This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/ChgBgVFuABIzwh66-TkKdZEX1iA.roa File: ChgBgVFuABIzwh66-TkKdZEX1iA.roa (raw, json) Hash identifier: SVqR9Q8a5Hcp/asmqFGw5DEUG2TomIZWg2fteQrE3uY= Subject key identifier: 0A:18:01:81:51:6E:00:12:33:C2:1E:BA:F9:39:0A:75:91:17:D6:20 Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6 Certificate serial: 019B7E388C05BB3AC7985F38D04534DDA444 Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/ChgBgVFuABIzwh66-TkKdZEX1iA.roa Signing time: Fri 02 Jan 2026 10:19:53 +0000 ROA not before: Fri 02 Jan 2026 10:19:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3170 IP address blocks: 37.0.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.mft rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:8c:05:bb:3a:c7:98:5f:38:d0:45:34:dd:a4:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6 Validity Not Before: Jan 2 10:19:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a180181516e001233c21ebaf9390a759117d620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:33:2b:3b:6c:a4:11:d2:73:cc:ad:db:35: 40:5c:11:39:d1:0e:90:96:66:eb:04:98:7d:5a:76: 96:6d:05:81:c5:b0:69:65:5e:5c:aa:3b:48:d1:3c: ad:c7:c2:62:9f:b0:55:33:fa:80:5c:c8:9c:3d:7c: 55:a1:c7:86:3e:34:8a:23:a6:b1:e8:03:a4:bd:d5: 6e:52:a4:02:8c:b8:0e:f6:2b:ca:8a:bf:4e:29:ea: d9:e9:7c:86:0d:cc:b3:bf:bd:a4:3a:f6:eb:44:8f: c3:ff:92:e3:e0:16:42:e3:22:cb:45:d6:06:07:f4: cb:68:da:81:bb:af:ed:b0:09:1b:da:77:35:d4:2c: 44:63:dc:4b:4a:73:c1:fb:06:9a:4c:5c:35:34:6a: bf:14:69:c8:2d:14:ce:63:65:a2:0c:4f:90:b2:8d: cc:cc:88:81:f5:79:7e:28:5e:83:e1:01:81:1b:8f: ed:db:a1:b3:4c:84:9f:70:d1:4e:34:f9:9b:fc:fd: 14:49:1b:0a:51:5f:c8:22:88:25:d5:7f:58:2a:ad: 9b:d8:86:ac:04:65:11:b0:51:39:8c:7f:c8:1a:22: b1:0c:52:6c:43:3d:1b:29:21:6f:c5:51:df:da:d5: 73:8d:0a:61:ef:bc:c8:08:c3:9f:57:3d:f1:0c:65: ed:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:18:01:81:51:6E:00:12:33:C2:1E:BA:F9:39:0A:75:91:17:D6:20 X509v3 Authority Key Identifier: keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/ChgBgVFuABIzwh66-TkKdZEX1iA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.0.8.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:23:39:54:96:1c:67:a3:10:49:85:76:6e:95:01:10:9e:a1: 95:13:d9:07:5e:12:ac:bf:66:79:bc:f1:aa:b1:6a:df:e8:ef: fe:13:76:f2:12:eb:b1:91:ad:58:af:6c:ab:ca:bd:75:2b:ef: 33:1e:1c:2a:03:1a:9b:e9:5b:47:a8:58:1f:ef:1c:4b:13:57: 8d:09:09:f2:68:2b:d4:a0:fd:07:57:f1:c2:83:18:b5:85:06: e7:a7:db:ce:84:a7:97:54:dd:f1:1f:33:76:09:e8:07:f8:6a: f5:52:99:a3:cf:58:0f:7a:9c:49:ca:cd:14:2b:70:a5:61:82: 28:9c:3c:bc:77:30:09:93:f8:29:ba:64:e5:85:d8:88:ee:e0: 11:99:09:7c:90:ce:e9:7e:23:ae:93:3f:03:ae:7d:17:69:e8: fb:28:5b:14:c3:0e:af:47:dd:f4:4a:8b:b1:d8:96:ca:ef:c9: 2c:e7:ee:40:2f:b7:8e:53:f6:5c:23:6b:5d:63:7b:8f:ad:78: c1:65:4d:fa:23:d4:71:d3:48:59:44:10:7b:26:2e:0f:b6:76: 46:2e:16:01:4e:ce:b9:eb:26:fb:ce:e4:e3:11:fa:66:29:c4: 34:53:2d:ab:cc:cc:8d:86:c1:d5:39:41:c7:eb:e2:7f:d7:27: 55:df:db:43 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+OIwFuzrHmF840EU03aREMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE0YmVlMGViZDA2YjRiODEyZjllMTM3MTZlMjVmMWMzYzNk MTRjYzYwHhcNMjYwMTAyMTAxOTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTE4MDE4MTUxNmUwMDEyMzNjMjFlYmFmOTM5MGE3NTkxMTdkNjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwi8zKztspBHSc8yt2zVAXBE50Q6Q lmbrBJh9WnaWbQWBxbBpZV5cqjtI0Tytx8Jin7BVM/qAXMicPXxVoceGPjSKI6ax 6AOkvdVuUqQCjLgO9ivKir9OKerZ6XyGDcyzv72kOvbrRI/D/5Lj4BZC4yLLRdYG B/TLaNqBu6/tsAkb2nc11CxEY9xLSnPB+waaTFw1NGq/FGnILRTOY2WiDE+Qso3M zIiB9Xl+KF6D4QGBG4/t26GzTISfcNFONPmb/P0USRsKUV/IIogl1X9YKq2b2Ias BGURsFE5jH/IGiKxDFJsQz0bKSFvxVHf2tVzjQph77zICMOfVz3xDGXtHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAoYAYFRbgASM8Ieuvk5CnWRF9YgMB8GA1UdIwQY MBaAFBS+4OvQa0uBL54TcW4l8cPD0UzGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUt ZDFiYjZiNGRkNzAxLzEvQ2hnQmdWRnVBQkl6d2g2Ni1Ua0tkWkVYMWlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUtZDFiYjZiNGRkNzAx LzEvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQAIMA0G CSqGSIb3DQEBCwUAA4IBAQBPIzlUlhxnoxBJhXZulQEQnqGVE9kHXhKsv2Z5vPGq sWrf6O/+E3byEuuxka1Yr2yryr11K+8zHhwqAxqb6VtHqFgf7xxLE1eNCQnyaCvU oP0HV/HCgxi1hQbnp9vOhKeXVN3xHzN2CegH+Gr1Upmjz1gPepxJys0UK3ClYYIo nDy8dzAJk/gpumTlhdiI7uARmQl8kM7pfiOukz8Drn0Xaej7KFsUww6vR930Soux 2JbK78ks5+5AL7eOU/ZcI2tdY3uPrXjBZU36I9Rx00hZRBB7Ji4PtnZGLhYBTs65 6yb7zuTjEfpmKcQ0Uy2rzMyNhsHVOUHH6+J/1ydV39tD -----END CERTIFICATE-----Generated at Sun Jan 25 14:34:10 2026 by rpki-client