This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/0GQvydNnvltwCYU4Ip_UMWYTxxY.roa File: 0GQvydNnvltwCYU4Ip_UMWYTxxY.roa (raw, json) Hash identifier: LhV5AD4zlFaWyl3gf5xKjG4cuVjXMxEqjf7rizI3yyc= Subject key identifier: D0:64:2F:C9:D3:67:BE:5B:70:09:85:38:22:9F:D4:31:66:13:C7:16 Certificate issuer: /CN=c41c7221ede3af5ee92e3206af2f18bd010d5dd9 Certificate serial: 019B76EB0C68CD7FF2E79D98F5C4CBB6C72D Authority key identifier: C4:1C:72:21:ED:E3:AF:5E:E9:2E:32:06:AF:2F:18:BD:01:0D:5D:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBxyIe3jr17pLjIGry8YvQENXdk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/0GQvydNnvltwCYU4Ip_UMWYTxxY.roa Signing time: Thu 01 Jan 2026 00:17:54 +0000 ROA not before: Thu 01 Jan 2026 00:17:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 199234 IP address blocks: 37.131.161.0/24 maxlen: 24 37.131.162.0/23 maxlen: 23 37.131.166.0/24 maxlen: 24 37.131.167.0/24 maxlen: 24 37.131.170.0/23 maxlen: 23 37.131.172.0/22 maxlen: 22 2a00:10a0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/xBxyIe3jr17pLjIGry8YvQENXdk.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/xBxyIe3jr17pLjIGry8YvQENXdk.mft rsync://rpki.ripe.net/repository/DEFAULT/xBxyIe3jr17pLjIGry8YvQENXdk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:0c:68:cd:7f:f2:e7:9d:98:f5:c4:cb:b6:c7:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c41c7221ede3af5ee92e3206af2f18bd010d5dd9 Validity Not Before: Jan 1 00:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d0642fc9d367be5b70098538229fd4316613c716 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:73:17:18:92:c4:b9:a2:db:f8:15:b2:bd:8f: 3f:59:c9:05:8b:5c:95:3f:d0:a0:11:ce:6e:dd:2e: e3:83:12:69:37:95:84:d9:06:66:f4:d4:94:47:56: bf:39:0e:49:3a:50:89:0b:28:03:2a:d9:f5:df:5f: 17:88:f3:5c:39:b1:01:f3:74:1f:0e:32:91:40:5a: 4a:2a:c0:bc:7f:b6:79:ca:9f:33:3b:ec:02:0e:9e: b3:d1:99:78:cb:2c:26:1f:04:4f:94:37:a0:df:03: 9e:81:db:0e:ab:9e:26:de:4b:db:95:3b:55:ff:42: 1b:cf:8b:9b:cf:0d:7d:8b:95:28:1d:32:b5:05:a0: 7e:b4:f2:b1:92:cc:2c:e0:45:ce:ac:9f:5e:8a:43: db:0d:bb:da:22:66:c3:06:d7:01:0e:1e:18:23:d1: ef:06:a3:e9:51:4e:e3:f3:d8:b7:67:5d:1c:e4:e1: 09:99:63:23:47:2c:1a:57:b0:41:e7:5d:c5:1a:d4: 73:fc:70:ba:2e:4e:a3:f4:9a:ce:41:1a:9f:83:79: ed:23:7a:d7:30:ba:7c:6c:f2:db:d0:48:f0:8b:7f: ff:bf:24:09:67:2a:9d:3c:f8:73:33:0a:4e:1b:c9: fa:25:42:6b:19:c4:41:48:b7:90:0d:69:61:a8:2b: e0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:64:2F:C9:D3:67:BE:5B:70:09:85:38:22:9F:D4:31:66:13:C7:16 X509v3 Authority Key Identifier: keyid:C4:1C:72:21:ED:E3:AF:5E:E9:2E:32:06:AF:2F:18:BD:01:0D:5D:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBxyIe3jr17pLjIGry8YvQENXdk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/0GQvydNnvltwCYU4Ip_UMWYTxxY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e99b35-8cf6-4934-a591-9930f2194a0e/1/xBxyIe3jr17pLjIGry8YvQENXdk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.131.161.0-37.131.163.255 