This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/cbca0b-6453-494c-8727-57e08f61f2ec/1/SoEs2uq-Lqa7VWg8JFQCPgrt2eI.roa File: SoEs2uq-Lqa7VWg8JFQCPgrt2eI.roa (raw, json) Hash identifier: NiDI43uxk76Y1iaXH3S9JcI5gdDit0xy1S3yktJNiKA= Subject key identifier: 4A:81:2C:DA:EA:BE:2E:A6:BB:55:68:3C:24:54:02:3E:0A:ED:D9:E2 Certificate issuer: /CN=d2617d15db58fe3062d1badbe04d30c1949dd5ff Certificate serial: 019B7A5B1A15EF5C2664D750747269907AD5 Authority key identifier: D2:61:7D:15:DB:58:FE:30:62:D1:BA:DB:E0:4D:30:C1:94:9D:D5:FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mF9FdtY_jBi0brb4E0wwZSd1f8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/cbca0b-6453-494c-8727-57e08f61f2ec/1/SoEs2uq-Lqa7VWg8JFQCPgrt2eI.roa Signing time: Thu 01 Jan 2026 16:19:09 +0000 ROA not before: Thu 01 Jan 2026 16:19:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201542 IP address blocks: 185.71.92.0/24 maxlen: 24 185.71.93.0/24 maxlen: 24 185.71.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/cbca0b-6453-494c-8727-57e08f61f2ec/1/0mF9FdtY_jBi0brb4E0wwZSd1f8.crl rsync://rpki.ripe.net/repository/DEFAULT/cc/cbca0b-6453-494c-8727-57e08f61f2ec/1/0mF9FdtY_jBi0brb4E0wwZSd1f8.mft rsync://rpki.ripe.net/repository/DEFAULT/0mF9FdtY_jBi0brb4E0wwZSd1f8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:1a:15:ef:5c:26:64:d7:50:74:72:69:90:7a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2617d15db58fe3062d1badbe04d30c1949dd5ff Validity Not Before: Jan 1 16:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4a812cdaeabe2ea6bb55683c2454023e0aedd9e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2b:9f:01:aa:15:af:c5:0d:e5:6e:82:a9:08: 5d:a8:06:87:72:36:90:a4:20:84:df:6a:36:e2:93: b2:b6:ee:f7:7b:3d:01:4b:80:77:b5:1d:73:18:8a: 08:5c:ac:71:8e:a1:76:55:4b:a7:07:02:bd:f0:f5: f2:24:d8:93:34:66:92:db:5d:09:e2:e7:b5:89:7d: 12:44:1f:24:dd:ee:53:5d:0b:ae:8b:b0:a0:ed:17: 69:3a:c4:fb:48:ae:30:49:73:d6:c2:40:b2:68:55: 5c:6b:50:62:4b:94:2f:61:3c:79:4a:08:64:87:8b: 68:95:3c:f0:54:a6:99:20:b6:b9:0e:10:17:7d:16: 2a:5a:25:13:e1:cf:8a:8d:dc:6f:e2:42:86:f5:9f: ea:df:c7:de:15:91:44:ed:85:c6:68:78:f4:bf:5f: 39:14:25:3c:5d:69:79:e1:6e:52:01:1d:7a:68:e7: ad:a0:cd:03:ad:6a:ab:ff:a7:b0:38:78:aa:70:bb: c6:91:26:d0:fa:fe:d2:49:4e:20:43:0c:3c:b8:ee: 2f:55:7f:02:7f:1d:fb:09:d3:2f:60:02:08:b7:df: bf:26:58:a3:b6:99:9f:69:ef:69:b7:f1:7d:54:36: ae:ed:26:32:04:b3:2c:39:cd:fe:25:ad:e7:af:8d: 30:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:81:2C:DA:EA:BE:2E:A6:BB:55:68:3C:24:54:02:3E:0A:ED:D9:E2 X509v3 Authority Key Identifier: keyid:D2:61:7D:15:DB:58:FE:30:62:D1:BA:DB:E0:4D:30:C1:94:9D:D5:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mF9FdtY_jBi0brb4E0wwZSd1f8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/cbca0b-6453-494c-8727-57e08f61f2ec/1/SoEs2uq-Lqa7VWg8JFQCPgrt2eI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/cbca0b-6453-494c-8727-57e08f61f2ec/1/0mF9FdtY_jBi0brb4E0wwZSd1f8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.71.92.0/23 