This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/ed80de-1361-423f-91af-5d0e620f525d/1/IDJxz5Lf-bhA1wZBvX00WPWc418.roa File: IDJxz5Lf-bhA1wZBvX00WPWc418.roa (raw, json) Hash identifier: jtojvMTm31S/WThDl0+VIPwens+k95gEp5w6ddEUhik= Subject key identifier: 20:32:71:CF:92:DF:F9:B8:40:D7:06:41:BD:7D:34:58:F5:9C:E3:5F Certificate issuer: /CN=ab2729642d2e3537d9ab7c45c51fe26dea468b82 Certificate serial: 019B7BA51093326B1841608B39C69A92BD70 Authority key identifier: AB:27:29:64:2D:2E:35:37:D9:AB:7C:45:C5:1F:E2:6D:EA:46:8B:82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qycpZC0uNTfZq3xFxR_ibepGi4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/ed80de-1361-423f-91af-5d0e620f525d/1/IDJxz5Lf-bhA1wZBvX00WPWc418.roa Signing time: Thu 01 Jan 2026 22:19:33 +0000 ROA not before: Thu 01 Jan 2026 22:19:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197033 IP address blocks: 185.149.216.0/22 maxlen: 22 185.232.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/ed80de-1361-423f-91af-5d0e620f525d/1/qycpZC0uNTfZq3xFxR_ibepGi4I.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/ed80de-1361-423f-91af-5d0e620f525d/1/qycpZC0uNTfZq3xFxR_ibepGi4I.mft rsync://rpki.ripe.net/repository/DEFAULT/qycpZC0uNTfZq3xFxR_ibepGi4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:10:93:32:6b:18:41:60:8b:39:c6:9a:92:bd:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2729642d2e3537d9ab7c45c51fe26dea468b82 Validity Not Before: Jan 1 22:19:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=203271cf92dff9b840d70641bd7d3458f59ce35f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7f:2b:15:56:eb:c4:1c:9c:3f:62:24:4f:31: 2f:33:1e:f0:af:78:44:96:85:c5:23:16:fa:84:b7: a8:fc:83:08:1d:78:8f:93:ef:ab:0f:16:de:78:e4: 60:e9:74:87:67:f4:c3:b7:f5:1a:39:54:0d:ca:93: 54:94:a2:ac:2e:42:2c:63:dd:05:ce:87:b5:a5:73: 53:af:a2:af:ca:12:60:46:92:cd:e6:47:cc:48:3a: a9:61:b1:43:53:6c:e9:e1:c4:38:42:21:03:df:3f: d1:04:c2:4e:80:af:4f:31:f3:37:ba:e3:53:5f:57: 2e:67:9d:07:88:c2:eb:90:ff:59:e9:56:de:81:06: df:3a:f7:28:58:3f:10:94:00:ba:1c:f7:18:76:52: 18:7e:21:50:96:da:61:43:4d:98:de:33:91:62:b8: 3a:75:40:c9:a9:b4:1d:81:89:e3:0e:44:84:4a:21: 32:6a:ff:ed:a9:55:3b:e2:75:c1:1f:26:73:25:7a: 71:a4:9b:48:d6:71:1b:87:b6:96:8c:12:68:93:eb: 38:8d:ef:31:0b:d6:ab:43:d2:3b:81:64:bf:ec:01: f4:0a:fe:a5:c9:27:bd:db:51:7c:f6:69:08:56:cf: 92:84:c8:db:22:8b:49:c5:78:f8:11:ec:0e:cc:71: af:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:32:71:CF:92:DF:F9:B8:40:D7:06:41:BD:7D:34:58:F5:9C:E3:5F X509v3 Authority Key Identifier: keyid:AB:27:29:64:2D:2E:35:37:D9:AB:7C:45:C5:1F:E2:6D:EA:46:8B:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qycpZC0uNTfZq3xFxR_ibepGi4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ed80de-1361-423f-91af-5d0e620f525d/1/IDJxz5Lf-bhA1wZBvX00WPWc418.