This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/21M7HF4__TSSYuc94uYUsxaViMI.roa File: 21M7HF4__TSSYuc94uYUsxaViMI.roa (raw, json) Hash identifier: bLnj/IRZ795Oev6VIkUJOays0OV+AGQSOAXtErO1j5g= Subject key identifier: DB:53:3B:1C:5E:3F:FD:34:92:62:E7:3D:E2:E6:14:B3:16:95:88:C2 Certificate issuer: /CN=41d10b88eb24f6262d9315368a5d01e1e0860c4e Certificate serial: 019B7A5A7B8AA089DC79719E00097614F5D1 Authority key identifier: 41:D1:0B:88:EB:24:F6:26:2D:93:15:36:8A:5D:01:E1:E0:86:0C:4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdELiOsk9iYtkxU2il0B4eCGDE4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/21M7HF4__TSSYuc94uYUsxaViMI.roa Signing time: Thu 01 Jan 2026 16:18:28 +0000 ROA not before: Thu 01 Jan 2026 16:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 6663 IP address blocks: 185.190.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/QdELiOsk9iYtkxU2il0B4eCGDE4.crl rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/QdELiOsk9iYtkxU2il0B4eCGDE4.mft rsync://rpki.ripe.net/repository/DEFAULT/QdELiOsk9iYtkxU2il0B4eCGDE4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:7b:8a:a0:89:dc:79:71:9e:00:09:76:14:f5:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41d10b88eb24f6262d9315368a5d01e1e0860c4e Validity Not Before: Jan 1 16:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db533b1c5e3ffd349262e73de2e614b3169588c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ed:51:e5:31:24:ad:04:05:68:be:1b:b5:60: 9d:f7:3a:cd:cb:2c:d2:f0:fe:37:70:ac:b4:08:6a: 80:e8:b3:41:4b:9f:0a:5d:3c:40:1c:9d:e1:a1:90: 86:33:93:1d:33:c6:84:1f:1a:35:4e:b3:6f:eb:f4: 55:7f:3d:b3:8d:26:39:a0:96:23:7b:4a:8c:bc:d6: 6a:36:76:19:d5:6d:55:64:b8:fb:05:ca:fe:a5:cf: 79:ed:94:65:82:af:3e:3c:5d:df:65:12:6a:70:02: 09:be:cc:38:e2:b9:d5:02:cb:65:e1:6a:d4:8a:15: a0:a4:fb:5d:65:12:69:22:e9:cc:9a:5b:08:16:76: 03:fb:22:b3:9d:6b:22:68:f3:80:71:58:9a:26:51: 6c:04:29:c9:b5:61:02:b5:e8:8a:fb:12:98:23:6f: 64:f1:c2:70:2e:c9:b9:01:3d:a8:ee:cb:79:15:e1: 00:64:e3:3b:6f:e6:3a:cc:ff:64:a6:2b:00:df:82: b9:82:7e:6d:c7:84:10:64:4f:c0:b5:7a:ee:f2:61: c0:17:28:2c:2e:fe:44:b2:24:c6:9b:10:a5:c4:3f: 2d:10:23:71:88:b9:13:a2:90:aa:50:7b:b5:c8:f1: c0:7c:bf:9b:09:1f:4f:c1:01:da:2c:a4:e9:89:9f: b2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:53:3B:1C:5E:3F:FD:34:92:62:E7:3D:E2:E6:14:B3:16:95:88:C2 X509v3 Authority Key Identifier: keyid:41:D1:0B:88:EB:24:F6:26:2D:93:15:36:8A:5D:01:E1:E0:86:0C:4E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdELiOsk9iYtkxU2il0B4eCGDE4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/21M7HF4__TSSYuc94uYUsxaViMI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/998786-8719-4d8e-9500-ef97006c450b/1/QdELiOsk9iYtkxU2il0B4eCGDE4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.190.213.0/24 