VtssCJR5hMFTgwaP5x1PB60gbu2c6mZ/RELd0dSwKy18R4RrROMFCe9MZb3h+3Ao In71ruZWe1IoY1AKU3txGl3aZDV6u70kv6Vo9NQYyTLS7w== -----END CERTIFICATE-----Generated at Tue Jan 20 02:35:35 2026 by rpki-client