This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/CI_IbIiOr7bX2nxFp9oik4WuQKw.roa File: CI_IbIiOr7bX2nxFp9oik4WuQKw.roa (raw, json) Hash identifier: LoeO3X2rVxLRDsyO+eMBMVv3AZSWcHWTpYLzyG6GgFI= Subject key identifier: 08:8F:C8:6C:88:8E:AF:B6:D7:DA:7C:45:A7:DA:22:93:85:AE:40:AC Certificate issuer: /CN=e58024b729d99f05133ec6d14390c73eb36db99e Certificate serial: 019B7EA6A3DA0198DBE63F67329D0AAC124C Authority key identifier: E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/CI_IbIiOr7bX2nxFp9oik4WuQKw.roa Signing time: Fri 02 Jan 2026 12:20:08 +0000 ROA not before: Fri 02 Jan 2026 12:20:08 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15461 IP address blocks: 2001:978:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.mft rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 09:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:a3:da:01:98:db:e6:3f:67:32:9d:0a:ac:12:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e58024b729d99f05133ec6d14390c73eb36db99e Validity Not Before: Jan 2 12:20:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=088fc86c888eafb6d7da7c45a7da229385ae40ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6e:eb:d6:99:7f:52:1e:09:4b:af:b6:4c:80: 35:b0:9f:df:65:fa:80:89:1d:7e:a4:a2:d0:85:44: 7e:5f:8c:27:f5:63:c6:be:32:38:63:95:a5:87:37: cc:dc:e2:3c:be:67:c5:a3:17:06:17:39:0b:2e:04: 29:c2:04:94:96:75:0c:cd:98:b3:3f:ae:3c:88:69: c6:80:9a:ac:15:6b:2d:aa:3e:78:87:d5:1e:8e:02: 11:93:57:bd:50:dc:e1:16:81:b9:fe:38:34:72:83: 29:29:1d:bd:36:f5:98:43:b4:ec:b1:31:c8:b3:fb: 78:db:b1:05:a3:df:97:75:c0:96:38:a2:34:b9:ad: fe:44:78:a1:03:27:1a:a8:7c:64:52:20:a0:74:dd: 55:a8:5c:75:4b:6d:ac:ca:b0:6c:32:4f:49:d6:48: b0:da:d3:39:ee:04:36:90:cd:cc:bc:63:cf:4f:b3: a8:c4:3a:19:f1:cd:ca:15:6c:54:6c:25:3a:de:50: 85:a5:a1:d8:44:be:5e:1b:d5:0d:9f:f4:29:7b:f1: e7:1b:1a:71:da:4f:dc:12:dd:b3:5f:e0:65:32:67: 4a:00:1e:5d:b0:d4:0b:3b:09:60:b8:3d:2c:22:56: ce:b4:db:fc:14:19:0d:45:8e:55:e3:e3:db:ba:33: cf:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8F:C8:6C:88:8E:AF:B6:D7:DA:7C:45:A7:DA:22:93:85:AE:40:AC X509v3 Authority Key Identifier: keyid:E5:80:24:B7:29:D9:9F:05:13:3E:C6:D1:43:90:C7:3E:B3:6D:B9:9E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YAktynZnwUTPsbRQ5DHPrNtuZ4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/CI_IbIiOr7bX2nxFp9oik4WuQKw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d5628a-d9b1-4da9-a744-956f6b5c6170/1/5YAktynZnwUTPsbRQ5DHPrNtuZ4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:978:3a00::/48 