This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ITjk15GoeXUStvbei6OTnPw4VPA.roa File: ITjk15GoeXUStvbei6OTnPw4VPA.roa (raw, json) Hash identifier: bu3amWDD7vB0Qvh2/XREDdBDpVUP6PJeeJTwRsWKt9c= Subject key identifier: 21:38:E4:D7:91:A8:79:75:12:B6:F6:DE:8B:A3:93:9C:FC:38:54:F0 Certificate issuer: /CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc Certificate serial: 019BB711927192FA4DBD167204178C062BEA Authority key identifier: CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ITjk15GoeXUStvbei6OTnPw4VPA.roa Signing time: Tue 13 Jan 2026 11:15:40 +0000 ROA not before: Tue 13 Jan 2026 11:15:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205719 IP address blocks: 88.210.62.0/24 maxlen: 24 2a14:a087:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.mft rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:b7:11:92:71:92:fa:4d:bd:16:72:04:17:8c:06:2b:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca6441d9d807e0d78ce75213a103400ee14a7cdc Validity Not Before: Jan 13 11:15:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2138e4d791a8797512b6f6de8ba3939cfc3854f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:7c:9f:12:24:9d:0d:87:d0:a4:d1:cc:86:49: 07:92:7c:f0:d9:21:8d:e2:16:55:ec:59:75:cf:ab: cb:f8:b3:27:cb:04:23:85:38:72:a6:77:46:94:3e: 19:6d:a9:26:d5:45:7b:d1:30:49:3c:8a:7b:61:df: 85:c9:c0:15:42:44:4c:c2:71:f0:e9:cf:45:88:05: ac:de:dd:64:09:38:30:a4:f5:24:9d:cf:26:bd:df: 79:7d:e1:71:9a:00:67:c6:80:81:ab:87:0b:54:5c: 4f:12:ec:34:ca:e9:33:c0:73:51:87:1b:6b:2a:b7: 7d:f7:45:e9:4a:10:2c:dc:40:59:85:d4:79:ce:c4: 09:28:e9:4f:a5:d7:bc:e1:36:84:06:84:69:3b:fd: 66:5e:2c:a0:a6:8a:5f:69:0b:33:27:f2:7e:b6:32: 64:f6:86:7a:21:25:3d:62:0a:9d:1f:46:eb:e3:f5: ab:81:32:da:70:b7:a1:db:76:66:9d:55:7c:66:a2: 60:11:60:b4:c3:13:d4:a1:fe:da:56:2e:16:d9:71: 9b:ab:6c:24:0f:3e:ee:6a:ce:ba:c2:84:7f:19:1e: 17:66:92:4a:4f:bf:02:de:ad:b6:75:91:24:22:a6: 4d:bb:dc:12:bc:e5:ca:4e:25:52:84:82:b5:84:bc: 1e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:38:E4:D7:91:A8:79:75:12:B6:F6:DE:8B:A3:93:9C:FC:38:54:F0 X509v3 Authority Key Identifier: keyid:CA:64:41:D9:D8:07:E0:D7:8C:E7:52:13:A1:03:40:0E:E1:4A:7C:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymRB2dgH4NeM51IToQNADuFKfNw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ITjk15GoeXUStvbei6OTnPw4VPA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/9947b6-34bc-477e-8816-2e28b96498a9/1/ymRB2dgH4NeM51IToQNADuFKfNw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.210.62.0/24 IPv6: 