This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/CyqM0bKo_ElRFFbv0AT5aDspxj8.roa File: CyqM0bKo_ElRFFbv0AT5aDspxj8.roa (raw, json) Hash identifier: QCCpwbYRSMOO3zc+/f/cjc8LG2FdpSD4/2ESkOJ9QkE= Subject key identifier: 0B:2A:8C:D1:B2:A8:FC:49:51:14:56:EF:D0:04:F9:68:3B:29:C6:3F Certificate issuer: /CN=1f810cc3fd228338d9b969725d95bb33c4e65a48 Certificate serial: 019B76EAB652765180C7085A803858BB7C4C Authority key identifier: 1F:81:0C:C3:FD:22:83:38:D9:B9:69:72:5D:95:BB:33:C4:E6:5A:48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H4EMw_0igzjZuWlyXZW7M8TmWkg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/CyqM0bKo_ElRFFbv0AT5aDspxj8.roa Signing time: Thu 01 Jan 2026 00:17:32 +0000 ROA not before: Thu 01 Jan 2026 00:17:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197327 IP address blocks: 176.120.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/H4EMw_0igzjZuWlyXZW7M8TmWkg.crl rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/H4EMw_0igzjZuWlyXZW7M8TmWkg.mft rsync://rpki.ripe.net/repository/DEFAULT/H4EMw_0igzjZuWlyXZW7M8TmWkg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:b6:52:76:51:80:c7:08:5a:80:38:58:bb:7c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f810cc3fd228338d9b969725d95bb33c4e65a48 Validity Not Before: Jan 1 00:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0b2a8cd1b2a8fc49511456efd004f9683b29c63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:08:ea:23:c5:84:34:54:4d:17:03:81:1a:12: 74:e5:bb:08:d4:9e:ef:c1:52:ab:69:f9:bf:76:4e: 9d:98:13:26:f2:ac:f2:12:2f:ca:3e:4b:66:e5:fc: 9c:dd:52:6e:47:41:9a:21:51:80:61:14:34:f4:f7: 63:f4:4f:7b:83:00:85:b9:9f:7e:b9:c8:96:8b:4c: 33:a2:76:a2:8d:e2:91:c2:5c:76:89:10:58:44:c5: cd:ea:71:e4:83:e9:e9:9f:10:65:0b:a1:e5:0f:42: 51:e8:44:a1:11:21:8a:c0:42:ef:a5:fd:f5:d6:30: cd:ca:02:1a:3b:68:78:b7:f1:f5:cf:ea:61:5b:43: c6:e9:46:70:23:b8:11:60:cd:ae:e7:24:29:af:e7: 3a:65:89:ef:fa:6f:b5:7a:b5:3c:c5:17:da:c4:b5: 33:e8:e7:8a:91:6b:29:30:7a:8c:d0:0e:5f:0c:a7: d8:93:02:f5:4d:97:43:48:27:89:b4:5e:6b:0c:5c: d0:0b:71:a2:13:3e:dd:48:66:a1:4e:18:75:f4:18: 0a:13:1d:85:78:58:9f:3e:60:a5:ec:a5:df:1b:27: a9:81:34:99:5b:9f:0e:33:93:d4:04:2b:4c:d6:e9: 28:e5:66:3a:bf:89:7e:28:5f:fe:ec:c0:66:17:ba: 75:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2A:8C:D1:B2:A8:FC:49:51:14:56:EF:D0:04:F9:68:3B:29:C6:3F X509v3 Authority Key Identifier: keyid:1F:81:0C:C3:FD:22:83:38:D9:B9:69:72:5D:95:BB:33:C4:E6:5A:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H4EMw_0igzjZuWlyXZW7M8TmWkg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/CyqM0bKo_ElRFFbv0AT5aDspxj8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/0f0927-c29b-4698-859e-f9c180ba4801/1/H4EMw_0igzjZuWlyXZW7M8TmWkg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.120.101.0/24 