This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/Cg11mEMdGGX2gyolcrSr748KIcU.roa File: Cg11mEMdGGX2gyolcrSr748KIcU.roa (raw, json) Hash identifier: 3V0vGiMqAxDPqLJrSN6i0B3NMieXTNHwKiI1k1AtqLg= Subject key identifier: 0A:0D:75:98:43:1D:18:65:F6:83:2A:25:72:B4:AB:EF:8F:0A:21:C5 Certificate issuer: /CN=60ceeb253845c6dca190d3616dba23f37d8b6397 Certificate serial: 019B7C11BA1BBB1611489CA10A6484E02847 Authority key identifier: 60:CE:EB:25:38:45:C6:DC:A1:90:D3:61:6D:BA:23:F3:7D:8B:63:97 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YM7rJThFxtyhkNNhbboj832LY5c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/Cg11mEMdGGX2gyolcrSr748KIcU.roa Signing time: Fri 02 Jan 2026 00:18:15 +0000 ROA not before: Fri 02 Jan 2026 00:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1836 IP address blocks: 185.38.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/YM7rJThFxtyhkNNhbboj832LY5c.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/YM7rJThFxtyhkNNhbboj832LY5c.mft rsync://rpki.ripe.net/repository/DEFAULT/YM7rJThFxtyhkNNhbboj832LY5c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 15:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:ba:1b:bb:16:11:48:9c:a1:0a:64:84:e0:28:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=60ceeb253845c6dca190d3616dba23f37d8b6397 Validity Not Before: Jan 2 00:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a0d7598431d1865f6832a2572b4abef8f0a21c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:83:3a:40:a0:8c:d1:30:06:8f:40:ea:fc:5b: 46:49:92:6a:a9:5f:4d:16:9c:36:0e:b2:0d:33:49: d1:42:80:ae:38:e2:45:92:1f:2f:b4:42:f8:76:95: 55:11:4b:40:65:ec:f1:a3:c8:3c:76:83:bf:ce:25: b3:87:c3:9a:c6:67:a3:c6:54:fe:6c:63:25:9d:5e: 0f:91:a7:bd:dd:f0:39:2f:d7:ec:ae:e8:5f:ef:f9: b3:ce:c7:45:3c:22:cf:b7:bb:22:54:94:46:b6:99: a9:cc:66:da:10:90:1a:31:05:ed:c2:aa:c1:cc:69: 98:29:86:9d:71:8c:a0:21:f9:fb:d2:de:a6:49:a0: c7:d1:f9:46:4c:32:d9:d6:3d:5f:07:40:83:24:a4: 60:91:69:48:a5:5e:4c:ec:2c:09:96:e3:40:96:19: e4:9c:e4:80:a7:5a:56:29:1e:2f:7f:fc:2c:9c:8c: 6a:08:43:84:c6:d8:34:dd:14:71:dc:6d:4f:34:8c: c6:0e:77:8f:85:57:c4:d0:72:62:a8:0f:27:1a:1e: 33:4d:74:a2:d9:7b:db:89:5a:ad:f8:71:99:e1:2d: 9f:95:e1:5c:e7:fa:e8:96:cc:e5:b8:c7:21:3d:e7: be:89:1b:98:76:aa:52:1d:99:9d:25:b0:2d:24:bf: 61:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0D:75:98:43:1D:18:65:F6:83:2A:25:72:B4:AB:EF:8F:0A:21:C5 X509v3 Authority Key Identifier: keyid:60:CE:EB:25:38:45:C6:DC:A1:90:D3:61:6D:BA:23:F3:7D:8B:63:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YM7rJThFxtyhkNNhbboj832LY5c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/Cg11mEMdGGX2gyolcrSr748KIcU.