This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/66oKCeZmxhYZleF-nz2dp37CANI.roa File: 66oKCeZmxhYZleF-nz2dp37CANI.roa (raw, json) Hash identifier: GwEbPuZy/fo8PDLHTI1dlwBVwp5KQqYAY6VEbS9kuE8= Subject key identifier: EB:AA:0A:09:E6:66:C6:16:19:95:E1:7E:9F:3D:9D:A7:7E:C2:00:D2 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B783476B66E153BE6B6D9FF35AD269B8F Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/66oKCeZmxhYZleF-nz2dp37CANI.roa Signing time: Thu 01 Jan 2026 06:17:42 +0000 ROA not before: Thu 01 Jan 2026 06:17:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198568 IP address blocks: 193.235.148.0/22 maxlen: 22 194.132.5.0/24 maxlen: 24 194.132.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:76:b6:6e:15:3b:e6:b6:d9:ff:35:ad:26:9b:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ebaa0a09e666c6161995e17e9f3d9da77ec200d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7d:ff:c3:b4:83:0e:bb:79:ae:c7:f1:04:25: b7:b1:ad:df:ca:53:8b:11:a1:e5:0c:a3:2b:03:dc: 45:29:87:0b:ef:df:52:f2:ee:20:2e:f2:e9:2f:75: ed:74:2f:2e:61:a2:8d:67:77:ce:12:57:96:3f:04: 70:6d:27:ec:b7:9a:2d:d7:2b:79:b5:96:f2:52:c5: a0:e2:e3:f9:bf:9d:bd:54:7b:db:26:b8:63:d3:7e: 75:62:9e:c6:e1:f1:bf:2f:8e:6b:f4:cf:39:2d:4a: 31:64:fe:64:d5:d7:23:e6:84:38:f9:69:54:7a:a9: a2:75:ca:e3:eb:99:7b:cc:ed:e5:51:4c:03:6e:e8: 1c:4c:18:73:9d:1a:24:1a:c3:78:2e:28:4a:a3:29: 82:ea:90:94:2a:21:58:10:37:06:14:d6:c6:08:cc: e5:c5:8e:92:78:4c:ea:75:ba:21:c3:a0:b8:bd:19: b1:32:10:9c:7b:2c:81:eb:bb:75:c9:b2:1f:5a:dc: b2:21:e1:8a:68:a9:90:8f:f1:57:87:13:7c:79:98: 39:2c:fe:8d:55:7e:33:a0:b0:28:35:33:2a:80:28: bf:a7:43:92:86:d4:2e:69:b1:4c:53:24:80:e1:92: 4b:0d:a1:26:4c:c3:9f:54:a0:6c:0d:45:fd:a3:c5: 5e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:AA:0A:09:E6:66:C6:16:19:95:E1:7E:9F:3D:9D:A7:7E:C2:00:D2 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/66oKCeZmxhYZleF-nz2dp37CANI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.235.148.0/22 194.132.5.0-194.132.6.255 Signature Algorithm: sha256WithRSAEncryption c0:d8:a6:3e:96:9b:ac:6a:50:78:8e:3e:e9:e1:bd:84:0f:08: c3:42:ae:c6:ca:e0:ed:92:e3:9b:e3:71:42:36:83:14:20:5b: 74:98:0b:65:e2:c5:6f:f4:c7:4d:73:37:aa:dd:c4:13:f8:3b: 95:ac:24:7f:de:a0:91:fd:c0:01:37:c9:be:5f:cf:70:c9:42: ac:b4:d4:47:40:7c:d5:1c:31:35:6b:1d:c4:67:b1:a1:2e:06: a2:ca:9e:d4:56:3c:30:4e:d1:16:68:1a:15:67:fa:d3:c6:b1: 39:eb:58:ac:d9:19:8f:e6:c3:f9:4e:4b:a6:4d:bf:98:8b:6e: 24:cd:58:a2:0b:d1:de:ff:65:35:02:ec:ad:4b:e3:80:ba:e7: d9:5d:cd:d1:2d:79:d7:98:1f:38:15:06:b6:bc:6e:99:55:90: d8:4e:05:eb:e4:5e:bd:a4:5c:88:bb:57:2c:4b:67:f1:74:7b: b2:10:7e:43:63:96:fe:9c:35:85:4c:f3:a9:bf:f6:6b:49:23: d6:95:29:48:c2:0d:db:fb:bb:f5:90:d4:ff:fd:50:eb:79:69: c8:e2:ff:e7:18:5b:0d:ae:f3:1e:48:29:5e:64:c3:f3:37:08: 6a:4f:40:2e:6a:2f:1c:70:68:c6:7a:63:1f:81:07:7b:27:e4: e4:28:77:a3 -----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISAZt4NHa2bhU75rbZ/zWtJpuPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlYmFhMGEwOWU2NjZjNjE2MTk5NWUxN2U5ZjNkOWRhNzdlYzIwMGQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu33/w7SDDrt5rsfxBCW3sa3fylOL EaHlDKMrA9xFKYcL799S8u4gLvLpL3XtdC8uYaKNZ3fOEleWPwRwbSfst5ot1yt5 tZbyUsWg4uP5v529VHvbJrhj0351Yp7G4fG/L45r9M85LUoxZP5k1dcj5oQ4+WlU eqmidcrj65l7zO3lUUwDbugcTBhznRokGsN4LihKoymC6pCUKiFYEDcGFNbGCMzl xY6SeEzqdbohw6C4vRmxMhCceyyB67t1ybIfWtyyIeGKaKmQj/FXhxN8eZg5LP6N VX4zoLAoNTMqgCi/p0OShtQuabFMUySA4ZJLDaEmTMOfVKBsDUX9o8Ve3wIDAQAB o4ICFzCCAhMwHQYDVR0OBBYEFOuqCgnmZsYWGZXhfp89nad+wgDSMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvNjZvS0NlWm14aFlabGVGLW56MmRwMzdDQU5JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQCweuUMAwD BADChAUDBADChAYwDQYJKoZIhvcNAQELBQADggEBAMDYpj6Wm6xqUHiOPunhvYQP CMNCrsbK4O2S45vjcUI2gxQgW3SYC2XixW/0x01zN6rdxBP4O5WsJH/eoJH9wAE3 yb5fz3DJQqy01EdAfNUcMTVrHcRnsaEuBqLKntRWPDBO0RZoGhVn+tPGsTnrWKzZ GY/mw/lOS6ZNv5iLbiTNWKIL0d7/ZTUC7K1L44C659ldzdEtedeYHzgVBra8bplV kNhOBevkXr2kXIi7VyxLZ/F0e7IQfkNjlv6cNYVM86m/9mtJI9aVKUjCDdv7u/WQ 1P/9UOt5acji/+cYWw2u8x5IKV5kw/M3CGpPQC5qLxxwaMZ6Yx+BB3sn5OQod6M= -----END CERTIFICATE-----Generated at Sun Jan 25 16:35:33 2026 by rpki-client