This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/CMyPiezTn5D8-YXplmxvsmXX2bc.roa File: CMyPiezTn5D8-YXplmxvsmXX2bc.roa (raw, json) Hash identifier: ookrXpU00j/ibJDIb1qnIotSBgooiA09iz417PKBh/s= Subject key identifier: 08:CC:8F:89:EC:D3:9F:90:FC:F9:85:E9:96:6C:6F:B2:65:D7:D9:B7 Certificate issuer: /CN=5bd8d72b1cbfc67c379ad9a92c66fac6c8d3233a Certificate serial: 019B7FF2972B2F252098E8592B0C80F08E50 Authority key identifier: 5B:D8:D7:2B:1C:BF:C6:7C:37:9A:D9:A9:2C:66:FA:C6:C8:D3:23:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9jXKxy_xnw3mtmpLGb6xsjTIzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/CMyPiezTn5D8-YXplmxvsmXX2bc.roa Signing time: Fri 02 Jan 2026 18:22:43 +0000 ROA not before: Fri 02 Jan 2026 18:22:43 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 206281 IP address blocks: 185.177.144.0/22 maxlen: 22 2a0a:4f80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/W9jXKxy_xnw3mtmpLGb6xsjTIzo.crl rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/W9jXKxy_xnw3mtmpLGb6xsjTIzo.mft rsync://rpki.ripe.net/repository/DEFAULT/W9jXKxy_xnw3mtmpLGb6xsjTIzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:97:2b:2f:25:20:98:e8:59:2b:0c:80:f0:8e:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5bd8d72b1cbfc67c379ad9a92c66fac6c8d3233a Validity Not Before: Jan 2 18:22:43 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=08cc8f89ecd39f90fcf985e9966c6fb265d7d9b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:18:93:a4:ab:e3:d9:93:87:e7:32:8c:b9:95: 36:33:36:04:f6:03:c8:ec:61:c4:01:6e:3c:97:95: 31:0f:b7:5e:c5:a7:be:d5:d9:17:f6:e3:f7:75:ad: 79:28:52:e7:ea:8e:73:5b:a2:fd:3d:1a:ae:ee:fc: 59:cf:01:f4:1e:92:53:ca:b6:fa:96:d9:c9:7a:30: 89:5c:44:48:49:36:d3:7f:66:f6:9f:ec:97:26:ec: 08:5b:43:7f:52:88:ec:28:80:70:53:91:bb:b8:2a: 15:42:12:03:19:d9:ed:d6:36:78:c2:17:d1:0a:19: 81:46:22:b2:20:d2:38:6b:14:3d:ec:67:d3:9e:37: 34:8b:92:21:e3:a0:3f:8a:58:e5:8d:89:57:54:b6: 10:ac:79:17:f1:1a:e4:0d:7c:f7:0e:19:84:e0:54: 7e:4d:f2:98:d6:24:25:3e:e6:54:6d:67:c9:ce:0e: 23:3d:fb:eb:79:96:4d:91:56:7f:fa:f3:68:f0:70: e0:5d:dd:3a:d2:12:ea:bf:25:13:e7:fb:81:d6:0d: 4e:18:a3:1e:80:98:07:ee:8e:72:03:97:78:c7:d9: cd:23:cb:41:f3:92:e1:e3:6f:1d:1c:25:8e:a1:c3: ac:fc:f0:51:3b:76:23:0e:0b:79:74:c4:c2:39:02: 49:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CC:8F:89:EC:D3:9F:90:FC:F9:85:E9:96:6C:6F:B2:65:D7:D9:B7 X509v3 Authority Key Identifier: keyid:5B:D8:D7:2B:1C:BF:C6:7C:37:9A:D9:A9:2C:66:FA:C6:C8:D3:23:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9jXKxy_xnw3mtmpLGb6xsjTIzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/CMyPiezTn5D8-YXplmxvsmXX2bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/d296a8-a5b1-4a34-8128-89359e783224/1/W9jXKxy_xnw3mtmpLGb6xsjTIzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.177.144.0/22 