This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/64e1ef-9ba8-4307-bfad-6587f76fd810/1/iYHzEnXzX7Ri36tD7aub9iMoOmA.roa File: iYHzEnXzX7Ri36tD7aub9iMoOmA.roa (raw, json) Hash identifier: 1jW4is5cwWCDH+AJEWg+glpxZJwRIEFEPAYxOuttUh8= Subject key identifier: 89:81:F3:12:75:F3:5F:B4:62:DF:AB:43:ED:AB:9B:F6:23:28:3A:60 Certificate issuer: /CN=fe1d18d9a222736dbac231110b88deac8db0336d Certificate serial: 019B7F15AAA8B23316AD0D6C50D163FC74AE Authority key identifier: FE:1D:18:D9:A2:22:73:6D:BA:C2:31:11:0B:88:DE:AC:8D:B0:33:6D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_h0Y2aIic226wjERC4jerI2wM20.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/64e1ef-9ba8-4307-bfad-6587f76fd810/1/iYHzEnXzX7Ri36tD7aub9iMoOmA.roa Signing time: Fri 02 Jan 2026 14:21:24 +0000 ROA not before: Fri 02 Jan 2026 14:21:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210221 IP address blocks: 194.38.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/64e1ef-9ba8-4307-bfad-6587f76fd810/1/_h0Y2aIic226wjERC4jerI2wM20.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/64e1ef-9ba8-4307-bfad-6587f76fd810/1/_h0Y2aIic226wjERC4jerI2wM20.mft rsync://rpki.ripe.net/repository/DEFAULT/_h0Y2aIic226wjERC4jerI2wM20.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:aa:a8:b2:33:16:ad:0d:6c:50:d1:63:fc:74:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=fe1d18d9a222736dbac231110b88deac8db0336d Validity Not Before: Jan 2 14:21:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8981f31275f35fb462dfab43edab9bf623283a60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2b:e3:d8:eb:c2:1d:b3:9a:9f:fc:14:e4:07: ec:1b:a4:25:62:87:c9:4d:17:8c:99:f0:d5:3d:fd: c5:59:d8:b8:ea:ab:5e:e6:e0:e2:86:4f:0e:9a:14: 65:33:77:79:47:18:35:7d:e2:98:15:c0:d8:e5:1b: cf:bf:08:b3:6e:f7:8f:e5:3b:6c:ce:9e:af:01:41: 8d:63:4a:d5:36:b0:6f:c4:61:46:1d:fe:6b:e4:e7: f9:1e:d2:05:3b:c1:b8:75:41:09:46:62:86:5b:1a: a1:ef:15:4a:bc:62:d8:1c:8e:4a:c7:62:51:f5:ae: c2:ac:cc:4f:9e:dc:00:bf:2a:2c:5b:2e:24:7f:ee: 13:90:2e:fc:1f:fe:5e:d8:1f:49:40:fa:1a:96:59: cf:54:e8:8b:e1:68:d0:14:69:57:e1:ca:eb:3b:9b: 91:b7:a5:bc:62:18:99:64:95:3b:20:c9:df:20:5c: 8c:ed:38:0f:dc:94:7a:ec:03:54:6b:83:3d:da:1e: c1:d9:d3:dd:d0:dc:ae:e7:2b:5f:da:e0:bc:1d:d0: eb:d0:6f:09:d2:a0:ba:88:65:f8:f6:4e:c4:bb:9d: 6a:08:d5:5d:31:d6:7b:e3:c1:b3:2f:a8:fb:97:f2: 3e:8a:0f:28:57:8c:50:9e:77:cb:8e:bf:de:c6:d5: c8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:81:F3:12:75:F3:5F:B4:62:DF:AB:43:ED:AB:9B:F6:23:28:3A:60 X509v3 Authority Key Identifier: keyid:FE:1D:18:D9:A2:22:73:6D:BA:C2:31:11:0B:88:DE:AC:8D:B0:33:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_h0Y2aIic226wjERC4jerI2wM20.