This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/CEaoQwoKe32gXLS8xrDkZN95-LU.roa File: CEaoQwoKe32gXLS8xrDkZN95-LU.roa (raw, json) Hash identifier: 3B+1jOz57ND8z/Cc76ODdU/PdomfAHvLxw8vMmK0i5M= Subject key identifier: 08:46:A8:43:0A:0A:7B:7D:A0:5C:B4:BC:C6:B0:E4:64:DF:79:F8:B5 Certificate issuer: /CN=adce3c2aafc7783cce8234551f3e9661d27eefbc Certificate serial: 019B7A5B8A122CA4E9A0302D50D3AA93A5CA Authority key identifier: AD:CE:3C:2A:AF:C7:78:3C:CE:82:34:55:1F:3E:96:61:D2:7E:EF:BC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/CEaoQwoKe32gXLS8xrDkZN95-LU.roa Signing time: Thu 01 Jan 2026 16:19:38 +0000 ROA not before: Thu 01 Jan 2026 16:19:38 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12779 IP address blocks: 176.110.111.0/24 maxlen: 24 2a10:e140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/rc48Kq_HeDzOgjRVHz6WYdJ-77w.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/rc48Kq_HeDzOgjRVHz6WYdJ-77w.mft rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:8a:12:2c:a4:e9:a0:30:2d:50:d3:aa:93:a5:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=adce3c2aafc7783cce8234551f3e9661d27eefbc Validity Not Before: Jan 1 16:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0846a8430a0a7b7da05cb4bcc6b0e464df79f8b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5b:cf:ed:72:de:95:9b:c5:62:cb:2e:6c:70: ea:e0:ee:42:f9:20:78:f9:51:45:3e:7b:bd:f5:c8: 53:1b:07:7a:97:8d:0a:a8:39:46:5e:a6:36:8a:e8: 39:d8:a0:40:4d:92:d5:61:ec:9f:7a:33:53:bb:db: a6:db:ba:98:1b:42:c1:33:a0:74:57:27:98:ad:e4: 33:84:7b:71:19:c9:23:77:79:b5:01:13:96:93:84: 57:9c:ad:20:d0:0f:69:b3:62:8a:05:cd:20:08:d9: d8:72:09:8e:46:b3:4f:b3:f9:5a:a2:5c:88:6f:93: 1b:e3:6a:03:df:50:eb:0f:80:0d:75:bb:59:2d:e6: 95:47:5f:e0:b8:6e:92:3f:d2:c0:fa:c4:60:64:1e: e4:12:ba:e6:1f:55:2c:ab:83:2f:80:a2:ba:44:07: 0b:64:03:3d:ae:ab:15:35:68:19:ad:bd:9a:b0:56: 22:4f:79:eb:52:ad:3d:d8:5a:50:2a:44:bf:b5:3e: ef:2f:cb:42:94:6c:f5:d9:0f:30:84:41:98:c2:a3: 55:b0:3f:e4:05:92:d6:f7:21:bf:8d:1a:89:c3:3b: 1f:56:8c:56:f5:d7:28:bd:84:bf:2b:3b:6c:d0:1b: c3:93:d6:6d:7b:d4:73:dd:1a:9a:8d:b5:2a:5d:da: 6d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:46:A8:43:0A:0A:7B:7D:A0:5C:B4:BC:C6:B0:E4:64:DF:79:F8:B5 X509v3 Authority Key Identifier: keyid:AD:CE:3C:2A:AF:C7:78:3C:CE:82:34:55:1F:3E:96:61:D2:7E:EF:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rc48Kq_HeDzOgjRVHz6WYdJ-77w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/CEaoQwoKe32gXLS8xrDkZN95-LU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/824ccd-bc9b-4a82-be91-63104db6a7a5/1/rc48Kq_HeDzOgjRVHz6WYdJ-77w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.110.111.0/24 