This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/f4009f-8275-4716-9971-ba39e7c2f6a1/1/cAKVqYBd9IcAL6r2ZvxM_Qj1ndI.roa File: cAKVqYBd9IcAL6r2ZvxM_Qj1ndI.roa (raw, json) Hash identifier: XqFaKsdiSRNsnwScS0QPlL53huZcp/xfhEBOIjWXbkk= Subject key identifier: 70:02:95:A9:80:5D:F4:87:00:2F:AA:F6:66:FC:4C:FD:08:F5:9D:D2 Certificate issuer: /CN=9abca23d2e2bad1fb5788ddb5f5a6fc7ab62ca20 Certificate serial: 019B7B3647F467FFCD9181CF3072B167D130 Authority key identifier: 9A:BC:A2:3D:2E:2B:AD:1F:B5:78:8D:DB:5F:5A:6F:C7:AB:62:CA:20 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mryiPS4rrR-1eI3bX1pvx6tiyiA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/f4009f-8275-4716-9971-ba39e7c2f6a1/1/cAKVqYBd9IcAL6r2ZvxM_Qj1ndI.roa Signing time: Thu 01 Jan 2026 20:18:33 +0000 ROA not before: Thu 01 Jan 2026 20:18:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34783 IP address blocks: 185.29.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/f4009f-8275-4716-9971-ba39e7c2f6a1/1/mryiPS4rrR-1eI3bX1pvx6tiyiA.crl rsync://rpki.ripe.net/repository/DEFAULT/49/f4009f-8275-4716-9971-ba39e7c2f6a1/1/mryiPS4rrR-1eI3bX1pvx6tiyiA.mft rsync://rpki.ripe.net/repository/DEFAULT/mryiPS4rrR-1eI3bX1pvx6tiyiA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:47:f4:67:ff:cd:91:81:cf:30:72:b1:67:d1:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9abca23d2e2bad1fb5788ddb5f5a6fc7ab62ca20 Validity Not Before: Jan 1 20:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=700295a9805df487002faaf666fc4cfd08f59dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b9:04:a5:5a:dc:f6:22:d1:37:16:de:18:80: 3d:c1:81:a1:91:ac:72:3d:34:4f:83:24:dc:61:69: 8e:44:90:e2:4a:89:90:18:0f:5d:4e:db:49:1e:5e: d9:07:43:79:d3:2f:51:1d:ca:6c:4e:b0:dd:09:6e: 6e:78:a6:99:d5:03:a5:30:42:b7:21:17:da:e8:07: b3:6d:b3:ac:17:6a:c1:b9:1d:f6:4c:75:43:65:64: 1b:73:a1:50:db:f9:0e:af:b7:22:2e:ef:d0:c1:84: 62:98:a2:2f:94:6b:09:f6:70:b7:f4:02:a7:5e:9a: 09:64:e1:45:64:5a:05:44:fb:8f:9c:1c:1e:cc:53: 62:70:03:4c:52:bc:b6:23:ef:3f:f9:43:ab:4e:83: 8c:58:e9:80:3a:78:c0:c9:44:47:1a:2a:06:1e:88: 2e:a8:2d:cf:6f:05:48:cb:f5:e9:72:4d:af:5c:5e: 89:20:f8:44:c7:1f:64:31:46:8d:47:25:6b:e4:c6: 5f:0c:cc:72:d9:7a:a0:0a:9f:16:45:7e:f0:56:6e: 62:0f:31:a6:f7:85:24:29:fd:b8:11:d3:df:68:4b: 02:18:e8:af:d1:82:22:02:a4:ac:6c:4f:24:4d:be: cb:bd:10:70:1a:8e:28:de:50:59:3e:ef:03:be:0e: 2f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:02:95:A9:80:5D:F4:87:00:2F:AA:F6:66:FC:4C:FD:08:F5:9D:D2 X509v3 Authority Key Identifier: keyid:9A:BC:A2:3D:2E:2B:AD:1F:B5:78:8D:DB:5F:5A:6F:C7:AB:62:CA:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mryiPS4rrR-1eI3bX1pvx6tiyiA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f4009f-8275-4716-9971-ba39e7c2f6a1/1/cAKVqYBd9IcAL6r2ZvxM_Qj1ndI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/49/f4009f-8275-4716-9971-ba39e7c2f6a1/1/mryiPS4rrR-1eI3bX1pvx6tiyiA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.29.36.0/22 