37.131.166.0/23 37.131.170.0-37.131.175.255 IPv6: 2a00:10a0:6::/48 Signature Algorithm: sha256WithRSAEncryption 38:4f:e7:bb:d8:de:a1:a9:a0:d8:2b:11:3f:ee:9f:e6:8c:bf: df:a3:b9:1d:d1:d3:64:0d:86:be:33:70:ab:2c:a5:ff:2d:29: 61:78:ac:24:1e:04:e7:e4:2b:61:d7:5f:fe:cc:86:ac:47:41: f8:9b:66:16:74:74:f2:bb:c0:6a:be:c7:d3:93:f7:c6:f5:72: ed:b6:b8:f2:34:3f:c3:ff:df:e2:2c:19:17:f9:b4:69:f4:cd: 78:74:5b:4f:70:34:6e:6e:18:29:cc:e3:98:da:57:7c:93:0f: 6f:ad:3a:f7:3b:f4:aa:14:44:0b:5a:06:7c:9d:60:bd:10:c6: 82:5d:38:1a:ce:33:74:8c:cc:8f:40:b6:ca:87:bf:a7:cf:11: 83:a1:66:56:a5:62:d8:49:c7:47:40:b7:a5:26:fc:9b:3d:e7: 07:47:e1:97:30:55:71:46:78:e1:16:7d:34:3a:16:07:b4:07: 1d:c7:4f:31:69:20:a1:d7:74:11:81:76:e6:96:62:f3:ef:c5: 9d:a6:b7:9f:f6:ad:da:51:f9:e3:1c:6b:9d:e8:b4:e6:9e:98: 45:04:1c:b5:93:64:e0:8a:54:68:dc:e0:d6:94:41:2c:46:dc: f7:97:60:a8:27:a7:b7:13:9a:8d:fe:cd:3e:48:f1:47:e8:5f: 66:a8:b5:de -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt26wxozX/y552Y9cTLtsctMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM0MWM3MjIxZWRlM2FmNWVlOTJlMzIwNmFmMmYxOGJkMDEw ZDVkZDkwHhcNMjYwMTAxMDAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMDY0MmZjOWQzNjdiZTViNzAwOTg1MzgyMjlmZDQzMTY2MTNjNzE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4nMXGJLEuaLb+BWyvY8/WckFi1yV P9CgEc5u3S7jgxJpN5WE2QZm9NSUR1a/OQ5JOlCJCygDKtn1318XiPNcObEB83Qf DjKRQFpKKsC8f7Z5yp8zO+wCDp6z0Zl4yywmHwRPlDeg3wOegdsOq54m3kvblTtV /0Ibz4ubzw19i5UoHTK1BaB+tPKxksws4EXOrJ9eikPbDbvaImbDBtcBDh4YI9Hv BqPpUU7j89i3Z10c5OEJmWMjRywaV7BB513FGtRz/HC6Lk6j9JrOQRqfg3ntI3rX MLp8bPLb0Ejwi3//vyQJZyqdPPhzMwpOG8n6JUJrGcRBSLeQDWlhqCvgCQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFNBkL8nTZ75bcAmFOCKf1DFmE8cWMB8GA1UdIwQY MBaAFMQcciHt469e6S4yBq8vGL0BDV3ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveEJ4eUllM2pyMTdwTGpJR3J5OFl2UUVOWGRrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9lOTliMzUtOGNmNi00OTM0LWE1OTEt OTkzMGYyMTk0YTBlLzEvMEdRdnlkTm52bHR3Q1lVNElwX1VNV1lUeHhZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9lOTliMzUtOGNmNi00OTM0LWE1OTEtOTkzMGYyMTk0YTBl LzEveEJ4eUllM2pyMTdwTGpJR3J5OFl2UUVOWGRrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAoBAIAATAiMAwDBAAlg6ED BAIlg6ADBAElg6YwDAMEASWDqgMEBCWDoDAPBAIAAjAJAwcAKgAQoAAGMA0GCSqG SIb3DQEBCwUAA4IBAQA4T+e72N6hqaDYKxE/7p/mjL/fo7kd0dNkDYa+M3CrLKX/ LSlheKwkHgTn5Cth11/+zIasR0H4m2YWdHTyu8BqvsfTk/fG9XLttrjyND/D/9/i LBkX+bRp9M14dFtPcDRubhgpzOOY2ld8kw9vrTr3O/SqFEQLWgZ8nWC9EMaCXTga zjN0jMyPQLbKh7+nzxGDoWZWpWLYScdHQLelJvybPecHR+GXMFVxRnjhFn00OhYH tAcdx08xaSCh13QRgXbmlmLz78Wdpref9q3aUfnjHGud6LTmnphFBBy1k2TgilRo 3ODWlEEsRtz3l2CoJ6e3E5qN/s0+SPFH6F9mqLXe -----END CERTIFICATE-----Generated at Mon Jan 26 02:07:17 2026 by rpki-client