This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/iYN0utCjOjCIPINNJfjhuG0vjOg.roa File: iYN0utCjOjCIPINNJfjhuG0vjOg.roa (raw, json) Hash identifier: 7Wnyb9CGOm4TN0ey7ufrrNiIF/X3LDz9AlFMHrkszjo= Subject key identifier: 89:83:74:BA:D0:A3:3A:30:88:3C:83:4D:25:F8:E1:B8:6D:2F:8C:E8 Certificate issuer: /CN=fa5a25982f7b747112b0ff358f3d24a562cfcfec Certificate serial: 019B7C114F59977D4CAF648D295A4E2CB879 Authority key identifier: FA:5A:25:98:2F:7B:74:71:12:B0:FF:35:8F:3D:24:A5:62:CF:CF:EC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/iYN0utCjOjCIPINNJfjhuG0vjOg.roa Signing time: Fri 02 Jan 2026 00:17:47 +0000 ROA not before: Fri 02 Jan 2026 00:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210937 IP address blocks: 46.175.133.0/24 maxlen: 24 2a11:1d40::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.crl rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.mft rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:4f:59:97:7d:4c:af:64:8d:29:5a:4e:2c:b8:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fa5a25982f7b747112b0ff358f3d24a562cfcfec Validity Not Before: Jan 2 00:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=898374bad0a33a30883c834d25f8e1b86d2f8ce8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:87:32:86:0d:32:f6:9e:65:bc:af:f8:c8:6a: 01:10:0d:f0:bb:02:77:64:2d:69:04:37:d3:ab:cd: 7a:ef:e9:58:8a:e3:34:86:9e:97:c3:75:2a:08:48: d3:84:55:7e:76:50:1f:79:b2:5b:b0:b9:6b:cb:52: 2f:77:0c:f6:e4:6a:42:89:19:5f:75:73:a6:bc:8d: 5c:19:e6:1f:e9:d0:8a:3a:bd:61:e5:76:f6:68:78: 55:57:fc:aa:6b:3a:4e:7c:97:0e:06:cf:ed:04:41: 60:a6:41:d6:4d:b1:4a:b5:4f:83:70:ad:d1:13:00: 4c:9e:07:35:f9:b8:aa:b7:10:c7:87:f5:b6:ad:6a: 05:e5:08:3b:d3:9c:37:aa:fe:32:a8:dc:73:b3:96: 9a:49:25:4b:e4:ca:64:63:9d:76:0d:52:79:1a:4e: 0f:ec:bf:75:43:32:84:c1:3b:51:8c:7a:c6:34:b1: 33:d6:6c:41:bc:72:be:6b:3b:d3:26:c7:7e:14:d0: bb:36:8d:45:06:4c:f7:41:35:1e:40:7b:41:0d:7c: 91:a6:c8:0f:bf:a5:1e:54:bd:04:0c:1c:28:fc:70: 2b:bc:f9:fb:13:1e:b8:a9:85:f5:24:7d:da:f2:a3: 3a:28:c7:2e:5b:6b:b0:29:81:26:b3:61:7c:db:d6: 7d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:83:74:BA:D0:A3:3A:30:88:3C:83:4D:25:F8:E1:B8:6D:2F:8C:E8 X509v3 Authority Key Identifier: keyid:FA:5A:25:98:2F:7B:74:71:12:B0:FF:35:8F:3D:24:A5:62:CF:CF:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-lolmC97dHESsP81jz0kpWLPz-w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/iYN0utCjOjCIPINNJfjhuG0vjOg.