Signature Algorithm: sha256WithRSAEncryption 09:99:68:55:f6:c2:b0:23:39:ff:86:c7:b3:98:d6:f1:1b:3a: 1e:bc:14:c4:71:6e:b4:2f:75:21:1e:49:cc:3d:be:ce:9e:6f: cd:0f:87:17:4b:c9:5f:17:d7:a3:1e:97:ae:14:c1:a1:8f:02: 0d:cb:f2:0f:fb:b5:a7:b6:f6:1a:08:da:c0:63:48:f7:e8:23: c1:c0:3c:2e:e1:d6:7a:b8:29:17:2f:84:40:f4:a1:fb:8f:4e: d0:8e:3a:dd:ae:97:27:a0:b5:b3:49:b5:3f:70:f6:6e:f5:63: a5:b2:4a:d2:3e:eb:68:c0:45:38:ba:c0:d5:89:d0:39:6d:ae: 74:af:13:09:a4:79:c4:ca:70:16:a5:02:78:c9:43:88:55:84: 0d:c3:fe:0b:2e:dc:66:7a:49:8e:90:1a:87:43:df:69:fe:29: 60:c8:d1:29:82:f0:05:bb:25:71:09:da:60:82:ea:4e:f9:c5: 80:b8:9a:22:ba:b9:48:3d:c7:e8:98:d6:77:10:bc:3b:f4:f3: e3:53:25:ae:b6:16:fc:1b:ec:22:5d:ee:2d:df:19:aa:6d:8e: af:8e:74:89:2f:b9:58:27:c6:02:8f:0f:c8:22:88:dd:91:7c: ed:a1:93:b5:af:e8:5d:8a:c1:93:04:68:3f:e7:a8:52:88:09: 55:c9:e1:87 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nkf0Z//NkYHPMHKxZ9EwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhYmNhMjNkMmUyYmFkMWZiNTc4OGRkYjVmNWE2ZmM3YWI2 MmNhMjAwHhcNMjYwMTAxMjAxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MDAyOTVhOTgwNWRmNDg3MDAyZmFhZjY2NmZjNGNmZDA4ZjU5ZGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rkEpVrc9iLRNxbeGIA9wYGhkaxy PTRPgyTcYWmORJDiSomQGA9dTttJHl7ZB0N50y9RHcpsTrDdCW5ueKaZ1QOlMEK3 IRfa6AezbbOsF2rBuR32THVDZWQbc6FQ2/kOr7ciLu/QwYRimKIvlGsJ9nC39AKn XpoJZOFFZFoFRPuPnBwezFNicANMUry2I+8/+UOrToOMWOmAOnjAyURHGioGHogu qC3PbwVIy/Xpck2vXF6JIPhExx9kMUaNRyVr5MZfDMxy2XqgCp8WRX7wVm5iDzGm 94UkKf24EdPfaEsCGOiv0YIiAqSsbE8kTb7LvRBwGo4o3lBZPu8Dvg4vKwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHAClamAXfSHAC+q9mb8TP0I9Z3SMB8GA1UdIwQY MBaAFJq8oj0uK60ftXiN219ab8erYsogMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbXJ5aVBTNHJyUi0xZUkzYlgxcHZ4NnRpeWlBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS9mNDAwOWYtODI3NS00NzE2LTk5NzEt YmEzOWU3YzJmNmExLzEvY0FLVnFZQmQ5SWNBTDZyMlp2eE1fUWoxbmRJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OS9mNDAwOWYtODI3NS00NzE2LTk5NzEtYmEzOWU3YzJmNmEx LzEvbXJ5aVBTNHJyUi0xZUkzYlgxcHZ4NnRpeWlBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuR0kMA0G CSqGSIb3DQEBCwUAA4IBAQAJmWhV9sKwIzn/hsezmNbxGzoevBTEcW60L3UhHknM Pb7Onm/ND4cXS8lfF9ejHpeuFMGhjwINy/IP+7WntvYaCNrAY0j36CPBwDwu4dZ6 uCkXL4RA9KH7j07QjjrdrpcnoLWzSbU/cPZu9WOlskrSPutowEU4usDVidA5ba50 rxMJpHnEynAWpQJ4yUOIVYQNw/4LLtxmekmOkBqHQ99p/ilgyNEpgvAFuyVxCdpg gupO+cWAuJoiurlIPcfomNZ3ELw79PPjUyWuthb8G+wiXe4t3xmqbY6vjnSJL7lY J8YCjw/IIojdkXztoZO1r+hdisGTBGg/56hSiAlVyeGH -----END CERTIFICATE-----Generated at Mon Jan 26 08:39:01 2026 by rpki-client