This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/cWZaLUMWOmPgq02bbhCxvURTndw.roa File: cWZaLUMWOmPgq02bbhCxvURTndw.roa (raw, json) Hash identifier: IUClisGJXyKB6S1qDFcis+t1z82FqIpdlgwLkdscpmo= Subject key identifier: 71:66:5A:2D:43:16:3A:63:E0:AB:4D:9B:6E:10:B1:BD:44:53:9D:DC Certificate issuer: /CN=bc15921f5ba6bd147ff400117aa9738633f1587d Certificate serial: 019B791056147FFCD5A0181A35373CB9EE95 Authority key identifier: BC:15:92:1F:5B:A6:BD:14:7F:F4:00:11:7A:A9:73:86:33:F1:58:7D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vBWSH1umvRR_9AAReqlzhjPxWH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/cWZaLUMWOmPgq02bbhCxvURTndw.roa Signing time: Thu 01 Jan 2026 10:17:52 +0000 ROA not before: Thu 01 Jan 2026 10:17:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1756 IP address blocks: 178.173.128.0/24 maxlen: 24 178.173.129.0/24 maxlen: 24 178.173.130.0/24 maxlen: 24 178.173.131.0/24 maxlen: 24 178.173.132.0/24 maxlen: 24 178.173.133.0/24 maxlen: 24 178.173.134.0/24 maxlen: 24 178.173.135.0/24 maxlen: 24 178.173.136.0/24 maxlen: 24 178.173.137.0/24 maxlen: 24 178.173.138.0/24 maxlen: 24 178.173.139.0/24 maxlen: 24 178.173.140.0/24 maxlen: 24 178.173.141.0/24 maxlen: 24 178.173.142.0/24 maxlen: 24 178.173.143.0/24 maxlen: 24 178.173.144.0/24 maxlen: 24 178.173.145.0/24 maxlen: 24 178.173.146.0/24 maxlen: 24 178.173.147.0/24 maxlen: 24 178.173.149.0/24 maxlen: 24 178.173.150.0/24 maxlen: 24 178.173.151.0/24 maxlen: 24 178.173.160.0/24 maxlen: 24 178.173.161.0/24 maxlen: 24 178.173.162.0/24 maxlen: 24 178.173.163.0/24 maxlen: 24 178.173.164.0/24 maxlen: 24 178.173.165.0/24 maxlen: 24 178.173.166.0/24 maxlen: 24 178.173.167.0/24 maxlen: 24 178.173.168.0/24 maxlen: 24 178.173.169.0/24 maxlen: 24 178.173.170.0/24 maxlen: 24 178.173.171.0/24 maxlen: 24 178.173.172.0/24 maxlen: 24 178.173.173.0/24 maxlen: 24 178.173.174.0/24 maxlen: 24 178.173.175.0/24 maxlen: 24 178.173.176.0/24 maxlen: 24 178.173.177.0/24 maxlen: 24 178.173.178.0/24 maxlen: 24 178.173.179.0/24 maxlen: 24 178.173.180.0/24 maxlen: 24 178.173.181.0/24 maxlen: 24 178.173.182.0/24 maxlen: 24 178.173.183.0/24 maxlen: 24 178.173.184.0/24 maxlen: 24 178.173.185.0/24 maxlen: 24 178.173.186.0/24 maxlen: 24 178.173.187.0/24 maxlen: 24 178.173.188.0/24 maxlen: 24 178.173.189.0/24 maxlen: 24 178.173.190.0/24 maxlen: 24 178.173.191.0/24 maxlen: 24 178.173.192.0/24 maxlen: 24 178.173.193.0/24 maxlen: 24 178.173.194.0/24 maxlen: 24 178.173.195.0/24 maxlen: 24 178.173.196.0/24 maxlen: 24 178.173.197.0/24 maxlen: 24 178.173.198.0/24 maxlen: 24 178.173.199.0/24 maxlen: 24 