This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/iRf_gs5n9xup496QtRtuInpoD-U.roa File: iRf_gs5n9xup496QtRtuInpoD-U.roa (raw, json) Hash identifier: BDQw7Ot2/EiioII6Hz7qQJc1eJwtGMRxOvQFtmCg1xA= Subject key identifier: 89:17:FF:82:CE:67:F7:1B:A9:E3:DE:90:B5:1B:6E:22:7A:68:0F:E5 Certificate issuer: /CN=488c65dc359b58ca6ba5d3daeb874f058684e8c6 Certificate serial: 019B7F80D85D822178249815F11BE71BA28F Authority key identifier: 48:8C:65:DC:35:9B:58:CA:6B:A5:D3:DA:EB:87:4F:05:86:84:E8:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SIxl3DWbWMprpdPa64dPBYaE6MY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/iRf_gs5n9xup496QtRtuInpoD-U.roa Signing time: Fri 02 Jan 2026 16:18:28 +0000 ROA not before: Fri 02 Jan 2026 16:18:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211993 IP address blocks: 2.57.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/SIxl3DWbWMprpdPa64dPBYaE6MY.crl rsync://rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/SIxl3DWbWMprpdPa64dPBYaE6MY.mft rsync://rpki.ripe.net/repository/DEFAULT/SIxl3DWbWMprpdPa64dPBYaE6MY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:80:d8:5d:82:21:78:24:98:15:f1:1b:e7:1b:a2:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=488c65dc359b58ca6ba5d3daeb874f058684e8c6 Validity Not Before: Jan 2 16:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8917ff82ce67f71ba9e3de90b51b6e227a680fe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b5:87:0c:58:5f:9d:ee:d7:66:f1:a8:69:df: a5:15:e3:f8:0c:d4:dd:ae:6e:a6:0b:04:0f:28:bb: 4f:8d:f7:58:ee:c0:8c:e0:14:ce:ba:88:ef:08:f6: 2a:98:9b:af:02:fe:d1:b9:72:70:b1:29:55:38:2b: f0:ff:b6:32:73:27:65:75:ed:b4:12:a0:b4:16:78: 25:52:e3:f0:ba:82:38:c0:17:2e:7a:df:08:a8:a8: 48:f9:32:30:f0:3b:e9:4d:c0:02:46:19:ab:28:95: 72:88:1e:8d:46:0c:53:ea:94:c9:e2:ee:0e:f8:38: b9:82:78:d1:7f:d3:ba:bd:12:62:60:f3:a6:53:e0: 76:ae:f5:af:1b:14:b0:0e:13:fa:86:5a:58:ce:a3: 88:8d:ed:ac:49:9d:fd:a1:2c:f9:ce:89:1a:a1:39: 4e:61:04:56:8f:7f:4c:52:5f:14:7c:34:8a:68:45: 8c:cd:04:36:0c:0a:f6:12:b4:9a:76:03:4e:dd:88: 03:f7:35:b5:29:0c:42:18:d1:ee:57:3b:08:3a:29: 64:61:2b:cb:83:0a:43:93:c7:11:c2:dc:33:c1:46: f0:7a:34:33:a9:14:3f:43:8f:d1:4d:ce:cc:aa:8c: a5:1b:0d:a0:33:f8:b7:4b:08:38:c0:4b:08:d6:14: 48:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:17:FF:82:CE:67:F7:1B:A9:E3:DE:90:B5:1B:6E:22:7A:68:0F:E5 X509v3 Authority Key Identifier: keyid:48:8C:65:DC:35:9B:58:CA:6B:A5:D3:DA:EB:87:4F:05:86:84:E8:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SIxl3DWbWMprpdPa64dPBYaE6MY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/iRf_gs5n9xup496QtRtuInpoD-U.