Signature Algorithm: sha256WithRSAEncryption 1b:aa:8d:76:78:ad:0f:10:04:df:d9:9d:3f:ab:ea:8d:18:45: fb:25:c4:41:7f:f4:0a:77:c7:59:fd:56:a0:15:9c:16:bf:ab: d1:d9:2a:84:24:90:8f:1e:cf:55:92:90:85:6b:1d:c5:f1:ce: 67:01:58:bb:e2:d4:15:e1:5c:19:33:6f:32:39:c8:2a:2c:2a: 7f:a5:9d:03:84:6c:af:02:9e:4e:7f:bd:f3:41:73:ca:8f:34: ae:73:f7:bd:61:fd:b2:4c:71:b5:4e:b8:ee:4a:f4:73:59:4c: a8:0d:2f:71:c8:61:fc:91:2e:13:78:df:14:ab:24:4a:d3:e7: 6f:f4:26:a0:2f:cc:12:0b:51:a1:02:62:0e:78:c2:f1:6c:f5: f0:1f:df:30:e7:f5:8d:6d:58:30:41:44:00:9b:8b:99:cb:a1: ff:1c:5f:85:0b:33:b4:b8:82:c1:52:4d:42:95:f9:48:d8:3d: 11:58:26:fd:20:b4:8b:5e:45:3b:e4:9b:34:2f:b7:b1:ef:e2: d8:31:7e:f5:76:09:dd:d5:f3:60:21:19:ba:5a:2c:bb:ec:df: dd:c9:6f:c2:c5:38:06:5b:3b:97:92:67:d2:d0:96:c4:48:d2: 73:9a:b0:ca:ab:b6:bf:c1:6b:58:35:45:bf:d6:18:36:65:ed: c8:dd:fd:e3 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt+pqPaAZjb5j9nMp0KrBJMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ODAyNGI3MjlkOTlmMDUxMzNlYzZkMTQzOTBjNzNlYjM2 ZGI5OWUwHhcNMjYwMTAyMTIyMDA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwODhmYzg2Yzg4OGVhZmI2ZDdkYTdjNDVhN2RhMjI5Mzg1YWU0MGFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtG7r1pl/Uh4JS6+2TIA1sJ/fZfqA iR1+pKLQhUR+X4wn9WPGvjI4Y5WlhzfM3OI8vmfFoxcGFzkLLgQpwgSUlnUMzZiz P648iGnGgJqsFWstqj54h9UejgIRk1e9UNzhFoG5/jg0coMpKR29NvWYQ7TssTHI s/t427EFo9+XdcCWOKI0ua3+RHihAycaqHxkUiCgdN1VqFx1S22syrBsMk9J1kiw 2tM57gQ2kM3MvGPPT7OoxDoZ8c3KFWxUbCU63lCFpaHYRL5eG9UNn/Qpe/HnGxpx 2k/cEt2zX+BlMmdKAB5dsNQLOwlguD0sIlbOtNv8FBkNRY5V4+PbujPPUwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFAiPyGyIjq+219p8RafaIpOFrkCsMB8GA1UdIwQY MBaAFOWAJLcp2Z8FEz7G0UOQxz6zbbmeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQt OTU2ZjZiNWM2MTcwLzEvQ0lfSWJJaU9yN2JYMm54RnA5b2lrNFd1UUt3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9kNTYyOGEtZDliMS00ZGE5LWE3NDQtOTU2ZjZiNWM2MTcw LzEvNVlBa3R5blpud1VUUHNiUlE1REhQck50dVo0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEJeDoA MA0GCSqGSIb3DQEBCwUAA4IBAQAbqo12eK0PEATf2Z0/q+qNGEX7JcRBf/QKd8dZ /VagFZwWv6vR2SqEJJCPHs9VkpCFax3F8c5nAVi74tQV4VwZM28yOcgqLCp/pZ0D hGyvAp5Of73zQXPKjzSuc/e9Yf2yTHG1TrjuSvRzWUyoDS9xyGH8kS4TeN8UqyRK 0+dv9CagL8wSC1GhAmIOeMLxbPXwH98w5/WNbVgwQUQAm4uZy6H/HF+FCzO0uILB Uk1ClflI2D0RWCb9ILSLXkU75Js0L7ex7+LYMX71dgnd1fNgIRm6Wiy77N/dyW/C xTgGWzuXkmfS0JbESNJzmrDKq7a/wWtYNUW/1hg2Ze3I3f3j -----END CERTIFICATE-----Generated at Sun Jan 25 18:08:03 2026 by rpki-client