This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ec3531-82f8-4b4d-b590-23430950609c/1/IVJmRlo_N7uujpHOQ1PY0oGuwPE.roa File: IVJmRlo_N7uujpHOQ1PY0oGuwPE.roa (raw, json) Hash identifier: HId6QIpCvryq7pzO2cSpzlsjWi8B2cu2NyD1dmCRRqc= Subject key identifier: 21:52:66:46:5A:3F:37:BB:AE:8E:91:CE:43:53:D8:D2:81:AE:C0:F1 Certificate issuer: /CN=5e8d3c0b6414c9c86e3c94a714dfb269cb5e9169 Certificate serial: 019B78A379DBFCAA74FDA4BBE64B89CA5599 Authority key identifier: 5E:8D:3C:0B:64:14:C9:C8:6E:3C:94:A7:14:DF:B2:69:CB:5E:91:69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xo08C2QUychuPJSnFN-yactekWk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ec3531-82f8-4b4d-b590-23430950609c/1/IVJmRlo_N7uujpHOQ1PY0oGuwPE.roa Signing time: Thu 01 Jan 2026 08:18:57 +0000 ROA not before: Thu 01 Jan 2026 08:18:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2484 IP address blocks: 194.0.9.0/24 maxlen: 24 2001:678:c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ec3531-82f8-4b4d-b590-23430950609c/1/Xo08C2QUychuPJSnFN-yactekWk.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/ec3531-82f8-4b4d-b590-23430950609c/1/Xo08C2QUychuPJSnFN-yactekWk.mft rsync://rpki.ripe.net/repository/DEFAULT/Xo08C2QUychuPJSnFN-yactekWk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:79:db:fc:aa:74:fd:a4:bb:e6:4b:89:ca:55:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e8d3c0b6414c9c86e3c94a714dfb269cb5e9169 Validity Not Before: Jan 1 08:18:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=215266465a3f37bbae8e91ce4353d8d281aec0f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2f:18:9c:08:21:44:2e:40:2d:e6:cc:2b:21: fc:a4:6f:65:f2:a2:82:27:bf:c8:56:9e:c6:7f:64: b9:84:72:6b:33:d1:11:b1:b6:bc:70:c2:9a:bc:23: 00:88:fb:cf:94:15:ff:2a:e4:76:1d:80:0e:82:0e: 3c:60:7a:0c:70:49:f9:fb:c5:ad:37:2b:00:87:c4: 40:11:84:1a:3d:f2:fd:52:ec:92:b2:fb:bb:c9:7e: 04:d0:0a:5f:c7:96:15:29:f7:49:cd:0b:0e:39:bc: bd:b8:4f:92:6c:b0:74:e0:7a:c6:bd:d7:7a:1c:a0: d8:f9:cd:de:8b:33:b3:27:2b:dc:be:97:32:07:eb: 01:08:a1:3d:3c:c0:23:4e:ac:74:e6:eb:7f:f7:d6: 04:a6:ec:52:59:b5:91:99:9e:87:2e:8c:0e:81:f2: 8a:46:48:8f:bc:cd:5f:6e:89:b1:2c:72:48:3a:fb: b5:de:e9:7f:33:84:69:6d:28:90:ab:da:fa:7d:4a: be:45:e8:3a:23:88:0b:b4:88:0e:4c:5b:01:67:88: 8e:5c:1f:b8:49:1b:2c:70:ce:34:55:4f:a4:9c:08: c7:16:19:7a:3d:16:c3:37:2e:cd:c1:f0:ef:1a:3b: 0f:35:78:b6:c0:ac:88:1a:46:31:27:48:ff:9b:c1: 89:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:52:66:46:5A:3F:37:BB:AE:8E:91:CE:43:53:D8:D2:81:AE:C0:F1 X509v3 Authority Key Identifier: keyid:5E:8D:3C:0B:64:14:C9:C8:6E:3C:94:A7:14:DF:B2:69:CB:5E:91:69 