This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/izo4UDdC4mpQkmyWIGDJxTunxWE.roa File: izo4UDdC4mpQkmyWIGDJxTunxWE.roa (raw, json) Hash identifier: nGq0zWnIwQfu9LNAcwYVVr+irG2rx0o9SiWP5Vb3sPw= Subject key identifier: 8B:3A:38:50:37:42:E2:6A:50:92:6C:96:20:60:C9:C5:3B:A7:C5:61 Certificate issuer: /CN=1ff2cf1a6230cd62cb3ca8a1bc1d4a4bb4337c1d Certificate serial: 019B7CEDFBF759733073FEC8C79A5FB04806 Authority key identifier: 1F:F2:CF:1A:62:30:CD:62:CB:3C:A8:A1:BC:1D:4A:4B:B4:33:7C:1D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H_LPGmIwzWLLPKihvB1KS7QzfB0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/izo4UDdC4mpQkmyWIGDJxTunxWE.roa Signing time: Fri 02 Jan 2026 04:18:49 +0000 ROA not before: Fri 02 Jan 2026 04:18:49 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 49434 IP address blocks: 185.198.20.0/22 maxlen: 22 185.198.20.0/23 maxlen: 23 2a13:bf80::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/H_LPGmIwzWLLPKihvB1KS7QzfB0.crl rsync://rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/H_LPGmIwzWLLPKihvB1KS7QzfB0.mft rsync://rpki.ripe.net/repository/DEFAULT/H_LPGmIwzWLLPKihvB1KS7QzfB0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:fb:f7:59:73:30:73:fe:c8:c7:9a:5f:b0:48:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1ff2cf1a6230cd62cb3ca8a1bc1d4a4bb4337c1d Validity Not Before: Jan 2 04:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b3a38503742e26a50926c962060c9c53ba7c561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:57:78:a1:ee:b8:90:0f:c4:eb:4d:f3:6a:ca: a7:35:61:9e:dd:fb:de:b2:e6:8d:55:08:20:ad:1c: 06:d9:ab:3e:53:ff:b3:c8:b1:b3:df:7d:44:3b:28: 62:79:45:33:72:04:c7:ed:35:1c:f4:ec:52:de:d8: e7:ff:ff:00:d7:00:1e:54:4d:45:03:d3:0d:4b:40: 0b:a7:c3:9a:47:b8:87:b5:b5:d5:c3:95:4e:d9:b6: 4e:58:c0:30:01:99:8e:d2:b6:10:20:51:c4:c2:6e: a1:c7:1f:64:0d:39:bc:68:c7:a4:68:03:4a:ea:dd: 67:38:09:e2:b7:ad:02:36:f6:95:b9:47:73:e0:2d: cb:94:ee:21:93:af:5d:97:51:d1:2d:d0:a6:e5:53: 6e:64:87:f4:82:83:d8:03:ff:8c:75:c3:a3:98:e1: fb:6f:ce:85:57:21:e1:84:47:59:ab:a2:a5:f2:00: ca:6d:6a:4b:81:27:79:51:e1:c9:85:78:ee:0c:fe: e7:ac:35:d5:b5:54:5e:bb:49:5b:66:65:f6:e1:58: 26:d0:e5:ef:bf:8b:cc:44:50:44:ed:03:65:b9:a5: 2a:c4:ee:ab:b7:90:6c:00:4e:e4:a6:cc:10:9a:bc: 4f:e7:3a:b8:c8:cc:fe:3b:66:a0:65:d2:88:47:5a: 12:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:3A:38:50:37:42:E2:6A:50:92:6C:96:20:60:C9:C5:3B:A7:C5:61 X509v3 Authority Key Identifier: keyid:1F:F2:CF:1A:62:30:CD:62:CB:3C:A8:A1:BC:1D:4A:4B:B4:33:7C:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H_LPGmIwzWLLPKihvB1KS7QzfB0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/izo4UDdC4mpQkmyWIGDJxTunxWE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6a48a7-0c01-4aca-b431-6cedcf234975/1/H_LPGmIwzWLLPKihvB1KS7QzfB0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.198.20.0/22 