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/261514-a15d-4661-9c55-9f9322d6732b/1/YM7rJThFxtyhkNNhbboj832LY5c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.38.66.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:63:71:52:e5:b2:ea:fe:ed:16:37:21:1a:1d:31:05:34:f5: 6c:6d:2e:3f:b4:a8:f2:1f:1f:e8:35:89:58:be:5d:69:bd:68: a3:2b:b7:e3:80:cb:12:65:cc:8b:29:27:33:e1:be:f0:b3:24: 7c:35:c0:72:50:79:32:67:3b:fd:65:38:d6:67:96:ef:03:05: 36:c5:40:bc:bf:5a:36:09:7e:28:78:70:84:ac:96:d0:99:16: d6:13:89:fd:9c:5a:ea:62:5e:e2:35:c3:59:a8:7d:ff:dd:07: ca:68:b9:c1:02:80:c7:64:ad:70:9b:04:d8:7a:f5:6d:c3:8e: 28:f0:47:a6:d7:88:ee:ed:1b:2f:b5:ff:36:5d:75:be:37:0e: 77:78:b3:8d:17:9b:32:6c:fe:62:fd:e7:35:54:3f:af:c9:14: b0:24:12:2a:f0:29:d8:1a:6b:90:95:61:10:30:71:6e:19:b6: 1a:36:ef:b9:9c:67:aa:ea:6d:bb:d6:71:52:f6:92:a0:8e:d4: 4d:66:4c:35:fa:b9:e8:1b:e0:6d:e4:db:d3:0e:59:e7:c6:08: d8:0f:46:d5:45:a2:bd:b4:81:f4:0a:b9:d2:7a:c0:cf:b5:df: 37:30:1e:74:0d:85:f0:b8:3e:ef:a6:c7:89:5b:b8:27:c6:61: c8:dd:bf:e0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8EbobuxYRSJyhCmSE4ChHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwY2VlYjI1Mzg0NWM2ZGNhMTkwZDM2MTZkYmEyM2YzN2Q4 YjYzOTcwHhcNMjYwMTAyMDAxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTBkNzU5ODQzMWQxODY1ZjY4MzJhMjU3MmI0YWJlZjhmMGEyMWM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYM6QKCM0TAGj0Dq/FtGSZJqqV9N Fpw2DrINM0nRQoCuOOJFkh8vtEL4dpVVEUtAZezxo8g8doO/ziWzh8OaxmejxlT+ bGMlnV4Pkae93fA5L9fsruhf7/mzzsdFPCLPt7siVJRGtpmpzGbaEJAaMQXtwqrB zGmYKYadcYygIfn70t6mSaDH0flGTDLZ1j1fB0CDJKRgkWlIpV5M7CwJluNAlhnk nOSAp1pWKR4vf/wsnIxqCEOExtg03RRx3G1PNIzGDnePhVfE0HJiqA8nGh4zTXSi 2XvbiVqt+HGZ4S2fleFc5/rolszluMchPee+iRuYdqpSHZmdJbAtJL9hMQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAoNdZhDHRhl9oMqJXK0q++PCiHFMB8GA1UdIwQY MBaAFGDO6yU4RcbcoZDTYW26I/N9i2OXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWU03ckpUaEZ4dHloa05OaGJib2o4MzJMWTVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8yNjE1MTQtYTE1ZC00NjYxLTljNTUt OWY5MzIyZDY3MzJiLzEvQ2cxMW1FTWRHR1gyZ3lvbGNyU3I3NDhLSWNVLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8yNjE1MTQtYTE1ZC00NjYxLTljNTUtOWY5MzIyZDY3MzJi LzEvWU03ckpUaEZ4dHloa05OaGJib2o4MzJMWTVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSZCMA0G CSqGSIb3DQEBCwUAA4IBAQCMY3FS5bLq/u0WNyEaHTEFNPVsbS4/tKjyHx/oNYlY vl1pvWijK7fjgMsSZcyLKScz4b7wsyR8NcByUHkyZzv9ZTjWZ5bvAwU2xUC8v1o2 CX4oeHCErJbQmRbWE4n9nFrqYl7iNcNZqH3/3QfKaLnBAoDHZK1wmwTYevVtw44o 8Eem14ju7Rsvtf82XXW+Nw53eLONF5sybP5i/ec1VD+vyRSwJBIq8CnYGmuQlWEQ MHFuGbYaNu+5nGeq6m271nFS9pKgjtRNZkw1+rnoG+Bt5NvTDlnnxgjYD0bVRaK9 tIH0CrnSesDPtd83MB50DYXwuD7vpseJW7gnxmHI3b/g -----END CERTIFICATE-----Generated at Mon Jan 26 02:14:09 2026 by rpki-client