This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/CBT9EvNLviREuaFnuwBtsjNjvqQ.roa File: CBT9EvNLviREuaFnuwBtsjNjvqQ.roa (raw, json) Hash identifier: L5VKNlWuWtfLWO7jL8F9Y4m0nbimopTGF6Y2mOItvHc= Subject key identifier: 08:14:FD:12:F3:4B:BE:24:44:B9:A1:67:BB:00:6D:B2:33:63:BE:A4 Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635 Certificate serial: 019B79ECDBBA4D1345D92C457756DE1C221D Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/CBT9EvNLviREuaFnuwBtsjNjvqQ.roa Signing time: Thu 01 Jan 2026 14:18:44 +0000 ROA not before: Thu 01 Jan 2026 14:18:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 31367 IP address blocks: 185.172.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.mft rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:db:ba:4d:13:45:d9:2c:45:77:56:de:1c:22:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635 Validity Not Before: Jan 1 14:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0814fd12f34bbe2444b9a167bb006db23363bea4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:43:3b:1c:6f:a5:e2:d0:55:98:93:34:a5:94: b2:2a:b9:15:41:f8:5b:7c:ca:a4:d5:75:32:0e:b8: 79:d7:9c:58:71:70:15:83:30:c9:5c:8d:51:6a:f6: 6a:3e:f9:d5:d1:2f:5e:7c:ec:c9:c8:59:d3:26:35: 42:f1:5c:40:1e:f0:d2:53:08:ac:24:25:39:a9:a5: 82:42:df:e2:0c:81:a5:1b:74:54:a7:3c:ba:f3:0c: f4:87:6d:bd:c0:6d:9c:b9:ee:86:e5:62:d3:57:1d: c6:8a:08:c3:db:0e:a1:bc:c3:e7:7f:f8:a6:19:4a: ed:fe:34:fd:ab:55:f9:63:01:ca:20:f0:48:f2:50: fb:38:bf:19:1c:d5:fc:96:f5:27:5c:7a:a3:76:7c: 4a:62:4e:39:c2:17:31:d2:ab:1e:a0:7f:d5:1d:e3: 00:86:c5:00:86:2a:05:01:02:12:d9:bc:38:d9:9b: 18:52:97:de:1c:ea:1a:8b:59:1d:f3:d0:23:2e:de: 3c:f6:62:30:7c:2f:16:97:26:a6:e4:cb:80:b5:af: da:31:29:94:0a:4f:ce:fd:ef:61:bc:67:52:73:7b: ef:fb:f5:a8:af:16:aa:4a:67:ef:11:71:11:44:1b: 2c:48:4a:50:24:6d:91:36:39:02:62:8b:3a:2c:2d: cf:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:14:FD:12:F3:4B:BE:24:44:B9:A1:67:BB:00:6D:B2:33:63:BE:A4 X509v3 Authority Key Identifier: keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/CBT9EvNLviREuaFnuwBtsjNjvqQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.172.152.0/22 Signature Algorithm: sha256WithRSAEncryption 68:b5:f3:ce:5d:11:53:bd:9d:12:ef:1a:60:96:4a:3f:0f:81: 12:ce:17:f8:a5:85:e7:44:9c:99:13:4f:86:48:99:f6:bb:12: e4:02:3a:d1:f6:c2:4b:16:bc:a4:31:a4:3f:c4:9f:1c:86:74: 6a:ff:4e:cf:2b:ce:ab:c6:21:34:52:99:43:b9:0b:7a:3e:fa: ca:ac:ad:59:28:1a:c2:2c:7a:c0:9b:ac:34:ba:a4:fc:78:57: fd:b6:16:75:0c:bf:e9:1d:3d:48:13:73:9a:e0:53:2a:13:1b: 28:98:a2:54:1a:49:60:c5:d6:a7:27:69:ab:a4:21:73:1c:14: a4:be:e8:e7:93:b4:56:7b:fa:e8:45:ec:87:da:e5:ad:92:f1: 47:3a:f3:50:36:e7:fe:20:09:b4:1d:84:97:ab:41:2a:00:7d: 69:0d:9c:39:ef:06:98:d1:3f:f0:2f:84:83:cc:49:cf:b3:5e: 1b:2a:eb:06:08:fc:c2:29:61:ec:ac:e3:f1:28:95:64:eb:30: f5:40:a4:6a:b2:84:5f:1b:5f:66:55:61:45:bd:cf:61:44:31: e2:cd:c3:9f:95:86:f8:fb:86:34:97:84:da:a5:38:be:4c:04: 90:f4:ce:cc:34:d2:a9:82:ad:ac:6a:57:44:2c:14:7f:8a:59: 1d:20:1c:f4 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57Nu6TRNF2SxFd1beHCIdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI2MWI5NDFkYmU1OTY1MWZhZmJiYTk3MjRhMTI3NzVlMDdl ZGI2MzUwHhcNMjYwMTAxMTQxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODE0ZmQxMmYzNGJiZTI0NDRiOWExNjdiYjAwNmRiMjMzNjNiZWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUM7HG+l4tBVmJM0pZSyKrkVQfhb fMqk1XUyDrh515xYcXAVgzDJXI1RavZqPvnV0S9efOzJyFnTJjVC8VxAHvDSUwis JCU5qaWCQt/iDIGlG3RUpzy68wz0h229wG2cue6G5WLTVx3GigjD2w6hvMPnf/im GUrt/jT9q1X5YwHKIPBI8lD7OL8ZHNX8lvUnXHqjdnxKYk45whcx0qseoH/VHeMA hsUAhioFAQIS2bw42ZsYUpfeHOoai1kd89AjLt489mIwfC8Wlyam5MuAta/aMSmU Ck/O/e9hvGdSc3vv+/WorxaqSmfvEXERRBssSEpQJG2RNjkCYos6LC3PzQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAgU/RLzS74kRLmhZ7sAbbIzY76kMB8GA1UdIwQY MBaAFCYblB2+WWUfr7upckoSd14H7bY1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSmh1VUhiNVpaUi12dTZseVNoSjNYZ2Z0dGpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8yZjgzMGYtYWY0ZC00ZDMzLWEzMDAt Yjk4ZGY1NDRiYzIwLzEvQ0JUOUV2Tkx2aVJFdWFGbnV3QnRzak5qdnFRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83My8yZjgzMGYtYWY0ZC00ZDMzLWEzMDAtYjk4ZGY1NDRiYzIw LzEvSmh1VUhiNVpaUi12dTZseVNoSjNYZ2Z0dGpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuayYMA0G CSqGSIb3DQEBCwUAA4IBAQBotfPOXRFTvZ0S7xpglko/D4ESzhf4pYXnRJyZE0+G SJn2uxLkAjrR9sJLFrykMaQ/xJ8chnRq/07PK86rxiE0UplDuQt6PvrKrK1ZKBrC LHrAm6w0uqT8eFf9thZ1DL/pHT1IE3Oa4FMqExsomKJUGklgxdanJ2mrpCFzHBSk vujnk7RWe/roReyH2uWtkvFHOvNQNuf+IAm0HYSXq0EqAH1pDZw57waY0T/wL4SD zEnPs14bKusGCPzCKWHsrOPxKJVk6zD1QKRqsoRfG19mVWFFvc9hRDHizcOflYb4 +4Y0l4TapTi+TASQ9M7MNNKpgq2saldELBR/ilkdIBz0 -----END CERTIFICATE-----Generated at Sun Jan 25 15:02:10 2026 by rpki-client