This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/1868ee-51a8-4619-9143-188dcff0e405/1/Is7C3W26lEw15lD5VhKPKWdkM8M.roa File: Is7C3W26lEw15lD5VhKPKWdkM8M.roa (raw, json) Hash identifier: OE4K7vc1yucd3jpu96y3uZHtADB9bFEDzoGvFJGStC4= Subject key identifier: 22:CE:C2:DD:6D:BA:94:4C:35:E6:50:F9:56:12:8F:29:67:64:33:C3 Certificate issuer: /CN=06216eec514b07dce29d3013a190b2ee5fcb1f94 Certificate serial: 019B7C7FCA5E88E19B9C50E073182325D320 Authority key identifier: 06:21:6E:EC:51:4B:07:DC:E2:9D:30:13:A1:90:B2:EE:5F:CB:1F:94 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BiFu7FFLB9zinTAToZCy7l_LH5Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/1868ee-51a8-4619-9143-188dcff0e405/1/Is7C3W26lEw15lD5VhKPKWdkM8M.roa Signing time: Fri 02 Jan 2026 02:18:28 +0000 ROA not before: Fri 02 Jan 2026 02:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 133495 IP address blocks: 185.167.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/1868ee-51a8-4619-9143-188dcff0e405/1/BiFu7FFLB9zinTAToZCy7l_LH5Q.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/1868ee-51a8-4619-9143-188dcff0e405/1/BiFu7FFLB9zinTAToZCy7l_LH5Q.mft rsync://rpki.ripe.net/repository/DEFAULT/BiFu7FFLB9zinTAToZCy7l_LH5Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:ca:5e:88:e1:9b:9c:50:e0:73:18:23:25:d3:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06216eec514b07dce29d3013a190b2ee5fcb1f94 Validity Not Before: Jan 2 02:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22cec2dd6dba944c35e650f956128f29676433c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0e:4e:8b:37:bc:31:b4:0e:4b:03:74:9b:10: ad:0d:cd:be:1e:3f:83:df:d8:fc:3d:d9:be:7f:90: 96:87:8f:40:61:ca:eb:bd:d3:ce:62:35:7c:86:48: d7:3a:e2:15:a9:d3:af:69:61:13:37:e8:72:38:da: 72:af:f1:36:c3:a6:20:55:3e:c2:ea:c5:99:e1:72: af:94:55:ce:5d:54:fa:86:71:53:c9:2e:93:99:41: ed:85:3e:b4:d5:87:d1:e8:36:5f:32:1a:5d:3c:96: de:61:70:5d:fb:79:ee:c2:a8:f1:86:f3:42:af:b3: 01:79:67:74:6e:32:b0:1b:8f:44:b7:5a:b4:d9:91: e7:44:ed:9d:b1:0e:a2:f3:87:74:35:8c:3f:d6:75: 10:72:7c:14:95:ab:de:68:20:9e:48:06:9c:9e:f2: b2:ad:76:a2:d5:47:19:17:d8:01:8a:81:98:69:05: 62:c0:c0:8e:39:0a:6d:78:1b:42:ce:5f:15:4f:95: 05:b4:5d:ea:03:98:cf:4e:d0:f7:2a:4f:d2:cf:47: db:98:c6:04:cb:af:1f:b2:02:88:00:fc:cf:84:5a: 42:60:11:f7:43:02:06:55:72:ef:27:57:8d:f4:e3: 7b:59:30:3c:a2:88:1f:45:e7:d6:ff:30:92:9e:64: b9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CE:C2:DD:6D:BA:94:4C:35:E6:50:F9:56:12:8F:29:67:64:33:C3 X509v3 Authority Key Identifier: keyid:06:21:6E:EC:51:4B:07:DC:E2:9D:30:13:A1:90:B2:EE:5F:CB:1F:94 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BiFu7FFLB9zinTAToZCy7l_LH5Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1868ee-51a8-4619-9143-188dcff0e405/1/Is7C3W26lEw15lD5VhKPKWdkM8M.