IPv6: 2a10:e140::/32 Signature Algorithm: sha256WithRSAEncryption 6b:64:c9:e2:0b:cd:40:57:d4:71:80:8c:6e:b5:26:0c:60:37: 53:bd:03:68:2d:e0:fc:48:32:17:b1:bf:78:32:3d:ef:9a:57: 65:29:3f:c8:14:76:ad:93:69:be:14:6a:f9:d2:8d:82:39:93: d7:df:fe:ab:46:2c:24:0a:08:f7:1a:59:8b:a9:23:fe:d8:cd: d7:7c:42:dc:b1:c1:bc:c6:76:19:7d:9e:aa:4c:95:7a:21:aa: e1:2f:a9:37:15:5a:3e:79:c5:fa:fc:10:5e:0e:e0:78:84:84: cd:ca:44:35:1a:33:18:3c:bb:d6:73:56:a9:d0:44:73:25:0f: 55:3a:34:d2:cf:a9:f2:7a:51:12:6e:9c:88:03:d3:84:61:22: 87:81:a6:25:a4:61:05:55:53:5e:2a:d1:e9:52:12:55:6d:ba: d2:2f:86:c8:40:e1:73:f8:a6:7c:b9:9b:87:14:8c:41:5e:b1: 04:e3:5c:d7:5c:f3:42:b8:71:2d:7a:c3:32:ca:76:6a:a5:64: b6:f1:b0:69:af:24:e6:36:15:37:a3:87:e5:31:29:69:d1:ab: be:4b:4e:15:35:47:7f:3f:7f:8e:91:8a:63:08:8f:41:7a:43: 36:ed:2a:57:e9:d4:53:55:54:d3:8e:f3:f1:5c:a6:c1:3b:f7: fb:67:93:68 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6W4oSLKTpoDAtUNOqk6XKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkY2UzYzJhYWZjNzc4M2NjZTgyMzQ1NTFmM2U5NjYxZDI3 ZWVmYmMwHhcNMjYwMTAxMTYxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODQ2YTg0MzBhMGE3YjdkYTA1Y2I0YmNjNmIwZTQ2NGRmNzlmOGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApFvP7XLelZvFYssubHDq4O5C+SB4 +VFFPnu99chTGwd6l40KqDlGXqY2iug52KBATZLVYeyfejNTu9um27qYG0LBM6B0 VyeYreQzhHtxGckjd3m1AROWk4RXnK0g0A9ps2KKBc0gCNnYcgmORrNPs/laolyI b5Mb42oD31DrD4ANdbtZLeaVR1/guG6SP9LA+sRgZB7kErrmH1Usq4MvgKK6RAcL ZAM9rqsVNWgZrb2asFYiT3nrUq092FpQKkS/tT7vL8tClGz12Q8whEGYwqNVsD/k BZLW9yG/jRqJwzsfVoxW9dcovYS/Kzts0BvDk9Zte9Rz3RqajbUqXdptAwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAhGqEMKCnt9oFy0vMaw5GTfefi1MB8GA1UdIwQY MBaAFK3OPCqvx3g8zoI0VR8+lmHSfu+8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcmM0OEtxX0hlRHpPZ2pSVkh6NldZZEotNzd3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84MjRjY2QtYmM5Yi00YTgyLWJlOTEt NjMxMDRkYjZhN2E1LzEvQ0Vhb1F3b0tlMzJnWExTOHhyRGtaTjk1LUxVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS84MjRjY2QtYmM5Yi00YTgyLWJlOTEtNjMxMDRkYjZhN2E1 LzEvcmM0OEtxX0hlRHpPZ2pSVkh6NldZZEotNzd3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAsG5vMA0E AgACMAcDBQAqEOFAMA0GCSqGSIb3DQEBCwUAA4IBAQBrZMniC81AV9RxgIxutSYM YDdTvQNoLeD8SDIXsb94Mj3vmldlKT/IFHatk2m+FGr50o2COZPX3/6rRiwkCgj3 GlmLqSP+2M3XfELcscG8xnYZfZ6qTJV6IarhL6k3FVo+ecX6/BBeDuB4hITNykQ1 GjMYPLvWc1ap0ERzJQ9VOjTSz6nyelESbpyIA9OEYSKHgaYlpGEFVVNeKtHpUhJV bbrSL4bIQOFz+KZ8uZuHFIxBXrEE41zXXPNCuHEtesMyynZqpWS28bBpryTmNhU3 o4flMSlp0au+S04VNUd/P3+OkYpjCI9BekM27SpX6dRTVVTTjvPxXKbBO/f7Z5No -----END CERTIFICATE-----Generated at Mon Feb 2 08:00:15 2026 by rpki-client