178.173.200.0/24 maxlen: 24 178.173.201.0/24 maxlen: 24 178.173.202.0/24 maxlen: 24 178.173.203.0/24 maxlen: 24 178.173.204.0/24 maxlen: 24 178.173.205.0/24 maxlen: 24 178.173.206.0/24 maxlen: 24 178.173.207.0/24 maxlen: 24 178.173.208.0/24 maxlen: 24 178.173.209.0/24 maxlen: 24 178.173.210.0/24 maxlen: 24 178.173.211.0/24 maxlen: 24 178.173.212.0/24 maxlen: 24 178.173.213.0/24 maxlen: 24 178.173.214.0/24 maxlen: 24 178.173.215.0/24 maxlen: 24 178.173.216.0/24 maxlen: 24 178.173.217.0/24 maxlen: 24 178.173.218.0/24 maxlen: 24 178.173.219.0/24 maxlen: 24 178.173.220.0/24 maxlen: 24 178.173.221.0/24 maxlen: 24 178.173.222.0/24 maxlen: 24 178.173.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/vBWSH1umvRR_9AAReqlzhjPxWH0.crl rsync://rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/vBWSH1umvRR_9AAReqlzhjPxWH0.mft rsync://rpki.ripe.net/repository/DEFAULT/vBWSH1umvRR_9AAReqlzhjPxWH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:56:14:7f:fc:d5:a0:18:1a:35:37:3c:b9:ee:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc15921f5ba6bd147ff400117aa9738633f1587d Validity Not Before: Jan 1 10:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71665a2d43163a63e0ab4d9b6e10b1bd44539ddc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:55:9a:aa:e3:70:ce:a6:c4:a9:4b:60:89:1f: 71:d1:14:68:25:4a:25:f2:10:20:0d:dd:34:e0:0c: 23:ff:07:12:1f:d7:25:df:6e:aa:78:e1:6a:ee:54: 96:fb:62:19:63:8d:4a:0c:42:11:82:c8:72:a9:19: fa:0c:ca:de:75:52:59:75:02:7e:0b:22:16:cb:4a: 1d:e7:2e:a1:c7:a3:ba:8f:30:a7:a0:b3:53:9b:b3: b9:5c:93:3a:a6:30:ef:11:4e:a2:09:48:2d:db:7e: 58:7d:54:6e:79:49:49:a8:20:a1:ff:6e:20:16:81: 7f:bc:87:26:33:08:52:95:4e:eb:4d:1d:14:66:ec: 8f:b7:4f:31:00:1f:42:77:cf:5b:fb:d3:78:a5:f6: d4:ea:76:0a:9d:53:18:10:ee:ab:32:49:af:96:37: 5d:06:fb:21:fc:25:ac:59:e3:6a:1b:cc:a9:c8:20: d9:b1:23:4c:83:f5:86:ea:6e:a5:ec:2a:81:80:67: 17:95:e1:34:73:c5:de:0f:82:74:ac:b4:16:a9:9d: 0f:aa:e2:82:2d:c6:db:63:ec:9a:22:30:a3:bb:e9: 2f:87:43:1c:fe:2d:ac:51:cc:bd:a2:35:45:87:4c: f0:1b:39:8f:4e:ef:01:b2:31:06:6d:0e:0a:60:fe: b2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:66:5A:2D:43:16:3A:63:E0:AB:4D:9B:6E:10:B1:BD:44:53:9D:DC X509v3 Authority Key Identifier: keyid:BC:15:92:1F:5B:A6:BD:14:7F:F4:00:11:7A:A9:73:86:33:F1:58:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vBWSH1umvRR_9AAReqlzhjPxWH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/cWZaLUMWOmPgq02bbhCxvURTndw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/vBWSH1umvRR_9AAReqlzhjPxWH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.173.128.0-178.173.147.255 178.173.149.0-178.173.151.255 