This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/iso8Ynquef-40T8xmit5stlsCOM.roa File: iso8Ynquef-40T8xmit5stlsCOM.roa (raw, json) Hash identifier: CaByhCZn6ExtM3D3+0SlCEypCEBJD7eooSPz/TqsCc0= Subject key identifier: 8A:CA:3C:62:7A:AE:79:FF:B8:D1:3F:31:9A:2B:79:B2:D9:6C:08:E3 Certificate issuer: /CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d Certificate serial: 019B78A2246A5D2EC2565FD285CF121FB528 Authority key identifier: 8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/iso8Ynquef-40T8xmit5stlsCOM.roa Signing time: Thu 01 Jan 2026 08:17:30 +0000 ROA not before: Thu 01 Jan 2026 08:17:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210288 IP address blocks: 185.229.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.crl rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.mft rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:24:6a:5d:2e:c2:56:5f:d2:85:cf:12:1f:b5:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8b47aa09f2c610f6f44b4e75c1cd9dcd3884e55d Validity Not Before: Jan 1 08:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8aca3c627aae79ffb8d13f319a2b79b2d96c08e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bd:f2:4f:d9:99:52:26:7c:19:6e:e3:30:61: 70:9a:68:99:e3:52:af:50:fb:27:aa:a0:f4:be:22: d4:95:b9:d4:87:61:e0:83:07:d6:5f:87:b4:cc:0c: 3e:63:7f:5f:c1:89:2a:63:a7:d4:07:2f:3e:74:08: c9:04:58:f6:cb:42:b8:c9:f9:c7:07:cc:45:d6:e2: dc:7b:81:61:8d:da:c5:17:0c:18:34:da:ef:ee:5b: 7f:29:84:14:b7:f7:99:94:ee:b5:92:10:5f:53:03: f8:32:45:87:4b:8f:77:f3:06:75:ca:d7:65:1a:2b: 81:ce:c8:9f:d0:d2:0f:75:94:0f:81:98:e4:f0:5b: 14:78:47:92:f5:e3:fb:9f:4e:83:97:4e:4f:6d:65: e3:69:3c:c8:7d:48:0c:a7:3c:4d:c6:fa:5a:f0:22: 5f:3f:8c:75:87:da:df:0b:be:0b:02:57:2e:0b:76: 95:77:5f:9b:cc:c1:3d:5f:aa:2d:ec:0a:59:e8:42: 71:ba:f5:00:02:94:15:a4:d0:aa:3b:dc:dc:f8:5b: e9:cf:3f:3c:72:77:68:22:8f:8b:b6:42:41:9d:61: 06:1d:eb:9f:14:73:b9:a1:f5:08:1d:f4:59:2e:f9: ee:26:81:13:61:d6:1b:3f:64:97:2e:7f:b5:4b:25: 53:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CA:3C:62:7A:AE:79:FF:B8:D1:3F:31:9A:2B:79:B2:D9:6C:08:E3 X509v3 Authority Key Identifier: keyid:8B:47:AA:09:F2:C6:10:F6:F4:4B:4E:75:C1:CD:9D:CD:38:84:E5:5D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i0eqCfLGEPb0S051wc2dzTiE5V0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/iso8Ynquef-40T8xmit5stlsCOM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f560e1-7840-4951-ab78-5001539d7185/1/i0eqCfLGEPb0S051wc2dzTiE5V0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.134.