This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/IxsNRYHAIgIvIYAKThBCK8tDML0.roa File: IxsNRYHAIgIvIYAKThBCK8tDML0.roa (raw, json) Hash identifier: RJ0zaAUP7bIQ80w1oqlJP/TAPNOQGvp2V17z1FFDB+Y= Subject key identifier: 23:1B:0D:45:81:C0:22:02:2F:21:80:0A:4E:10:42:2B:CB:43:30:BD Certificate issuer: /CN=cfcd73f82c260da87386dcf7be26d5c5445526fa Certificate serial: 019B7C12AF9D5465A87CB4F2E57F767BE3A0 Authority key identifier: CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/IxsNRYHAIgIvIYAKThBCK8tDML0.roa Signing time: Fri 02 Jan 2026 00:19:17 +0000 ROA not before: Fri 02 Jan 2026 00:19:17 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208992 IP address blocks: 45.144.42.0/24 maxlen: 24 85.158.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.mft rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 06:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:af:9d:54:65:a8:7c:b4:f2:e5:7f:76:7b:e3:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfcd73f82c260da87386dcf7be26d5c5445526fa Validity Not Before: Jan 2 00:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=231b0d4581c022022f21800a4e10422bcb4330bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:b1:bd:08:dd:49:ac:e9:d9:46:44:09:66:8c: 9d:2d:c0:8b:93:57:89:18:1a:c1:31:af:ce:52:94: 32:f6:c1:c8:69:60:fb:6b:b3:91:91:61:d9:78:c7: bb:dc:f6:6c:0e:22:e7:88:4b:e1:70:d9:1b:a2:1f: 89:a5:3d:08:fd:9c:02:2a:ef:a6:d8:78:84:9f:9a: d8:8b:dc:b9:88:36:58:d6:d8:03:78:80:38:af:e1: b9:b7:1e:aa:78:5c:0d:d9:3c:45:bd:6d:a9:80:8f: 49:38:ab:14:71:b9:70:29:ca:c1:35:ef:4b:78:81: 01:98:df:12:ed:af:77:a9:11:d8:6a:87:fd:74:0f: e7:61:cc:85:bb:fc:4f:79:a4:42:dc:20:1f:cd:e0: 7c:e7:1c:92:47:04:7f:c2:e3:b8:4a:6f:bd:23:58: 19:5a:cb:af:08:c8:06:50:80:de:15:b6:6a:b6:56: 4d:28:00:79:a8:38:c8:3c:92:71:05:a9:3e:c8:82: 84:ed:2f:35:4d:97:0a:57:73:02:8d:74:2c:c8:af: 2e:83:ea:93:3e:70:14:22:13:d3:c5:7e:16:c6:fa: c4:29:05:06:bb:3e:89:a3:15:31:00:f8:03:e4:04: 0b:9a:5a:39:a8:18:19:a3:b7:11:d4:eb:db:cd:bc: dc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1B:0D:45:81:C0:22:02:2F:21:80:0A:4E:10:42:2B:CB:43:30:BD X509v3 Authority Key Identifier: keyid:CF:CD:73:F8:2C:26:0D:A8:73:86:DC:F7:BE:26:D5:C5:44:55:26:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z81z-CwmDahzhtz3vibVxURVJvo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/IxsNRYHAIgIvIYAKThBCK8tDML0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/40ade0-98da-4aa5-b817-6edc1b225625/1/z81z-CwmDahzhtz3vibVxURVJvo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.144.42.0/24 85.158.184.0/24 