This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/s0dYC6-RVRGw5a-WyYT4vShlFiY.roa File: s0dYC6-RVRGw5a-WyYT4vShlFiY.roa (raw, json) Hash identifier: f/X4gwVN0rJwSCQpT33krgHJNAGm21o5YhKb8UpMGx0= Subject key identifier: B3:47:58:0B:AF:91:55:11:B0:E5:AF:96:C9:84:F8:BD:28:65:16:26 Certificate issuer: /CN=1ef3cb098d5285020c3be754f8c4ff777aa8a174 Certificate serial: 019B79103976ED23F3254882985ED92B9C19 Authority key identifier: 1E:F3:CB:09:8D:52:85:02:0C:3B:E7:54:F8:C4:FF:77:7A:A8:A1:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvPLCY1ShQIMO-dU-MT_d3qooXQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/s0dYC6-RVRGw5a-WyYT4vShlFiY.roa Signing time: Thu 01 Jan 2026 10:17:44 +0000 ROA not before: Thu 01 Jan 2026 10:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42013 IP address blocks: 2.58.132.0/22 maxlen: 22 2.58.132.0/23 maxlen: 23 2.58.132.0/24 maxlen: 24 2.58.133.0/24 maxlen: 24 2.58.134.0/23 maxlen: 23 2.58.134.0/24 maxlen: 24 2.58.135.0/24 maxlen: 24 91.229.247.0/24 maxlen: 24 185.61.20.0/22 maxlen: 22 185.61.20.0/23 maxlen: 23 185.61.20.0/24 maxlen: 24 185.61.21.0/24 maxlen: 24 185.61.22.0/23 maxlen: 23 185.61.22.0/24 maxlen: 24 185.61.23.0/24 maxlen: 24 185.99.44.0/22 maxlen: 22 185.99.44.0/23 maxlen: 23 185.99.44.0/24 maxlen: 24 185.99.45.0/24 maxlen: 24 185.99.46.0/23 maxlen: 23 185.99.46.0/24 maxlen: 24 185.99.47.0/24 maxlen: 24 185.209.108.0/22 maxlen: 22 185.209.108.0/23 maxlen: 23 185.209.108.0/24 maxlen: 24 185.209.109.0/24 maxlen: 24 185.209.110.0/23 maxlen: 23 185.209.110.0/24 maxlen: 24 185.209.111.0/24 maxlen: 24 194.5.235.0/24 maxlen: 24 212.47.82.0/23 maxlen: 23 212.47.82.0/24 maxlen: 24 212.47.83.0/24 maxlen: 24 2a0b:4d40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/HvPLCY1ShQIMO-dU-MT_d3qooXQ.crl rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/HvPLCY1ShQIMO-dU-MT_d3qooXQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HvPLCY1ShQIMO-dU-MT_d3qooXQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:39:76:ed:23:f3:25:48:82:98:5e:d9:2b:9c:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ef3cb098d5285020c3be754f8c4ff777aa8a174 Validity Not Before: Jan 1 10:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b347580baf915511b0e5af96c984f8bd28651626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:18:71:3b:58:9e:16:52:dc:fe:60:9d:21:0e: c4:1b:1c:e2:6a:23:54:2e:6f:27:b6:84:7d:04:78: 37:ac:21:35:07:f2:26:4b:65:f9:6d:8c:d7:f2:53: c8:14:2e:ba:62:04:96:88:fb:49:6e:01:1d:3a:22: d6:40:e5:b0:2c:92:15:f5:8c:5f:82:c1:10:90:99: 37:a0:ac:df:4a:da:e2:ea:38:15:5d:d9:ac:64:b7: 40:54:df:33:cd:5c:6b:10:dc:d5:da:45:53:f0:8b: 72:88:a9:a3:5d:85:7b:d2:cd:42:d4:af:5c:50:e9: 30:f4:a2:58:f5:eb:f6:2d:6c:f9:69:56:87:19:86: fe:4c:8c:01:8f:70:f2:f9:fb:48:c0:4c:ee:6c:3a: 03:74:f4:2c:a1:54:d0:ce:6a:8d:27:2b:9b:dc:3d: 07:15:27:d2:05:a6:a3:c3:10:7a:25:d2:11:e6:85: b5:f8:d4:df:f6:11:c9:48:4e:7d:32:cd:1d:0f:83: fa:74:46:3b:e9:12:cf:42:5e:77:ec:0e:20:f4:88: 52:f3:32:f9:55:31:c4:58:c1:68:19:ba:b5:2c:d2: db:eb:87:4f:79:06:d4:9e:fe:f1:0d:6b:87:bc:f9: 3a:4c:d8:fe:75:19:98:d7:8d:a0:16:25:66:6c:81: 24:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:47:58:0B:AF:91:55:11:B0:E5:AF:96:C9:84:F8:BD:28:65:16:26 