This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/iibtnp7aTtIa6JuXKY33eJFFda8.roa File: iibtnp7aTtIa6JuXKY33eJFFda8.roa (raw, json) Hash identifier: RjIAEx4RmrrzphlQg7qHfzS27QQwNJxq4pfJvPaCZjo= Subject key identifier: 8A:26:ED:9E:9E:DA:4E:D2:1A:E8:9B:97:29:8D:F7:78:91:45:75:AF Certificate issuer: /CN=a3679bf4c627d85fee2ce13a53c44851b9df0563 Certificate serial: 019B7DCB4B658F82F0691DED52C803D783F9 Authority key identifier: A3:67:9B:F4:C6:27:D8:5F:EE:2C:E1:3A:53:C4:48:51:B9:DF:05:63 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o2eb9MYn2F_uLOE6U8RIUbnfBWM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/iibtnp7aTtIa6JuXKY33eJFFda8.roa Signing time: Fri 02 Jan 2026 08:20:33 +0000 ROA not before: Fri 02 Jan 2026 08:20:33 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35807 IP address blocks: 87.248.224.0/19 maxlen: 24 88.201.128.0/17 maxlen: 24 93.100.0.0/16 maxlen: 24 94.19.0.0/16 maxlen: 24 185.37.128.0/22 maxlen: 24 185.84.32.0/22 maxlen: 24 185.88.156.0/22 maxlen: 24 185.123.64.0/22 maxlen: 24 188.242.0.0/15 maxlen: 24 2a05:3580::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/o2eb9MYn2F_uLOE6U8RIUbnfBWM.crl rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/o2eb9MYn2F_uLOE6U8RIUbnfBWM.mft rsync://rpki.ripe.net/repository/DEFAULT/o2eb9MYn2F_uLOE6U8RIUbnfBWM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:4b:65:8f:82:f0:69:1d:ed:52:c8:03:d7:83:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a3679bf4c627d85fee2ce13a53c44851b9df0563 Validity Not Before: Jan 2 08:20:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a26ed9e9eda4ed21ae89b97298df778914575af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:89:0b:a1:ab:b6:9b:bc:bb:ce:84:31:f7:d9: fc:29:e5:e5:11:c8:e2:56:72:24:cf:73:5d:18:53: c9:c6:86:40:63:b1:e6:e0:fd:c4:17:65:f5:bb:bd: ba:3a:ae:17:b4:e1:7e:53:9f:22:e8:6d:94:10:94: 1a:6b:7b:24:4a:d5:84:e9:a1:ae:bb:39:ba:cf:fd: b6:e8:e6:3f:c6:24:72:09:7d:8f:ec:a4:f2:79:a0: 8c:ea:60:31:71:1c:b0:38:4a:28:f3:7c:e4:bc:68: 61:b8:a1:68:e8:8c:1c:8d:86:60:4d:ad:1f:19:69: 23:8b:3b:80:ce:00:3c:0a:0e:69:40:5b:59:75:49: cd:d0:3d:bf:48:c4:09:70:d8:e7:50:b1:5c:48:0d: 4e:29:c6:8a:ff:83:db:f9:cf:a5:c9:b3:05:ea:69: f0:65:10:53:5a:70:b9:1c:5d:6c:a4:f3:db:ba:eb: fb:07:19:aa:0f:8a:c2:be:49:31:ed:ee:01:4a:53: 48:90:6c:b1:b8:cd:8d:7a:03:f3:29:da:1f:70:81: 80:66:68:87:ad:32:be:7d:a1:96:19:19:98:3c:d4: e6:17:39:62:87:c0:7d:5e:66:9e:8d:50:4f:f3:44: d3:36:28:12:bc:c0:ed:9b:2d:49:47:b2:7d:54:31: 85:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:26:ED:9E:9E:DA:4E:D2:1A:E8:9B:97:29:8D:F7:78:91:45:75:AF X509v3 Authority Key Identifier: keyid:A3:67:9B:F4:C6:27:D8:5F:EE:2C:E1:3A:53:C4:48:51:B9:DF:05:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o2eb9MYn2F_uLOE6U8RIUbnfBWM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/iibtnp7aTtIa6JuXKY33eJFFda8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/b62e59-e2c5-4a76-8b67-55672634cbc1/1/o2eb9MYn2F_uLOE6U8RIUbnfBWM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.248.224.0/19 