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xo08C2QUychuPJSnFN-yactekWk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ec3531-82f8-4b4d-b590-23430950609c/1/IVJmRlo_N7uujpHOQ1PY0oGuwPE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ec3531-82f8-4b4d-b590-23430950609c/1/Xo08C2QUychuPJSnFN-yactekWk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.0.9.0/24 IPv6: 2001:678:c::/48 Signature Algorithm: sha256WithRSAEncryption a1:5e:07:cf:09:98:28:db:d6:13:49:a8:03:04:7c:d5:01:b7: db:cd:fe:d0:7d:c3:7a:ff:95:48:84:ca:9f:0a:39:78:29:b3: ac:9e:a5:7f:2a:e2:21:cc:5a:a5:c7:48:ce:cf:9e:66:07:0d: e0:38:54:8c:c3:f8:bb:22:3d:83:58:97:2f:ea:9e:11:e0:61: ee:49:fd:82:a4:53:1c:3f:e6:a3:8c:a1:81:9b:1b:8f:1a:20: 98:14:3f:c3:97:0b:cd:4a:da:90:36:50:cf:9e:0d:3d:e8:4a: 24:2e:e7:af:16:68:bf:e1:df:4a:a2:26:22:e2:5c:9c:74:36: cc:4c:ed:6c:92:f6:64:b6:2d:52:fb:45:2d:8f:50:ec:bd:31: 8c:42:25:89:07:de:9c:eb:dd:0d:88:d7:88:8c:fd:77:0c:35: d2:ed:e5:82:cb:29:2e:07:f8:b1:9d:5f:b5:3b:14:fc:6c:c3: 2f:09:29:53:11:64:cf:74:40:0c:82:d5:3b:36:e7:1e:47:f7: 86:2d:f8:f7:5e:e1:6e:e5:5d:a8:35:b3:6f:03:cc:54:50:f5: 2d:d9:81:20:c3:73:48:6b:3a:32:9b:d0:5b:3c:aa:43:f3:77: f0:f6:b3:cd:33:0d:e0:f3:1a:12:36:61:67:fe:e7:ac:3d:2f: 9d:ca:d5:c1 -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4o3nb/Kp0/aS75kuJylWZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlOGQzYzBiNjQxNGM5Yzg2ZTNjOTRhNzE0ZGZiMjY5Y2I1 ZTkxNjkwHhcNMjYwMTAxMDgxODU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMTUyNjY0NjVhM2YzN2JiYWU4ZTkxY2U0MzUzZDhkMjgxYWVjMGYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzC8YnAghRC5ALebMKyH8pG9l8qKC J7/IVp7Gf2S5hHJrM9ERsba8cMKavCMAiPvPlBX/KuR2HYAOgg48YHoMcEn5+8Wt NysAh8RAEYQaPfL9UuySsvu7yX4E0Apfx5YVKfdJzQsOOby9uE+SbLB04HrGvdd6 HKDY+c3eizOzJyvcvpcyB+sBCKE9PMAjTqx05ut/99YEpuxSWbWRmZ6HLowOgfKK RkiPvM1fbomxLHJIOvu13ul/M4RpbSiQq9r6fUq+Reg6I4gLtIgOTFsBZ4iOXB+4 SRsscM40VU+knAjHFhl6PRbDNy7NwfDvGjsPNXi2wKyIGkYxJ0j/m8GJkwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFCFSZkZaPze7ro6RzkNT2NKBrsDxMB8GA1UdIwQY MBaAFF6NPAtkFMnIbjyUpxTfsmnLXpFpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWG8wOEMyUVV5Y2h1UEpTbkZOLXlhY3Rla1drLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9lYzM1MzEtODJmOC00YjRkLWI1OTAt MjM0MzA5NTA2MDljLzEvSVZKbVJsb19ON3V1anBIT1ExUFkwb0d1d1BFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9lYzM1MzEtODJmOC00YjRkLWI1OTAtMjM0MzA5NTA2MDlj LzEvWG8wOEMyUVV5Y2h1UEpTbkZOLXlhY3Rla1drLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwgAJMA8E AgACMAkDBwAgAQZ4AAwwDQYJKoZIhvcNAQELBQADggEBAKFeB88JmCjb1hNJqAME fNUBt9vN/tB9w3r/lUiEyp8KOXgps6yepX8q4iHMWqXHSM7PnmYHDeA4VIzD+Lsi PYNYly/qnhHgYe5J/YKkUxw/5qOMoYGbG48aIJgUP8OXC81K2pA2UM+eDT3oSiQu 568WaL/h30qiJiLiXJx0NsxM7WyS9mS2LVL7RS2PUOy9MYxCJYkH3pzr3Q2I14iM /XcMNdLt5YLLKS4H+LGdX7U7FPxswy8JKVMRZM90QAyC1Ts25x5H94Yt+Pde4W7l Xag1s28DzFRQ9S3ZgSDDc0hrOjKb0Fs8qkPzd/D2s80zDeDzGhI2YWf+56w9L53K 1cE= -----END CERTIFICATE-----Generated at Mon Jan 26 00:39:01 2026 by rpki-client