This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/rWOdIY7KF2aaCbYLRoO8X_9vhhg.roa File: rWOdIY7KF2aaCbYLRoO8X_9vhhg.roa (raw, json) Hash identifier: jQixs/++LL/sG6xvvrF6Pjngf83WmCHA4M8ILu4RIXQ= Subject key identifier: AD:63:9D:21:8E:CA:17:66:9A:09:B6:0B:46:83:BC:5F:FF:6F:86:18 Certificate issuer: /CN=9ca8a132519a242949497363b8caa33e72c673f8 Certificate serial: 019B7F847B753F566D622195727795C0BEA1 Authority key identifier: 9C:A8:A1:32:51:9A:24:29:49:49:73:63:B8:CA:A3:3E:72:C6:73:F8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nKihMlGaJClJSXNjuMqjPnLGc_g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/rWOdIY7KF2aaCbYLRoO8X_9vhhg.roa Signing time: Fri 02 Jan 2026 16:22:27 +0000 ROA not before: Fri 02 Jan 2026 16:22:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211820 IP address blocks: 157.180.214.0/24 maxlen: 24 157.180.215.0/24 maxlen: 24 194.45.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/nKihMlGaJClJSXNjuMqjPnLGc_g.crl rsync://rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/nKihMlGaJClJSXNjuMqjPnLGc_g.mft rsync://rpki.ripe.net/repository/DEFAULT/nKihMlGaJClJSXNjuMqjPnLGc_g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:7b:75:3f:56:6d:62:21:95:72:77:95:c0:be:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ca8a132519a242949497363b8caa33e72c673f8 Validity Not Before: Jan 2 16:22:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ad639d218eca17669a09b60b4683bc5fff6f8618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:63:cc:87:0a:52:39:dd:28:d8:65:4b:1a:03: 9e:5e:c3:31:f4:e8:4e:39:37:f5:07:6a:e5:bc:dd: 09:ff:b6:6a:3d:4b:c8:ac:39:07:f6:69:dc:11:6e: 3a:1e:97:7c:d3:12:7d:7c:ba:0d:ec:ef:fd:64:5d: bb:dc:b9:15:3a:ce:dc:b2:f2:e2:86:5e:9e:8e:c7: 13:90:ee:31:f1:67:b3:67:23:b5:c6:f1:4f:1b:46: 53:ca:82:df:fa:f2:9f:43:e2:8c:73:e0:3f:20:a9: 6b:6b:e6:2d:2d:c5:77:7b:a6:d5:19:63:db:68:5f: bf:4a:b9:66:08:87:a8:0d:11:89:e5:40:b7:19:15: 4a:1f:b9:f0:f6:12:63:99:b6:a2:24:c3:6e:5e:a5: 84:4e:17:d6:d8:e3:d4:24:c3:ab:8d:f4:23:76:23: f5:81:2d:01:66:55:41:33:4d:f1:c2:c8:63:1e:d5: 1c:dc:8a:bb:ac:bf:2f:d8:e8:a0:a1:2d:08:40:d0: 01:b1:e2:1d:a3:bd:08:99:d8:43:1c:17:42:99:70: 60:64:c1:91:2d:60:a4:01:8f:87:2f:5e:1d:77:b2: cf:f7:11:98:ae:e0:69:a7:d9:a1:47:cb:97:00:d9: 3f:ab:dc:05:2e:de:2c:71:03:ee:8e:65:60:c2:0e: 0e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:63:9D:21:8E:CA:17:66:9A:09:B6:0B:46:83:BC:5F:FF:6F:86:18 X509v3 Authority Key Identifier: keyid:9C:A8:A1:32:51:9A:24:29:49:49:73:63:B8:CA:A3:3E:72:C6:73:F8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nKihMlGaJClJSXNjuMqjPnLGc_g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/rWOdIY7KF2aaCbYLRoO8X_9vhhg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3e0e9a-51f3-49de-9d1b-00cd86af849d/1/nKihMlGaJClJSXNjuMqjPnLGc_g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.180.214.0/23 