X509v3 Authority Key Identifier: keyid:1E:F3:CB:09:8D:52:85:02:0C:3B:E7:54:F8:C4:FF:77:7A:A8:A1:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvPLCY1ShQIMO-dU-MT_d3qooXQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/s0dYC6-RVRGw5a-WyYT4vShlFiY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/933818-a5bb-4d16-b551-f992b07f323f/1/HvPLCY1ShQIMO-dU-MT_d3qooXQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.58.132.0/22 91.229.247.0/24 185.61.20.0/22 185.99.44.0/22 185.209.108.0/22 194.5.235.0/24 212.47.82.0/23 IPv6: 2a0b:4d40::/29 Signature Algorithm: sha256WithRSAEncryption 4e:63:12:87:42:3b:93:b8:70:a1:af:f0:d9:78:1f:c5:17:a8: 3a:65:c4:4c:87:ef:df:5d:26:1d:7c:da:d7:34:2a:93:bd:1d: 5f:a2:80:d6:00:35:cd:83:42:95:46:61:19:fb:29:bd:ad:e4: 27:04:c3:54:1d:a0:22:33:aa:3a:ee:d6:37:e9:82:f9:ff:a0: 36:bb:c1:94:d0:d2:40:ea:02:62:e3:35:14:69:46:00:c1:cc: 66:68:58:78:5f:eb:72:5a:c5:f2:3f:48:12:c8:5e:6d:5b:ec: bc:48:e7:a8:d3:22:67:c5:1e:fc:5d:04:f5:10:e4:54:b1:05: de:d6:45:c3:eb:93:d7:d1:05:fd:28:e4:60:56:05:3c:26:5a: e3:7f:4c:67:dd:e5:c7:0d:4e:8e:96:0f:92:cd:49:f4:ab:86: 36:c9:0a:88:9a:c7:c6:71:8a:53:67:45:52:c7:10:a7:94:05: 5b:4e:4a:00:cd:19:c0:b9:cd:0c:f6:79:10:08:af:3b:0c:d3: da:b8:59:21:a1:33:99:a1:ae:0d:64:15:58:40:fa:b9:c4:35: 53:f5:92:48:3e:ec:3d:4d:d5:c1:05:a9:0e:ee:7f:2e:e2:bd: 00:0b:55:ec:26:34:01:1c:e1:1d:f7:19:99:a2:cb:f7:49:db: 82:f9:27:58 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt5EDl27SPzJUiCmF7ZK5wZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlZjNjYjA5OGQ1Mjg1MDIwYzNiZTc1NGY4YzRmZjc3N2Fh OGExNzQwHhcNMjYwMTAxMTAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMzQ3NTgwYmFmOTE1NTExYjBlNWFmOTZjOTg0ZjhiZDI4NjUxNjI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxhxO1ieFlLc/mCdIQ7EGxziaiNU Lm8ntoR9BHg3rCE1B/ImS2X5bYzX8lPIFC66YgSWiPtJbgEdOiLWQOWwLJIV9Yxf gsEQkJk3oKzfStri6jgVXdmsZLdAVN8zzVxrENzV2kVT8ItyiKmjXYV70s1C1K9c UOkw9KJY9ev2LWz5aVaHGYb+TIwBj3Dy+ftIwEzubDoDdPQsoVTQzmqNJyub3D0H FSfSBaajwxB6JdIR5oW1+NTf9hHJSE59Ms0dD4P6dEY76RLPQl537A4g9IhS8zL5 VTHEWMFoGbq1LNLb64dPeQbUnv7xDWuHvPk6TNj+dRmY142gFiVmbIEkCQIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFLNHWAuvkVURsOWvlsmE+L0oZRYmMB8GA1UdIwQY MBaAFB7zywmNUoUCDDvnVPjE/3d6qKF0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHZQTENZMVNoUUlNTy1kVS1NVF9kM3Fvb1hRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS85MzM4MTgtYTViYi00ZDE2LWI1NTEt Zjk5MmIwN2YzMjNmLzEvczBkWUM2LVJWUkd3NWEtV3lZVDR2U2hsRmlZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZS85MzM4MTgtYTViYi00ZDE2LWI1NTEtZjk5MmIwN2YzMjNm LzEvSHZQTENZMVNoUUlNTy1kVS1NVF9kM3Fvb1hRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQCAjqEAwQA W+X3AwQCuT0UAwQCuWMsAwQCudFsAwQAwgXrAwQB1C9SMA0EAgACMAcDBQMqC01A MA0GCSqGSIb3DQEBCwUAA4IBAQBOYxKHQjuTuHChr/DZeB/FF6g6ZcRMh+/fXSYd fNrXNCqTvR1fooDWADXNg0KVRmEZ+ym9reQnBMNUHaAiM6o67tY36YL5/6A2u8GU 0NJA6gJi4zUUaUYAwcxmaFh4X+tyWsXyP0gSyF5tW+y8SOeo0yJnxR78XQT1EORU sQXe1kXD65PX0QX9KORgVgU8Jlrjf0xn3eXHDU6Olg+SzUn0q4Y2yQqImsfGcYpT Z0VSxxCnlAVbTkoAzRnAuc0M9nkQCK87DNPauFkhoTOZoa4NZBVYQPq5xDVT9ZJI Puw9TdXBBakO7n8u4r0AC1XsJjQBHOEd9xmZosv3SduC+SdY -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:30 2026 by rpki-client