This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/caCNERnJxfTGouZNM-ZhrZMZ3Dk.roa File: caCNERnJxfTGouZNM-ZhrZMZ3Dk.roa (raw, json) Hash identifier: QxIZr8silfyaFcfQ4eLDZhsTooVK0dikoa7i3WYvqgc= Subject key identifier: 71:A0:8D:11:19:C9:C5:F4:C6:A2:E6:4D:33:E6:61:AD:93:19:DC:39 Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Certificate serial: 019B7D5D21F5A081341776B7445BC4BA7A99 Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/caCNERnJxfTGouZNM-ZhrZMZ3Dk.roa Signing time: Fri 02 Jan 2026 06:20:14 +0000 ROA not before: Fri 02 Jan 2026 06:20:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60097 IP address blocks: 46.107.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.mft rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:21:f5:a0:81:34:17:76:b7:44:5b:c4:ba:7a:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b Validity Not Before: Jan 2 06:20:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=71a08d1119c9c5f4c6a2e64d33e661ad9319dc39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:95:d6:93:c4:b5:98:df:ea:38:fd:bb:2e:c2: c4:a3:6c:99:55:d3:e5:9e:18:df:77:35:22:66:03: d8:c0:07:f4:13:53:e0:c3:b1:40:46:6a:04:37:67: c0:58:96:ef:a1:96:a8:4b:6b:be:af:1d:47:55:f5: 7a:5b:57:35:53:f5:62:da:60:f1:39:23:1b:e6:f8: d8:95:f2:1a:fe:4f:5a:59:26:37:46:c3:35:90:40: 24:7e:37:0a:6d:ac:5e:31:87:9a:56:7d:ba:8d:5f: 86:df:11:1f:61:fd:9f:a1:07:ed:22:ca:3f:56:ea: 34:38:fe:47:b9:e6:fb:40:a4:ef:e0:79:d3:d9:13: b9:9b:79:dc:a7:6d:d1:ae:02:6b:61:e8:44:44:52: e7:c2:d1:3a:a9:43:95:90:fb:2a:29:e6:58:4d:3f: 57:a2:1f:34:f1:46:d5:ba:6f:63:a9:cb:44:28:ce: bc:16:a6:69:a2:23:45:94:2b:1e:74:4e:7c:62:d4: 2c:87:7a:1c:bc:44:ac:63:39:2f:36:14:35:ba:09: f4:0c:04:1e:c8:d1:d1:3d:c3:ed:19:de:df:f6:34: 29:16:f0:19:00:65:72:5b:b6:2a:e2:79:b7:31:f3: 7d:82:05:b8:8d:98:42:04:d1:19:9a:b3:20:07:f9: ec:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A0:8D:11:19:C9:C5:F4:C6:A2:E6:4D:33:E6:61:AD:93:19:DC:39 X509v3 Authority Key Identifier: keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/caCNERnJxfTGouZNM-ZhrZMZ3Dk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.107.239.0/24 Signature Algorithm: sha256WithRSAEncryption 38:b5:d2:54:4d:da:d2:07:2e:4e:17:6d:27:62:68:bb:58:78: 81:16:4b:9c:55:c6:1e:77:0d:eb:dd:df:8b:44:4b:68:4e:c6: 1d:64:88:c2:5e:60:00:11:b6:99:70:ff:93:66:78:7f:15:2d: b2:5e:01:41:0c:35:c9:63:bd:be:8f:4c:ba:fb:72:38:51:fb: 9e:fe:79:68:ed:59:01:29:e7:c4:ff:57:08:35:85:3e:32:6d: 2a:e1:0d:0c:9e:61:e8:4e:11:85:8a:36:22:32:b2:c3:50:7a: 32:39:a7:02:c9:ec:ae:03:41:04:37:03:e0:76:5b:7d:74:6a: ee:d8:24:d4:ed:8c:fb:10:db:0d:b9:de:61:51:da:d3:7f:4f: 86:81:c1:63:9c:cd:6d:0e:9e:76:ed:ed:e9:8c:bc:50:84:70: 02:80:d4:4f:c9:07:ce:ab:ab:4a:42:fc:71:e3:27:3f:19:a1: 1e:3f:b2:b8:d5:b9:66:b4:cc:83:7d:03:34:4a:03:a2:d5:a1: 59:f7:64:66:7b:83:e1:a8:e3:86:62:37:42:1f:25:7f:0e:cb: 00:a4:cd:df:6e:43:70:16:f7:99:4a:4a:58:fd:0d:da:99:71: 2f:39:81:d6:d3:94:e8:71:80:01:f8:8f:43:9b:c3:a0:1d:1e: d2:19:a9:19 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XSH1oIE0F3a3RFvEunqZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4 YWFlN2IwHhcNMjYwMTAyMDYyMDE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MWEwOGQxMTE5YzljNWY0YzZhMmU2NGQzM2U2NjFhZDkzMTlkYzM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspXWk8S1mN/qOP27LsLEo2yZVdPl nhjfdzUiZgPYwAf0E1Pgw7FARmoEN2fAWJbvoZaoS2u+rx1HVfV6W1c1U/Vi2mDx OSMb5vjYlfIa/k9aWSY3RsM1kEAkfjcKbaxeMYeaVn26jV+G3xEfYf2foQftIso/ Vuo0OP5Hueb7QKTv4HnT2RO5m3ncp23RrgJrYehERFLnwtE6qUOVkPsqKeZYTT9X oh808UbVum9jqctEKM68FqZpoiNFlCsedE58YtQsh3ocvESsYzkvNhQ1ugn0DAQe yNHRPcPtGd7f9jQpFvAZAGVyW7Yq4nm3MfN9ggW4jZhCBNEZmrMgB/nsyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFHGgjREZycX0xqLmTTPmYa2TGdw5MB8GA1UdIwQY MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt MjkyYWU0NmU2MzAyLzEvY2FDTkVSbkp4ZlRHb3VaTk0tWmhyWk1aM0RrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALmvvMA0G CSqGSIb3DQEBCwUAA4IBAQA4tdJUTdrSBy5OF20nYmi7WHiBFkucVcYedw3r3d+L REtoTsYdZIjCXmAAEbaZcP+TZnh/FS2yXgFBDDXJY72+j0y6+3I4Ufue/nlo7VkB KefE/1cINYU+Mm0q4Q0MnmHoThGFijYiMrLDUHoyOacCyeyuA0EENwPgdlt9dGru 2CTU7Yz7ENsNud5hUdrTf0+GgcFjnM1tDp527e3pjLxQhHACgNRPyQfOq6tKQvxx 4yc/GaEeP7K41blmtMyDfQM0SgOi1aFZ92Rme4PhqOOGYjdCHyV/DssApM3fbkNw FveZSkpY/Q3amXEvOYHW05TocYAB+I9Dm8OgHR7SGakZ -----END CERTIFICATE-----Generated at Sun Jan 25 16:53:46 2026 by rpki-client