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/64e1ef-9ba8-4307-bfad-6587f76fd810/1/iYHzEnXzX7Ri36tD7aub9iMoOmA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/64e1ef-9ba8-4307-bfad-6587f76fd810/1/_h0Y2aIic226wjERC4jerI2wM20.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.38.130.0/24 Signature Algorithm: sha256WithRSAEncryption 28:43:b1:c9:82:3b:72:bb:e3:4a:c3:76:82:46:24:95:a7:1f: 35:cc:4a:0a:8b:af:d0:68:38:0f:ab:f2:6d:fb:4e:1e:f8:68: d8:35:7a:94:42:72:28:86:56:31:3d:d3:ab:42:a0:bb:7a:b8: 80:01:40:cb:28:cc:1e:85:19:00:26:ef:aa:85:75:5c:56:29: 2d:b6:72:c9:8f:b0:be:d0:19:9c:ae:97:39:0c:16:21:4f:97: 21:f7:7f:94:6f:ae:e7:2a:d5:15:3f:9d:92:2b:3d:06:0a:fe: e0:3e:2e:0a:80:00:a0:67:0c:76:87:8a:a8:56:ff:fa:3d:da: 20:41:a3:77:23:db:67:7d:6c:e7:91:0e:b7:7b:8d:2d:92:f1: 88:12:30:af:fa:6f:e2:f6:14:a0:0e:68:ea:86:b0:2c:80:a1: 14:ff:99:2b:d7:e4:34:30:e5:34:f6:94:4d:16:bf:b8:cb:d6: 93:7c:32:e4:4c:d5:04:69:99:a1:93:24:9f:13:cb:a0:99:51: ec:11:b2:95:fd:48:44:71:26:18:96:2f:55:5b:46:66:d9:b2: 09:7d:54:50:5f:77:3b:b0:4a:da:1a:49:f6:55:c3:95:48:cf: d2:90:f4:b1:37:cc:d6:02:aa:88:78:c1:b9:88:44:49:7e:64: 74:80:3a:6c -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FaqosjMWrQ1sUNFj/HSuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZlMWQxOGQ5YTIyMjczNmRiYWMyMzExMTBiODhkZWFjOGRi MDMzNmQwHhcNMjYwMTAyMTQyMTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTgxZjMxMjc1ZjM1ZmI0NjJkZmFiNDNlZGFiOWJmNjIzMjgzYTYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwSvj2OvCHbOan/wU5AfsG6QlYofJ TReMmfDVPf3FWdi46qte5uDihk8OmhRlM3d5Rxg1feKYFcDY5RvPvwizbveP5Tts zp6vAUGNY0rVNrBvxGFGHf5r5Of5HtIFO8G4dUEJRmKGWxqh7xVKvGLYHI5Kx2JR 9a7CrMxPntwAvyosWy4kf+4TkC78H/5e2B9JQPoallnPVOiL4WjQFGlX4crrO5uR t6W8YhiZZJU7IMnfIFyM7TgP3JR67ANUa4M92h7B2dPd0Nyu5ytf2uC8HdDr0G8J 0qC6iGX49k7Eu51qCNVdMdZ748GzL6j7l/I+ig8oV4xQnnfLjr/extXIwwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFImB8xJ181+0Yt+rQ+2rm/YjKDpgMB8GA1UdIwQY MBaAFP4dGNmiInNtusIxEQuI3qyNsDNtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX2gwWTJhSWljMjI2d2pFUkM0amVySTJ3TTIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC82NGUxZWYtOWJhOC00MzA3LWJmYWQt NjU4N2Y3NmZkODEwLzEvaVlIekVuWHpYN1JpMzZ0RDdhdWI5aU1vT21BLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC82NGUxZWYtOWJhOC00MzA3LWJmYWQtNjU4N2Y3NmZkODEw LzEvX2gwWTJhSWljMjI2d2pFUkM0amVySTJ3TTIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiaCMA0G CSqGSIb3DQEBCwUAA4IBAQAoQ7HJgjtyu+NKw3aCRiSVpx81zEoKi6/QaDgPq/Jt +04e+GjYNXqUQnIohlYxPdOrQqC7eriAAUDLKMwehRkAJu+qhXVcVikttnLJj7C+ 0Bmcrpc5DBYhT5ch93+Ub67nKtUVP52SKz0GCv7gPi4KgACgZwx2h4qoVv/6Pdog QaN3I9tnfWznkQ63e40tkvGIEjCv+m/i9hSgDmjqhrAsgKEU/5kr1+Q0MOU09pRN Fr+4y9aTfDLkTNUEaZmhkySfE8ugmVHsEbKV/UhEcSYYli9VW0Zm2bIJfVRQX3c7 sEraGkn2VcOVSM/SkPSxN8zWAqqIeMG5iERJfmR0gDps -----END CERTIFICATE-----Generated at Mon Jan 26 09:42:38 2026 by rpki-client