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/76d7ae-de67-4a05-a71b-de774b0e31df/1/1-lolmC97dHESsP81jz0kpWLPz-w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.175.133.0/24 IPv6: 2a11:1d40::/29 Signature Algorithm: sha256WithRSAEncryption 88:e4:4b:9f:fa:78:46:18:8f:e4:b9:fc:d1:0f:23:e9:10:f3: 50:bd:d3:58:c8:35:cb:d4:fb:f8:c9:e6:40:84:63:99:51:23: b6:b4:28:97:26:ea:d3:24:b7:1a:3a:84:e1:7f:69:1e:8e:0b: 93:27:b0:0c:a2:fe:67:f8:57:1f:a9:ac:44:25:be:d3:76:1b: cb:6f:b4:b6:ab:fe:60:72:f8:89:1e:7b:f3:22:df:b3:d2:dd: 1d:1e:d8:36:14:f6:1f:27:19:b0:2c:81:c7:33:13:d8:dd:ff: b9:4e:dd:32:fe:f4:24:7f:bf:3c:a5:18:ae:6c:3b:e3:78:cb: 03:95:05:a8:89:7b:a4:9b:9a:4c:59:50:e0:99:a4:77:dc:cd: 3d:4f:7b:2f:fc:de:d3:ee:18:b2:d5:90:9c:2d:d8:cf:81:74: 99:00:58:2d:64:9f:40:b7:c5:ff:cd:83:b4:5c:ca:af:54:76: 3a:bb:a7:50:18:af:34:de:e0:30:09:08:7a:f7:90:45:a9:f9: c9:ce:a5:e3:51:3a:5c:43:64:1f:8b:ca:06:41:86:fe:20:16: 16:82:2b:45:4f:12:fd:6e:35:a5:18:5e:52:d0:b7:58:b5:be: 52:b8:2d:98:9d:38:63:0d:f8:1f:39:9f:ff:6e:2c:14:37:f0: 59:06:6f:b5 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt8EU9Zl31Mr2SNKVpOLLh5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZhNWEyNTk4MmY3Yjc0NzExMmIwZmYzNThmM2QyNGE1NjJj ZmNmZWMwHhcNMjYwMTAyMDAxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTgzNzRiYWQwYTMzYTMwODgzYzgzNGQyNWY4ZTFiODZkMmY4Y2U4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzIcyhg0y9p5lvK/4yGoBEA3wuwJ3 ZC1pBDfTq8167+lYiuM0hp6Xw3UqCEjThFV+dlAfebJbsLlry1Ivdwz25GpCiRlf dXOmvI1cGeYf6dCKOr1h5Xb2aHhVV/yqazpOfJcOBs/tBEFgpkHWTbFKtU+DcK3R EwBMngc1+biqtxDHh/W2rWoF5Qg705w3qv4yqNxzs5aaSSVL5MpkY512DVJ5Gk4P 7L91QzKEwTtRjHrGNLEz1mxBvHK+azvTJsd+FNC7No1FBkz3QTUeQHtBDXyRpsgP v6UeVL0EDBwo/HArvPn7Ex64qYX1JH3a8qM6KMcuW2uwKYEms2F829Z9MQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFImDdLrQozowiDyDTSX44bhtL4zoMB8GA1UdIwQY MBaAFPpaJZgve3RxErD/NY89JKViz8/sMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMS1sb2xtQzk3ZEhFU3NQODFqejBrcFdMUHotdy5jZXIw gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkvNzZkN2FlLWRlNjctNGEwNS1hNzFi LWRlNzc0YjBlMzFkZi8xL2lZTjB1dENqT2pDSVBJTk5KZmpodUcwdmpPZy5yb2Ew gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0 b3J5L0RFRkFVTFQvYTkvNzZkN2FlLWRlNjctNGEwNS1hNzFiLWRlNzc0YjBlMzFk Zi8xLzEtbG9sbUM5N2RIRVNzUDgxanowa3BXTFB6LXcuY3JsMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAAur4Uw DQQCAAIwBwMFAyoRHUAwDQYJKoZIhvcNAQELBQADggEBAIjkS5/6eEYYj+S5/NEP I+kQ81C901jINcvU+/jJ5kCEY5lRI7a0KJcm6tMktxo6hOF/aR6OC5MnsAyi/mf4 Vx+prEQlvtN2G8tvtLar/mBy+Ikee/Mi37PS3R0e2DYU9h8nGbAsgcczE9jd/7lO 3TL+9CR/vzylGK5sO+N4ywOVBaiJe6SbmkxZUOCZpHfczT1Pey/83tPuGLLVkJwt 2M+BdJkAWC1kn0C3xf/Ng7Rcyq9Udjq7p1AYrzTe4DAJCHr3kEWp+cnOpeNROlxD ZB+LygZBhv4gFhaCK0VPEv1uNaUYXlLQt1i1vlK4LZidOGMN+B85n/9uLBQ38FkG b7U= -----END CERTIFICATE-----Generated at Sun Jan 25 21:05:46 2026 by rpki-client