This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/IqvcRngzlVCtX_OA-70dAZLFdA8.roa File: IqvcRngzlVCtX_OA-70dAZLFdA8.roa (raw, json) Hash identifier: aY3f5nvXyrfMF4R4lR/AbKv7PaJsmbQ5UoA1+i35Mzo= Subject key identifier: 22:AB:DC:46:78:33:95:50:AD:5F:F3:80:FB:BD:1D:01:92:C5:74:0F Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2 Certificate serial: 019B7C805020D0EFF03E4A2FF70C19DFA5DB Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/IqvcRngzlVCtX_OA-70dAZLFdA8.roa Signing time: Fri 02 Jan 2026 02:19:02 +0000 ROA not before: Fri 02 Jan 2026 02:19:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210283 IP address blocks: 91.228.200.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.mft rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:50:20:d0:ef:f0:3e:4a:2f:f7:0c:19:df:a5:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2 Validity Not Before: Jan 2 02:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22abdc4678339550ad5ff380fbbd1d0192c5740f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:35:c9:f1:14:85:73:db:33:77:79:c2:d0:04: 4f:3f:26:1c:4c:f1:f9:bb:aa:0d:0b:cb:72:b3:77: 26:e8:43:eb:3c:39:f3:d6:2c:fe:54:49:fb:82:ca: e7:99:be:f9:66:fe:a3:ca:73:2a:34:56:9b:8f:78: 8c:00:67:61:dd:23:84:cf:09:dd:6e:1e:d9:ca:18: b9:63:14:7e:38:2a:1d:cf:8c:45:61:76:ef:e0:d4: ed:6a:0d:b4:56:eb:15:71:4a:f0:c5:c2:7f:6a:05: a7:bc:17:f3:13:4e:25:f4:9d:5d:1c:56:66:ac:25: 27:01:68:39:e4:13:30:fe:98:eb:55:1e:1a:fe:00: 5e:db:88:4d:52:00:54:76:67:27:8a:25:30:a4:81: 08:18:e0:c1:79:75:4a:7c:ca:4a:18:4a:00:76:10: 6e:b4:46:5b:5d:a7:0d:e9:1c:34:f0:a0:35:d7:74: a1:a1:b6:40:bc:8f:2d:1a:8f:a7:4d:8f:0c:8c:af: e3:ca:1c:00:8c:c6:58:f6:a0:8a:7a:81:a1:3e:f1: f6:6f:26:77:ea:3d:a1:30:b2:dd:5d:37:5f:2f:dd: 63:62:cf:5a:60:94:49:7b:b6:fa:a3:e5:0d:24:81: 14:1f:47:1d:91:f0:39:f2:f8:a5:dd:87:e4:e7:50: e4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AB:DC:46:78:33:95:50:AD:5F:F3:80:FB:BD:1D:01:92:C5:74:0F X509v3 Authority Key Identifier: keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/IqvcRngzlVCtX_OA-70dAZLFdA8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.228.200.0/23 Signature Algorithm: sha256WithRSAEncryption 63:cb:12:11:d1:48:c9:e9:d8:65:7f:e0:cf:74:22:2a:44:dc: 47:f7:eb:4a:18:a4:9b:12:54:82:20:18:96:b9:c4:68:82:e4: 00:f1:5b:40:a0:6a:1b:a8:2c:d7:02:56:fd:2b:68:ce:c0:cf: 7a:a1:47:84:db:7b:7a:05:bf:7d:1a:2d:12:65:bf:a0:d9:0b: 46:fb:fd:0a:90:bc:b0:e2:7d:8f:4d:96:d8:9c:dc:76:fc:dd: 74:44:4d:1a:3e:94:93:2b:c5:c7:6a:63:a0:6f:f9:a9:0d:67: 81:af:b2:fd:64:54:bd:60:b8:5d:14:70:5b:e9:40:82:9e:a0: 41:35:8f:e4:91:1a:21:67:86:9b:e5:d3:67:44:42:03:be:80: dc:46:0e:2a:f1:43:04:df:4c:26:0a:7e:c3:5b:db:8d:2d:83: 38:66:df:ec:50:72:91:bd:19:44:fc:5f:60:a1:36:d1:5f:00: b3:dd:c7:5c:43:d5:ca:bf:7a:f7:6d:8c:f5:45:d2:e1:62:83: 88:fe:d3:ae:84:63:a0:ef:ad:56:0c:26:96:4f:72:8c:50:74: e2:85:f0:64:4b:c1:28:a2:96:55:81:70:57:f6:4b:f2:01:b9: 2f:da:51:b2:6f:25:bf:23:64:96:e7:1c:97:13:87:06:b9:cc: 43:22:6a:a0 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gFAg0O/wPkov9wwZ36XbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmNWU5M2Y5MDIzNTRjZTQ4MDRiNGNiMDQ5Y2Y2OGIyMGY3 NmFlYjIwHhcNMjYwMTAyMDIxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmFiZGM0Njc4MzM5NTUwYWQ1ZmYzODBmYmJkMWQwMTkyYzU3NDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5zXJ8RSFc9szd3nC0ARPPyYcTPH5 u6oNC8tys3cm6EPrPDnz1iz+VEn7gsrnmb75Zv6jynMqNFabj3iMAGdh3SOEzwnd bh7Zyhi5YxR+OCodz4xFYXbv4NTtag20VusVcUrwxcJ/agWnvBfzE04l9J1dHFZm rCUnAWg55BMw/pjrVR4a/gBe24hNUgBUdmcniiUwpIEIGODBeXVKfMpKGEoAdhBu tEZbXacN6Rw08KA113ShobZAvI8tGo+nTY8MjK/jyhwAjMZY9qCKeoGhPvH2byZ3 6j2hMLLdXTdfL91jYs9aYJRJe7b6o+UNJIEUH0cdkfA58vil3Yfk51DkoQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCKr3EZ4M5VQrV/zgPu9HQGSxXQPMB8GA1UdIwQY MBaAFK9ek/kCNUzkgEtMsEnPaLIPdq6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWIt N2UwNWFkMDE5MGNlLzEvSXF2Y1JuZ3psVkN0WF9PQS03MGRBWkxGZEE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWItN2UwNWFkMDE5MGNl LzEvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+TIMA0G CSqGSIb3DQEBCwUAA4IBAQBjyxIR0UjJ6dhlf+DPdCIqRNxH9+tKGKSbElSCIBiW ucRoguQA8VtAoGobqCzXAlb9K2jOwM96oUeE23t6Bb99Gi0SZb+g2QtG+/0KkLyw 4n2PTZbYnNx2/N10RE0aPpSTK8XHamOgb/mpDWeBr7L9ZFS9YLhdFHBb6UCCnqBB NY/kkRohZ4ab5dNnREIDvoDcRg4q8UME30wmCn7DW9uNLYM4Zt/sUHKRvRlE/F9g oTbRXwCz3cdcQ9XKv3r3bYz1RdLhYoOI/tOuhGOg761WDCaWT3KMUHTihfBkS8Eo opZVgXBX9kvyAbkv2lGybyW/I2SW5xyXE4cGucxDImqg -----END CERTIFICATE-----Generated at Sun Jan 25 10:21:08 2026 by rpki-client