This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/iwdbfX3VeEC-dJ7spuyrMGzAZEA.roa File: iwdbfX3VeEC-dJ7spuyrMGzAZEA.roa (raw, json) Hash identifier: rGk72/1YdyFUc4NyU+VKerIA+XWmcskQTcATzTBlTBs= Subject key identifier: 8B:07:5B:7D:7D:D5:78:40:BE:74:9E:EC:A6:EC:AB:30:6C:C0:64:40 Certificate issuer: /CN=a0bb1718963ddd9128b76fd3d8213a1565ef856d Certificate serial: 019B797F34226A9C67A5FDE57469ED919F01 Authority key identifier: A0:BB:17:18:96:3D:DD:91:28:B7:6F:D3:D8:21:3A:15:65:EF:85:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oLsXGJY93ZEot2_T2CE6FWXvhW0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/iwdbfX3VeEC-dJ7spuyrMGzAZEA.roa Signing time: Thu 01 Jan 2026 12:18:58 +0000 ROA not before: Thu 01 Jan 2026 12:18:58 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 1764 IP address blocks: 193.201.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/oLsXGJY93ZEot2_T2CE6FWXvhW0.crl rsync://rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/oLsXGJY93ZEot2_T2CE6FWXvhW0.mft rsync://rpki.ripe.net/repository/DEFAULT/oLsXGJY93ZEot2_T2CE6FWXvhW0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:34:22:6a:9c:67:a5:fd:e5:74:69:ed:91:9f:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a0bb1718963ddd9128b76fd3d8213a1565ef856d Validity Not Before: Jan 1 12:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b075b7d7dd57840be749eeca6ecab306cc06440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:91:36:5b:ca:93:4a:10:02:ea:30:27:92:f9: f2:93:d2:3c:4a:e1:d1:0b:ce:74:84:89:f4:ca:52: f2:66:1b:02:f8:ed:72:12:0b:94:38:aa:7e:d1:ec: c8:52:2a:8a:07:d2:4a:b4:e9:14:01:ea:76:1a:4a: 6d:be:59:53:a9:a4:82:70:86:2c:60:09:ff:52:4c: 31:18:b8:76:ef:85:49:88:54:1f:b3:b7:c4:cd:ca: a7:26:b8:43:a9:bd:c1:87:23:bd:96:05:39:17:ae: 9e:5f:9e:fa:d9:5e:78:e3:3d:7e:b2:d6:54:5b:5b: da:30:55:50:7b:ef:46:c7:ee:ef:50:bf:fc:5f:e9: 75:f9:50:f6:4e:65:00:22:fd:fe:6b:8e:27:69:43: 35:33:d1:b3:b5:ea:2b:d0:56:76:53:d4:12:26:e0: 23:49:6e:27:61:19:e1:7a:59:0a:c3:25:f1:27:dc: 8c:97:ad:2b:9c:13:6c:51:7b:99:d1:3d:6a:1d:81: 97:3c:b3:c1:ab:09:51:21:5d:57:36:9d:ba:30:e5: 92:68:3c:45:d5:70:14:3e:81:e1:08:f0:ca:07:fc: f7:a7:32:99:4f:1b:25:61:bd:c8:cb:fd:66:74:2c: 05:a4:e7:3e:b6:3d:6d:79:b7:6b:7c:45:e0:89:ba: c5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:07:5B:7D:7D:D5:78:40:BE:74:9E:EC:A6:EC:AB:30:6C:C0:64:40 X509v3 Authority Key Identifier: keyid:A0:BB:17:18:96:3D:DD:91:28:B7:6F:D3:D8:21:3A:15:65:EF:85:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLsXGJY93ZEot2_T2CE6FWXvhW0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/iwdbfX3VeEC-dJ7spuyrMGzAZEA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/c4210e-90de-4eca-8206-5537d85d2bd0/1/oLsXGJY93ZEot2_T2CE6FWXvhW0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.201.41.0/24 