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:2e:04:0a:c0:f1:3b:a3:03:cc:3b:04:d8:6c:e7:5a:95:04: e3:ec:47:43:ab:79:d4:6f:bb:a9:68:cf:c3:b1:a4:1b:72:97: 43:4f:5f:40:d9:f9:25:55:0c:15:70:43:15:d7:95:a6:f5:ab: 29:63:86:a5:e3:cf:2d:f7:6b:97:d1:d8:a6:e3:6a:21:8e:96: 59:83:cf:2c:ce:7e:ed:53:5e:c8:c5:9f:2e:09:c5:1e:52:7c: 97:d5:94:74:ce:01:7c:e6:b7:82:31:0f:0b:e2:e5:8c:f6:fe: 03:0c:be:fb:bd:31:49:26:02:44:a3:ed:f7:1f:09:c2:a7:28: a3:6b:23:20:53:75:0a:90:9e:f2:f6:48:db:8f:38:04:f3:68: 0d:6c:ee:b1:29:07:10:25:4a:83:4e:62:cb:9b:a6:31:d6:86: 35:8e:11:ed:a7:22:e4:0e:6b:e1:39:e2:22:9a:6a:17:c2:3d: 85:bc:ff:89:f3:fc:55:82:ec:10:1f:c4:18:e8:14:75:a6:12: 50:d6:ad:ff:2c:68:46:2d:ca:21:c0:71:65:30:ed:41:86:b5: fd:c9:14:39:34:cf:2e:4d:58:5f:e3:35:ef:68:43:7c:a6:bb: 71:be:04:7e:5f:c2:09:6c:f3:e7:2a:68:0e:97:a0:9c:b3:a8: 62:8c:ed:77 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4oiRqXS7CVl/Shc8SH7UoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiNDdhYTA5ZjJjNjEwZjZmNDRiNGU3NWMxY2Q5ZGNkMzg4 NGU1NWQwHhcNMjYwMTAxMDgxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWNhM2M2MjdhYWU3OWZmYjhkMTNmMzE5YTJiNzliMmQ5NmMwOGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnr3yT9mZUiZ8GW7jMGFwmmiZ41Kv UPsnqqD0viLUlbnUh2HggwfWX4e0zAw+Y39fwYkqY6fUBy8+dAjJBFj2y0K4yfnH B8xF1uLce4FhjdrFFwwYNNrv7lt/KYQUt/eZlO61khBfUwP4MkWHS4938wZ1ytdl GiuBzsif0NIPdZQPgZjk8FsUeEeS9eP7n06Dl05PbWXjaTzIfUgMpzxNxvpa8CJf P4x1h9rfC74LAlcuC3aVd1+bzME9X6ot7ApZ6EJxuvUAApQVpNCqO9zc+Fvpzz88 cndoIo+LtkJBnWEGHeufFHO5ofUIHfRZLvnuJoETYdYbP2SXLn+1SyVTwwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIrKPGJ6rnn/uNE/MZorebLZbAjjMB8GA1UdIwQY MBaAFItHqgnyxhD29EtOdcHNnc04hOVdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTBlcUNmTEdFUGIwUzA1MXdjMmR6VGlFNVYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9mNTYwZTEtNzg0MC00OTUxLWFiNzgt NTAwMTUzOWQ3MTg1LzEvaXNvOFlucXVlZi00MFQ4eG1pdDVzdGxzQ09NLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni9mNTYwZTEtNzg0MC00OTUxLWFiNzgtNTAwMTUzOWQ3MTg1 LzEvaTBlcUNmTEdFUGIwUzA1MXdjMmR6VGlFNVYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueWGMA0G CSqGSIb3DQEBCwUAA4IBAQAfLgQKwPE7owPMOwTYbOdalQTj7EdDq3nUb7upaM/D saQbcpdDT19A2fklVQwVcEMV15Wm9aspY4al488t92uX0dim42ohjpZZg88szn7t U17IxZ8uCcUeUnyX1ZR0zgF85reCMQ8L4uWM9v4DDL77vTFJJgJEo+33HwnCpyij ayMgU3UKkJ7y9kjbjzgE82gNbO6xKQcQJUqDTmLLm6Yx1oY1jhHtpyLkDmvhOeIi mmoXwj2FvP+J8/xVguwQH8QY6BR1phJQ1q3/LGhGLcohwHFlMO1BhrX9yRQ5NM8u TVhf4zXvaEN8prtxvgR+X8IJbPPnKmgOl6Ccs6hijO13 -----END CERTIFICATE-----Generated at Mon Jan 26 08:38:57 2026 by rpki-client