This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ic96sAtFNMq6gMj5p0rzJ8iVFGI.roa File: ic96sAtFNMq6gMj5p0rzJ8iVFGI.roa (raw, json) Hash identifier: lnJiYuMS3ALTegFqKcskZF7kpPMtZlqnA9bpSoYxk8w= Subject key identifier: 89:CF:7A:B0:0B:45:34:CA:BA:80:C8:F9:A7:4A:F3:27:C8:95:14:62 Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Certificate serial: 019B78348B62AACA3BEA9B6FEE3BA2C3B3A7 Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ic96sAtFNMq6gMj5p0rzJ8iVFGI.roa Signing time: Thu 01 Jan 2026 06:17:47 +0000 ROA not before: Thu 01 Jan 2026 06:17:47 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208001 IP address blocks: 194.71.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.mft rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:8b:62:aa:ca:3b:ea:9b:6f:ee:3b:a2:c3:b3:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b Validity Not Before: Jan 1 06:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89cf7ab00b4534caba80c8f9a74af327c8951462 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f2:d4:a6:3f:ad:e2:40:cd:5a:6d:3d:a3:4e: 5b:7d:66:f0:f2:94:ff:2a:22:c8:e8:aa:a9:d5:c8: 38:b3:47:73:4b:81:94:0b:c9:70:10:0b:23:c9:cd: 69:86:8a:55:8e:11:01:62:dc:0b:08:06:78:bc:7a: 8a:d3:7a:ed:ca:57:a1:0e:d4:7e:e9:ef:17:dd:9a: 49:63:6c:84:84:06:df:ac:20:bb:c8:64:8d:49:dd: bc:4c:4f:23:3a:3c:7d:4d:9f:46:29:3c:f3:a5:68: 54:1c:1f:b3:d5:ea:6d:09:80:64:6c:e1:20:82:7f: d8:0f:6a:45:b8:d8:8f:08:4a:1a:4d:03:cf:c3:d1: 3f:04:1e:a5:34:d8:c5:6e:ca:04:2d:47:de:0e:34: 78:bf:76:36:97:2a:e4:e5:c6:5c:15:09:11:49:56: 2a:a6:44:9b:0a:18:60:44:fd:e8:27:1d:18:f1:e6: aa:47:3d:9e:a1:84:e7:40:cd:11:4a:ef:92:3e:9f: c8:ae:29:4e:d7:5c:4e:9a:fd:bc:44:46:2b:30:ab: 74:73:8b:20:d5:8e:16:1c:e4:c7:9f:22:af:e7:2e: be:19:c2:dc:36:59:00:1c:7c:87:c5:3f:b4:07:ab: 5b:70:fa:d2:82:92:b7:57:7f:83:dc:fc:f6:0b:41: bb:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:CF:7A:B0:0B:45:34:CA:BA:80:C8:F9:A7:4A:F3:27:C8:95:14:62 X509v3 Authority Key Identifier: keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ic96sAtFNMq6gMj5p0rzJ8iVFGI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.71.122.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:07:74:fc:95:1a:90:c6:18:04:75:bc:0b:fc:ec:8a:c8:d5: 3d:56:8e:a0:53:48:53:93:a2:35:de:22:b8:71:b5:17:b8:34: c2:b3:e1:cc:ce:e6:8e:83:04:7b:07:ef:14:a8:85:40:0c:f8: a1:62:5a:db:6f:05:79:3f:b7:6c:bf:9e:c0:3e:25:98:a2:c3: 0b:e9:32:31:38:5f:3e:08:56:ca:4f:6a:92:7b:7b:b5:4a:5c: 1e:95:03:2f:6f:b3:85:32:0a:da:11:02:ee:d8:d3:0d:7b:76: 2d:60:84:65:5e:fc:8a:51:1e:6c:fe:15:55:03:60:e0:33:63: 07:6a:db:da:64:12:d7:72:29:e6:91:8f:a2:77:2f:d9:8f:b6: 6c:d0:a4:84:dc:fe:69:93:da:4d:92:3e:5e:fb:dd:70:ee:10: cb:ab:84:b6:37:05:8c:2a:37:0e:0b:e4:78:6a:37:cc:16:ed: 7c:2c:54:6e:96:e7:fc:8c:d0:a5:04:e2:dc:d6:a0:2e:82:08: 5c:c8:cf:71:01:bf:b6:5a:09:f1:23:bc:1a:10:a3:9d:86:4a: 7d:c9:80:ed:7b:8e:a8:e6:46:85:9b:77:77:a1:c7:f9:22:45: 1f:9d:a9:4f:d9:cc:7e:0f:d3:cc:d6:44:ba:84:d8:57:46:4b: c8:8b:b0:d7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NItiqso76ptv7juiw7OnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh ZGFmMWIwHhcNMjYwMTAxMDYxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWNmN2FiMDBiNDUzNGNhYmE4MGM4ZjlhNzRhZjMyN2M4OTUxNDYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/LUpj+t4kDNWm09o05bfWbw8pT/ KiLI6Kqp1cg4s0dzS4GUC8lwEAsjyc1phopVjhEBYtwLCAZ4vHqK03rtylehDtR+ 6e8X3ZpJY2yEhAbfrCC7yGSNSd28TE8jOjx9TZ9GKTzzpWhUHB+z1eptCYBkbOEg gn/YD2pFuNiPCEoaTQPPw9E/BB6lNNjFbsoELUfeDjR4v3Y2lyrk5cZcFQkRSVYq pkSbChhgRP3oJx0Y8eaqRz2eoYTnQM0RSu+SPp/IrilO11xOmv28REYrMKt0c4sg 1Y4WHOTHnyKv5y6+GcLcNlkAHHyHxT+0B6tbcPrSgpK3V3+D3Pz2C0G7iwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFInPerALRTTKuoDI+adK8yfIlRRiMB8GA1UdIwQY MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt OTQzZDAzMzIxMzI2LzEvaWM5NnNBdEZOTXE2Z01qNXAwcnpKOGlWRkdJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2 LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwkd6MA0G CSqGSIb3DQEBCwUAA4IBAQAvB3T8lRqQxhgEdbwL/OyKyNU9Vo6gU0hTk6I13iK4 cbUXuDTCs+HMzuaOgwR7B+8UqIVADPihYlrbbwV5P7dsv57APiWYosML6TIxOF8+ CFbKT2qSe3u1SlwelQMvb7OFMgraEQLu2NMNe3YtYIRlXvyKUR5s/hVVA2DgM2MH atvaZBLXcinmkY+idy/Zj7Zs0KSE3P5pk9pNkj5e+91w7hDLq4S2NwWMKjcOC+R4 ajfMFu18LFRuluf8jNClBOLc1qAugghcyM9xAb+2WgnxI7waEKOdhkp9yYDte46o 5kaFm3d3ocf5IkUfnalP2cx+D9PM1kS6hNhXRkvIi7DX -----END CERTIFICATE-----Generated at Sun Jan 25 09:03:44 2026 by rpki-client