This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/CVwCEsbzumpXgEnKDDCCAaIDrYM.roa File: CVwCEsbzumpXgEnKDDCCAaIDrYM.roa (raw, json) Hash identifier: lxu8mh9bo97HPFI+56oJ6vzMl5ukNpSkTrJqrOGog30= Subject key identifier: 09:5C:02:12:C6:F3:BA:6A:57:80:49:CA:0C:30:82:01:A2:03:AD:83 Certificate issuer: /CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8 Certificate serial: 019B7A5A92DB9881B02E663929A596D5C467 Authority key identifier: CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/CVwCEsbzumpXgEnKDDCCAaIDrYM.roa Signing time: Thu 01 Jan 2026 16:18:34 +0000 ROA not before: Thu 01 Jan 2026 16:18:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6730 IP address blocks: 91.198.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.mft rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:92:db:98:81:b0:2e:66:39:29:a5:96:d5:c4:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc4e2bac51d9cb729b1a75628ee6b4c9c1e9ffc8 Validity Not Before: Jan 1 16:18:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=095c0212c6f3ba6a578049ca0c308201a203ad83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2d:18:2e:29:b8:93:f7:b4:ab:26:10:e7:6c: 09:3f:b7:93:be:96:e5:b2:10:f9:d4:a8:3f:5f:48: c1:1b:d6:bf:03:8f:cf:bc:f7:a4:2c:30:e6:32:d2: b8:b8:f1:19:3d:96:4b:c7:b7:a9:dc:8c:d5:da:ee: 2f:f7:84:f1:a4:38:4e:d9:72:6f:f3:3d:aa:47:a3: 5a:12:bb:2a:ba:21:52:48:46:70:f7:f3:87:43:40: eb:b0:58:0a:46:a2:bf:7c:e7:93:86:fb:95:bc:07: 3b:91:93:f6:57:4b:95:cb:43:4b:6c:e0:ae:0c:ca: ad:be:f4:8f:5b:53:1d:ad:a6:94:cc:ed:c3:55:34: 65:5f:e7:90:9b:49:1c:6f:8c:bf:3b:8e:3a:b3:71: d3:ef:25:f5:ce:c6:3d:72:be:08:62:1b:f6:09:e2: de:25:89:c9:e1:d3:86:cc:34:21:80:52:71:0f:12: 99:39:a7:8f:cc:69:29:4e:f7:9e:18:84:31:e2:c8: 74:15:5c:2c:f4:84:0c:d0:8c:91:eb:ee:a2:81:0c: 5e:05:db:4a:e5:33:0c:c7:d8:26:16:91:5f:4d:8d: 99:e9:1b:85:17:39:91:8e:23:42:c5:09:7a:8d:77: ed:28:d5:6a:0d:1c:40:12:f7:b8:e6:5c:8c:05:0e: 7e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5C:02:12:C6:F3:BA:6A:57:80:49:CA:0C:30:82:01:A2:03:AD:83 X509v3 Authority Key Identifier: keyid:CC:4E:2B:AC:51:D9:CB:72:9B:1A:75:62:8E:E6:B4:C9:C1:E9:FF:C8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zE4rrFHZy3KbGnVijua0ycHp_8g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/CVwCEsbzumpXgEnKDDCCAaIDrYM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/a58803-24e7-46cf-b244-9da7887f6a2f/1/zE4rrFHZy3KbGnVijua0ycHp_8g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.198.12.