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1868ee-51a8-4619-9143-188dcff0e405/1/BiFu7FFLB9zinTAToZCy7l_LH5Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.167.218.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:7d:c0:c9:cb:ab:7a:94:20:ad:00:8e:7a:16:f3:43:e2:3d: de:67:e3:ec:5c:07:ee:ce:b2:45:32:6b:86:1c:f7:7d:f1:a0: 07:55:dc:ae:70:03:7d:78:a1:f0:88:05:df:a7:62:9f:f9:cc: cf:1a:8f:94:b7:03:db:b2:2c:65:93:0a:5d:42:8a:fd:53:8a: cf:4e:75:c9:7a:30:72:fa:6f:4e:ac:c7:fd:e1:69:9e:fd:db: 79:13:60:25:1e:90:b9:2c:e3:24:8b:1f:1d:e9:7a:a0:61:aa: 10:ee:89:1c:03:26:c2:91:2e:09:3b:d5:eb:4f:12:7e:54:91: ea:3a:27:5c:e2:95:2d:10:64:5d:0a:e0:f8:05:51:dd:4d:6f: 27:51:6c:db:ce:e3:88:5c:f1:f1:2b:b3:09:78:86:bd:de:15: d8:e2:83:09:68:11:ec:a4:d0:6d:4e:57:e9:50:d2:f1:04:32: 57:a2:d3:c6:a2:db:37:a7:f4:30:e3:81:3c:7c:cb:f0:de:5f: be:de:4a:fd:01:a4:34:7a:66:d0:a4:f5:ba:c1:79:4f:c4:4d: a6:5e:56:73:0f:78:81:5d:21:40:ce:03:c1:ea:64:1f:8d:bd: c4:ec:49:de:10:b0:bd:26:3f:5d:2e:20:92:e1:5d:bd:92:1c: e4:b3:59:59 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8f8peiOGbnFDgcxgjJdMgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MjE2ZWVjNTE0YjA3ZGNlMjlkMzAxM2ExOTBiMmVlNWZj YjFmOTQwHhcNMjYwMTAyMDIxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmNlYzJkZDZkYmE5NDRjMzVlNjUwZjk1NjEyOGYyOTY3NjQzM2MzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQ5Oize8MbQOSwN0mxCtDc2+Hj+D 39j8Pdm+f5CWh49AYcrrvdPOYjV8hkjXOuIVqdOvaWETN+hyONpyr/E2w6YgVT7C 6sWZ4XKvlFXOXVT6hnFTyS6TmUHthT601YfR6DZfMhpdPJbeYXBd+3nuwqjxhvNC r7MBeWd0bjKwG49Et1q02ZHnRO2dsQ6i84d0NYw/1nUQcnwUlaveaCCeSAacnvKy rXai1UcZF9gBioGYaQViwMCOOQpteBtCzl8VT5UFtF3qA5jPTtD3Kk/Sz0fbmMYE y68fsgKIAPzPhFpCYBH3QwIGVXLvJ1eN9ON7WTA8oogfRefW/zCSnmS5rQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCLOwt1tupRMNeZQ+VYSjylnZDPDMB8GA1UdIwQY MBaAFAYhbuxRSwfc4p0wE6GQsu5fyx+UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmlGdTdGRkxCOXppblRBVG9aQ3k3bF9MSDVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC8xODY4ZWUtNTFhOC00NjE5LTkxNDMt MTg4ZGNmZjBlNDA1LzEvSXM3QzNXMjZsRXcxNWxENVZoS1BLV2RrTThNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC8xODY4ZWUtNTFhOC00NjE5LTkxNDMtMTg4ZGNmZjBlNDA1 LzEvQmlGdTdGRkxCOXppblRBVG9aQ3k3bF9MSDVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuafaMA0G CSqGSIb3DQEBCwUAA4IBAQALfcDJy6t6lCCtAI56FvND4j3eZ+PsXAfuzrJFMmuG HPd98aAHVdyucAN9eKHwiAXfp2Kf+czPGo+UtwPbsixlkwpdQor9U4rPTnXJejBy +m9OrMf94Wme/dt5E2AlHpC5LOMkix8d6XqgYaoQ7okcAybCkS4JO9XrTxJ+VJHq Oidc4pUtEGRdCuD4BVHdTW8nUWzbzuOIXPHxK7MJeIa93hXY4oMJaBHspNBtTlfp UNLxBDJXotPGots3p/Qw44E8fMvw3l++3kr9AaQ0embQpPW6wXlPxE2mXlZzD3iB XSFAzgPB6mQfjb3E7EneELC9Jj9dLiCS4V29khzks1lZ -----END CERTIFICATE-----Generated at Sun Jan 25 20:48:33 2026 by rpki-client