This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/IhNm1XAjTUBP_UYjIGIEELcWiWc.roa File: IhNm1XAjTUBP_UYjIGIEELcWiWc.roa (raw, json) Hash identifier: TcGN7ZBSR/KDo/mk7XwRToavEZ6usSTJYaYD26UCIPE= Subject key identifier: 22:13:66:D5:70:23:4D:40:4F:FD:46:23:20:62:04:10:B7:16:89:67 Certificate issuer: /CN=53b1a8ebc3ecf7f5db7f6cacd00e920af85ae8b4 Certificate serial: 019B7F150E3B5F20700126E26A77B3FF4D5A Authority key identifier: 53:B1:A8:EB:C3:EC:F7:F5:DB:7F:6C:AC:D0:0E:92:0A:F8:5A:E8:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/IhNm1XAjTUBP_UYjIGIEELcWiWc.roa Signing time: Fri 02 Jan 2026 14:20:44 +0000 ROA not before: Fri 02 Jan 2026 14:20:44 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50575 IP address blocks: 45.147.220.0/22 maxlen: 22 2001:67c:24ac::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.mft rsync://rpki.ripe.net/repository/DEFAULT/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:0e:3b:5f:20:70:01:26:e2:6a:77:b3:ff:4d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53b1a8ebc3ecf7f5db7f6cacd00e920af85ae8b4 Validity Not Before: Jan 2 14:20:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=221366d570234d404ffd462320620410b7168967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:8f:64:49:71:02:83:47:fa:99:cb:61:b0:02: 10:bb:2a:fb:71:18:f2:66:8b:b3:bd:a3:f0:bd:2c: 9f:90:db:c2:bf:69:73:28:83:90:ba:8b:a7:b2:b9: d4:24:36:e4:b5:99:7c:3c:e7:64:09:2f:e1:84:f3: ca:52:bd:8a:91:02:08:35:d7:c3:73:8d:9a:3b:f8: 44:ae:1a:11:28:13:49:fb:65:6c:c4:85:4d:4b:98: 59:21:f8:c9:0b:ba:b7:74:ca:e5:fd:c0:6d:de:2d: 6c:ce:60:c5:63:2f:7b:63:c8:01:f7:4b:61:d9:73: 18:a5:69:35:65:a7:2f:77:e5:cd:a5:f3:41:8f:a7: 66:95:5c:2d:89:df:80:be:27:65:55:8c:a3:3a:55: 38:24:e4:cc:8d:94:9f:7c:2d:d1:80:7f:23:b1:2e: da:4e:30:01:a6:45:ad:a9:0f:be:d8:fc:9d:08:3e: 47:85:a8:ee:1b:db:e4:ed:26:54:45:aa:63:77:83: c0:33:dd:5b:50:e6:9d:00:f0:24:b4:4a:7f:28:f7: 51:c1:78:81:73:01:9e:65:c2:2f:9a:47:41:01:d6: 37:c7:41:57:6a:f6:40:16:22:ab:8e:1d:ba:20:98: ab:6b:e1:7d:44:dc:c0:70:ea:fd:54:0d:06:56:8e: 4e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:13:66:D5:70:23:4D:40:4F:FD:46:23:20:62:04:10:B7:16:89:67 X509v3 Authority Key Identifier: keyid:53:B1:A8:EB:C3:EC:F7:F5:DB:7F:6C:AC:D0:0E:92:0A:F8:5A:E8:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/IhNm1XAjTUBP_UYjIGIEELcWiWc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.147.220.0/22 IPv6: 2001:67c:24ac::/48 Signature Algorithm: sha256WithRSAEncryption 58:65:59:e0:7a:3f:2e:76:72:ff:36:70:78:ff:16:96:a7:a0: 