This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/40a102-efcd-4fd2-9373-d06aa518aa6d/1/INyi55Cem-fKRbCyhWoBxset2V8.roa File: INyi55Cem-fKRbCyhWoBxset2V8.roa (raw, json) Hash identifier: ewguotn20Zrkv6k2+CkZNOeCi50wOffr5aj3RIiSuA0= Subject key identifier: 20:DC:A2:E7:90:9E:9B:E7:CA:45:B0:B2:85:6A:01:C6:C7:AD:D9:5F Certificate issuer: /CN=9599b3e782370dc2814f525c1d6ece84d8f70f36 Certificate serial: 019B7E38479499DF8841263D448B51985585 Authority key identifier: 95:99:B3:E7:82:37:0D:C2:81:4F:52:5C:1D:6E:CE:84:D8:F7:0F:36 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lZmz54I3DcKBT1JcHW7OhNj3DzY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/40a102-efcd-4fd2-9373-d06aa518aa6d/1/INyi55Cem-fKRbCyhWoBxset2V8.roa Signing time: Fri 02 Jan 2026 10:19:36 +0000 ROA not before: Fri 02 Jan 2026 10:19:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47527 IP address blocks: 185.226.20.0/24 maxlen: 24 185.226.21.0/24 maxlen: 24 2a0d:dc00::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/40a102-efcd-4fd2-9373-d06aa518aa6d/1/lZmz54I3DcKBT1JcHW7OhNj3DzY.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/40a102-efcd-4fd2-9373-d06aa518aa6d/1/lZmz54I3DcKBT1JcHW7OhNj3DzY.mft rsync://rpki.ripe.net/repository/DEFAULT/lZmz54I3DcKBT1JcHW7OhNj3DzY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:47:94:99:df:88:41:26:3d:44:8b:51:98:55:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9599b3e782370dc2814f525c1d6ece84d8f70f36 Validity Not Before: Jan 2 10:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20dca2e7909e9be7ca45b0b2856a01c6c7add95f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6e:7a:50:46:e2:c7:9a:b7:74:11:c8:cb:06: 1b:9b:41:be:0a:58:27:eb:c0:3a:99:50:04:2c:b7: af:4b:a8:a2:c0:39:37:16:50:41:6c:61:09:65:11: b4:29:9f:18:80:e9:07:20:56:20:8d:c8:ea:73:e0: 8c:15:24:9c:57:b7:b3:69:fb:2f:8e:3d:4f:06:7c: 35:e8:fa:4d:64:23:ed:86:cf:48:84:5d:0d:60:08: 2e:75:61:60:f4:be:be:68:bf:07:1c:82:04:48:ba: 65:4f:97:b2:33:a2:f0:5f:1f:35:67:d1:70:02:31: 0f:73:53:7a:9f:69:c2:ea:78:98:9e:e7:a1:2f:fc: 1f:56:c0:ca:9a:c6:d7:12:39:04:d0:f2:8b:b1:10: 84:95:40:27:a3:56:b3:44:e9:2d:79:01:5d:60:97: b3:eb:ca:ae:cf:43:eb:b4:f0:bc:e3:ae:32:e9:a2: 5d:03:c7:e0:98:6f:dc:15:1f:bd:74:1f:07:2c:97: a9:ff:4c:c5:01:76:47:a0:3d:e5:64:95:de:f6:65: 59:1f:0b:97:08:92:f6:9d:53:d8:f1:9a:d2:d1:99: 9b:91:3b:13:c4:ef:cd:d9:e9:d6:59:19:b7:05:e2: 3d:b4:d6:19:71:dd:21:e4:ec:74:b3:97:4d:4b:db: be:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DC:A2:E7:90:9E:9B:E7:CA:45:B0:B2:85:6A:01:C6:C7:AD:D9:5F X509v3 Authority Key Identifier: keyid:95:99:B3:E7:82:37:0D:C2:81:4F:52:5C:1D:6E:CE:84:D8:F7:0F:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lZmz54I3DcKBT1JcHW7OhNj3DzY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/40a102-efcd-4fd2-9373-d06aa518aa6d/1/INyi55Cem-fKRbCyhWoBxset2V8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/40a102-efcd-4fd2-9373-d06aa518aa6d/1/lZmz54I3DcKBT1JcHW7OhNj3DzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.226.20.0/23 