Signature Algorithm: sha256WithRSAEncryption e6:b9:6b:8d:1e:c4:6d:d0:6e:48:cf:ae:74:59:50:a2:67:77: 15:ea:33:14:7c:60:69:15:d6:97:88:70:e3:e5:87:b9:ea:6c: cd:dd:cb:93:b5:e7:ab:b1:cf:1e:97:b3:ca:cc:5d:58:be:64: f6:20:25:3b:28:50:15:ee:ae:39:d2:53:39:af:20:d3:dc:aa: 1b:06:f4:2d:45:05:7e:83:4a:56:0c:17:be:2f:28:a8:ef:9e: 99:fe:34:aa:db:ab:f1:24:4c:e1:85:28:cd:5e:35:0d:da:a3: 68:c1:ac:83:88:1e:b1:e6:34:21:31:32:ff:a1:ff:30:6a:9f: 76:62:6a:17:67:cd:7d:32:65:a4:ba:72:e3:95:99:d0:ad:84: 38:ff:2b:25:22:33:f2:23:5e:c4:5f:44:33:30:17:d8:66:e7: 5a:94:64:a5:3a:6e:a4:bf:26:fd:e0:c6:ed:7f:8f:4b:54:f5: e8:0a:b1:f7:a4:ae:e6:7d:c8:af:ea:38:6d:d3:9d:41:9b:ac: 91:3c:2f:72:09:3f:26:ef:ac:c5:ba:95:14:eb:3d:4e:fc:5a: 43:18:df:6e:83:4a:de:13:53:ee:5c:96:84:81:1d:a4:ed:e4: cc:ad:f9:cb:b5:de:c0:1f:a2:b2:f1:8d:dd:99:47:ef:95:c8: 4b:46:b5:df -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt8Eq+dVGWofLTy5X92e+OgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmY2Q3M2Y4MmMyNjBkYTg3Mzg2ZGNmN2JlMjZkNWM1NDQ1 NTI2ZmEwHhcNMjYwMTAyMDAxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzFiMGQ0NTgxYzAyMjAyMmYyMTgwMGE0ZTEwNDIyYmNiNDMzMGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjrG9CN1JrOnZRkQJZoydLcCLk1eJ GBrBMa/OUpQy9sHIaWD7a7ORkWHZeMe73PZsDiLniEvhcNkboh+JpT0I/ZwCKu+m 2HiEn5rYi9y5iDZY1tgDeIA4r+G5tx6qeFwN2TxFvW2pgI9JOKsUcblwKcrBNe9L eIEBmN8S7a93qRHYaof9dA/nYcyFu/xPeaRC3CAfzeB85xySRwR/wuO4Sm+9I1gZ WsuvCMgGUIDeFbZqtlZNKAB5qDjIPJJxBak+yIKE7S81TZcKV3MCjXQsyK8ug+qT PnAUIhPTxX4WxvrEKQUGuz6JoxUxAPgD5AQLmlo5qBgZo7cR1OvbzbzchQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCMbDUWBwCICLyGACk4QQivLQzC9MB8GA1UdIwQY MBaAFM/Nc/gsJg2oc4bc974m1cVEVSb6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejgxei1Dd21EYWh6aHR6M3ZpYlZ4VVJWSnZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy80MGFkZTAtOThkYS00YWE1LWI4MTct NmVkYzFiMjI1NjI1LzEvSXhzTlJZSEFJZ0l2SVlBS1RoQkNLOHRETUwwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy80MGFkZTAtOThkYS00YWE1LWI4MTctNmVkYzFiMjI1NjI1 LzEvejgxei1Dd21EYWh6aHR6M3ZpYlZ4VVJWSnZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZAqAwQA VZ64MA0GCSqGSIb3DQEBCwUAA4IBAQDmuWuNHsRt0G5Iz650WVCiZ3cV6jMUfGBp FdaXiHDj5Ye56mzN3cuTteersc8el7PKzF1YvmT2ICU7KFAV7q450lM5ryDT3Kob BvQtRQV+g0pWDBe+Lyio756Z/jSq26vxJEzhhSjNXjUN2qNowayDiB6x5jQhMTL/ of8wap92YmoXZ819MmWkunLjlZnQrYQ4/yslIjPyI17EX0QzMBfYZudalGSlOm6k vyb94Mbtf49LVPXoCrH3pK7mfciv6jht051Bm6yRPC9yCT8m76zFupUU6z1O/FpD GN9ug0reE1PuXJaEgR2k7eTMrfnLtd7AH6Ky8Y3dmUfvlchLRrXf -----END CERTIFICATE-----Generated at Sun Jan 25 14:38:27 2026 by rpki-client