This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/iEcGmOOZjyl3yyMA7jLUNMM1FW0.roa File: iEcGmOOZjyl3yyMA7jLUNMM1FW0.roa (raw, json) Hash identifier: RROg1e50ketbJDyx2SARMDhaIl1VMvxOswAGgpuoihk= Subject key identifier: 88:47:06:98:E3:99:8F:29:77:CB:23:00:EE:32:D4:34:C3:35:15:6D Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B7834962AFC95FEAA31DAAADFD14976C8 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/iEcGmOOZjyl3yyMA7jLUNMM1FW0.roa Signing time: Thu 01 Jan 2026 06:17:50 +0000 ROA not before: Thu 01 Jan 2026 06:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212084 IP address blocks: 193.183.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:96:2a:fc:95:fe:aa:31:da:aa:df:d1:49:76:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88470698e3998f2977cb2300ee32d434c335156d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7c:a8:f9:7b:a9:88:49:03:c6:57:a7:30:ed: aa:ca:70:79:55:3f:bf:fd:5e:bc:6d:5f:bc:89:d4: a8:25:4f:cd:18:4a:e8:10:85:7a:80:4a:85:04:eb: fb:8d:1f:09:55:92:0d:66:2e:22:c7:99:7e:67:49: 0e:0b:f7:7c:63:5d:07:04:77:4e:1d:04:3b:d7:2f: 02:49:bf:1d:b4:6f:5d:d9:82:88:f5:af:52:d9:d7: 6d:e6:a9:b7:43:2a:2d:94:71:1f:80:87:4f:39:b7: ef:3d:bc:94:93:d6:8d:32:86:f6:9d:fb:cd:40:a4: 2d:0b:f7:5a:d4:bc:ec:f3:5c:cb:2d:70:af:04:e1: 4f:71:b0:53:1d:e2:2e:12:dc:ac:60:00:14:16:f3: 81:a8:49:d4:44:39:e8:02:1d:79:c4:57:e4:d3:4d: b1:7a:cf:7d:29:f0:3d:ef:bc:f3:21:c9:d9:96:e1: 96:14:37:58:d8:f3:05:a2:1f:8b:50:41:a4:1a:68: 20:4b:e2:64:80:14:74:0d:9a:fd:ac:d0:82:10:7a: ac:4a:18:37:84:26:6a:1e:1a:66:70:7a:01:10:22: d1:39:cd:31:a8:af:98:7c:6a:3d:3a:ce:f9:78:3b: bf:6e:92:7d:0a:9d:8a:33:b4:14:4d:ff:d5:55:3f: 43:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:47:06:98:E3:99:8F:29:77:CB:23:00:EE:32:D4:34:C3:35:15:6D X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/iEcGmOOZjyl3yyMA7jLUNMM1FW0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.183.143.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:82:05:25:58:68:2f:03:49:3f:88:bd:6a:23:24:73:4f:cd: fc:0a:ad:f7:99:b4:43:d6:ee:42:39:89:4b:39:4f:e9:23:ea: 24:47:15:63:b9:3a:6a:fd:9e:c3:d1:70:d4:3a:36:dc:ad:18: a0:49:9d:79:80:1d:a0:48:90:fe:13:78:9c:fa:a9:ce:27:db: 76:93:8b:fb:cd:30:f1:41:38:69:99:05:ee:1a:22:3c:86:70: b4:3a:c2:51:e2:2c:d5:d2:f2:86:11:90:ac:4f:5c:4a:d6:45: 6b:38:e1:ed:06:e8:3b:61:01:a0:9a:8a:d6:08:de:ab:e2:2a: 03:7a:90:6a:01:c5:f2:7f:25:a4:b1:d9:b2:52:d1:41:b1:72: ec:18:56:50:26:e5:28:99:20:78:28:69:e7:f1:c2:05:01:78: 48:65:5c:5e:36:f2:3a:dd:d7:4f:27:85:32:26:a9:23:e8:86: d6:76:3a:89:c1:ed:94:97:cc:4c:a3:f8:67:4c:84:98:81:55: 17:aa:30:ff:91:e2:f4:a6:98:4e:21:b0:35:8f:49:67:d0:ba: f2:ee:0a:78:55:e8:af:27:d1:14:c9:43:48:fe:c1:48:09:a2: 7f:b2:1e:57:5f:98:58:a5:23:ef:80:74:8f:2b:5c:e5:90:8f: 9e:ec:32:ef -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NJYq/JX+qjHaqt/RSXbIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODQ3MDY5OGUzOTk4ZjI5NzdjYjIzMDBlZTMyZDQzNGMzMzUxNTZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3yo+XupiEkDxlenMO2qynB5VT+/ /V68bV+8idSoJU/NGEroEIV6gEqFBOv7jR8JVZINZi4ix5l+Z0kOC/d8Y10HBHdO HQQ71y8CSb8dtG9d2YKI9a9S2ddt5qm3QyotlHEfgIdPObfvPbyUk9aNMob2nfvN QKQtC/da1Lzs81zLLXCvBOFPcbBTHeIuEtysYAAUFvOBqEnURDnoAh15xFfk002x es99KfA977zzIcnZluGWFDdY2PMFoh+LUEGkGmggS+JkgBR0DZr9rNCCEHqsShg3 hCZqHhpmcHoBECLROc0xqK+YfGo9Os75eDu/bpJ9Cp2KM7QUTf/VVT9DRQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIhHBpjjmY8pd8sjAO4y1DTDNRVtMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvaUVjR21PT1pqeWwzeXlNQTdqTFVOTU0xRlcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbePMA0G CSqGSIb3DQEBCwUAA4IBAQBtggUlWGgvA0k/iL1qIyRzT838Cq33mbRD1u5COYlL OU/pI+okRxVjuTpq/Z7D0XDUOjbcrRigSZ15gB2gSJD+E3ic+qnOJ9t2k4v7zTDx QThpmQXuGiI8hnC0OsJR4izV0vKGEZCsT1xK1kVrOOHtBug7YQGgmorWCN6r4ioD epBqAcXyfyWksdmyUtFBsXLsGFZQJuUomSB4KGnn8cIFAXhIZVxeNvI63ddPJ4Uy Jqkj6IbWdjqJwe2Ul8xMo/hnTISYgVUXqjD/keL0pphOIbA1j0ln0Lry7gp4Veiv J9EUyUNI/sFICaJ/sh5XX5hYpSPvgHSPK1zlkI+e7DLv -----END CERTIFICATE-----Generated at Sun Jan 25 09:03:56 2026 by rpki-client