95:99:87:f0:e3:5a:bb:cc:29:68:01:28:fb:b2:a6:2d:18:05: b8:ed:e5:37:47:72:b3:dd:2f:aa:bd:50:18:0e:24:57:bd:cb: 14:2a:ed:f0:de:64:b3:be:46:24:a2:4b:01:92:42:ff:9a:00: ed:94:9b:39:a0:36:6f:cd:36:0e:e1:cd:5e:53:21:63:b4:c0: a2:74:7f:3b:e9:b3:16:79:98:f8:66:dd:af:60:87:8e:22:b1: 03:73:f9:4c:3e:f6:d5:16:43:e0:ce:17:1b:cf:f0:e3:46:23: ed:01:45:27:c7:43:ca:95:5f:49:ab:a7:b1:3e:1b:16:ea:73: 61:c5:4d:4c:b5:4c:8f:ba:23:15:96:8f:f3:90:b1:87:81:98: 18:5e:13:95:da:26:05:46:cb:a1:4e:61:5d:45:de:b8:fa:77: 3b:78:86:8c:8f:7a:7a:bc:7b:f3:e4:87:0f:8a:ed:8e:1b:06: 1c:94:e6:24:e1:44:a3:e0:f4:23:35:c0:50:a5:a7:9d:58:e3: d8:8e:f4:7d:03:6b:65:02:09:b8:b9:b4:ef:41:c9:2d:36:03: fb:65:fb:45:53:8f:2f:86:a2:da:83:8e:75:17:97:7e:6d:76: 62:a3:ab:11 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt/FQ47XyBwASbianez/01aMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUzYjFhOGViYzNlY2Y3ZjVkYjdmNmNhY2QwMGU5MjBhZjg1 YWU4YjQwHhcNMjYwMTAyMTQyMDQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjEzNjZkNTcwMjM0ZDQwNGZmZDQ2MjMyMDYyMDQxMGI3MTY4OTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjI9kSXECg0f6mcthsAIQuyr7cRjy ZouzvaPwvSyfkNvCv2lzKIOQuounsrnUJDbktZl8POdkCS/hhPPKUr2KkQIINdfD c42aO/hErhoRKBNJ+2VsxIVNS5hZIfjJC7q3dMrl/cBt3i1szmDFYy97Y8gB90th 2XMYpWk1Zacvd+XNpfNBj6dmlVwtid+AvidlVYyjOlU4JOTMjZSffC3RgH8jsS7a TjABpkWtqQ++2PydCD5HhajuG9vk7SZURapjd4PAM91bUOadAPAktEp/KPdRwXiB cwGeZcIvmkdBAdY3x0FXavZAFiKrjh26IJira+F9RNzAcOr9VA0GVo5ODQIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFCITZtVwI01AT/1GIyBiBBC3FolnMB8GA1UdIwQY MBaAFFOxqOvD7Pf1239srNAOkgr4Wui0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVTdHbzY4UHM5X1hiZjJ5czBBNlNDdmhhNkxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8wNzA2MzAtNTIzNC00OWM0LTg0ZmUt MTViZGE2Yjg2N2NiLzEvSWhObTFYQWpUVUJQX1VZaklHSUVFTGNXaVdjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi8wNzA2MzAtNTIzNC00OWM0LTg0ZmUtMTViZGE2Yjg2N2Ni LzEvVTdHbzY4UHM5X1hiZjJ5czBBNlNDdmhhNkxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQCLZPcMA8E AgACMAkDBwAgAQZ8JKwwDQYJKoZIhvcNAQELBQADggEBAFhlWeB6Py52cv82cHj/ FpanoJWZh/DjWrvMKWgBKPuypi0YBbjt5TdHcrPdL6q9UBgOJFe9yxQq7fDeZLO+ RiSiSwGSQv+aAO2UmzmgNm/NNg7hzV5TIWO0wKJ0fzvpsxZ5mPhm3a9gh44isQNz +Uw+9tUWQ+DOFxvP8ONGI+0BRSfHQ8qVX0mrp7E+Gxbqc2HFTUy1TI+6IxWWj/OQ sYeBmBheE5XaJgVGy6FOYV1F3rj6dzt4hoyPenq8e/Pkhw+K7Y4bBhyU5iThRKPg 9CM1wFClp51Y49iO9H0Da2UCCbi5tO9ByS02A/tl+0VTjy+GotqDjnUXl35tdmKj qxE= -----END CERTIFICATE-----Generated at Mon Jan 26 09:43:22 2026 by rpki-client