This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/56036b-23d8-4b37-b546-8fc2373fc26e/1/roC7E9RumHxLB3VVJXEkh6LWBXY.roa File: roC7E9RumHxLB3VVJXEkh6LWBXY.roa (raw, json) Hash identifier: ZVaSktEMxUUuiyBU7JPF0ZEtx8YRLICCeEQDBd6wK6Q= Subject key identifier: AE:80:BB:13:D4:6E:98:7C:4B:07:75:55:25:71:24:87:A2:D6:05:76 Certificate issuer: /CN=29184647248b55523999cbb7fe5b20a99fe73be3 Certificate serial: 019B7BA5121736B247CB4834C4DA883D469B Authority key identifier: 29:18:46:47:24:8B:55:52:39:99:CB:B7:FE:5B:20:A9:9F:E7:3B:E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRhGRySLVVI5mcu3_lsgqZ_nO-M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/56036b-23d8-4b37-b546-8fc2373fc26e/1/roC7E9RumHxLB3VVJXEkh6LWBXY.roa Signing time: Thu 01 Jan 2026 22:19:34 +0000 ROA not before: Thu 01 Jan 2026 22:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 20514 IP address blocks: 185.166.32.0/22 maxlen: 24 185.166.33.0/24 maxlen: 24 217.151.192.0/20 maxlen: 20 217.151.192.0/21 maxlen: 21 217.151.207.0/24 maxlen: 24 2a03:c300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/56036b-23d8-4b37-b546-8fc2373fc26e/1/KRhGRySLVVI5mcu3_lsgqZ_nO-M.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/56036b-23d8-4b37-b546-8fc2373fc26e/1/KRhGRySLVVI5mcu3_lsgqZ_nO-M.mft rsync://rpki.ripe.net/repository/DEFAULT/KRhGRySLVVI5mcu3_lsgqZ_nO-M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:12:17:36:b2:47:cb:48:34:c4:da:88:3d:46:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29184647248b55523999cbb7fe5b20a99fe73be3 Validity Not Before: Jan 1 22:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae80bb13d46e987c4b07755525712487a2d60576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:4b:d1:31:86:52:ee:01:4c:02:9d:a6:63: 9b:22:7b:e5:bb:c6:68:7e:7c:d2:81:4b:ee:50:3f: 00:d0:1b:78:2d:36:23:36:03:2c:87:d6:05:56:c6: 17:f2:e9:87:24:47:a2:9f:c3:6d:40:a9:69:db:7f: d7:35:70:04:ac:2d:28:d3:08:85:73:9f:c4:07:ff: b8:27:59:8f:55:40:da:f0:51:89:e3:90:85:a5:61: 96:0d:78:19:31:5d:03:22:83:07:2f:a6:5a:72:af: 23:bd:10:8a:fb:ac:dc:5f:ea:32:7b:60:fa:ce:50: fb:86:93:a6:d8:b3:2e:e7:90:d4:f7:21:c1:f1:bf: 1e:e6:5e:26:56:aa:0e:ba:65:15:d9:a9:ed:7e:41: e0:5a:1f:19:0f:f1:2d:89:cc:9a:b9:a5:29:17:45: 29:7b:05:48:57:bb:da:25:23:49:fb:47:2b:52:b7: f6:16:20:6f:c5:45:5a:c1:16:d2:3b:bc:80:ca:32: a8:b9:23:a1:d8:90:5f:c8:5a:6d:50:62:cc:03:06: 54:d3:d9:9b:7b:99:f1:8b:2f:da:46:89:6b:0d:5f: 63:5f:4e:d7:1c:fb:01:02:6d:82:94:35:e9:04:2e: c1:13:cc:62:bb:53:c2:7c:8b:14:5a:fe:4a:d2:ec: 79:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:80:BB:13:D4:6E:98:7C:4B:07:75:55:25:71:24:87:A2:D6:05:76 X509v3 Authority Key Identifier: