This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/IkSWs7EkuQhyXRbP9F6EHBtTz1o.roa File: IkSWs7EkuQhyXRbP9F6EHBtTz1o.roa (raw, json) Hash identifier: Byu4YYkguBqvjzQYm5SoI51Ex0ZiZOLUbV6kTS2GuBk= Subject key identifier: 22:44:96:B3:B1:24:B9:08:72:5D:16:CF:F4:5E:84:1C:1B:53:CF:5A Certificate issuer: /CN=78c236580cc2ee193dbdcc3126df4170cc117cd2 Certificate serial: 019B7A5B0DEA0883B5CB238BF3747B1AB008 Authority key identifier: 78:C2:36:58:0C:C2:EE:19:3D:BD:CC:31:26:DF:41:70:CC:11:7C:D2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eMI2WAzC7hk9vcwxJt9BcMwRfNI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/IkSWs7EkuQhyXRbP9F6EHBtTz1o.roa Signing time: Thu 01 Jan 2026 16:19:06 +0000 ROA not before: Thu 01 Jan 2026 16:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60138 IP address blocks: 185.56.92.0/24 maxlen: 24 185.56.93.0/24 maxlen: 24 185.56.94.0/24 maxlen: 24 185.56.95.0/24 maxlen: 24 2a04:da40::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/eMI2WAzC7hk9vcwxJt9BcMwRfNI.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/eMI2WAzC7hk9vcwxJt9BcMwRfNI.mft rsync://rpki.ripe.net/repository/DEFAULT/eMI2WAzC7hk9vcwxJt9BcMwRfNI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:0d:ea:08:83:b5:cb:23:8b:f3:74:7b:1a:b0:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=78c236580cc2ee193dbdcc3126df4170cc117cd2 Validity Not Before: Jan 1 16:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=224496b3b124b908725d16cff45e841c1b53cf5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f1:68:f1:4a:8f:bd:ef:92:a6:ec:c9:d5:d8: 40:5b:98:39:d0:48:0a:8f:a7:f9:ff:33:0a:fe:8e: 6a:1f:7a:d6:b2:cc:92:0a:84:94:1e:2b:1b:23:09: 1a:5e:65:72:cf:46:28:e0:40:26:8e:81:1d:31:94: 19:b0:3a:d8:57:e5:a7:c8:2c:fb:3f:10:4d:ea:c8: a4:21:f6:36:17:46:bd:af:c1:94:30:43:26:73:18: 04:9d:aa:7e:ea:ee:52:56:95:a9:00:e5:f8:6b:81: 89:0d:0a:63:1d:08:9c:69:b5:c6:b9:47:fd:71:af: 85:06:72:85:61:4e:b5:bc:bc:0b:d0:bd:5a:fc:d9: 7a:f9:b5:4a:7f:84:30:d5:a4:c2:8f:cd:80:d9:ca: 6e:c6:65:7f:f4:3d:e4:00:f9:aa:55:76:7a:0b:ce: 90:71:08:d9:dd:6f:fe:32:1c:b8:49:8a:c6:ee:f6: 98:5e:cd:ed:fd:0f:dc:47:85:a6:73:b1:e8:83:80: b7:e3:1c:8b:6b:91:13:58:79:83:a8:f3:75:7d:bf: 0d:b1:c2:b0:1a:18:ee:09:c6:b1:fe:bc:66:2d:9b: 76:54:f4:9e:46:78:7c:7c:93:c3:f3:92:c7:96:99: ff:dd:54:f6:d4:cc:12:14:de:50:41:3b:aa:9f:0b: de:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:44:96:B3:B1:24:B9:08:72:5D:16:CF:F4:5E:84:1C:1B:53:CF:5A X509v3 Authority Key Identifier: keyid:78:C2:36:58:0C:C2:EE:19:3D:BD:CC:31:26:DF:41:70:CC:11:7C:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eMI2WAzC7hk9vcwxJt9BcMwRfNI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/IkSWs7EkuQhyXRbP9F6EHBtTz1o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/69ce2b-aa36-4bab-b65e-f9e6539bbe6b/1/eMI2WAzC7hk9vcwxJt9BcMwRfNI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.56.92.0/22 