This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iXVTxxd-VzfNWG_h6FSR8aDfAh0.roa File: iXVTxxd-VzfNWG_h6FSR8aDfAh0.roa (raw, json) Hash identifier: TCBBqFimvaPYoPwM3u7pi0MqQ4jMKUyoiDLkS/Ux7PI= Subject key identifier: 89:75:53:C7:17:7E:57:37:CD:58:6F:E1:E8:54:91:F1:A0:DF:02:1D Certificate issuer: /CN=894928a39627cd5ee5f975bd897c2d775ab29940 Certificate serial: 019B7CEE4B13E9C8A62C48514C4F831B66A0 Authority key identifier: 89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iXVTxxd-VzfNWG_h6FSR8aDfAh0.roa Signing time: Fri 02 Jan 2026 04:19:10 +0000 ROA not before: Fri 02 Jan 2026 04:19:10 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133466 IP address blocks: 149.226.192.0/21 maxlen: 24 192.48.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.mft rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:4b:13:e9:c8:a6:2c:48:51:4c:4f:83:1b:66:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=894928a39627cd5ee5f975bd897c2d775ab29940 Validity Not Before: Jan 2 04:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=897553c7177e5737cd586fe1e85491f1a0df021d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:90:ae:50:0d:9d:fa:24:1f:6e:2f:2e:57:ab: 66:db:96:cf:09:3f:6a:3d:b2:ba:e0:91:ce:1d:ba: 59:c8:7a:23:df:57:9a:b7:20:4b:ed:76:a8:be:70: 09:ac:38:12:dc:e4:69:47:6c:b1:7a:56:0f:94:ec: a1:48:0b:52:7e:80:2d:35:a9:6c:08:e5:ad:08:a2: e7:0b:e0:b0:00:8d:37:bb:e5:3d:02:12:b3:6f:9e: 5f:ee:a1:8f:46:40:9b:69:93:88:c9:2c:d1:ba:ae: c3:0a:a9:38:81:35:d2:09:10:ab:3f:4b:a7:2e:37: 37:4a:64:7e:82:d9:75:e0:d7:7f:c3:27:20:5e:51: ff:7a:17:ef:7b:1e:2d:b5:33:07:ca:ad:89:83:65: 1a:80:aa:e8:52:3d:cb:e0:ab:ab:52:25:31:9c:4e: c6:38:40:70:28:01:4d:f7:1d:f0:07:60:34:e1:69: 2e:a2:2c:4d:e0:f9:5a:63:85:ea:a8:59:20:63:a9: 7f:b9:02:b7:84:3b:a6:b9:66:c0:cb:5e:a0:e3:01: da:c9:ba:0a:a4:2c:3e:97:f8:1c:0d:f5:a9:e3:19: 20:4a:97:b6:ac:51:0f:d2:fc:b4:3d:6e:46:68:ae: ab:2b:1e:fe:d4:09:1f:ca:aa:54:0b:03:48:9f:2c: b3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:75:53:C7:17:7E:57:37:CD:58:6F:E1:E8:54:91:F1:A0:DF:02:1D X509v3 Authority Key Identifier: keyid:89:49:28:A3:96:27:CD:5E:E5:F9:75:BD:89:7C:2D:77:5A:B2:99:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iUkoo5YnzV7l-XW9iXwtd1qymUA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iXVTxxd-VzfNWG_h6FSR8aDfAh0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/69c7d1-c43d-4bcd-8e6a-1593d4045cbc/1/iUkoo5YnzV7l-XW9iXwtd1qymUA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.226.192.0/21 192.48.31.0/24 Signature Algorithm: