This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/rcu1nZGmL_S7ccczhF-sESIVSFg.roa File: rcu1nZGmL_S7ccczhF-sESIVSFg.roa (raw, json) Hash identifier: bYUYTaJymdrEh9zrcfZKEG7i+z1i30upCc49kr4zBNw= Subject key identifier: AD:CB:B5:9D:91:A6:2F:F4:BB:71:C7:33:84:5F:AC:11:22:15:48:58 Certificate issuer: /CN=3a07318a1314233f5623c0f835fae18f9126412f Certificate serial: 019B797F4F5FFA37379619D3F58C556AF2C4 Authority key identifier: 3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/rcu1nZGmL_S7ccczhF-sESIVSFg.roa Signing time: Thu 01 Jan 2026 12:19:04 +0000 ROA not before: Thu 01 Jan 2026 12:19:04 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39686 IP address blocks: 185.172.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.mft rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:4f:5f:fa:37:37:96:19:d3:f5:8c:55:6a:f2:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a07318a1314233f5623c0f835fae18f9126412f Validity Not Before: Jan 1 12:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=adcbb59d91a62ff4bb71c733845fac1122154858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:64:9b:bc:1f:bd:fe:26:43:04:d3:06:39:88: 85:72:24:ef:e4:96:3b:0f:e1:be:fc:2a:be:6a:6b: 9f:3b:d3:64:4b:15:d6:dc:1a:da:8e:6c:61:de:91: e7:d8:63:46:86:da:54:00:46:87:aa:e6:0e:7c:66: 55:32:b9:80:a9:04:e7:e8:94:82:17:01:e7:12:f3: 65:99:ce:0c:3b:ac:c3:bb:e2:43:41:52:be:2d:29: 8e:23:03:37:32:fb:74:fc:81:4d:80:8a:92:6c:a3: e1:72:0f:d9:6f:b0:92:f2:da:1c:ed:12:1a:1f:19: 00:f5:35:5a:5d:6f:3c:f2:1e:18:47:33:16:5a:56: 97:d9:6e:89:94:0e:f9:fb:41:d0:90:fd:31:49:4f: f8:2e:ce:35:f0:58:17:44:37:12:cc:81:83:b4:49: ed:96:9e:44:e0:a7:d6:10:19:9b:9e:28:2f:64:88: cf:64:37:4f:7b:d5:59:3a:2a:01:a6:4e:2f:0e:38: 7d:67:ba:ae:31:99:6d:6d:06:a0:3e:d8:4b:ce:62: 3a:51:65:23:7a:dd:0c:33:9b:50:df:a8:a9:d9:26: 7b:15:3a:de:e5:ba:25:e4:5b:0b:40:a0:e0:ee:d3: eb:72:93:e9:2f:4e:92:7f:40:63:39:de:97:da:28: 1c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:CB:B5:9D:91:A6:2F:F4:BB:71:C7:33:84:5F:AC:11:22:15:48:58 X509v3 Authority Key Identifier: keyid:3A:07:31:8A:13:14:23:3F:56:23:C0:F8:35:FA:E1:8F:91:26:41:2F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgcxihMUIz9WI8D4Nfrhj5EmQS8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/rcu1nZGmL_S7ccczhF-sESIVSFg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2b5374-d405-4ff1-8563-026a7b654f88/1/OgcxihMUIz9WI8D4Nfrhj5EmQS8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.172.4.