IPv6: 2a04:da40::/29 Signature Algorithm: sha256WithRSAEncryption 7d:47:c7:8c:e5:dd:9e:0a:8d:a0:28:3e:ac:e8:9f:c3:6e:93: 8e:6b:2f:a0:60:35:f8:89:dd:b5:77:5b:0c:6b:98:f8:7c:ca: 27:bc:ac:f7:90:02:91:b3:5c:e1:32:e3:85:4c:f1:ca:5a:1c: 8b:a1:3f:4d:fb:e6:e3:b9:2a:2e:94:f5:c5:1f:24:b2:80:7f: f3:d2:7a:c9:13:24:ed:d4:a4:11:2b:9a:e2:9d:be:86:61:d5: b6:07:20:b7:ad:b0:10:e8:2f:b2:69:bf:7a:ba:0d:b3:a6:6d: ab:67:09:7e:c4:d4:0f:a2:c6:8e:ce:e3:bc:bc:08:b4:29:07: 6a:7e:36:bc:d1:46:87:dc:41:b4:2b:ef:3b:ac:9b:61:03:6f: 0f:89:8d:76:1e:0c:51:03:cc:d1:06:86:7e:c3:b4:8d:c6:fe: ca:6c:57:a9:3e:42:ab:df:66:cf:15:0a:5a:32:52:4c:ab:79: 4e:64:6f:02:40:13:6b:8c:91:86:a7:9a:d3:96:5e:aa:57:b5: c9:91:3e:36:b5:31:f6:38:9c:90:f8:21:fc:df:29:a9:ac:53: db:62:ba:1a:cd:0b:ec:95:83:6c:21:94:bc:fa:9f:61:1e:62: 2b:ab:69:7f:b4:78:57:34:07:71:b6:71:0a:50:81:47:14:e7: 6b:49:9e:cd -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt6Ww3qCIO1yyOL83R7GrAIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc4YzIzNjU4MGNjMmVlMTkzZGJkY2MzMTI2ZGY0MTcwY2Mx MTdjZDIwHhcNMjYwMTAxMTYxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjQ0OTZiM2IxMjRiOTA4NzI1ZDE2Y2ZmNDVlODQxYzFiNTNjZjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7vFo8UqPve+SpuzJ1dhAW5g50EgK j6f5/zMK/o5qH3rWssySCoSUHisbIwkaXmVyz0Yo4EAmjoEdMZQZsDrYV+WnyCz7 PxBN6sikIfY2F0a9r8GUMEMmcxgEnap+6u5SVpWpAOX4a4GJDQpjHQicabXGuUf9 ca+FBnKFYU61vLwL0L1a/Nl6+bVKf4Qw1aTCj82A2cpuxmV/9D3kAPmqVXZ6C86Q cQjZ3W/+Mhy4SYrG7vaYXs3t/Q/cR4Wmc7Hog4C34xyLa5ETWHmDqPN1fb8NscKw GhjuCcax/rxmLZt2VPSeRnh8fJPD85LHlpn/3VT21MwSFN5QQTuqnwve8wIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCJElrOxJLkIcl0Wz/RehBwbU89aMB8GA1UdIwQY MBaAFHjCNlgMwu4ZPb3MMSbfQXDMEXzSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZU1JMldBekM3aGs5dmN3eEp0OUJjTXdSZk5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS82OWNlMmItYWEzNi00YmFiLWI2NWUt ZjllNjUzOWJiZTZiLzEvSWtTV3M3RWt1UWh5WFJiUDlGNkVIQnRUejFvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS82OWNlMmItYWEzNi00YmFiLWI2NWUtZjllNjUzOWJiZTZi LzEvZU1JMldBekM3aGs5dmN3eEp0OUJjTXdSZk5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuThcMA0E AgACMAcDBQMqBNpAMA0GCSqGSIb3DQEBCwUAA4IBAQB9R8eM5d2eCo2gKD6s6J/D bpOOay+gYDX4id21d1sMa5j4fMonvKz3kAKRs1zhMuOFTPHKWhyLoT9N++bjuSou lPXFHySygH/z0nrJEyTt1KQRK5rinb6GYdW2ByC3rbAQ6C+yab96ug2zpm2rZwl+ xNQPosaOzuO8vAi0KQdqfja80UaH3EG0K+87rJthA28PiY12HgxRA8zRBoZ+w7SN xv7KbFepPkKr32bPFQpaMlJMq3lOZG8CQBNrjJGGp5rTll6qV7XJkT42tTH2OJyQ +CH83ymprFPbYroazQvslYNsIZS8+p9hHmIrq2l/tHhXNAdxtnEKUIFHFOdrSZ7N -----END CERTIFICATE-----Generated at Mon Jan 26 05:31:36 2026 by rpki-client