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/ed80de-1361-423f-91af-5d0e620f525d/1/qycpZC0uNTfZq3xFxR_ibepGi4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.149.216.0/22 185.232.24.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:d6:84:cf:90:75:89:cc:62:9c:f0:a0:ad:1b:46:e2:b2:91: 55:19:e5:0d:61:68:ad:cf:88:3a:ba:81:b1:06:37:53:d3:de: 2b:af:9e:64:10:5c:9b:85:38:a5:5d:e1:0b:50:76:10:36:b8: 18:1a:7f:38:60:a7:5f:7b:a1:34:ff:5b:54:fa:fc:bd:64:f7: 8c:25:b1:a9:e2:88:0c:d3:3c:d9:12:17:04:ff:d6:05:cd:a5: fe:b6:3c:bb:6b:2e:5b:4d:cf:54:06:d2:a5:a3:5c:78:e3:65: 6d:71:54:70:ee:e1:7e:6d:84:0b:bd:89:e0:f7:39:ac:d7:25: bb:1a:32:0e:7f:f2:7e:c0:ec:0f:dc:af:79:3f:6c:a4:ac:ce: 96:37:a5:20:a5:52:25:bd:84:b1:c0:72:7d:f0:ce:d9:f1:fd: 09:3f:24:f1:3d:73:1d:3e:6a:21:f2:55:20:0d:e3:a6:81:f6: 71:6e:53:4c:28:99:95:09:59:53:2c:3f:eb:85:e9:ef:8f:5c: 1f:80:03:67:a3:52:44:a1:90:fc:62:26:21:bd:eb:6e:d8:16: c6:16:e1:30:f3:10:9d:9e:c8:37:26:6a:08:6b:9d:1f:d6:19: ee:12:23:7f:55:e8:53:87:f4:e3:c0:3c:f4:c9:ff:1b:f0:a6: 24:d0:19:5b -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pRCTMmsYQWCLOcaakr1wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiMjcyOTY0MmQyZTM1MzdkOWFiN2M0NWM1MWZlMjZkZWE0 NjhiODIwHhcNMjYwMTAxMjIxOTMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDMyNzFjZjkyZGZmOWI4NDBkNzA2NDFiZDdkMzQ1OGY1OWNlMzVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvH8rFVbrxBycP2IkTzEvMx7wr3hE loXFIxb6hLeo/IMIHXiPk++rDxbeeORg6XSHZ/TDt/UaOVQNypNUlKKsLkIsY90F zoe1pXNTr6KvyhJgRpLN5kfMSDqpYbFDU2zp4cQ4QiED3z/RBMJOgK9PMfM3uuNT X1cuZ50HiMLrkP9Z6VbegQbfOvcoWD8QlAC6HPcYdlIYfiFQltphQ02Y3jORYrg6 dUDJqbQdgYnjDkSESiEyav/tqVU74nXBHyZzJXpxpJtI1nEbh7aWjBJok+s4je8x C9arQ9I7gWS/7AH0Cv6lySe921F89mkIVs+ShMjbIotJxXj4EewOzHGvYwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCAycc+S3/m4QNcGQb19NFj1nONfMB8GA1UdIwQY MBaAFKsnKWQtLjU32at8RcUf4m3qRouCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXljcFpDMHVOVGZacTN4RnhSX2liZXBHaTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9lZDgwZGUtMTM2MS00MjNmLTkxYWYt NWQwZTYyMGY1MjVkLzEvSURKeHo1TGYtYmhBMXdaQnZYMDBXUFdjNDE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS9lZDgwZGUtMTM2MS00MjNmLTkxYWYtNWQwZTYyMGY1MjVk LzEvcXljcFpDMHVOVGZacTN4RnhSX2liZXBHaTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuZXYAwQC uegYMA0GCSqGSIb3DQEBCwUAA4IBAQAP1oTPkHWJzGKc8KCtG0bispFVGeUNYWit z4g6uoGxBjdT094rr55kEFybhTilXeELUHYQNrgYGn84YKdfe6E0/1tU+vy9ZPeM JbGp4ogM0zzZEhcE/9YFzaX+tjy7ay5bTc9UBtKlo1x442VtcVRw7uF+bYQLvYng 9zms1yW7GjIOf/J+wOwP3K95P2ykrM6WN6UgpVIlvYSxwHJ98M7Z8f0JPyTxPXMd Pmoh8lUgDeOmgfZxblNMKJmVCVlTLD/rhenvj1wfgANno1JEoZD8YiYhvetu2BbG FuEw8xCdnsg3JmoIa50f1hnuEiN/VehTh/TjwDz0yf8b8KYk0Blb -----END CERTIFICATE-----Generated at Sun Jan 25 23:32:26 2026 by rpki-client