194.45.20.0/24 Signature Algorithm: sha256WithRSAEncryption 24:8a:8d:53:f6:b0:46:14:2d:0a:6f:8f:c7:d6:c1:36:f6:29: b3:29:a0:03:90:18:b2:23:e6:94:37:f1:9b:7f:9a:09:0e:45: 76:05:c3:92:99:72:8e:4a:23:e7:78:69:28:71:a4:20:b4:86: cf:82:00:dc:89:31:9b:41:c4:fd:26:92:6e:83:d2:7a:7d:49: aa:17:8b:32:40:74:c1:4c:c7:ae:28:8e:85:dd:19:71:87:bd: a1:5e:39:68:5f:8c:39:07:2e:25:08:b7:14:c6:84:ed:f8:5f: 37:01:54:49:56:10:4b:0e:8f:69:20:20:c1:f1:60:6f:22:0f: 7c:9f:ff:e0:84:dc:b4:f4:2b:1a:1b:c6:19:75:73:9a:05:7b: 1c:2f:3d:ac:a5:90:f4:88:90:b3:d2:4c:ce:1d:5b:8c:cc:75: 72:83:a9:be:03:1a:36:68:87:13:f3:8a:ad:c0:fa:5d:68:9c: f0:9a:f0:4a:a1:31:36:2b:aa:a9:d1:95:e3:3d:a3:cb:d5:e8: 39:66:35:af:0e:bc:b0:dd:b2:41:f0:65:44:40:de:61:59:83: 91:cc:8a:d2:9d:62:8a:13:91:f5:97:45:0c:98:55:5a:69:d8: 4f:07:35:8e:bf:24:af:20:0b:fe:dc:20:91:b4:d6:82:29:b5: c0:e1:be:fb -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt/hHt1P1ZtYiGVcneVwL6hMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljYThhMTMyNTE5YTI0Mjk0OTQ5NzM2M2I4Y2FhMzNlNzJj NjczZjgwHhcNMjYwMTAyMTYyMjI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZDYzOWQyMThlY2ExNzY2OWEwOWI2MGI0NjgzYmM1ZmZmNmY4NjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmPMhwpSOd0o2GVLGgOeXsMx9OhO OTf1B2rlvN0J/7ZqPUvIrDkH9mncEW46Hpd80xJ9fLoN7O/9ZF273LkVOs7csvLi hl6ejscTkO4x8WezZyO1xvFPG0ZTyoLf+vKfQ+KMc+A/IKlra+YtLcV3e6bVGWPb aF+/SrlmCIeoDRGJ5UC3GRVKH7nw9hJjmbaiJMNuXqWEThfW2OPUJMOrjfQjdiP1 gS0BZlVBM03xwshjHtUc3Iq7rL8v2OigoS0IQNABseIdo70ImdhDHBdCmXBgZMGR LWCkAY+HL14dd7LP9xGYruBpp9mhR8uXANk/q9wFLt4scQPujmVgwg4OZwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFK1jnSGOyhdmmgm2C0aDvF//b4YYMB8GA1UdIwQY MBaAFJyooTJRmiQpSUlzY7jKoz5yxnP4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbktpaE1sR2FKQ2xKU1hOanVNcWpQbkxHY19nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8zZTBlOWEtNTFmMy00OWRlLTlkMWIt MDBjZDg2YWY4NDlkLzEvcldPZElZN0tGMmFhQ2JZTFJvTzhYXzl2aGhnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMC8zZTBlOWEtNTFmMy00OWRlLTlkMWItMDBjZDg2YWY4NDlk LzEvbktpaE1sR2FKQ2xKU1hOanVNcWpQbkxHY19nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBnbTWAwQA wi0UMA0GCSqGSIb3DQEBCwUAA4IBAQAkio1T9rBGFC0Kb4/H1sE29imzKaADkBiy I+aUN/Gbf5oJDkV2BcOSmXKOSiPneGkocaQgtIbPggDciTGbQcT9JpJug9J6fUmq F4syQHTBTMeuKI6F3Rlxh72hXjloX4w5By4lCLcUxoTt+F83AVRJVhBLDo9pICDB 8WBvIg98n//ghNy09CsaG8YZdXOaBXscLz2spZD0iJCz0kzOHVuMzHVyg6m+Axo2 aIcT84qtwPpdaJzwmvBKoTE2K6qp0ZXjPaPL1eg5ZjWvDryw3bJB8GVEQN5hWYOR zIrSnWKKE5H1l0UMmFVaadhPBzWOvySvIAv+3CCRtNaCKbXA4b77 -----END CERTIFICATE-----Generated at Mon Jan 26 07:07:14 2026 by rpki-client