IPv6: 2a0d:dc00::/29 Signature Algorithm: sha256WithRSAEncryption 4d:4d:b4:21:8b:16:3d:72:c4:1b:d0:30:af:1d:97:19:3c:04: dc:d1:17:35:f0:8a:e6:56:84:4b:26:07:a9:c8:b3:87:a8:03: 9c:32:a4:21:f2:8f:da:b5:a9:37:5f:ce:e0:23:66:fa:f7:e9: 52:de:b4:7d:7e:e1:1d:f1:19:5a:f7:18:d9:f0:54:cc:9f:56: c0:71:54:70:09:7c:25:92:f7:98:e6:c2:8d:76:dc:10:e0:57: 39:b6:24:26:c4:d7:ae:3b:e9:67:c2:b5:fd:5c:5a:d0:a9:71: fd:eb:4a:bd:f9:7d:a1:bb:e2:4f:7a:e9:20:96:b6:7e:5a:fd: 2c:aa:ca:ea:d9:85:b3:df:60:c7:89:54:5f:56:90:14:be:f7: 49:b1:8b:38:ab:88:60:7d:a6:ec:95:25:04:d6:0a:85:13:23: a8:c0:64:6d:45:eb:80:c6:92:61:40:f6:e7:2a:de:cf:bc:b0: bb:5a:a5:d0:9e:8e:71:d0:8a:53:7c:70:be:32:4e:6f:92:fe: 4f:a1:26:be:c9:ae:15:79:7a:2e:49:63:f6:c8:2b:bf:ea:5d: c2:03:bf:c2:69:a2:e6:5c:24:35:c0:4a:89:9f:48:4b:0f:72: 65:a0:13:c3:aa:c8:6c:f9:ea:b8:1c:ce:01:62:df:55:54:3c: 31:f5:9b:2e -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt+OEeUmd+IQSY9RItRmFWFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk1OTliM2U3ODIzNzBkYzI4MTRmNTI1YzFkNmVjZTg0ZDhm NzBmMzYwHhcNMjYwMTAyMTAxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGRjYTJlNzkwOWU5YmU3Y2E0NWIwYjI4NTZhMDFjNmM3YWRkOTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz256UEbix5q3dBHIywYbm0G+Clgn 68A6mVAELLevS6iiwDk3FlBBbGEJZRG0KZ8YgOkHIFYgjcjqc+CMFSScV7ezafsv jj1PBnw16PpNZCPths9IhF0NYAgudWFg9L6+aL8HHIIESLplT5eyM6LwXx81Z9Fw AjEPc1N6n2nC6niYnuehL/wfVsDKmsbXEjkE0PKLsRCElUAno1azROkteQFdYJez 68quz0PrtPC8464y6aJdA8fgmG/cFR+9dB8HLJep/0zFAXZHoD3lZJXe9mVZHwuX CJL2nVPY8ZrS0ZmbkTsTxO/N2enWWRm3BeI9tNYZcd0h5Ox0s5dNS9u+rwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCDcoueQnpvnykWwsoVqAcbHrdlfMB8GA1UdIwQY MBaAFJWZs+eCNw3CgU9SXB1uzoTY9w82MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbFptejU0STNEY0tCVDFKY0hXN09oTmozRHpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi80MGExMDItZWZjZC00ZmQyLTkzNzMt ZDA2YWE1MThhYTZkLzEvSU55aTU1Q2VtLWZLUmJDeWhXb0J4c2V0MlY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi80MGExMDItZWZjZC00ZmQyLTkzNzMtZDA2YWE1MThhYTZk LzEvbFptejU0STNEY0tCVDFKY0hXN09oTmozRHpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBueIUMA0E AgACMAcDBQMqDdwAMA0GCSqGSIb3DQEBCwUAA4IBAQBNTbQhixY9csQb0DCvHZcZ PATc0Rc18IrmVoRLJgepyLOHqAOcMqQh8o/atak3X87gI2b69+lS3rR9fuEd8Rla 9xjZ8FTMn1bAcVRwCXwlkveY5sKNdtwQ4Fc5tiQmxNeuO+lnwrX9XFrQqXH960q9 +X2hu+JPeukglrZ+Wv0sqsrq2YWz32DHiVRfVpAUvvdJsYs4q4hgfabslSUE1gqF EyOowGRtReuAxpJhQPbnKt7PvLC7WqXQno5x0IpTfHC+Mk5vkv5PoSa+ya4VeXou SWP2yCu/6l3CA7/CaaLmXCQ1wEqJn0hLD3JloBPDqshs+eq4HM4BYt9VVDwx9Zsu -----END CERTIFICATE-----Generated at Sun Jan 25 19:36:16 2026 by rpki-client