IPv6: 2a13:bf80::/29 Signature Algorithm: sha256WithRSAEncryption 73:bb:d0:06:12:8c:51:10:8b:a2:68:27:c7:c3:4a:b1:8e:4a: 7b:a6:93:e1:b9:a1:7b:c1:d3:74:e4:26:4f:80:07:4a:db:81: 36:c9:a2:0d:79:1e:28:a5:9c:20:1a:a3:35:d6:1d:40:04:40: c1:5d:b9:bf:e6:5d:80:d1:7c:a1:12:c4:10:17:20:a3:d0:ad: 84:c6:f6:57:e7:8f:a7:fd:1f:42:f4:5a:82:d2:62:30:f6:53: 5e:ba:86:c1:4d:80:c8:b5:70:37:26:70:e9:44:60:09:07:91: 4c:e8:84:03:ef:d8:0d:b7:70:15:81:6c:2f:9e:e9:ba:4f:40: 71:da:db:68:0f:07:7f:64:69:19:f1:bd:09:57:b1:d2:b6:92: c4:57:e6:eb:81:02:fa:c6:d2:98:04:00:f8:1d:b4:74:83:05: 46:24:14:84:1a:4f:b6:36:73:f5:46:57:09:93:f9:c9:e2:bb: 41:a2:d4:4b:01:c9:9f:26:20:b0:e5:08:e6:7d:a4:34:9e:14: 7c:37:dc:8d:15:36:31:23:bf:96:ca:4d:f4:8a:e8:b0:da:9e: bf:f8:b7:7f:f6:66:08:c0:00:68:89:28:74:1e:f2:a0:34:dc: 2e:83:f5:6b:21:59:44:45:6d:2d:32:28:17:37:64:be:b7:b6: 22:66:80:75 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87fv3WXMwc/7Ix5pfsEgGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmZjJjZjFhNjIzMGNkNjJjYjNjYThhMWJjMWQ0YTRiYjQz MzdjMWQwHhcNMjYwMTAyMDQxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjNhMzg1MDM3NDJlMjZhNTA5MjZjOTYyMDYwYzljNTNiYTdjNTYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr1d4oe64kA/E603zasqnNWGe3fve suaNVQggrRwG2as+U/+zyLGz331EOyhieUUzcgTH7TUc9OxS3tjn//8A1wAeVE1F A9MNS0ALp8OaR7iHtbXVw5VO2bZOWMAwAZmO0rYQIFHEwm6hxx9kDTm8aMekaANK 6t1nOAnit60CNvaVuUdz4C3LlO4hk69dl1HRLdCm5VNuZIf0goPYA/+MdcOjmOH7 b86FVyHhhEdZq6Kl8gDKbWpLgSd5UeHJhXjuDP7nrDXVtVReu0lbZmX24Vgm0OXv v4vMRFBE7QNluaUqxO6rt5BsAE7kpswQmrxP5zq4yMz+O2agZdKIR1oShQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIs6OFA3QuJqUJJsliBgycU7p8VhMB8GA1UdIwQY MBaAFB/yzxpiMM1iyzyoobwdSku0M3wdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSF9MUEdtSXd6V0xMUEtpaHZCMUtTN1F6ZkIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS82YTQ4YTctMGMwMS00YWNhLWI0MzEt NmNlZGNmMjM0OTc1LzEvaXpvNFVEZEM0bXBRa215V0lHREp4VHVueFdFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OS82YTQ4YTctMGMwMS00YWNhLWI0MzEtNmNlZGNmMjM0OTc1 LzEvSF9MUEdtSXd6V0xMUEtpaHZCMUtTN1F6ZkIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCucYUMA0E AgACMAcDBQMqE7+AMA0GCSqGSIb3DQEBCwUAA4IBAQBzu9AGEoxREIuiaCfHw0qx jkp7ppPhuaF7wdN05CZPgAdK24E2yaINeR4opZwgGqM11h1ABEDBXbm/5l2A0Xyh EsQQFyCj0K2ExvZX54+n/R9C9FqC0mIw9lNeuobBTYDItXA3JnDpRGAJB5FM6IQD 79gNt3AVgWwvnum6T0Bx2ttoDwd/ZGkZ8b0JV7HStpLEV+brgQL6xtKYBAD4HbR0 gwVGJBSEGk+2NnP1RlcJk/nJ4rtBotRLAcmfJiCw5QjmfaQ0nhR8N9yNFTYxI7+W yk30iuiw2p6/+Ld/9mYIwABoiSh0HvKgNNwug/VrIVlERW0tMigXN2S+t7YiZoB1 -----END CERTIFICATE-----Generated at Sun Jan 25 22:28:51 2026 by rpki-client