Signature Algorithm: sha256WithRSAEncryption 82:61:04:a8:75:8e:a7:d0:bf:49:d1:4f:32:aa:ed:57:28:97: 4f:01:31:fa:b7:42:16:1d:8c:14:c4:26:7e:da:c4:b9:02:c5: e5:bf:0b:23:2d:ff:d2:65:db:47:56:e1:7a:7f:6a:7c:aa:a2: 8f:04:df:af:4c:43:90:16:51:e0:30:00:82:66:0e:70:de:3f: e9:dd:d9:a3:0b:c0:da:bd:54:57:14:3e:05:b1:54:88:99:6c: 07:b3:c8:b7:fb:1e:5d:3a:de:ca:0e:94:1c:27:56:76:d5:66: 7f:fc:03:ac:49:b6:48:5e:81:54:4b:2e:a5:88:b2:0a:b0:bb: ff:21:d1:55:b6:45:2b:2a:36:17:5f:a1:e4:2e:ab:0a:d9:77: 0f:ae:5e:82:87:7e:50:ed:f3:ba:d1:02:34:40:e0:f1:16:4a: eb:2f:44:bf:54:46:e6:e7:a5:c1:dc:3b:ce:ea:c2:d2:7b:78: d4:a0:28:97:6f:59:44:88:d3:fa:24:32:31:ec:ea:2c:d4:32: 95:06:71:0d:24:23:94:42:ec:b4:93:59:4d:d9:01:0c:5a:86: 98:df:e1:af:81:da:c4:e1:e8:11:1c:7c:ce:06:5d:53:9a:5b: c4:a7:e7:24:01:50:fc:1b:32:91:f3:8d:3f:02:02:dd:00:6f: d9:28:70:dc -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6WnuKoInceXGeAAl2FPXRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQxZDEwYjg4ZWIyNGY2MjYyZDkzMTUzNjhhNWQwMWUxZTA4 NjBjNGUwHhcNMjYwMTAxMTYxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjUzM2IxYzVlM2ZmZDM0OTI2MmU3M2RlMmU2MTRiMzE2OTU4OGMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwO1R5TEkrQQFaL4btWCd9zrNyyzS 8P43cKy0CGqA6LNBS58KXTxAHJ3hoZCGM5MdM8aEHxo1TrNv6/RVfz2zjSY5oJYj e0qMvNZqNnYZ1W1VZLj7Bcr+pc957ZRlgq8+PF3fZRJqcAIJvsw44rnVAstl4WrU ihWgpPtdZRJpIunMmlsIFnYD+yKznWsiaPOAcViaJlFsBCnJtWECteiK+xKYI29k 8cJwLsm5AT2o7st5FeEAZOM7b+Y6zP9kpisA34K5gn5tx4QQZE/AtXru8mHAFygs Lv5EsiTGmxClxD8tECNxiLkTopCqUHu1yPHAfL+bCR9PwQHaLKTpiZ+yTwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFNtTOxxeP/00kmLnPeLmFLMWlYjCMB8GA1UdIwQY MBaAFEHRC4jrJPYmLZMVNopdAeHghgxOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUWRFTGlPc2s5aVl0a3hVMmlsMEI0ZUNHREU0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS85OTg3ODYtODcxOS00ZDhlLTk1MDAt ZWY5NzAwNmM0NTBiLzEvMjFNN0hGNF9fVFNTWXVjOTR1WVVzeGFWaU1JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYS85OTg3ODYtODcxOS00ZDhlLTk1MDAtZWY5NzAwNmM0NTBi LzEvUWRFTGlPc2s5aVl0a3hVMmlsMEI0ZUNHREU0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAub7VMA0G CSqGSIb3DQEBCwUAA4IBAQCCYQSodY6n0L9J0U8yqu1XKJdPATH6t0IWHYwUxCZ+ 2sS5AsXlvwsjLf/SZdtHVuF6f2p8qqKPBN+vTEOQFlHgMACCZg5w3j/p3dmjC8Da vVRXFD4FsVSImWwHs8i3+x5dOt7KDpQcJ1Z21WZ//AOsSbZIXoFUSy6liLIKsLv/ IdFVtkUrKjYXX6HkLqsK2XcPrl6Ch35Q7fO60QI0QODxFkrrL0S/VEbm56XB3DvO 6sLSe3jUoCiXb1lEiNP6JDIx7Oos1DKVBnENJCOUQuy0k1lN2QEMWoaY3+GvgdrE 4egRHHzOBl1TmlvEp+ckAVD8GzKR840/AgLdAG/ZKHDc -----END CERTIFICATE-----Generated at Sun Jan 25 20:46:52 2026 by rpki-client