This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/1-crrXO-fETfpfCuOfq_V8AAtFcU.roa File: 1-crrXO-fETfpfCuOfq_V8AAtFcU.roa (raw, json) Hash identifier: tdCum/fabFsLr9FpxBtUaox/ikhPTJgRBISx07CTGFc= Subject key identifier: F9:CA:EB:5C:EF:9F:11:37:E9:7C:2B:8E:7E:AF:D5:F0:00:2D:15:C5 Certificate issuer: /CN=d17bf4fbea894f43eeb3db1b216e57766e01ab81 Certificate serial: 019B7B3667B7AD10F721892DCBBF5FB54E93 Authority key identifier: D1:7B:F4:FB:EA:89:4F:43:EE:B3:DB:1B:21:6E:57:76:6E:01:AB:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/1-crrXO-fETfpfCuOfq_V8AAtFcU.roa Signing time: Thu 01 Jan 2026 20:18:41 +0000 ROA not before: Thu 01 Jan 2026 20:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210055 IP address blocks: 176.119.132.0/22 maxlen: 22 176.119.132.0/24 maxlen: 24 176.119.133.0/24 maxlen: 24 176.119.134.0/24 maxlen: 24 176.119.135.0/24 maxlen: 24 185.214.170.0/23 maxlen: 23 185.214.170.0/24 maxlen: 24 185.214.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.mft rsync://rpki.ripe.net/repository/DEFAULT/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:67:b7:ad:10:f7:21:89:2d:cb:bf:5f:b5:4e:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d17bf4fbea894f43eeb3db1b216e57766e01ab81 Validity Not Before: Jan 1 20:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9caeb5cef9f1137e97c2b8e7eafd5f0002d15c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:84:f0:58:60:d4:78:98:19:04:94:f2:fb:fe: 74:55:80:42:b1:b6:21:51:14:19:ab:3a:aa:47:88: 8c:12:4c:9a:44:8d:6e:f7:5e:a0:a1:50:7f:7f:96: f0:0e:eb:c5:a8:eb:07:75:14:e5:51:41:03:af:40: 5e:45:8e:4b:4a:da:78:bf:5d:9a:f5:1e:48:03:d5: ec:70:02:11:12:95:42:f5:b1:6c:9c:ef:a2:1b:01: 9a:ac:26:4e:c2:1e:cc:06:f1:56:15:51:6e:28:89: d2:ed:56:64:61:3f:7f:95:69:da:49:6c:3c:fa:86: 71:67:29:6c:3a:6c:ba:f2:89:2d:11:bd:e8:5d:6f: 18:a8:d0:f0:9e:cb:89:3c:fd:39:51:1c:0c:34:4b: c6:17:13:00:d3:44:b9:5b:1c:45:50:3c:9e:b6:23: 9e:b2:08:8c:f0:18:0b:1d:cc:19:33:76:d2:4c:11: b0:d6:bf:9b:dd:60:b3:94:39:e2:13:4b:33:29:43: 7c:73:88:2d:d5:65:37:60:a0:d4:b9:0b:c3:a0:9a: 19:a6:ef:00:9e:00:bc:b3:94:e8:3e:4a:04:57:0e: 53:15:9e:ff:51:bd:b7:bf:8c:ac:02:e2:0c:1e:43: 49:95:ec:73:c3:cc:f7:4b:7f:d0:9b:d5:e4:7c:97: bc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CA:EB:5C:EF:9F:11:37:E9:7C:2B:8E:7E:AF:D5:F0:00:2D:15:C5 X509v3 Authority Key Identifier: keyid:D1:7B:F4:FB:EA:89:4F:43:EE:B3:DB:1B:21:6E:57:76:6E:01:AB:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/1-crrXO-fETfpfCuOfq_V8AAtFcU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/421529-73e2-4916-8bd2-2c201d30ae05/1/0Xv0--qJT0Pus9sbIW5Xdm4Bq4E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.119.132.0/22 185.214.170.