keyid:29:18:46:47:24:8B:55:52:39:99:CB:B7:FE:5B:20:A9:9F:E7:3B:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRhGRySLVVI5mcu3_lsgqZ_nO-M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/56036b-23d8-4b37-b546-8fc2373fc26e/1/roC7E9RumHxLB3VVJXEkh6LWBXY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/56036b-23d8-4b37-b546-8fc2373fc26e/1/KRhGRySLVVI5mcu3_lsgqZ_nO-M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.32.0/22 217.151.192.0/20 IPv6: 2a03:c300::/32 Signature Algorithm: sha256WithRSAEncryption 34:de:19:45:4d:3d:dd:64:a8:68:09:9d:88:93:a2:3f:c8:3b: d5:1f:a4:47:b9:c5:6a:e1:8e:89:ea:ed:96:23:ec:6d:6f:41: ce:71:ad:d7:c3:71:8d:84:c7:4e:91:eb:c2:f0:48:04:3a:99: f8:2b:c6:c6:b0:35:6f:c9:46:86:c8:cb:f1:23:98:7e:74:d0: 73:c3:cc:ff:cc:e5:25:47:9e:10:a1:33:ba:10:f4:8c:3d:27: a7:1e:5f:9a:d4:cc:47:7b:fd:6d:bd:a8:1a:0e:e5:db:b7:2b: 9c:93:52:22:a1:68:44:28:35:95:44:3f:86:9f:e0:0b:9a:e1: 9f:78:5f:28:94:fc:6b:ea:4b:2d:a8:41:9e:87:46:c5:88:55: 9d:63:6c:63:1f:66:54:8d:b8:55:09:d8:0a:78:0a:fd:0e:6c: 28:21:e2:6f:1b:33:e4:a3:6c:83:10:14:2c:64:17:c8:3f:38: 6f:c0:b6:02:c0:bf:f9:ef:43:ce:46:89:dc:98:31:03:bf:4d: 0c:72:90:e9:e3:2a:54:b2:0a:ab:46:8b:48:0c:7b:a6:2b:8c: 72:52:52:01:3a:d0:05:46:e9:32:5c:85:50:f4:dc:8f:c4:18: 86:09:91:cc:77:8b:99:9c:f6:fc:68:f9:66:28:d9:56:5b:90: bf:02:2f:6b -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgISAZt7pRIXNrJHy0g0xNqIPUabMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5MTg0NjQ3MjQ4YjU1NTIzOTk5Y2JiN2ZlNWIyMGE5OWZl NzNiZTMwHhcNMjYwMTAxMjIxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTgwYmIxM2Q0NmU5ODdjNGIwNzc1NTUyNTcxMjQ4N2EyZDYwNTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIBL0TGGUu4BTAKdpmObInvlu8Zo fnzSgUvuUD8A0Bt4LTYjNgMsh9YFVsYX8umHJEein8NtQKlp23/XNXAErC0o0wiF c5/EB/+4J1mPVUDa8FGJ45CFpWGWDXgZMV0DIoMHL6Zacq8jvRCK+6zcX+oye2D6 zlD7hpOm2LMu55DU9yHB8b8e5l4mVqoOumUV2antfkHgWh8ZD/EticyauaUpF0Up ewVIV7vaJSNJ+0crUrf2FiBvxUVawRbSO7yAyjKouSOh2JBfyFptUGLMAwZU09mb e5nxiy/aRolrDV9jX07XHPsBAm2ClDXpBC7BE8xiu1PCfIsUWv5K0ux5oQIDAQAB o4ICHjCCAhowHQYDVR0OBBYEFK6AuxPUbph8Swd1VSVxJIei1gV2MB8GA1UdIwQY MBaAFCkYRkcki1VSOZnLt/5bIKmf5zvjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS1JoR1J5U0xWVkk1bWN1M19sc2dxWl9uTy1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS81NjAzNmItMjNkOC00YjM3LWI1NDYt OGZjMjM3M2ZjMjZlLzEvcm9DN0U5UnVtSHhMQjNWVkpYRWtoNkxXQlhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS81NjAzNmItMjNkOC00YjM3LWI1NDYtOGZjMjM3M2ZjMjZl LzEvS1JoR1J5U0xWVkk1bWN1M19sc2dxWl9uTy1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCuaYgAwQE 2ZfAMA0EAgACMAcDBQAqA8MAMA0GCSqGSIb3DQEBCwUAA4IBAQA03hlFTT3dZKho CZ2Ik6I/yDvVH6RHucVq4Y6J6u2WI+xtb0HOca3Xw3GNhMdOkevC8EgEOpn4K8bG sDVvyUaGyMvxI5h+dNBzw8z/zOUlR54QoTO6EPSMPSenHl+a1MxHe/1tvagaDuXb tyuck1IioWhEKDWVRD+Gn+ALmuGfeF8olPxr6kstqEGeh0bFiFWdY2xjH2ZUjbhV CdgKeAr9DmwoIeJvGzPko2yDEBQsZBfIPzhvwLYCwL/570PORoncmDEDv00McpDp 4ypUsgqrRotIDHumK4xyUlIBOtAFRukyXIVQ9NyPxBiGCZHMd4uZnPb8aPlmKNlW W5C/Ai9r -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:01 2026 by rpki-client