This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/ioM3AXpUis9J40gGub2U9jhjnqY.roa File: ioM3AXpUis9J40gGub2U9jhjnqY.roa (raw, json) Hash identifier: FQpQflORWZoeyUv7a6WExDaKoi/29z9/D4oDeFDhbQc= Subject key identifier: 8A:83:37:01:7A:54:8A:CF:49:E3:48:06:B9:BD:94:F6:38:63:9E:A6 Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e Certificate serial: 019B7EA6D8C08E722639C260076E7DDBA2B6 Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/ioM3AXpUis9J40gGub2U9jhjnqY.roa Signing time: Fri 02 Jan 2026 12:20:22 +0000 ROA not before: Fri 02 Jan 2026 12:20:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201384 IP address blocks: 85.91.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.mft rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:d8:c0:8e:72:26:39:c2:60:07:6e:7d:db:a2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e Validity Not Before: Jan 2 12:20:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a8337017a548acf49e34806b9bd94f638639ea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e7:c3:59:d4:48:8e:59:15:24:62:11:71:c8: 45:cc:d3:fb:65:f1:98:c1:e4:60:40:b1:a1:16:db: 39:94:4e:46:f9:74:e7:a4:5b:ca:8a:9f:9b:8f:b9: 24:a6:75:0a:6b:2c:ce:66:b1:94:8d:cd:01:0b:ab: 13:bb:28:9a:99:64:65:4c:f9:67:1e:55:35:54:6f: 82:14:c9:d0:46:51:fa:49:6e:e3:95:d8:3d:92:d5: 53:e0:87:1a:41:ef:80:e1:bf:92:8c:29:7c:b1:0c: ae:1d:28:56:92:bd:36:fc:63:4a:c3:08:35:0c:0a: 2b:f3:bf:74:70:e9:10:9d:70:33:11:4e:1f:7a:87: bc:33:10:5f:94:00:c1:5d:b3:68:43:bd:a8:1d:6a: c2:72:89:33:a2:eb:d9:a1:2b:d8:0f:eb:57:18:97: d3:d5:03:e3:8b:ae:da:fc:ac:db:eb:bb:e8:62:0a: 30:0e:28:22:77:7b:ba:a7:26:82:ff:8f:7b:43:df: 54:e0:a9:ea:12:3a:64:75:d5:d7:7a:90:1e:40:da: ac:91:4b:9c:3f:dd:b3:23:64:92:6f:0e:90:c9:de: 45:3f:36:73:ce:df:f0:aa:97:7c:87:ef:f0:b1:dc: 0e:17:08:90:3c:ba:56:22:bd:96:25:91:63:aa:0b: c9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:83:37:01:7A:54:8A:CF:49:E3:48:06:B9:BD:94:F6:38:63:9E:A6 X509v3 Authority Key Identifier: keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/ioM3AXpUis9J40gGub2U9jhjnqY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.91.107.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:07:c7:45:61:77:50:5e:68:0b:d3:8b:51:61:72:e2:73:f6: 50:3f:ae:09:47:3d:89:a5:a4:81:db:ce:6c:24:8f:1f:ac:34: 05:ae:8e:a2:11:f1:ad:81:a3:86:6e:22:2b:1b:7c:cb:48:ff: b1:38:a9:ac:31:7d:ae:ad:d8:40:a3:44:9b:08:73:44:5f:35: c3:19:97:94:05:3e:47:85:a1:f2:fa:9e:10:b3:08:a7:52:43: 94:b9:88:fd:f1:89:b0:13:67:01:b2:57:7a:07:50:43:52:e2: cf:6f:31:07:e0:9f:8b:4f:95:0d:c5:cd:e9:53:75:04:a2:58: c2:9a:8f:90:52:39:d0:2f:7a:a1:b5:31:51:4d:13:bc:a5:c0: cf:ba:20:80:1e:02:59:12:56:19:48:11:56:2d:05:50:84:dd: a3:dc:dd:51:6d:7a:aa:82:8a:43:15:1a:ac:5f:4f:7e:50:bb: ef:8e:87:d7:f1:88:2c:49:3c:a7:fc:de:7f:5b:bd:07:27:4b: 2d:cb:4c:cf:d8:87:83:ef:92:11:0c:33:6d:39:1c:47:6d:ec: dc:da:b9:78:3a:57:3f:de:4b:8b:1c:45:9f:93:07:c3:63:7e: 2c:ac:27:84:68:e9:ec:dc:2d:96:fa:2e:34:30:80:f1:cc:19: 3c:72:c6:57 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+ptjAjnImOcJgB25926K2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5ZGQ1NDI3ODE4NTFjMGJjZTVhM2VhNWNjMzg3NjUwZmZj ODI3N2UwHhcNMjYwMTAyMTIyMDIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTgzMzcwMTdhNTQ4YWNmNDllMzQ4MDZiOWJkOTRmNjM4NjM5ZWE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnefDWdRIjlkVJGIRcchFzNP7ZfGY weRgQLGhFts5lE5G+XTnpFvKip+bj7kkpnUKayzOZrGUjc0BC6sTuyiamWRlTPln HlU1VG+CFMnQRlH6SW7jldg9ktVT4IcaQe+A4b+SjCl8sQyuHShWkr02/GNKwwg1 DAor8790cOkQnXAzEU4feoe8MxBflADBXbNoQ72oHWrCcokzouvZoSvYD+tXGJfT 1QPji67a/Kzb67voYgowDigid3u6pyaC/497Q99U4KnqEjpkddXXepAeQNqskUuc P92zI2SSbw6Qyd5FPzZzzt/wqpd8h+/wsdwOFwiQPLpWIr2WJZFjqgvJQQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIqDNwF6VIrPSeNIBrm9lPY4Y56mMB8GA1UdIwQY MBaAFFndVCeBhRwLzlo+pcw4dlD/yCd+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2QxVUo0R0ZIQXZPV2o2bHpEaDJVUF9JSjM0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83OWM0YmEtMzhlMi00ZjVhLTk1OWYt NDdlMDkzNzk4OWE4LzEvaW9NM0FYcFVpczlKNDBnR3ViMlU5amhqbnFZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi83OWM0YmEtMzhlMi00ZjVhLTk1OWYtNDdlMDkzNzk4OWE4 LzEvV2QxVUo0R0ZIQXZPV2o2bHpEaDJVUF9JSjM0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVVtrMA0G CSqGSIb3DQEBCwUAA4IBAQAuB8dFYXdQXmgL04tRYXLic/ZQP64JRz2JpaSB285s JI8frDQFro6iEfGtgaOGbiIrG3zLSP+xOKmsMX2urdhAo0SbCHNEXzXDGZeUBT5H haHy+p4QswinUkOUuYj98YmwE2cBsld6B1BDUuLPbzEH4J+LT5UNxc3pU3UEoljC mo+QUjnQL3qhtTFRTRO8pcDPuiCAHgJZElYZSBFWLQVQhN2j3N1RbXqqgopDFRqs X09+ULvvjofX8YgsSTyn/N5/W70HJ0sty0zP2IeD75IRDDNtORxHbezc2rl4Olc/ 3kuLHEWfkwfDY34srCeEaOns3C2W+i40MIDxzBk8csZX -----END CERTIFICATE-----Generated at Mon Jan 26 02:07:36 2026 by rpki-client