This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/czc2sZvkkrW-MgB2Ek5OD06lDWk.roa File: czc2sZvkkrW-MgB2Ek5OD06lDWk.roa (raw, json) Hash identifier: 3iSuRbXZZYFttnKMnGYHBXASh9vgMbc/QLRAdRSB2GU= Subject key identifier: 73:37:36:B1:9B:E4:92:B5:BE:32:00:76:12:4E:4E:0F:4E:A5:0D:69 Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Certificate serial: 019B7F84F4C4B358C781F09AAEEC27E0A56D Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/czc2sZvkkrW-MgB2Ek5OD06lDWk.roa Signing time: Fri 02 Jan 2026 16:22:58 +0000 ROA not before: Fri 02 Jan 2026 16:22:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 204323 IP address blocks: 146.158.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.mft rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:f4:c4:b3:58:c7:81:f0:9a:ae:ec:27:e0:a5:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42 Validity Not Before: Jan 2 16:22:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=733736b19be492b5be320076124e4e0f4ea50d69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f1:df:da:61:b7:c3:2f:e7:03:fe:ab:f5:28: fe:77:86:4c:1e:92:0a:3c:ea:1d:b9:ae:37:f3:77: 92:b5:dd:10:76:6d:c7:0e:da:06:85:95:9c:22:b4: 6e:eb:a0:d0:bc:c5:c6:b6:1e:31:80:7d:ed:8f:68: 03:da:76:be:1b:2e:1b:6d:eb:3d:92:71:65:2f:b3: 6f:d1:64:cd:5c:e7:12:ac:13:a4:19:b8:c5:1e:86: 12:a8:df:3a:6c:07:65:7e:33:64:72:2b:1d:14:94: a9:73:2c:17:cd:b6:ac:9b:b3:bd:34:95:f9:b3:fe: bb:b4:df:b2:45:1e:51:d0:70:d2:db:67:11:5e:5e: b4:91:2e:35:2e:ab:96:8e:7a:e2:49:16:bf:0f:9f: a6:12:ba:81:48:ec:eb:75:4a:fb:ad:a3:a4:53:09: d5:1e:6f:7b:45:37:f1:e3:3a:f8:e4:5e:51:4f:c7: a9:07:55:0b:b6:b5:50:f4:af:d9:1c:18:b8:9b:fa: d4:dc:86:03:b7:ad:1f:f9:99:be:dd:95:81:4d:ae: 8f:c5:99:76:b2:33:3b:c8:49:2e:b9:c0:2c:8f:4a: 3d:f3:16:c6:b4:fd:7a:4f:76:d3:c8:ee:30:e6:5d: 9f:37:d3:8b:fa:8c:37:c5:2c:cf:0f:4a:8d:66:7d: f4:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:37:36:B1:9B:E4:92:B5:BE:32:00:76:12:4E:4E:0F:4E:A5:0D:69 X509v3 Authority Key Identifier: keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/czc2sZvkkrW-MgB2Ek5OD06lDWk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.158.14.0/24 Signature Algorithm: sha256WithRSAEncryption b1:c0:88:6a:cf:3c:7b:c5:20:f6:be:4d:14:88:bc:c9:31:f1: 73:a4:f2:3f:9a:62:ce:d9:05:0f:60:51:47:c4:70:91:ce:7f: ac:ee:f8:70:09:7e:cd:9f:3f:da:a9:af:19:04:c6:76:07:f4: 95:67:5f:50:52:96:a7:5c:d7:cf:46:56:62:fd:59:c7:9d:cd: 63:13:eb:f6:3d:b1:2c:be:9b:6d:6e:36:e3:6e:dc:66:b0:b0: 96:8a:c3:f7:12:c6:42:92:c5:8e:2a:73:28:00:ea:8f:c0:04: 97:e5:31:3c:c2:c5:de:ec:84:88:3c:fc:e2:6a:c2:91:cc:ba: 56:0f:97:8d:b9:36:59:45:e9:ec:9b:8e:69:f5:c3:40:03:83: 68:d1:bb:ac:ff:16:3d:72:3e:e9:7e:03:77:4c:06:5b:cb:db: b3:83:59:b8:75:7d:72:e7:dc:22:bc:14:b9:39:99:cf:14:13: 94:eb:4b:85:52:b9:d6:66:d0:39:59:bd:b7:3d:4c:b0:ff:e6: 0d:c0:7c:31:40:4a:74:ff:bc:27:4a:29:86:86:02:6d:f1:5a: c6:a7:4c:01:88:48:bd:e6:e8:e5:d6:b2:03:f1:4c:21:a5:c2: 0f:e5:01:0f:16:d7:ab:27:4b:bc:15:4d:e7:68:2f:9b:1f:1e: b7:bb:5e:7b -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hPTEs1jHgfCaruwn4KVtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh YWVmNDIwHhcNMjYwMTAyMTYyMjU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MzM3MzZiMTliZTQ5MmI1YmUzMjAwNzYxMjRlNGUwZjRlYTUwZDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvHf2mG3wy/nA/6r9Sj+d4ZMHpIK POodua4383eStd0Qdm3HDtoGhZWcIrRu66DQvMXGth4xgH3tj2gD2na+Gy4bbes9 knFlL7Nv0WTNXOcSrBOkGbjFHoYSqN86bAdlfjNkcisdFJSpcywXzbasm7O9NJX5 s/67tN+yRR5R0HDS22cRXl60kS41LquWjnriSRa/D5+mErqBSOzrdUr7raOkUwnV Hm97RTfx4zr45F5RT8epB1ULtrVQ9K/ZHBi4m/rU3IYDt60f+Zm+3ZWBTa6PxZl2 sjM7yEkuucAsj0o98xbGtP16T3bTyO4w5l2fN9OL+ow3xSzPD0qNZn300wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHM3NrGb5JK1vjIAdhJOTg9OpQ1pMB8GA1UdIwQY MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt MDYyYzY5MzNhYmVkLzEvY3pjMnNadmtrclctTWdCMkVrNU9EMDZsRFdrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkp4OMA0G CSqGSIb3DQEBCwUAA4IBAQCxwIhqzzx7xSD2vk0UiLzJMfFzpPI/mmLO2QUPYFFH xHCRzn+s7vhwCX7Nnz/aqa8ZBMZ2B/SVZ19QUpanXNfPRlZi/VnHnc1jE+v2PbEs vpttbjbjbtxmsLCWisP3EsZCksWOKnMoAOqPwASX5TE8wsXe7ISIPPziasKRzLpW D5eNuTZZRensm45p9cNAA4No0bus/xY9cj7pfgN3TAZby9uzg1m4dX1y59wivBS5 OZnPFBOU60uFUrnWZtA5Wb23PUyw/+YNwHwxQEp0/7wnSimGhgJt8VrGp0wBiEi9 5ujl1rID8UwhpcIP5QEPFterJ0u8FU3naC+bHx63u157 -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:57 2026 by rpki-client