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/c48271-dee5-4841-a7dd-b0d72e910efe/1/SIxl3DWbWMprpdPa64dPBYaE6MY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.57.58.0/24 Signature Algorithm: sha256WithRSAEncryption 80:7f:bf:21:cc:39:7c:66:46:13:8f:17:11:b3:9e:c8:f6:05: e2:ea:3a:17:fc:d8:12:31:22:aa:e5:bc:23:f0:2b:32:b7:5b: 17:7b:9c:01:71:b2:a6:37:df:98:15:81:46:88:04:9b:ff:a6: 37:3b:aa:8d:53:74:6a:4d:e1:00:ae:80:04:88:18:16:8f:9b: 6f:03:e5:8f:19:18:49:67:e1:45:71:84:37:bc:84:17:9b:11: 8d:97:89:05:ec:8a:9d:a0:7a:11:1e:a0:8e:60:25:be:dc:08: ff:7c:9d:73:4e:da:e4:49:38:e2:44:ac:8a:32:9d:c4:23:e0: 41:dd:49:d9:ec:6f:a8:48:bb:da:a7:75:5c:6d:ce:e9:83:1a: 96:dd:c5:66:af:f7:54:29:e8:2f:43:25:c1:8d:59:17:b3:7b: d7:84:12:fc:05:ee:11:4f:39:e6:2c:d1:85:ba:ce:21:c3:c7: 93:7f:cf:ee:21:2c:83:4c:84:1b:a4:22:db:c7:19:06:3d:07: 1f:49:c7:94:af:82:7b:a0:20:bb:e0:29:58:55:63:51:b4:01: 4a:f4:40:ee:e4:99:04:37:99:cf:2a:de:39:3b:77:6b:a2:a6: 61:ab:48:07:94:77:c0:a0:77:55:42:61:2f:f5:f9:7c:18:7e: 2d:15:28:42 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gNhdgiF4JJgV8RvnG6KPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ4OGM2NWRjMzU5YjU4Y2E2YmE1ZDNkYWViODc0ZjA1ODY4 NGU4YzYwHhcNMjYwMTAyMTYxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTE3ZmY4MmNlNjdmNzFiYTllM2RlOTBiNTFiNmUyMjdhNjgwZmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmbWHDFhfne7XZvGoad+lFeP4DNTd rm6mCwQPKLtPjfdY7sCM4BTOuojvCPYqmJuvAv7RuXJwsSlVOCvw/7Yycydlde20 EqC0FnglUuPwuoI4wBcuet8IqKhI+TIw8DvpTcACRhmrKJVyiB6NRgxT6pTJ4u4O +Di5gnjRf9O6vRJiYPOmU+B2rvWvGxSwDhP6hlpYzqOIje2sSZ39oSz5zokaoTlO YQRWj39MUl8UfDSKaEWMzQQ2DAr2ErSadgNO3YgD9zW1KQxCGNHuVzsIOilkYSvL gwpDk8cRwtwzwUbwejQzqRQ/Q4/RTc7MqoylGw2gM/i3Swg4wEsI1hRI5wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIkX/4LOZ/cbqePekLUbbiJ6aA/lMB8GA1UdIwQY MBaAFEiMZdw1m1jKa6XT2uuHTwWGhOjGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU0l4bDNEV2JXTXBycGRQYTY0ZFBCWWFFNk1ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9jNDgyNzEtZGVlNS00ODQxLWE3ZGQt YjBkNzJlOTEwZWZlLzEvaVJmX2dzNW45eHVwNDk2UXRSdHVJbnBvRC1VLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC9jNDgyNzEtZGVlNS00ODQxLWE3ZGQtYjBkNzJlOTEwZWZl LzEvU0l4bDNEV2JXTXBycGRQYTY0ZFBCWWFFNk1ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAAjk6MA0G CSqGSIb3DQEBCwUAA4IBAQCAf78hzDl8ZkYTjxcRs57I9gXi6joX/NgSMSKq5bwj 8Csyt1sXe5wBcbKmN9+YFYFGiASb/6Y3O6qNU3RqTeEAroAEiBgWj5tvA+WPGRhJ Z+FFcYQ3vIQXmxGNl4kF7IqdoHoRHqCOYCW+3Aj/fJ1zTtrkSTjiRKyKMp3EI+BB 3UnZ7G+oSLvap3Vcbc7pgxqW3cVmr/dUKegvQyXBjVkXs3vXhBL8Be4RTznmLNGF us4hw8eTf8/uISyDTIQbpCLbxxkGPQcfSceUr4J7oCC74ClYVWNRtAFK9EDu5JkE N5nPKt45O3droqZhq0gHlHfAoHdVQmEv9fl8GH4tFShC -----END CERTIFICATE-----Generated at Sun Jan 25 20:47:45 2026 by rpki-client