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:77:29:f2:bc:4d:5c:81:57:e8:4d:04:08:5c:fc:59:a1:4d: 02:4d:0b:8b:5a:74:1f:fe:fe:c1:73:d4:4b:7b:4f:25:40:ec: a9:1e:d2:99:d7:33:28:2c:cc:75:78:c9:10:31:27:bb:f7:ff: 71:40:3a:35:db:93:8b:2e:a6:30:8c:74:36:60:32:ac:35:4b: 66:ba:ec:f7:fb:bb:47:80:72:18:aa:72:19:64:1c:bc:73:c4: 89:45:ef:a6:f3:d6:7d:68:04:86:37:2d:fa:ce:09:71:9b:63: fb:fd:bd:1b:11:3e:4e:79:7e:b3:bd:13:f8:2c:6f:f8:cd:09: 64:17:61:39:82:11:a0:ce:3d:06:97:9f:47:e0:37:37:4e:7e: 8b:2f:85:35:0e:4b:e2:3c:6f:46:82:db:db:e7:0f:f3:34:40: 1b:54:46:83:e7:f5:6c:d1:18:ed:3f:c5:3e:7b:5a:73:24:c0: 22:88:f2:df:e1:ac:96:31:5b:63:74:2a:37:9b:02:eb:9e:95: 21:d7:ce:82:d6:05:0c:d3:bd:96:8a:32:91:66:ee:dd:d7:5e: 06:f8:b2:23:9a:56:0d:fc:46:ce:4a:82:34:f1:36:3d:88:12: a6:be:43:53:a2:bd:a0:72:20:d2:84:97:fd:7b:e2:c9:59:23: 3a:03:4c:35 -----BEGIN CERTIFICATE----- MIIFBDCCA+ygAwIBAgISAZt7Nme3rRD3IYkty79ftU6TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxN2JmNGZiZWE4OTRmNDNlZWIzZGIxYjIxNmU1Nzc2NmUw MWFiODEwHhcNMjYwMTAxMjAxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOWNhZWI1Y2VmOWYxMTM3ZTk3YzJiOGU3ZWFmZDVmMDAwMmQxNWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYTwWGDUeJgZBJTy+/50VYBCsbYh URQZqzqqR4iMEkyaRI1u916goVB/f5bwDuvFqOsHdRTlUUEDr0BeRY5LStp4v12a 9R5IA9XscAIREpVC9bFsnO+iGwGarCZOwh7MBvFWFVFuKInS7VZkYT9/lWnaSWw8 +oZxZylsOmy68oktEb3oXW8YqNDwnsuJPP05URwMNEvGFxMA00S5WxxFUDyetiOe sgiM8BgLHcwZM3bSTBGw1r+b3WCzlDniE0szKUN8c4gt1WU3YKDUuQvDoJoZpu8A ngC8s5ToPkoEVw5TFZ7/Ub23v4ysAuIMHkNJlexzw8z3S3/Qm9XkfJe89QIDAQAB o4ICEDCCAgwwHQYDVR0OBBYEFPnK61zvnxE36Xwrjn6v1fAALRXFMB8GA1UdIwQY MBaAFNF79PvqiU9D7rPbGyFuV3ZuAauBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFh2MC0tcUpUMFB1czlzYklXNVhkbTRCcTRFLmNlcjCB jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy80MjE1MjktNzNlMi00OTE2LThiZDIt MmMyMDFkMzBhZTA1LzEvMS1jcnJYTy1mRVRmcGZDdU9mcV9WOEFBdEZjVS5yb2Ew gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvMWMvNDIxNTI5LTczZTItNDkxNi04YmQyLTJjMjAxZDMwYWUw NS8xLzBYdjAtLXFKVDBQdXM5c2JJVzVYZG00QnE0RS5jcmwwGAYDVR0gAQH/BA4w DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEArB3hAME AbnWqjANBgkqhkiG9w0BAQsFAAOCAQEAGncp8rxNXIFX6E0ECFz8WaFNAk0Li1p0 H/7+wXPUS3tPJUDsqR7SmdczKCzMdXjJEDEnu/f/cUA6NduTiy6mMIx0NmAyrDVL Zrrs9/u7R4ByGKpyGWQcvHPEiUXvpvPWfWgEhjct+s4JcZtj+/29GxE+Tnl+s70T +Cxv+M0JZBdhOYIRoM49BpefR+A3N05+iy+FNQ5L4jxvRoLb2+cP8zRAG1RGg+f1 bNEY7T/FPntacyTAIojy3+GsljFbY3QqN5sC656VIdfOgtYFDNO9looykWbu3dde BviyI5pWDfxGzkqCNPE2PYgSpr5DU6K9oHIg0oSX/XviyVkjOgNMNQ== -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:30 2026 by rpki-client