IPv6: 2a0a:4f80::/32 Signature Algorithm: sha256WithRSAEncryption ac:c4:f3:98:86:26:fd:f8:35:e8:b3:fe:cb:38:a0:bf:cb:c7: 30:b0:a9:8e:22:77:ae:18:0e:3d:ab:f8:53:71:3f:59:17:89: 30:f2:79:cd:f7:24:25:2b:16:d6:e6:3f:c5:07:cf:5e:3f:ba: 1e:ba:15:b1:29:4c:8c:3a:aa:4c:13:ed:37:24:a9:d3:06:d1: 18:81:7f:88:4e:64:47:24:53:a3:58:e3:0a:55:ab:ab:d8:65: 3d:14:4a:a5:41:b4:65:10:bd:29:69:2b:ba:29:3a:03:0a:79: 36:0a:7c:3b:7b:61:18:cc:16:a0:02:55:fb:a6:34:6f:19:ad: 08:a7:35:71:5c:fd:bf:69:66:8e:cb:a9:54:7f:b9:8d:f7:81: 70:e8:72:30:24:7f:ec:52:d4:48:78:2d:0e:d5:b1:6a:4c:86: 58:f6:cf:35:13:cd:33:9d:c3:7c:94:92:1a:45:ba:6e:11:f0: ec:f0:b2:12:87:92:95:3e:d8:76:37:81:11:0b:c2:d7:91:88: fc:f8:a5:b6:c9:d0:17:35:dc:8e:7c:de:b1:ae:88:f1:3d:c4: 92:29:84:22:64:1a:2b:a2:c5:cc:4f:cb:eb:e7:98:5f:59:84: 90:f4:9e:80:5a:5c:1b:68:a0:01:f4:5a:fa:b8:da:7f:39:25: 3a:6e:58:25 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt/8pcrLyUgmOhZKwyA8I5QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViZDhkNzJiMWNiZmM2N2MzNzlhZDlhOTJjNjZmYWM2Yzhk MzIzM2EwHhcNMjYwMTAyMTgyMjQzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwOGNjOGY4OWVjZDM5ZjkwZmNmOTg1ZTk5NjZjNmZiMjY1ZDdkOWI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xiTpKvj2ZOH5zKMuZU2MzYE9gPI 7GHEAW48l5UxD7dexae+1dkX9uP3da15KFLn6o5zW6L9PRqu7vxZzwH0HpJTyrb6 ltnJejCJXERISTbTf2b2n+yXJuwIW0N/UojsKIBwU5G7uCoVQhIDGdnt1jZ4whfR ChmBRiKyINI4axQ97GfTnjc0i5Ih46A/iljljYlXVLYQrHkX8RrkDXz3DhmE4FR+ TfKY1iQlPuZUbWfJzg4jPfvreZZNkVZ/+vNo8HDgXd060hLqvyUT5/uB1g1OGKMe gJgH7o5yA5d4x9nNI8tB85Lh428dHCWOocOs/PBRO3YjDgt5dMTCOQJJoQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFAjMj4ns05+Q/PmF6ZZsb7Jl19m3MB8GA1UdIwQY MBaAFFvY1yscv8Z8N5rZqSxm+sbI0yM6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVzlqWEt4eV94bnczbXRtcExHYjZ4c2pUSXpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9kMjk2YTgtYTViMS00YTM0LTgxMjgt ODkzNTllNzgzMjI0LzEvQ015UGllelRuNUQ4LVlYcGxteHZzbVhYMmJjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9kMjk2YTgtYTViMS00YTM0LTgxMjgtODkzNTllNzgzMjI0 LzEvVzlqWEt4eV94bnczbXRtcExHYjZ4c2pUSXpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCubGQMA0E AgACMAcDBQAqCk+AMA0GCSqGSIb3DQEBCwUAA4IBAQCsxPOYhib9+DXos/7LOKC/ y8cwsKmOIneuGA49q/hTcT9ZF4kw8nnN9yQlKxbW5j/FB89eP7oeuhWxKUyMOqpM E+03JKnTBtEYgX+ITmRHJFOjWOMKVaur2GU9FEqlQbRlEL0paSu6KToDCnk2Cnw7 e2EYzBagAlX7pjRvGa0IpzVxXP2/aWaOy6lUf7mN94Fw6HIwJH/sUtRIeC0O1bFq TIZY9s81E80zncN8lJIaRbpuEfDs8LISh5KVPth2N4ERC8LXkYj8+KW2ydAXNdyO fN6xrojxPcSSKYQiZBorosXMT8vr55hfWYSQ9J6AWlwbaKAB9Fr6uNp/OSU6blgl -----END CERTIFICATE-----Generated at Sun Jan 25 22:29:08 2026 by rpki-client