2a14:a087:2::/48 Signature Algorithm: sha256WithRSAEncryption 24:0a:1c:4c:ba:0b:53:d8:79:4d:ba:84:eb:ab:e2:7a:95:f5: d5:07:36:eb:97:7c:7b:3b:6d:c0:d2:80:df:a2:b8:c0:05:7b: 63:cd:d2:9d:b3:fd:2f:63:68:d5:c2:da:7f:60:a9:c5:f1:90: 5b:51:1a:d5:5c:44:15:b9:b0:61:fe:1b:07:1d:d2:c3:d9:11: 8e:cb:7d:e1:fe:6c:95:c2:b7:cc:4b:27:6c:f8:21:76:bf:bb: ed:48:7e:a0:6a:cc:d4:7c:b3:39:ba:c0:05:c9:e6:35:36:f1: f9:79:ce:a3:88:9e:a5:46:ed:12:ed:29:f4:87:ac:c1:2d:61: d8:c7:cf:56:02:8f:0f:51:fb:37:ef:f8:14:af:34:56:b7:54: 3a:7d:1d:ca:cf:88:dd:ed:fe:61:d2:89:46:2d:2d:47:e4:e0: 93:6d:2f:62:52:50:b5:4c:66:44:9a:29:e6:13:ee:80:6a:fc: 0f:a0:a0:ec:e6:5b:7d:a5:76:71:d8:e7:9d:ae:06:47:5b:da: c7:c9:87:88:27:4e:30:fd:97:90:26:c7:9b:70:f9:b3:ed:0d: c0:dc:60:ba:5e:f2:33:12:09:59:81:80:1a:fa:64:f6:24:3d: c0:fa:d7:8a:96:db:1a:4e:d0:c9:79:ef:da:1e:47:cd:d2:97: 8b:b5:f3:7e -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZu3EZJxkvpNvRZyBBeMBivqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhNjQ0MWQ5ZDgwN2UwZDc4Y2U3NTIxM2ExMDM0MDBlZTE0 YTdjZGMwHhcNMjYwMTEzMTExNTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMTM4ZTRkNzkxYTg3OTc1MTJiNmY2ZGU4YmEzOTM5Y2ZjMzg1NGYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+3yfEiSdDYfQpNHMhkkHknzw2SGN 4hZV7Fl1z6vL+LMnywQjhThypndGlD4Zbakm1UV70TBJPIp7Yd+FycAVQkRMwnHw 6c9FiAWs3t1kCTgwpPUknc8mvd95feFxmgBnxoCBq4cLVFxPEuw0yukzwHNRhxtr Krd990XpShAs3EBZhdR5zsQJKOlPpde84TaEBoRpO/1mXiygpopfaQszJ/J+tjJk 9oZ6ISU9YgqdH0br4/WrgTLacLeh23ZmnVV8ZqJgEWC0wxPUof7aVi4W2XGbq2wk Dz7uas66woR/GR4XZpJKT78C3q22dZEkIqZNu9wSvOXKTiVShIK1hLweaQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFCE45NeRqHl1Erb23oujk5z8OFTwMB8GA1UdIwQY MBaAFMpkQdnYB+DXjOdSE6EDQA7hSnzcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC85OTQ3YjYtMzRiYy00NzdlLTg4MTYt MmUyOGI5NjQ5OGE5LzEvSVRqazE1R29lWFVTdHZiZWk2T1RuUHc0VlBBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC85OTQ3YjYtMzRiYy00NzdlLTg4MTYtMmUyOGI5NjQ5OGE5 LzEveW1SQjJkZ0g0TmVNNTFJVG9RTkFEdUZLZk53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAWNI+MA8E AgACMAkDBwAqFKCHAAIwDQYJKoZIhvcNAQELBQADggEBACQKHEy6C1PYeU26hOur 4nqV9dUHNuuXfHs7bcDSgN+iuMAFe2PN0p2z/S9jaNXC2n9gqcXxkFtRGtVcRBW5 sGH+Gwcd0sPZEY7LfeH+bJXCt8xLJ2z4IXa/u+1IfqBqzNR8szm6wAXJ5jU28fl5 zqOInqVG7RLtKfSHrMEtYdjHz1YCjw9R+zfv+BSvNFa3VDp9HcrPiN3t/mHSiUYt LUfk4JNtL2JSULVMZkSaKeYT7oBq/A+goOzmW32ldnHY552uBkdb2sfJh4gnTjD9 l5Amx5tw+bPtDcDcYLpe8jMSCVmBgBr6ZPYkPcD614qW2xpO0Ml579oeR83Sl4u1 834= -----END CERTIFICATE-----Generated at Sun Jan 25 17:18:59 2026 by rpki-client