178.173.160.0-178.173.223.255 Signature Algorithm: sha256WithRSAEncryption 0c:db:2b:3a:e2:68:60:7e:da:be:5e:09:ca:a6:32:19:99:d0: b4:88:ab:02:42:c1:97:70:7c:39:ab:20:6c:a3:9e:09:3b:4a: 42:c7:52:a8:af:24:15:86:a5:06:02:81:f8:8f:a3:4b:61:60: 9c:ef:0a:e6:66:78:96:95:e4:3c:2c:fe:c3:1b:6e:4c:d2:6f: de:28:b9:5a:26:e3:c1:94:e9:bb:cb:7d:ed:44:38:45:0a:f4: ab:af:06:3c:d2:41:33:a7:50:0a:44:09:9f:d2:b1:87:c3:63: 92:6b:85:4a:9e:7b:de:95:ec:78:8f:cf:26:4b:cb:a4:f2:df: d1:48:5a:c4:94:ce:b3:4c:1f:f1:f8:2a:aa:6f:89:d8:22:de: 4d:47:92:74:bd:0c:1d:fc:f5:e9:29:84:38:e8:c5:a1:be:43: 07:e3:0d:2a:aa:82:a8:fd:3f:aa:a4:ae:d8:47:f7:41:05:27: 76:c1:58:77:28:85:fd:f9:c2:6f:9b:90:18:ec:6a:69:2b:c3: 96:87:97:bc:9e:64:a1:68:dc:8e:90:54:4e:88:ad:da:68:a9: fe:80:b7:5d:de:f8:e0:e0:cc:3f:c6:10:e9:df:2f:a2:c4:22: 91:d2:f4:17:7c:5e:58:a5:a5:5a:64:f0:ad:94:8e:14:b0:59: 93:3f:56:84 -----BEGIN CERTIFICATE----- MIIFITCCBAmgAwIBAgISAZt5EFYUf/zVoBgaNTc8ue6VMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjMTU5MjFmNWJhNmJkMTQ3ZmY0MDAxMTdhYTk3Mzg2MzNm MTU4N2QwHhcNMjYwMTAxMTAxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MTY2NWEyZDQzMTYzYTYzZTBhYjRkOWI2ZTEwYjFiZDQ0NTM5ZGRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVWaquNwzqbEqUtgiR9x0RRoJUol 8hAgDd004Awj/wcSH9cl326qeOFq7lSW+2IZY41KDEIRgshyqRn6DMredVJZdQJ+ CyIWy0od5y6hx6O6jzCnoLNTm7O5XJM6pjDvEU6iCUgt235YfVRueUlJqCCh/24g FoF/vIcmMwhSlU7rTR0UZuyPt08xAB9Cd89b+9N4pfbU6nYKnVMYEO6rMkmvljdd Bvsh/CWsWeNqG8ypyCDZsSNMg/WG6m6l7CqBgGcXleE0c8XeD4J0rLQWqZ0PquKC LcbbY+yaIjCju+kvh0Mc/i2sUcy9ojVFh0zwGzmPTu8BsjEGbQ4KYP6ytQIDAQAB o4ICLTCCAikwHQYDVR0OBBYEFHFmWi1DFjpj4KtNm24Qsb1EU53cMB8GA1UdIwQY MBaAFLwVkh9bpr0Uf/QAEXqpc4Yz8Vh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkJXU0gxdW12UlJfOUFBUmVxbHpoalB4V0gwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC84ZTc5YWItYmE4My00NGNiLWFlYzAt MDk5MGNlNzQ4MWU3LzEvY1daYUxVTVdPbVBncTAyYmJoQ3h2VVJUbmR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC84ZTc5YWItYmE4My00NGNiLWFlYzAtMDk5MGNlNzQ4MWU3 LzEvdkJXU0gxdW12UlJfOUFBUmVxbHpoalB4V0gwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqMAwDBAeyrYAD BAKyrZAwDAMEALKtlQMEA7KtkDAMAwQFsq2gAwQFsq3AMA0GCSqGSIb3DQEBCwUA A4IBAQAM2ys64mhgftq+XgnKpjIZmdC0iKsCQsGXcHw5qyBso54JO0pCx1KoryQV hqUGAoH4j6NLYWCc7wrmZniWleQ8LP7DG25M0m/eKLlaJuPBlOm7y33tRDhFCvSr rwY80kEzp1AKRAmf0rGHw2OSa4VKnnvelex4j88mS8uk8t/RSFrElM6zTB/x+Cqq b4nYIt5NR5J0vQwd/PXpKYQ46MWhvkMH4w0qqoKo/T+qpK7YR/dBBSd2wVh3KIX9 +cJvm5AY7GppK8OWh5e8nmShaNyOkFROiK3aaKn+gLdd3vjg4Mw/xhDp3y+ixCKR 0vQXfF5YpaVaZPCtlI4UsFmTP1aE -----END CERTIFICATE-----Generated at Mon Jan 26 04:20:09 2026 by rpki-client