Signature Algorithm: sha256WithRSAEncryption 95:3f:d1:93:b9:8e:65:18:1d:cc:50:58:40:73:1c:bd:ae:a3: 34:38:43:41:42:6d:6f:eb:f1:af:20:b8:ed:a9:cd:2d:8c:9f: 48:6d:2a:14:ae:a0:de:cf:78:18:89:ce:35:2c:c5:b3:a9:9f: 6b:f3:ca:ed:d4:2d:82:81:8a:df:aa:a8:db:37:06:02:73:d7: 0f:e4:f7:d3:d8:59:48:21:d9:32:c9:7d:47:9c:ab:88:39:06: d9:5f:0c:73:1d:d4:70:a2:f5:f9:28:b9:89:ec:48:5f:7d:be: ba:38:ed:48:a1:66:9f:be:64:b2:92:e3:4b:19:34:f5:01:8c: 86:56:e7:e2:66:8b:67:ff:f7:28:7f:4a:63:67:68:af:82:ef: 56:89:f5:a5:7e:0e:89:be:d7:a8:89:7a:27:b2:63:ca:d3:fd: cd:f8:42:fe:5c:c3:95:57:30:a5:04:36:1d:78:1c:f8:a6:3a: 46:96:4e:c3:4a:b9:56:c3:6a:c1:63:c2:75:a8:3a:fb:8f:ee: a4:88:87:a7:ce:07:ab:6f:c4:d5:32:25:6c:36:33:b2:43:00: be:d8:a2:2f:64:89:05:f8:21:6d:14:7b:13:a7:25:e0:44:c6: 20:c1:01:de:b1:d7:ce:c0:b7:b0:df:a2:2f:13:93:5f:c0:05: 3e:36:af:3f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5fzQiapxnpf3ldGntkZ8BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEwYmIxNzE4OTYzZGRkOTEyOGI3NmZkM2Q4MjEzYTE1NjVl Zjg1NmQwHhcNMjYwMTAxMTIxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjA3NWI3ZDdkZDU3ODQwYmU3NDllZWNhNmVjYWIzMDZjYzA2NDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA15E2W8qTShAC6jAnkvnyk9I8SuHR C850hIn0ylLyZhsC+O1yEguUOKp+0ezIUiqKB9JKtOkUAep2GkptvllTqaSCcIYs YAn/UkwxGLh274VJiFQfs7fEzcqnJrhDqb3BhyO9lgU5F66eX5762V544z1+stZU W1vaMFVQe+9Gx+7vUL/8X+l1+VD2TmUAIv3+a44naUM1M9Gzteor0FZ2U9QSJuAj SW4nYRnhelkKwyXxJ9yMl60rnBNsUXuZ0T1qHYGXPLPBqwlRIV1XNp26MOWSaDxF 1XAUPoHhCPDKB/z3pzKZTxslYb3Iy/1mdCwFpOc+tj1tebdrfEXgibrFnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIsHW3191XhAvnSe7KbsqzBswGRAMB8GA1UdIwQY MBaAFKC7FxiWPd2RKLdv09ghOhVl74VtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb0xzWEdKWTkzWkVvdDJfVDJDRTZGV1h2aFcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni9jNDIxMGUtOTBkZS00ZWNhLTgyMDYt NTUzN2Q4NWQyYmQwLzEvaXdkYmZYM1ZlRUMtZEo3c3B1eXJNR3pBWkVBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni9jNDIxMGUtOTBkZS00ZWNhLTgyMDYtNTUzN2Q4NWQyYmQw LzEvb0xzWEdKWTkzWkVvdDJfVDJDRTZGV1h2aFcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwckpMA0G CSqGSIb3DQEBCwUAA4IBAQCVP9GTuY5lGB3MUFhAcxy9rqM0OENBQm1v6/GvILjt qc0tjJ9IbSoUrqDez3gYic41LMWzqZ9r88rt1C2CgYrfqqjbNwYCc9cP5PfT2FlI IdkyyX1HnKuIOQbZXwxzHdRwovX5KLmJ7Ehffb66OO1IoWafvmSykuNLGTT1AYyG VufiZotn//cof0pjZ2ivgu9WifWlfg6JvteoiXonsmPK0/3N+EL+XMOVVzClBDYd eBz4pjpGlk7DSrlWw2rBY8J1qDr7j+6kiIenzgerb8TVMiVsNjOyQwC+2KIvZIkF +CFtFHsTpyXgRMYgwQHesdfOwLew36IvE5NfwAU+Nq8/ -----END CERTIFICATE-----Generated at Sun Jan 25 23:50:58 2026 by rpki-client