This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/CpimPmkE-jR--7sIkYQZv-v2cm4.roa File: CpimPmkE-jR--7sIkYQZv-v2cm4.roa (raw, json) Hash identifier: Lr9Rbjwb2DB0XCp2S5Jsl7Uqc7/Uu92ETbgJEXA52Ls= Subject key identifier: 0A:98:A6:3E:69:04:FA:34:7E:FB:BB:08:91:84:19:BF:EB:F6:72:6E Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B7834443405CDFF880B77CBAA2DAA7B8E Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/CpimPmkE-jR--7sIkYQZv-v2cm4.roa Signing time: Thu 01 Jan 2026 06:17:29 +0000 ROA not before: Thu 01 Jan 2026 06:17:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8280 IP address blocks: 192.71.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:44:34:05:cd:ff:88:0b:77:cb:aa:2d:aa:7b:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a98a63e6904fa347efbbb08918419bfebf6726e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0a:8c:18:8d:a7:3d:5c:60:d2:da:9e:6b:a4: 75:b3:61:c3:25:4f:6f:81:32:a2:b8:56:e7:d8:06: ff:3f:79:35:0c:ac:d6:6c:5d:63:e6:f8:79:ed:93: fe:bc:53:b2:49:8f:c1:8d:e8:e8:b2:c4:a1:0f:e0: c4:27:2d:99:94:88:76:f6:d6:88:9c:b6:ae:8c:cb: e5:1b:a3:03:95:c9:10:d5:22:c6:66:20:71:97:ad: 36:f8:3e:71:52:71:f9:b9:8c:b0:10:9b:de:cd:26: 5a:b1:6b:0e:f6:77:7f:da:ca:2a:72:7d:ae:3d:fe: e6:c3:0c:c4:b9:eb:aa:63:a4:7f:7d:ea:53:cf:be: ab:9d:64:f4:11:bf:56:88:57:54:de:de:f4:e6:45: 00:2f:39:d8:b2:e3:4a:ae:d1:82:f1:b9:39:68:73: 34:c7:89:2b:9d:bc:a3:12:3e:20:7a:f6:6c:96:ec: f8:20:24:85:9d:57:6e:01:43:cd:74:0a:e5:97:27: fd:33:41:89:1f:97:06:7e:8f:c5:e1:e4:e6:45:c2: dc:d3:f1:86:39:55:85:bc:50:fa:63:e5:03:18:59: f3:1a:9e:35:bd:c2:d7:e2:60:2e:14:01:d4:98:92: 26:e5:cf:0e:1a:ab:5e:a1:93:f4:7f:1b:15:b7:95: bd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:98:A6:3E:69:04:FA:34:7E:FB:BB:08:91:84:19:BF:EB:F6:72:6E X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/CpimPmkE-jR--7sIkYQZv-v2cm4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.71.166.0/24 Signature Algorithm: sha256WithRSAEncryption 26:97:74:d9:a5:86:1c:58:b2:9c:d5:cb:0b:87:2e:2d:5f:df: a3:41:f2:5c:19:c6:ea:0c:2c:84:53:80:f6:ce:e6:0f:87:03: 53:4e:3c:f7:14:c6:ed:3c:8e:7a:e0:3d:7e:28:18:5e:1a:fb: a4:75:5a:f6:fc:21:08:42:38:01:be:de:f2:74:7f:f0:d2:2f: 8a:1a:2f:ca:77:78:4b:7a:41:4d:6d:72:0c:c3:83:b0:e3:97: a5:c1:c7:e1:af:82:3f:aa:b4:41:0c:1c:8d:eb:bf:65:3b:46: 49:d4:ce:03:b0:7e:6e:1a:21:85:c5:2d:2f:de:1f:14:a3:8c: 81:31:d5:75:85:60:46:94:e7:e5:be:b8:ac:03:0a:df:bf:a3: 3e:f7:f7:53:37:e2:ef:15:1f:34:af:e7:c2:c3:5b:85:54:d7: 5d:4c:03:f8:dd:a6:01:34:d1:7f:f9:09:45:b4:26:bf:18:ca: ca:44:ec:07:55:f2:c0:b1:97:fa:9d:d9:45:59:25:59:e7:8d: 15:0d:a7:40:ce:70:e2:da:c1:09:0e:5b:29:94:71:de:04:5c: 7e:fd:46:46:e9:23:28:55:82:fd:4e:1a:35:25:c9:29:c6:4f: aa:ed:d2:b5:d0:d4:48:84:f7:2b:92:99:06:bd:5f:e8:f7:a3: 4e:46:42:be -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NEQ0Bc3/iAt3y6otqnuOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTk4YTYzZTY5MDRmYTM0N2VmYmJiMDg5MTg0MTliZmViZjY3MjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2wqMGI2nPVxg0tqea6R1s2HDJU9v gTKiuFbn2Ab/P3k1DKzWbF1j5vh57ZP+vFOySY/BjejossShD+DEJy2ZlIh29taI nLaujMvlG6MDlckQ1SLGZiBxl602+D5xUnH5uYywEJvezSZasWsO9nd/2soqcn2u Pf7mwwzEueuqY6R/fepTz76rnWT0Eb9WiFdU3t705kUALznYsuNKrtGC8bk5aHM0 x4krnbyjEj4gevZsluz4ICSFnVduAUPNdArllyf9M0GJH5cGfo/F4eTmRcLc0/GG OVWFvFD6Y+UDGFnzGp41vcLX4mAuFAHUmJIm5c8OGqteoZP0fxsVt5W9LQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAqYpj5pBPo0fvu7CJGEGb/r9nJuMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvQ3BpbVBta0UtalItLTdzSWtZUVp2LXYyY200LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwEemMA0G CSqGSIb3DQEBCwUAA4IBAQAml3TZpYYcWLKc1csLhy4tX9+jQfJcGcbqDCyEU4D2 zuYPhwNTTjz3FMbtPI564D1+KBheGvukdVr2/CEIQjgBvt7ydH/w0i+KGi/Kd3hL ekFNbXIMw4Ow45elwcfhr4I/qrRBDByN679lO0ZJ1M4DsH5uGiGFxS0v3h8Uo4yB MdV1hWBGlOflvrisAwrfv6M+9/dTN+LvFR80r+fCw1uFVNddTAP43aYBNNF/+QlF tCa/GMrKROwHVfLAsZf6ndlFWSVZ540VDadAznDi2sEJDlsplHHeBFx+/UZG6SMo VYL9Tho1Jckpxk+q7dK10NRIhPcrkpkGvV/o96NORkK+ -----END CERTIFICATE-----Generated at Sun Jan 25 09:04:51 2026 by rpki-client