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e6:16:e3:99:24:89:e3:da:c7:e1:52:f9:bd:2a:b2:81:a5: e4:48:a9:cf:de:b2:7f:ce:d6:4d:a3:84:4a:21:8c:d2:87:0f: 4e:c3:62:1f:95:df:ae:b2:e5:dd:da:93:10:c2:f8:15:bb:62: d0:ac:32:cb:02:ba:1a:5e:48:70:ba:a6:79:91:72:90:08:e1: c1:b1:f5:4c:ae:c3:72:96:ce:dc:87:1a:8c:e8:8f:19:e7:86: 90:ad:6b:73:a0:29:64:66:5a:48:57:d6:f9:81:f7:5a:40:07: 47:98:cd:70:38:f1:24:0d:14:cb:b4:46:1d:79:a1:ba:c5:bd: 87:c1:59:3d:8b:9a:ca:4b:15:28:f8:30:0c:c3:3c:a3:64:f8: 4b:79:e4:7f:e1:66:c9:b0:eb:05:40:dd:dc:5a:12:f7:5b:85: 99:f3:a2:9a:3d:6c:7e:5a:cc:e5:b6:94:3a:75:c1:4a:d1:3a: 5e:23:78:d8:55:95:6f:7a:ac:2c:4a:8e:e0:e2:df:06:ad:e7: aa:00:ec:5b:58:52:13:d6:8d:30:8e:99:e8:e1:33:2b:91:55: ba:1f:c6:a7:73:90:0d:0d:2a:16:c1:3c:33:6c:d9:7f:17:28: 46:5f:5e:0d:f5:3b:26:d7:36:91:9e:ac:d9:0b:26:65:0c:d0: 1c:7e:23:ec -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WpLbmIGwLmY5KaWW1cRnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjNGUyYmFjNTFkOWNiNzI5YjFhNzU2MjhlZTZiNGM5YzFl OWZmYzgwHhcNMjYwMTAxMTYxODM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOTVjMDIxMmM2ZjNiYTZhNTc4MDQ5Y2EwYzMwODIwMWEyMDNhZDgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnC0YLim4k/e0qyYQ52wJP7eTvpbl shD51Kg/X0jBG9a/A4/PvPekLDDmMtK4uPEZPZZLx7ep3IzV2u4v94TxpDhO2XJv 8z2qR6NaErsquiFSSEZw9/OHQ0DrsFgKRqK/fOeThvuVvAc7kZP2V0uVy0NLbOCu DMqtvvSPW1MdraaUzO3DVTRlX+eQm0kcb4y/O446s3HT7yX1zsY9cr4IYhv2CeLe JYnJ4dOGzDQhgFJxDxKZOaePzGkpTveeGIQx4sh0FVws9IQM0IyR6+6igQxeBdtK 5TMMx9gmFpFfTY2Z6RuFFzmRjiNCxQl6jXftKNVqDRxAEve45lyMBQ5+lwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAlcAhLG87pqV4BJygwwggGiA62DMB8GA1UdIwQY MBaAFMxOK6xR2ctymxp1Yo7mtMnB6f/IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQt OWRhNzg4N2Y2YTJmLzEvQ1Z3Q0VzYnp1bXBYZ0VuS0REQ0NBYUlEcllNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9hNTg4MDMtMjRlNy00NmNmLWIyNDQtOWRhNzg4N2Y2YTJm LzEvekU0cnJGSFp5M0tiR25WaWp1YTB5Y0hwXzhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8YMMA0G CSqGSIb3DQEBCwUAA4IBAQCb5hbjmSSJ49rH4VL5vSqygaXkSKnP3rJ/ztZNo4RK IYzShw9Ow2Ifld+usuXd2pMQwvgVu2LQrDLLAroaXkhwuqZ5kXKQCOHBsfVMrsNy ls7chxqM6I8Z54aQrWtzoClkZlpIV9b5gfdaQAdHmM1wOPEkDRTLtEYdeaG6xb2H wVk9i5rKSxUo+DAMwzyjZPhLeeR/4WbJsOsFQN3cWhL3W4WZ86KaPWx+WszltpQ6 dcFK0TpeI3jYVZVveqwsSo7g4t8GreeqAOxbWFIT1o0wjpno4TMrkVW6H8anc5AN DSoWwTwzbNl/FyhGX14N9Tsm1zaRnqzZCyZlDNAcfiPs -----END CERTIFICATE-----Generated at Mon Jan 26 00:37:22 2026 by rpki-client