185.71.95.0/24 Signature Algorithm: sha256WithRSAEncryption bd:5e:2d:f1:9f:c3:4b:39:73:f1:08:6b:c4:93:60:e6:1d:a1: 3e:25:8a:cd:c8:81:2e:5a:22:1b:bf:58:b8:37:57:21:d0:ac: b3:e5:3c:bd:1c:1d:d7:19:c2:f6:13:b2:ae:8a:b0:cf:25:c8: b6:ce:5b:dc:3c:89:6d:8b:7f:4d:5a:a6:b5:96:58:95:cc:84: d8:8c:64:b7:2e:9e:03:e2:e9:67:18:90:50:fe:02:2f:72:0b: 07:cd:5d:37:e3:3a:49:a9:b1:fd:96:d3:53:f8:72:47:95:38: fe:e1:8d:b4:ee:e8:ba:42:1b:12:f6:13:15:63:7d:e3:03:ae: c5:54:89:7f:be:fd:07:72:16:c1:38:5d:ca:ef:20:eb:81:d3: 87:af:4f:cb:6c:31:04:45:18:89:49:05:88:21:78:41:ea:27: 37:64:35:f3:da:b6:ec:53:6a:26:83:32:63:4c:6f:8a:64:75: 36:42:9d:b0:04:e1:82:ed:c8:98:35:2c:ce:f8:12:6c:f7:a2: b4:bc:7b:e7:29:e5:3a:91:86:d9:47:9d:ba:b0:00:f9:db:c9: 41:d1:38:df:90:e4:de:c1:c5:7c:0a:3c:5a:f1:61:a2:f5:13: 49:b3:ab:44:c4:b4:1d:25:01:09:9a:2f:eb:d9:cd:89:7b:c6: 8d:df:7d:bf -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6WxoV71wmZNdQdHJpkHrVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQyNjE3ZDE1ZGI1OGZlMzA2MmQxYmFkYmUwNGQzMGMxOTQ5 ZGQ1ZmYwHhcNMjYwMTAxMTYxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YTgxMmNkYWVhYmUyZWE2YmI1NTY4M2MyNDU0MDIzZTBhZWRkOWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsiufAaoVr8UN5W6CqQhdqAaHcjaQ pCCE32o24pOytu73ez0BS4B3tR1zGIoIXKxxjqF2VUunBwK98PXyJNiTNGaS210J 4ue1iX0SRB8k3e5TXQuui7Cg7RdpOsT7SK4wSXPWwkCyaFVca1BiS5QvYTx5Sghk h4tolTzwVKaZILa5DhAXfRYqWiUT4c+Kjdxv4kKG9Z/q38feFZFE7YXGaHj0v185 FCU8XWl54W5SAR16aOetoM0DrWqr/6ewOHiqcLvGkSbQ+v7SSU4gQww8uO4vVX8C fx37CdMvYAIIt9+/Jlijtpmfae9pt/F9VDau7SYyBLMsOc3+Ja3nr40wYQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFEqBLNrqvi6mu1VoPCRUAj4K7dniMB8GA1UdIwQY MBaAFNJhfRXbWP4wYtG62+BNMMGUndX/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMG1GOUZkdFlfakJpMGJyYjRFMHd3WlNkMWY4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9jYmNhMGItNjQ1My00OTRjLTg3Mjct NTdlMDhmNjFmMmVjLzEvU29FczJ1cS1McWE3VldnOEpGUUNQZ3J0MmVJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYy9jYmNhMGItNjQ1My00OTRjLTg3MjctNTdlMDhmNjFmMmVj LzEvMG1GOUZkdFlfakJpMGJyYjRFMHd3WlNkMWY4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBuUdcAwQA uUdfMA0GCSqGSIb3DQEBCwUAA4IBAQC9Xi3xn8NLOXPxCGvEk2DmHaE+JYrNyIEu WiIbv1i4N1ch0Kyz5Ty9HB3XGcL2E7KuirDPJci2zlvcPIlti39NWqa1lliVzITY jGS3Lp4D4ulnGJBQ/gIvcgsHzV034zpJqbH9ltNT+HJHlTj+4Y207ui6QhsS9hMV Y33jA67FVIl/vv0HchbBOF3K7yDrgdOHr0/LbDEERRiJSQWIIXhB6ic3ZDXz2rbs U2omgzJjTG+KZHU2Qp2wBOGC7ciYNSzO+BJs96K0vHvnKeU6kYbZR526sAD528lB 0TjfkOTewcV8Cjxa8WGi9RNJs6tExLQdJQEJmi/r2c2Je8aN332/ -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:24 2026 by rpki-client