This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/iT_vYQVHuMA40jiF0Cyjlq3oV5Q.roa File: iT_vYQVHuMA40jiF0Cyjlq3oV5Q.roa (raw, json) Hash identifier: uoXIHy7+H0DFX9JCkb/wj88eqL9rtsamz/egtPFv+L4= Subject key identifier: 89:3F:EF:61:05:47:B8:C0:38:D2:38:85:D0:2C:A3:96:AD:E8:57:94 Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624 Certificate serial: 019BE0B72C174CAFA3B8A4C7B61725BAD19E Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/iT_vYQVHuMA40jiF0Cyjlq3oV5Q.roa Signing time: Wed 21 Jan 2026 13:20:59 +0000 ROA not before: Wed 21 Jan 2026 13:20:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 215305 IP address blocks: 5.180.97.0/24 maxlen: 24 45.81.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e0:b7:2c:17:4c:af:a3:b8:a4:c7:b6:17:25:ba:d1:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624 Validity Not Before: Jan 21 13:20:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=893fef610547b8c038d23885d02ca396ade85794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e1:41:d9:55:22:f1:96:f8:95:dd:95:8c:64: b2:d6:21:6f:2f:03:66:d0:bf:4e:30:47:19:59:99: ce:04:28:78:e3:53:f2:27:86:8a:cc:dc:05:47:c3: 42:b0:e1:a2:df:b0:50:67:26:1c:eb:cb:da:10:67: f9:28:03:e6:67:f2:f1:6e:47:6e:67:23:ba:68:49: 55:4f:9c:06:df:70:14:db:2f:f2:2e:53:88:50:b5: 4e:5a:42:78:05:69:9f:b2:69:f5:72:79:cd:34:3a: ec:25:9b:7a:10:f9:e5:9b:7d:f6:aa:db:0f:eb:d5: 67:43:e6:13:a0:1b:0c:45:43:7f:96:5d:17:fc:16: d0:d1:03:01:da:43:11:97:60:c9:82:44:19:80:75: bb:dc:3a:8e:bd:63:08:94:26:f7:44:e4:68:43:43: ad:f1:67:f5:02:41:6e:6a:65:1a:94:a9:e6:d1:79: 67:68:13:93:bf:7f:1c:78:73:3c:a7:a5:89:94:37: 19:ef:39:17:24:59:b6:5c:6e:1c:8a:b8:18:5c:ac: a8:7b:99:0e:01:d5:87:59:42:3a:e5:32:d2:fa:b9: 67:96:70:46:46:47:1a:27:88:fe:ff:cf:de:20:8f: f5:5a:64:d7:9d:41:e2:90:61:fc:b2:a2:a7:52:03: 8e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3F:EF:61:05:47:B8:C0:38:D2:38:85:D0:2C:A3:96:AD:E8:57:94 X509v3 Authority Key Identifier: keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/iT_vYQVHuMA40jiF0Cyjlq3oV5Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.97.0/24 45.81.35.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:e6:1b:0a:14:c9:15:67:a8:9a:0a:db:c1:9b:e4:6b:f0:51: bc:7f:25:5a:9e:69:87:3c:d3:b3:f0:38:0e:df:c6:69:eb:f6: c8:fa:57:cc:ee:b5:10:60:f6:2a:ee:4d:ad:53:2a:b6:88:a7: 17:bd:b3:ad:56:25:41:05:61:65:63:ab:d9:73:fc:91:71:66: 15:f8:e9:a0:82:64:b9:47:6b:72:8d:fa:10:84:fe:d7:c5:2a: cc:d3:1f:4b:56:cc:f8:fb:bf:7f:66:b6:e3:2d:96:7e:4e:9a: bc:6e:76:fd:b3:3c:ea:4c:64:55:e3:de:64:d4:52:65:e7:74: a7:e5:db:83:41:50:b9:f4:25:51:1c:06:7b:38:e9:df:03:d5: 19:03:b7:1a:fd:f5:87:3c:8d:b6:7e:de:7c:ef:c1:8d:5e:c6: 88:06:02:f9:b9:80:a4:5b:12:d2:69:24:d2:c7:a5:e3:48:a9: e3:5d:28:39:d0:cc:38:52:54:90:e4:9f:ac:ca:c5:85:1b:c2: 86:ad:22:03:5a:3a:70:1e:2d:68:f8:79:f1:93:bf:d1:2a:e0: 6f:2f:fe:70:95:08:a5:b1:cf:b7:05:62:9c:c9:b6:92:22:a3: ff:e3:a0:26:f4:3c:e1:fd:61:20:60:ff:6a:de:0d:16:b2:2b: d4:ce:e5:9c -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvgtywXTK+juKTHthclutGeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNhMDA4MDc2OThmMGIwOTdkNjlhYjM5MjY5MTdkMWRjYzgz OGE2MjQwHhcNMjYwMTIxMTMyMDU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTNmZWY2MTA1NDdiOGMwMzhkMjM4ODVkMDJjYTM5NmFkZTg1Nzk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1eFB2VUi8Zb4ld2VjGSy1iFvLwNm 0L9OMEcZWZnOBCh441PyJ4aKzNwFR8NCsOGi37BQZyYc68vaEGf5KAPmZ/Lxbkdu ZyO6aElVT5wG33AU2y/yLlOIULVOWkJ4BWmfsmn1cnnNNDrsJZt6EPnlm332qtsP 69VnQ+YToBsMRUN/ll0X/BbQ0QMB2kMRl2DJgkQZgHW73DqOvWMIlCb3RORoQ0Ot 8Wf1AkFuamUalKnm0XlnaBOTv38ceHM8p6WJlDcZ7zkXJFm2XG4cirgYXKyoe5kO AdWHWUI65TLS+rlnlnBGRkcaJ4j+/8/eII/1WmTXnUHikGH8sqKnUgOOzQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIk/72EFR7jAONI4hdAso5at6FeUMB8GA1UdIwQY MBaAFDoAgHaY8LCX1pqzkmkX0dzIOKYkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT2dDQWRwandzSmZXbXJPU2FSZlIzTWc0cGlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8xNDNkMjktY2Y3Mi00ZDAxLTkxOGMt MTZhZmM0ZGZmZGQ0LzEvaVRfdllRVkh1TUE0MGppRjBDeWpscTNvVjVRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS8xNDNkMjktY2Y3Mi00ZDAxLTkxOGMtMTZhZmM0ZGZmZGQ0 LzEvT2dDQWRwandzSmZXbXJPU2FSZlIzTWc0cGlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABbRhAwQA LVEjMA0GCSqGSIb3DQEBCwUAA4IBAQA/5hsKFMkVZ6iaCtvBm+Rr8FG8fyVanmmH PNOz8DgO38Zp6/bI+lfM7rUQYPYq7k2tUyq2iKcXvbOtViVBBWFlY6vZc/yRcWYV +OmggmS5R2tyjfoQhP7XxSrM0x9LVsz4+79/ZrbjLZZ+Tpq8bnb9szzqTGRV495k 1FJl53Sn5duDQVC59CVRHAZ7OOnfA9UZA7ca/fWHPI22ft5878GNXsaIBgL5uYCk WxLSaSTSx6XjSKnjXSg50Mw4UlSQ5J+sysWFG8KGrSIDWjpwHi1o+Hnxk7/RKuBv L/5wlQilsc+3BWKcybaSIqP/46Am9Dzh/WEgYP9q3g0WsivUzuWc -----END CERTIFICATE-----Generated at Sun Jan 25 22:15:22 2026 by rpki-client