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:1d:4d:31:e6:74:ce:09:a0:82:e4:10:08:e0:55:17:44:09: c9:09:57:9a:0f:36:01:3c:36:68:a2:57:51:65:8c:8b:64:30: 43:2f:46:78:2e:19:a1:65:9f:5d:ae:77:07:18:b8:4c:13:ce: b9:89:e8:f2:13:aa:b7:1b:52:53:92:05:7d:81:15:51:66:a1: 71:2c:e8:56:1c:42:d9:1f:a4:19:1e:14:19:f0:b5:ec:19:54: 16:4e:ae:a0:49:c4:34:86:05:ea:89:5b:f3:40:07:b1:14:44: 3a:38:06:ad:3f:21:22:77:71:6d:b7:42:91:05:be:f3:c8:e9: 21:68:3d:33:21:0b:72:59:b2:90:9c:9e:5e:49:d6:42:44:01: bc:69:07:04:44:95:f5:46:4c:c5:fc:72:a0:2a:e1:76:68:3b: 60:a5:ba:25:91:33:36:51:84:48:5f:0d:a4:5e:27:d3:04:ed: da:91:8e:3d:73:a3:c5:7f:c8:fe:7c:ea:f7:5c:1b:99:40:81: 2c:c1:39:a7:58:c5:cd:b4:13:37:c3:c9:89:9a:e8:97:56:5a: 06:fb:96:a9:e3:76:c2:4a:df:f6:62:f2:b5:a3:f9:3b:b3:59: e3:79:68:68:63:47:9c:4e:a1:fc:b0:1a:65:54:1b:86:11:2d: 05:6d:b8:cb -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5f09f+jc3lhnT9YxVavLEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMDczMThhMTMxNDIzM2Y1NjIzYzBmODM1ZmFlMThmOTEy NjQxMmYwHhcNMjYwMTAxMTIxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZGNiYjU5ZDkxYTYyZmY0YmI3MWM3MzM4NDVmYWMxMTIyMTU0ODU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGSbvB+9/iZDBNMGOYiFciTv5JY7 D+G+/Cq+amufO9NkSxXW3Brajmxh3pHn2GNGhtpUAEaHquYOfGZVMrmAqQTn6JSC FwHnEvNlmc4MO6zDu+JDQVK+LSmOIwM3Mvt0/IFNgIqSbKPhcg/Zb7CS8toc7RIa HxkA9TVaXW888h4YRzMWWlaX2W6JlA75+0HQkP0xSU/4Ls418FgXRDcSzIGDtEnt lp5E4KfWEBmbnigvZIjPZDdPe9VZOioBpk4vDjh9Z7quMZltbQagPthLzmI6UWUj et0MM5tQ36ip2SZ7FTre5bol5FsLQKDg7tPrcpPpL06Sf0BjOd6X2igc+QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFK3LtZ2Rpi/0u3HHM4RfrBEiFUhYMB8GA1UdIwQY MBaAFDoHMYoTFCM/ViPA+DX64Y+RJkEvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2djeGloTVVJejlXSThENE5mcmhqNUVtUVM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8yYjUzNzQtZDQwNS00ZmYxLTg1NjMt MDI2YTdiNjU0Zjg4LzEvcmN1MW5aR21MX1M3Y2NjemhGLXNFU0lWU0ZnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8yYjUzNzQtZDQwNS00ZmYxLTg1NjMtMDI2YTdiNjU0Zjg4 LzEvT2djeGloTVVJejlXSThENE5mcmhqNUVtUVM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuawEMA0G CSqGSIb3DQEBCwUAA4IBAQCcHU0x5nTOCaCC5BAI4FUXRAnJCVeaDzYBPDZooldR ZYyLZDBDL0Z4LhmhZZ9drncHGLhME865iejyE6q3G1JTkgV9gRVRZqFxLOhWHELZ H6QZHhQZ8LXsGVQWTq6gScQ0hgXqiVvzQAexFEQ6OAatPyEid3Ftt0KRBb7zyOkh aD0zIQtyWbKQnJ5eSdZCRAG8aQcERJX1RkzF/HKgKuF2aDtgpbolkTM2UYRIXw2k XifTBO3akY49c6PFf8j+fOr3XBuZQIEswTmnWMXNtBM3w8mJmuiXVloG+5ap43bC St/2YvK1o/k7s1njeWhoY0ecTqH8sBplVBuGES0FbbjL -----END CERTIFICATE-----Generated at Sun Jan 25 17:22:38 2026 by rpki-client