This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/_paVXI4yFigy-9MGkkSdZ4KElMA.roa File: _paVXI4yFigy-9MGkkSdZ4KElMA.roa (raw, json) Hash identifier: EX3gggfhaPgMOhanerc0ccEXCfzIrPeo/9AxaL7NDEI= Subject key identifier: FE:96:95:5C:8E:32:16:28:32:FB:D3:06:92:44:9D:67:82:84:94:C0 Certificate issuer: /CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47 Certificate serial: 019B76EAE877442C6053BB604CBE8FE1BE9E Authority key identifier: 23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/_paVXI4yFigy-9MGkkSdZ4KElMA.roa Signing time: Thu 01 Jan 2026 00:17:44 +0000 ROA not before: Thu 01 Jan 2026 00:17:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47860 IP address blocks: 89.188.160.0/24 maxlen: 24 89.188.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.mft rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:e8:77:44:2c:60:53:bb:60:4c:be:8f:e1:be:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47 Validity Not Before: Jan 1 00:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fe96955c8e32162832fbd30692449d67828494c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:53:52:21:f8:d3:ff:48:f2:2b:6b:55:d1:77: a9:9d:12:6a:3f:fd:08:a4:3a:64:16:a2:03:22:2f: 29:61:d6:46:d0:fb:c4:bb:06:67:7c:a4:7b:8a:ff: 73:29:e7:98:67:7d:35:4b:3e:e7:35:85:4d:da:cc: 90:27:e5:4b:56:86:e6:b1:02:d8:9f:b7:fd:d3:46: 81:44:65:30:ca:2e:50:d2:19:1a:3e:0d:20:6a:c3: f1:bc:a1:28:c0:69:b3:ca:93:b7:75:9b:3b:05:6f: 0b:2c:03:1e:89:9c:c6:cc:14:4d:7e:3b:4d:4b:75: fa:05:cf:fe:87:20:34:4f:79:eb:65:f3:f3:ef:d1: 44:04:7a:be:20:d2:4d:37:af:3b:18:1f:0c:91:28: 7b:49:b4:ea:83:db:4d:c6:a7:04:6f:91:f9:06:48: 2e:11:da:a1:e0:75:0d:bd:6f:b5:47:66:cf:54:4c: 76:5f:47:d7:72:36:e5:c9:be:cd:47:e0:c1:fe:0e: 25:cf:02:a0:bf:e6:bb:47:49:be:61:5f:02:69:25: 93:e5:4d:80:5b:18:17:92:a9:c6:4c:d6:01:4c:c1: 2f:b0:56:12:ea:72:fb:b7:a2:5f:ed:c6:ec:42:74: 8f:4d:27:14:f0:61:a1:1a:63:36:ac:07:39:8b:a4: d2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:96:95:5C:8E:32:16:28:32:FB:D3:06:92:44:9D:67:82:84:94:C0 X509v3 Authority Key Identifier: keyid:23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/_paVXI4yFigy-9MGkkSdZ4KElMA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.188.160.0/24 89.188.180.0/24 Signature Algorithm: sha256WithRSAEncryption 96:16:15:ca:e4:de:71:00:09:33:73:4b:49:21:2e:47:c2:55: 59:9f:3a:04:23:a1:27:10:69:39:57:29:4f:1e:44:46:9b:e4: 29:a0:a8:53:fd:20:41:b3:29:ca:a7:f1:15:4c:be:39:b9:35: b8:fd:52:10:1f:a9:7b:00:b9:a8:89:ae:b0:88:b9:0a:52:3e: 65:35:2c:d8:9f:33:68:84:81:90:d0:e0:14:7c:4d:9d:cb:02: f7:ea:c5:42:8d:79:52:09:df:cf:85:bc:fa:cd:21:5b:4a:16: 0a:19:8b:6d:0b:4d:20:18:a2:d9:0e:d6:32:ef:85:c4:0b:45: 5f:39:a4:6b:41:98:9c:28:72:d4:2d:9d:fb:fb:a0:ab:3a:41: 4c:ff:61:c7:8b:cf:d8:4e:20:dc:bf:25:1a:92:17:35:fc:63: 0c:71:65:3e:38:2d:44:ed:ea:bb:84:fc:88:ed:73:54:16:73: ae:b5:fe:c0:78:e4:4a:5f:ee:b5:30:34:69:f8:1e:50:47:53: 52:fd:fa:90:63:03:92:b2:a3:64:b3:43:12:ca:1d:d2:3c:77: 28:b0:7f:5d:66:91:2c:09:48:2c:b1:6c:b5:b5:3a:20:97:b7: 16:c1:fb:a4:22:82:b3:ea:de:94:e7:4e:4c:bd:87:ef:4c:52: c9:64:67:7e -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26uh3RCxgU7tgTL6P4b6eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIzZTNkOTJiZmUxNjYxOWNhNTAwYzAzMjY3ZWZmYTlhYTdj YTBjNDcwHhcNMjYwMTAxMDAxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZTk2OTU1YzhlMzIxNjI4MzJmYmQzMDY5MjQ0OWQ2NzgyODQ5NGMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1NSIfjT/0jyK2tV0XepnRJqP/0I pDpkFqIDIi8pYdZG0PvEuwZnfKR7iv9zKeeYZ301Sz7nNYVN2syQJ+VLVobmsQLY n7f900aBRGUwyi5Q0hkaPg0gasPxvKEowGmzypO3dZs7BW8LLAMeiZzGzBRNfjtN S3X6Bc/+hyA0T3nrZfPz79FEBHq+INJNN687GB8MkSh7SbTqg9tNxqcEb5H5Bkgu Edqh4HUNvW+1R2bPVEx2X0fXcjblyb7NR+DB/g4lzwKgv+a7R0m+YV8CaSWT5U2A WxgXkqnGTNYBTMEvsFYS6nL7t6Jf7cbsQnSPTScU8GGhGmM2rAc5i6TShQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFP6WlVyOMhYoMvvTBpJEnWeChJTAMB8GA1UdIwQY MBaAFCPj2Sv+FmGcpQDAMmfv+pqnygxHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSS1QWktfNFdZWnlsQU1BeVotXzZtcWZLREVjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85YzJjOTAtYzdkNC00OGI3LTliYWYt ZjFiZjBjMzNhOTA4LzEvX3BhVlhJNHlGaWd5LTlNR2trU2RaNEtFbE1BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC85YzJjOTAtYzdkNC00OGI3LTliYWYtZjFiZjBjMzNhOTA4 LzEvSS1QWktfNFdZWnlsQU1BeVotXzZtcWZLREVjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWbygAwQA Wby0MA0GCSqGSIb3DQEBCwUAA4IBAQCWFhXK5N5xAAkzc0tJIS5HwlVZnzoEI6En EGk5VylPHkRGm+QpoKhT/SBBsynKp/EVTL45uTW4/VIQH6l7ALmoia6wiLkKUj5l NSzYnzNohIGQ0OAUfE2dywL36sVCjXlSCd/Phbz6zSFbShYKGYttC00gGKLZDtYy 74XEC0VfOaRrQZicKHLULZ37+6CrOkFM/2HHi8/YTiDcvyUakhc1/GMMcWU+OC1E 7eq7hPyI7XNUFnOutf7AeORKX+61MDRp+B5QR1NS/fqQYwOSsqNks0MSyh3SPHco sH9dZpEsCUgssWy1tTogl7cWwfukIoKz6t6U505MvYfvTFLJZGd+ -----END CERTIFICATE-----Generated at Mon Jan 26 05:39:18 2026 by rpki-client