This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/I7MkmQek9TX_IQqyz6tzXHWahHc.roa File: I7MkmQek9TX_IQqyz6tzXHWahHc.roa (raw, json) Hash identifier: guTyQfwBcIAtfrQpROz3rqT3lhXR49lhfULYZRlg2k4= Subject key identifier: 23:B3:24:99:07:A4:F5:35:FF:21:0A:B2:CF:AB:73:5C:75:9A:84:77 Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9 Certificate serial: 019B7F8244E7866E984331A10CEC8F5D1F30 Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/I7MkmQek9TX_IQqyz6tzXHWahHc.roa Signing time: Fri 02 Jan 2026 16:20:02 +0000 ROA not before: Fri 02 Jan 2026 16:20:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19812 IP address blocks: 212.118.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.mft rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:44:e7:86:6e:98:43:31:a1:0c:ec:8f:5d:1f:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9 Validity Not Before: Jan 2 16:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=23b3249907a4f535ff210ab2cfab735c759a8477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1b:e8:83:e4:4c:58:33:4e:4b:5e:52:5f:19: e2:56:c4:14:6b:40:1f:69:6c:1b:87:33:d2:9f:15: 5b:eb:73:eb:f5:77:0d:46:dc:2f:88:ab:a6:f6:76: 20:b0:0b:a4:ae:17:d1:84:89:32:e6:d3:1b:19:32: ad:e3:0e:79:94:a6:30:10:cd:34:78:1c:3f:34:6a: 75:e0:34:4b:af:44:db:d5:1c:93:d5:f6:51:17:32: 74:2b:3f:1a:42:47:77:63:75:e9:8d:dd:19:0c:10: 89:f0:75:3a:49:da:aa:84:f6:46:0f:b0:87:3f:fb: 48:cf:5e:b5:9f:a5:f5:c5:5a:21:5c:ab:fd:c3:80: 60:a7:26:9e:55:a4:90:2a:81:33:8c:7a:a6:8c:7c: 78:2d:e0:53:39:64:1a:45:0b:49:ad:c7:50:9e:9e: e3:5e:ed:9a:c9:1f:57:f4:ca:01:66:85:c4:96:2b: 0f:9b:e5:49:27:09:ab:2a:1e:e9:b3:41:a6:0c:85: ad:c9:40:e5:b6:8b:5e:1e:d0:56:dd:ba:1d:90:5a: 01:1f:26:7b:09:02:3f:fd:09:a4:d8:21:2e:9a:6c: 61:89:e3:fa:8f:db:72:eb:0f:b9:cf:80:ab:e9:89: f2:70:b6:c7:de:00:03:ba:e4:5c:25:6c:4a:eb:d4: a5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B3:24:99:07:A4:F5:35:FF:21:0A:B2:CF:AB:73:5C:75:9A:84:77 X509v3 Authority Key Identifier: keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/I7MkmQek9TX_IQqyz6tzXHWahHc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.118.247.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:78:2f:f4:b4:ae:53:61:75:e5:27:fe:38:36:f8:5b:2d:c3: 94:a3:95:41:53:68:ee:ca:ea:fd:e9:e4:8f:f8:bf:8d:ad:5e: 27:e0:ae:f8:fc:a3:72:cb:6a:56:b4:a1:a6:61:81:f8:e4:d9: 85:ad:87:72:7c:5f:4d:61:43:59:7d:eb:94:b4:7c:60:6d:82: d1:f6:59:69:af:56:6a:4c:35:59:b9:92:78:4b:49:21:e3:7d: e4:8d:94:b0:5a:a3:2f:0e:4c:27:98:86:6a:d2:55:f2:c4:51: 94:83:5f:91:4b:2d:6c:dc:a8:86:70:05:80:16:0e:8c:80:50: 78:a1:83:c1:b9:08:be:68:08:e6:46:58:3b:c2:6c:f9:a4:e7: 61:30:16:62:8c:77:b4:7c:31:2d:e2:7c:e5:94:7e:74:a5:d2: 0a:be:63:50:9e:3c:dd:16:42:d3:a0:51:cc:5b:a3:ee:74:d9: 0d:f7:fb:ca:6f:cd:ee:c4:3f:ab:d4:6d:4e:6d:a9:e4:32:61: f6:ff:d9:46:f2:46:a5:b0:1d:d4:17:dd:a4:8f:6f:5c:33:54: cf:2c:67:be:35:77:8c:dd:68:bd:0a:e9:95:da:92:0e:f3:a6: 9d:18:7a:a7:2d:8f:b2:93:1a:26:75:38:59:df:0f:49:bb:3b: 74:b7:87:36 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/gkTnhm6YQzGhDOyPXR8wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlZGFlZWE5MTE3YTFkNWNjYzMyMDIyMjk1NWEwOWZhYTA3 OThmZDkwHhcNMjYwMTAyMTYyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyM2IzMjQ5OTA3YTRmNTM1ZmYyMTBhYjJjZmFiNzM1Yzc1OWE4NDc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhvog+RMWDNOS15SXxniVsQUa0Af aWwbhzPSnxVb63Pr9XcNRtwviKum9nYgsAukrhfRhIky5tMbGTKt4w55lKYwEM00 eBw/NGp14DRLr0Tb1RyT1fZRFzJ0Kz8aQkd3Y3Xpjd0ZDBCJ8HU6SdqqhPZGD7CH P/tIz161n6X1xVohXKv9w4BgpyaeVaSQKoEzjHqmjHx4LeBTOWQaRQtJrcdQnp7j Xu2ayR9X9MoBZoXElisPm+VJJwmrKh7ps0GmDIWtyUDltoteHtBW3bodkFoBHyZ7 CQI//Qmk2CEummxhieP6j9ty6w+5z4Cr6YnycLbH3gADuuRcJWxK69Sl4wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCOzJJkHpPU1/yEKss+rc1x1moR3MB8GA1UdIwQY MBaAFK7a7qkReh1czDICIpVaCfqgeY/ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnRydXFSRjZIVnpNTWdJaWxWb0otcUI1ajlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9hMTNiMDEtNDE1My00ZWE1LWJmMjEt OTk4NjhjNTEzMjlhLzEvSTdNa21RZWs5VFhfSVFxeXo2dHpYSFdhaEhjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi9hMTNiMDEtNDE1My00ZWE1LWJmMjEtOTk4NjhjNTEzMjlh LzEvcnRydXFSRjZIVnpNTWdJaWxWb0otcUI1ajlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1Hb3MA0G CSqGSIb3DQEBCwUAA4IBAQBueC/0tK5TYXXlJ/44NvhbLcOUo5VBU2juyur96eSP +L+NrV4n4K74/KNyy2pWtKGmYYH45NmFrYdyfF9NYUNZfeuUtHxgbYLR9llpr1Zq TDVZuZJ4S0kh433kjZSwWqMvDkwnmIZq0lXyxFGUg1+RSy1s3KiGcAWAFg6MgFB4 oYPBuQi+aAjmRlg7wmz5pOdhMBZijHe0fDEt4nzllH50pdIKvmNQnjzdFkLToFHM W6PudNkN9/vKb83uxD+r1G1ObankMmH2/9lG8kalsB3UF92kj29cM1TPLGe+NXeM 3Wi9CumV2pIO86adGHqnLY+ykxomdThZ3w9Juzt0t4c2 -----END CERTIFICATE-----Generated at Sun Jan 25 16:28:15 2026 by rpki-client