This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/IpvtiB3ivhePmqqAbbVhFnX59zM.roa File: IpvtiB3ivhePmqqAbbVhFnX59zM.roa (raw, json) Hash identifier: nW14dlZ+CXYt/syhRcngrlG7SAwArRMiAFD3SIPI6y8= Subject key identifier: 22:9B:ED:88:1D:E2:BE:17:8F:9A:AA:80:6D:B5:61:16:75:F9:F7:33 Certificate issuer: /CN=b06551937efc96e145e33a1ebca24492dc120ecb Certificate serial: 019B7F8205106A4DE5BD72339FE309C207B2 Authority key identifier: B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/IpvtiB3ivhePmqqAbbVhFnX59zM.roa Signing time: Fri 02 Jan 2026 16:19:46 +0000 ROA not before: Fri 02 Jan 2026 16:19:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47288 IP address blocks: 93.184.144.0/20 maxlen: 20 93.184.144.0/24 maxlen: 24 93.184.145.0/24 maxlen: 24 93.184.146.0/24 maxlen: 24 93.184.147.0/24 maxlen: 24 93.184.148.0/24 maxlen: 24 93.184.149.0/24 maxlen: 24 93.184.150.0/24 maxlen: 24 93.184.151.0/24 maxlen: 24 93.184.152.0/24 maxlen: 24 93.184.153.0/24 maxlen: 24 93.184.154.0/24 maxlen: 24 93.184.155.0/24 maxlen: 24 93.184.156.0/24 maxlen: 24 93.184.157.0/24 maxlen: 24 93.184.158.0/24 maxlen: 24 93.184.159.0/24 maxlen: 24 185.168.152.0/22 maxlen: 22 185.168.152.0/24 maxlen: 24 185.168.153.0/24 maxlen: 24 185.168.154.0/23 maxlen: 23 185.168.154.0/24 maxlen: 24 185.168.155.0/24 maxlen: 24 193.218.40.0/24 maxlen: 24 193.218.43.0/24 maxlen: 24 193.218.105.0/24 maxlen: 24 193.218.121.0/24 maxlen: 24 2a00:dc00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.mft rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:05:10:6a:4d:e5:bd:72:33:9f:e3:09:c2:07:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b06551937efc96e145e33a1ebca24492dc120ecb Validity Not Before: Jan 2 16:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=229bed881de2be178f9aaa806db5611675f9f733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:66:d9:4d:4f:1e:bb:1c:f3:d7:a8:b6:1c:7c: 65:04:bc:92:11:88:c0:1e:3f:c2:c2:e7:84:8a:b2: 42:c2:7f:ec:64:69:7c:ea:25:80:80:a1:f9:2f:11: a0:31:aa:62:d5:ff:88:29:a2:3c:28:67:4f:90:06: 3f:95:fe:1f:46:a5:8f:0f:c0:2e:4b:2e:0f:bb:0e: ee:c8:24:9d:95:64:ff:40:bf:d4:53:1f:4a:99:c4: 9b:b3:97:bd:b0:fb:39:99:58:47:3d:20:db:79:c0: e4:d2:9d:f7:66:38:51:56:16:a8:90:76:d3:55:3c: 0c:7a:fd:82:c7:47:f9:93:67:44:bc:e8:b3:15:0d: 3a:65:c0:42:13:9e:98:c4:73:27:31:f1:8f:06:79: 4b:01:73:73:60:78:99:78:59:6c:fc:b7:6d:8d:ed: 35:6a:58:50:f9:17:dc:27:a5:1f:38:62:ae:e2:1e: 34:5d:51:81:de:1a:8c:59:d3:fa:4f:95:ba:e7:a2: 4b:c0:2c:7b:7f:fc:d5:19:ca:ad:92:d1:4c:b8:2a: 20:aa:24:ee:a3:60:ac:08:af:39:4f:4f:f9:b0:6a: 7e:46:cf:a3:d4:4d:cf:cf:9e:21:92:62:8c:2a:1f: 6c:1b:9e:7c:50:c0:19:a4:5d:0e:34:2d:be:82:db: aa:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:9B:ED:88:1D:E2:BE:17:8F:9A:AA:80:6D:B5:61:16:75:F9:F7:33 X509v3 Authority Key Identifier: keyid:B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/IpvtiB3ivhePmqqAbbVhFnX59zM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.184.144.0/20 185.168.152.0/22 193.218.40.0/24 193.218.43.0/24 193.218.105.0/24 193.218.121.0/24 IPv6: 2a00:dc00::/32 Signature Algorithm: sha256WithRSAEncryption 6c:86:3f:23:99:2c:17:b8:2e:50:35:13:0e:78:1e:65:6c:b8: d7:42:6c:ef:2d:3a:c9:5c:11:90:9b:ad:11:ee:cf:f6:8d:d5: 9a:ba:df:7c:60:ba:4d:a4:fb:1b:4f:a3:42:af:62:8a:a6:bf: 3a:7f:f6:a7:03:54:86:dc:2b:ab:13:73:31:87:f5:ce:63:25: 95:d0:c1:0d:31:39:81:70:52:5c:ea:9b:ec:8e:9e:5a:4a:73: a9:39:b1:39:1f:e6:59:52:e9:24:56:50:f0:05:83:00:e8:3b: 54:5f:25:43:eb:1f:2b:e7:4e:84:d5:5b:53:2e:42:91:96:b7: 8b:e7:68:fe:8b:6e:1c:23:00:f9:a7:75:e2:3a:49:d8:28:ea: 9c:b3:bf:f0:5a:92:d1:94:98:b7:07:31:8f:8d:8a:ce:f4:93: 91:fb:b4:a6:16:f3:94:ba:ab:30:31:a4:59:98:ab:66:77:98: 0d:52:17:23:c4:80:a4:49:51:47:8c:6f:dc:f8:68:30:ba:b4: 0b:98:55:f2:a8:dd:c9:a3:a3:1a:99:3f:ca:ef:d3:d8:37:19: db:e5:38:49:05:3f:81:de:16:f9:3f:36:16:1a:9b:9b:d8:a1: 05:0a:9c:20:42:b2:01:08:53:6b:36:ff:1e:d6:e7:e0:2c:c0: 01:c1:7f:6d -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt/ggUQak3lvXIzn+MJwgeyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwNjU1MTkzN2VmYzk2ZTE0NWUzM2ExZWJjYTI0NDkyZGMx MjBlY2IwHhcNMjYwMTAyMTYxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjliZWQ4ODFkZTJiZTE3OGY5YWFhODA2ZGI1NjExNjc1ZjlmNzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo2bZTU8euxzz16i2HHxlBLySEYjA Hj/CwueEirJCwn/sZGl86iWAgKH5LxGgMapi1f+IKaI8KGdPkAY/lf4fRqWPD8Au Sy4Puw7uyCSdlWT/QL/UUx9KmcSbs5e9sPs5mVhHPSDbecDk0p33ZjhRVhaokHbT VTwMev2Cx0f5k2dEvOizFQ06ZcBCE56YxHMnMfGPBnlLAXNzYHiZeFls/Ldtje01 alhQ+RfcJ6UfOGKu4h40XVGB3hqMWdP6T5W656JLwCx7f/zVGcqtktFMuCogqiTu o2CsCK85T0/5sGp+Rs+j1E3Pz54hkmKMKh9sG558UMAZpF0ONC2+gtuqtQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFCKb7Ygd4r4Xj5qqgG21YRZ1+fczMB8GA1UdIwQY MBaAFLBlUZN+/JbhReM6HryiRJLcEg7LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0dWUmszNzhsdUZGNHpvZXZLSkVrdHdTRHNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8yYzQ3MzEtODlkNS00ZTliLWI0YWEt YmYwOWFkMzJjODg4LzEvSXB2dGlCM2l2aGVQbXFxQWJiVmhGblg1OXpNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny8yYzQ3MzEtODlkNS00ZTliLWI0YWEtYmYwOWFkMzJjODg4 LzEvc0dWUmszNzhsdUZGNHpvZXZLSkVrdHdTRHNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQEXbiQAwQC uaiYAwQAwdooAwQAwdorAwQAwdppAwQAwdp5MA0EAgACMAcDBQAqANwAMA0GCSqG SIb3DQEBCwUAA4IBAQBshj8jmSwXuC5QNRMOeB5lbLjXQmzvLTrJXBGQm60R7s/2 jdWaut98YLpNpPsbT6NCr2KKpr86f/anA1SG3CurE3Mxh/XOYyWV0MENMTmBcFJc 6pvsjp5aSnOpObE5H+ZZUukkVlDwBYMA6DtUXyVD6x8r506E1VtTLkKRlreL52j+ i24cIwD5p3XiOknYKOqcs7/wWpLRlJi3BzGPjYrO9JOR+7SmFvOUuqswMaRZmKtm d5gNUhcjxICkSVFHjG/c+GgwurQLmFXyqN3Jo6MamT/K79PYNxnb5ThJBT+B3hb5 PzYWGpub2KEFCpwgQrIBCFNrNv8e1ufgLMABwX9t -----END CERTIFICATE-----Generated at Mon Jan 26 03:15:55 2026 by rpki-client