88.201.128.0/17 93.100.0.0/16 94.19.0.0/16 185.37.128.0/22 185.84.32.0/22 185.88.156.0/22 185.123.64.0/22 188.242.0.0/15 IPv6: 2a05:3580::/29 Signature Algorithm: sha256WithRSAEncryption 6f:58:bd:02:71:3e:b9:31:e3:f9:2b:a7:13:07:79:08:44:36: de:44:d3:d1:33:45:22:5e:47:d0:5c:c6:13:fd:ba:94:6a:d3: f5:18:60:d3:47:cd:35:3f:0a:8d:d2:e9:fb:56:ad:4d:3e:cc: 4e:4f:0d:b0:f2:dd:51:97:dd:e9:dd:8d:1e:60:7a:0e:9e:50: a5:d1:06:41:96:a0:29:ec:97:c5:b4:c8:d9:35:cb:2e:f4:14: ad:cb:8d:9d:37:1b:9f:61:23:39:90:89:ac:71:6c:ee:72:46: 65:e1:ee:e5:e4:69:f9:0b:e9:cc:6a:58:93:b0:c2:c6:67:81: 2d:6e:6e:59:39:d6:56:b7:7a:e8:18:a4:56:b6:b9:ff:fb:0c: eb:5e:57:9e:a7:5f:23:0b:6e:4c:1f:cf:1f:68:97:6d:30:e4: cd:e2:49:5b:b9:79:6d:cc:fc:64:1e:75:3f:df:4e:65:a3:d1: b6:62:4b:a3:49:79:fc:b6:14:00:db:58:06:c9:9d:3d:e8:51: 2c:5b:41:a0:c1:0b:27:1b:18:c3:78:d4:38:0f:6e:8b:95:46: bd:9d:4c:9b:88:ad:84:95:13:73:4b:4a:b9:4a:c3:77:40:82: f3:1a:f1:0a:23:3f:db:a9:d6:9c:32:27:65:09:66:74:95:db: 25:d0:39:a9 -----BEGIN CERTIFICATE----- MIIFOTCCBCGgAwIBAgISAZt9y0tlj4LwaR3tUsgD14P5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEzNjc5YmY0YzYyN2Q4NWZlZTJjZTEzYTUzYzQ0ODUxYjlk ZjA1NjMwHhcNMjYwMTAyMDgyMDMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTI2ZWQ5ZTllZGE0ZWQyMWFlODliOTcyOThkZjc3ODkxNDU3NWFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnokLoau2m7y7zoQx99n8KeXlEcji VnIkz3NdGFPJxoZAY7Hm4P3EF2X1u726Oq4XtOF+U58i6G2UEJQaa3skStWE6aGu uzm6z/226OY/xiRyCX2P7KTyeaCM6mAxcRywOEoo83zkvGhhuKFo6IwcjYZgTa0f GWkjizuAzgA8Cg5pQFtZdUnN0D2/SMQJcNjnULFcSA1OKcaK/4Pb+c+lybMF6mnw ZRBTWnC5HF1spPPbuuv7BxmqD4rCvkkx7e4BSlNIkGyxuM2NegPzKdofcIGAZmiH rTK+faGWGRmYPNTmFzlih8B9XmaejVBP80TTNigSvMDtmy1JR7J9VDGFrQIDAQAB o4ICRTCCAkEwHQYDVR0OBBYEFIom7Z6e2k7SGuiblymN93iRRXWvMB8GA1UdIwQY MBaAFKNnm/TGJ9hf7izhOlPESFG53wVjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbzJlYjlNWW4yRl91TE9FNlU4UklVYm5mQldNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9iNjJlNTktZTJjNS00YTc2LThiNjct NTU2NzI2MzRjYmMxLzEvaWlidG5wN2FUdElhNkp1WEtZMzNlSkZGZGE4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC9iNjJlNTktZTJjNS00YTc2LThiNjctNTU2NzI2MzRjYmMx LzEvbzJlYjlNWW4yRl91TE9FNlU4UklVYm5mQldNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjA5BAIAATAzAwQFV/jgAwQH WMmAAwMAXWQDAwBeEwMEArklgAMEArlUIAMEArlYnAMEArl7QAMDAbzyMA0EAgAC MAcDBQMqBTWAMA0GCSqGSIb3DQEBCwUAA4IBAQBvWL0CcT65MeP5K6cTB3kIRDbe RNPRM0UiXkfQXMYT/bqUatP1GGDTR801PwqN0un7Vq1NPsxOTw2w8t1Rl93p3Y0e YHoOnlCl0QZBlqAp7JfFtMjZNcsu9BSty42dNxufYSM5kImscWzuckZl4e7l5Gn5 C+nMaliTsMLGZ4Etbm5ZOdZWt3roGKRWtrn/+wzrXleep18jC25MH88faJdtMOTN 4klbuXltzPxkHnU/305lo9G2YkujSXn8thQA21gGyZ096FEsW0GgwQsnGxjDeNQ4 D26LlUa9nUybiK2ElRNzS0q5SsN3QILzGvEKIz/bqdacMidlCWZ0ldsl0Dmp -----END CERTIFICATE-----Generated at Mon Jan 26 10:53:02 2026 by rpki-client