Signature Algorithm: sha256WithRSAEncryption bf:5a:1c:3b:6f:32:e7:5e:d8:a8:cc:d2:32:e2:29:bc:68:55: e1:25:f3:1b:f6:0a:bc:6f:83:e5:53:f8:5c:38:af:80:a1:78: 63:66:cb:96:d7:ca:69:8e:24:2c:3b:0a:0d:c8:94:79:94:7c: 35:d8:00:84:87:df:f2:10:16:fa:59:48:3d:c2:b2:a3:2f:1b: 18:fa:92:01:f1:cf:67:e3:de:c1:ba:78:58:05:89:62:b4:cb: db:48:cd:8e:13:34:1a:91:88:38:ab:10:1a:da:73:a8:8b:b8: 90:2e:38:97:5e:a9:f2:a8:1a:20:08:a7:74:23:f9:79:06:10: a6:37:d8:88:8a:e4:d7:81:f6:2b:be:3c:c6:05:74:1c:94:b7: 58:ea:24:d0:4b:97:71:33:14:35:32:a9:30:75:77:b6:ed:25: 6b:c9:e3:18:fa:c8:0f:e2:6e:a1:06:1b:3e:fe:88:c6:7c:9f: 85:c7:cb:2e:06:38:9b:2b:2e:39:66:74:5c:74:3e:95:e7:14: 8d:9a:ee:a0:d5:e9:63:1a:0c:5b:34:01:06:01:01:b4:37:5d: b9:2a:69:6b:1f:65:23:b7:d5:00:c3:7b:75:da:06:7c:af:12: 30:39:d9:14:a4:fe:c5:fc:bc:be:95:a7:a8:60:4d:35:3a:90: 54:22:1b:b0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt26rZSdlGAxwhagDhYu3xMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmODEwY2MzZmQyMjgzMzhkOWI5Njk3MjVkOTViYjMzYzRl NjVhNDgwHhcNMjYwMTAxMDAxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYjJhOGNkMWIyYThmYzQ5NTExNDU2ZWZkMDA0Zjk2ODNiMjljNjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnQjqI8WENFRNFwOBGhJ05bsI1J7v wVKrafm/dk6dmBMm8qzyEi/KPktm5fyc3VJuR0GaIVGAYRQ09Pdj9E97gwCFuZ9+ uciWi0wzonaijeKRwlx2iRBYRMXN6nHkg+npnxBlC6HlD0JR6EShESGKwELvpf31 1jDNygIaO2h4t/H1z+phW0PG6UZwI7gRYM2u5yQpr+c6ZYnv+m+1erU8xRfaxLUz 6OeKkWspMHqM0A5fDKfYkwL1TZdDSCeJtF5rDFzQC3GiEz7dSGahThh19BgKEx2F eFifPmCl7KXfGyepgTSZW58OM5PUBCtM1uko5WY6v4l+KF/+7MBmF7p1cwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFAsqjNGyqPxJURRW79AE+Wg7KcY/MB8GA1UdIwQY MBaAFB+BDMP9IoM42blpcl2VuzPE5lpIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDRFTXdfMGlnempadVdseVhaVzdNOFRtV2tnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8wZjA5MjctYzI5Yi00Njk4LTg1OWUt ZjljMTgwYmE0ODAxLzEvQ3lxTTBiS29fRWxSRkZidjBBVDVhRHNweGo4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOS8wZjA5MjctYzI5Yi00Njk4LTg1OWUtZjljMTgwYmE0ODAx LzEvSDRFTXdfMGlnempadVdseVhaVzdNOFRtV2tnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsHhlMA0G CSqGSIb3DQEBCwUAA4IBAQC/Whw7bzLnXtiozNIy4im8aFXhJfMb9gq8b4PlU/hc OK+AoXhjZsuW18ppjiQsOwoNyJR5lHw12ACEh9/yEBb6WUg9wrKjLxsY+pIB8c9n 497BunhYBYlitMvbSM2OEzQakYg4qxAa2nOoi7iQLjiXXqnyqBogCKd0I/l5BhCm N9iIiuTXgfYrvjzGBXQclLdY6iTQS5dxMxQ1MqkwdXe27SVryeMY+sgP4m6hBhs+ /ojGfJ+Fx8suBjibKy45ZnRcdD6V5xSNmu6g1eljGgxbNAEGAQG0N125KmlrH2Uj t9UAw3t12gZ8rxIwOdkUpP7F/Ly+laeoYE01OpBUIhuw -----END CERTIFICATE-----Generated at Sun Jan 25 23:32:53 2026 by rpki-client