sha256WithRSAEncryption 09:ea:8e:99:1b:da:ef:94:a1:1a:e7:56:8e:61:06:bd:40:e4: 35:7a:c7:0c:72:f5:af:38:32:49:a0:66:30:16:3c:fe:2b:4f: 4d:5e:2e:9d:c3:77:13:34:09:58:e1:0d:68:47:bc:06:94:4e: 3e:0b:a4:87:cf:d9:83:7c:18:31:fe:93:6f:af:ba:8d:0d:2a: 28:90:4f:3d:76:55:c1:40:26:c6:fe:35:ec:92:e1:c7:1e:cb: 34:77:cb:a4:5f:bd:58:df:de:62:ab:2d:9f:bc:d6:db:e5:9f: e1:9c:41:b0:4e:2e:28:65:10:c2:81:73:ea:2f:37:b9:a6:d8: aa:bb:f2:6a:bf:ae:80:39:05:07:79:45:9b:ad:2e:57:58:77: 03:ff:3a:40:13:07:2f:fd:8a:6d:88:9c:79:fe:ea:de:e4:c9: fe:d5:87:92:a7:fe:fe:5e:29:88:f4:92:48:b2:31:14:a4:49: 4c:ed:50:a2:77:dd:0c:cf:5b:04:b4:5d:72:65:31:45:e9:95: 8c:24:e4:67:05:ad:7e:3a:0e:2d:69:23:f5:e8:17:c1:84:cf: 4d:6c:9e:eb:75:e7:1c:1c:f9:8f:8f:48:36:fa:a1:78:a5:84: ee:2e:c3:64:0b:35:b0:a0:c9:87:f9:5f:48:3c:50:d1:56:18: 42:b9:bf:aa -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt87ksT6cimLEhRTE+DG2agMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NDkyOGEzOTYyN2NkNWVlNWY5NzViZDg5N2MyZDc3NWFi Mjk5NDAwHhcNMjYwMTAyMDQxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTc1NTNjNzE3N2U1NzM3Y2Q1ODZmZTFlODU0OTFmMWEwZGYwMjFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJCuUA2d+iQfbi8uV6tm25bPCT9q PbK64JHOHbpZyHoj31eatyBL7XaovnAJrDgS3ORpR2yxelYPlOyhSAtSfoAtNals COWtCKLnC+CwAI03u+U9AhKzb55f7qGPRkCbaZOIySzRuq7DCqk4gTXSCRCrP0un Ljc3SmR+gtl14Nd/wycgXlH/ehfvex4ttTMHyq2Jg2UagKroUj3L4KurUiUxnE7G OEBwKAFN9x3wB2A04WkuoixN4PlaY4XqqFkgY6l/uQK3hDumuWbAy16g4wHayboK pCw+l/gcDfWp4xkgSpe2rFEP0vy0PW5GaK6rKx7+1AkfyqpUCwNInyyzawIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIl1U8cXflc3zVhv4ehUkfGg3wIdMB8GA1UdIwQY MBaAFIlJKKOWJ81e5fl1vYl8LXdasplAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVVrb281WW56VjdsLVhXOWlYd3RkMXF5bVVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC82OWM3ZDEtYzQzZC00YmNkLThlNmEt MTU5M2Q0MDQ1Y2JjLzEvaVhWVHh4ZC1WemZOV0dfaDZGU1I4YURmQWgwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC82OWM3ZDEtYzQzZC00YmNkLThlNmEtMTU5M2Q0MDQ1Y2Jj LzEvaVVrb281WW56VjdsLVhXOWlYd3RkMXF5bVVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDleLAAwQA wDAfMA0GCSqGSIb3DQEBCwUAA4IBAQAJ6o6ZG9rvlKEa51aOYQa9QOQ1escMcvWv ODJJoGYwFjz+K09NXi6dw3cTNAlY4Q1oR7wGlE4+C6SHz9mDfBgx/pNvr7qNDSoo kE89dlXBQCbG/jXskuHHHss0d8ukX71Y395iqy2fvNbb5Z/hnEGwTi4oZRDCgXPq Lze5ptiqu/Jqv66AOQUHeUWbrS5XWHcD/zpAEwcv/YptiJx5/ure5Mn+1YeSp/7+ XimI9JJIsjEUpElM7VCid90Mz1sEtF1yZTFF6ZWMJORnBa1+Og4taSP16BfBhM9N bJ7rdeccHPmPj0g2+qF4pYTuLsNkCzWwoMmH+V9IPFDRVhhCub+q -----END CERTIFICATE-----Generated at Sun Jan 25 18:20:37 2026 by rpki-client