This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/IxO99c5pFhRvUksjCk8RGNZdHys.roa File: IxO99c5pFhRvUksjCk8RGNZdHys.roa (raw, json) Hash identifier: axX2zCX5EaVP+cgNK0AwafDUwd4UVfumU6doP/6YeJg= Subject key identifier: 23:13:BD:F5:CE:69:16:14:6F:52:4B:23:0A:4F:11:18:D6:5D:1F:2B Certificate issuer: /CN=b00e25f55ebbacb069f103acb0866703835cfccd Certificate serial: 019B76EB634C4CED402C14E39A3B4DF99A8A Authority key identifier: B0:0E:25:F5:5E:BB:AC:B0:69:F1:03:AC:B0:86:67:03:83:5C:FC:CD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sA4l9V67rLBp8QOssIZnA4Nc_M0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/IxO99c5pFhRvUksjCk8RGNZdHys.roa Signing time: Thu 01 Jan 2026 00:18:16 +0000 ROA not before: Thu 01 Jan 2026 00:18:16 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35369 IP address blocks: 185.197.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/sA4l9V67rLBp8QOssIZnA4Nc_M0.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/sA4l9V67rLBp8QOssIZnA4Nc_M0.mft rsync://rpki.ripe.net/repository/DEFAULT/sA4l9V67rLBp8QOssIZnA4Nc_M0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 03:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:63:4c:4c:ed:40:2c:14:e3:9a:3b:4d:f9:9a:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b00e25f55ebbacb069f103acb0866703835cfccd Validity Not Before: Jan 1 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2313bdf5ce6916146f524b230a4f1118d65d1f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:72:95:4e:af:5c:79:8c:4d:e6:ca:00:95:0e: 35:f8:c1:f2:56:9e:b0:40:af:9d:07:74:66:85:e4: 0b:a7:ea:4e:f7:41:97:9b:87:0e:32:06:77:7c:31: f6:b1:b8:5a:6a:d8:a2:9a:3d:50:0f:f0:4b:6c:14: a4:28:d4:ab:8a:65:61:97:c6:38:e1:d1:91:3b:b7: 89:ef:87:51:a8:71:9f:9d:00:cd:10:4d:fc:e9:d2: 63:ad:11:32:53:e8:cd:0a:28:0d:52:ed:67:6b:af: cc:cd:1c:e0:ec:8d:5b:4d:20:a6:71:81:87:d5:4d: 26:77:bf:2b:8d:c2:be:55:db:24:21:5e:ab:75:26: f6:b4:bb:1d:44:96:54:c0:61:be:37:34:b0:3a:27: 0e:89:f3:e0:91:b2:f5:8e:b5:cd:ba:14:b1:dc:a7: 67:67:5d:b5:75:94:95:57:e0:1c:6f:58:db:d7:a1: c6:21:db:1c:c9:85:93:2d:14:ba:c4:58:40:52:cb: 48:40:f9:30:29:57:42:a9:ee:c3:cb:3f:46:54:6b: 98:68:25:68:91:48:76:13:13:bc:c8:9e:26:84:22: 12:c3:e6:7a:b2:e0:3c:b9:64:0c:78:64:19:ae:70: 2f:72:07:f8:ad:97:8c:67:b7:c4:47:52:1a:33:02: d9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:13:BD:F5:CE:69:16:14:6F:52:4B:23:0A:4F:11:18:D6:5D:1F:2B X509v3 Authority Key Identifier: keyid:B0:0E:25:F5:5E:BB:AC:B0:69:F1:03:AC:B0:86:67:03:83:5C:FC:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sA4l9V67rLBp8QOssIZnA4Nc_M0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/IxO99c5pFhRvUksjCk8RGNZdHys.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/31a0ec-d9b8-49e4-b436-8b4215e58028/1/sA4l9V67rLBp8QOssIZnA4Nc_M0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.197.181.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:9b:84:a6:b0:1c:5e:7b:70:e4:3f:36:b4:42:f5:fb:89:61: 0c:25:41:7e:8f:6e:df:16:80:5e:b2:f2:67:d9:d8:18:4c:4e: 51:86:08:02:bc:28:b7:8b:99:f1:ee:cb:f1:2b:58:60:c6:32: e1:fc:0a:e0:35:2a:18:e9:99:69:a5:46:73:74:37:75:ff:57: df:bc:fb:8b:3e:70:33:fe:72:00:9e:3b:56:4a:fa:48:c8:14: 44:96:fe:ad:8d:5b:81:d1:b9:bd:f2:13:f0:6a:9c:d5:28:24: ef:31:73:df:62:d9:17:1e:03:b1:8d:e9:bc:75:ba:3d:da:a1: 0e:d9:05:e3:db:be:b4:63:43:87:df:29:aa:db:bf:71:f5:69: 26:00:e3:e5:a3:8a:75:c1:47:63:60:13:8e:9e:6e:36:7f:26: 95:d1:10:96:f9:97:bd:15:c9:7e:1b:a0:33:f4:1e:4d:02:c7: 07:0b:62:d9:65:75:eb:e3:d2:fe:e1:76:09:22:fc:a3:2b:96: 63:81:0e:6e:d4:31:16:c9:57:ff:93:6d:92:b6:f2:44:19:8e: 50:6b:94:9c:9d:61:10:9c:db:0c:f8:fb:53:7d:eb:89:67:f0: a8:f5:b6:c7:3d:b2:40:f2:2d:b1:41:92:c1:a0:23:2d:df:3f: 29:a7:7c:14 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt262NMTO1ALBTjmjtN+ZqKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwMGUyNWY1NWViYmFjYjA2OWYxMDNhY2IwODY2NzAzODM1 Y2ZjY2QwHhcNMjYwMTAxMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzEzYmRmNWNlNjkxNjE0NmY1MjRiMjMwYTRmMTExOGQ2NWQxZjJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3HKVTq9ceYxN5soAlQ41+MHyVp6w QK+dB3RmheQLp+pO90GXm4cOMgZ3fDH2sbhaatiimj1QD/BLbBSkKNSrimVhl8Y4 4dGRO7eJ74dRqHGfnQDNEE386dJjrREyU+jNCigNUu1na6/MzRzg7I1bTSCmcYGH 1U0md78rjcK+VdskIV6rdSb2tLsdRJZUwGG+NzSwOicOifPgkbL1jrXNuhSx3Kdn Z121dZSVV+Acb1jb16HGIdscyYWTLRS6xFhAUstIQPkwKVdCqe7Dyz9GVGuYaCVo kUh2ExO8yJ4mhCISw+Z6suA8uWQMeGQZrnAvcgf4rZeMZ7fER1IaMwLZuQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCMTvfXOaRYUb1JLIwpPERjWXR8rMB8GA1UdIwQY MBaAFLAOJfVeu6ywafEDrLCGZwODXPzNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0E0bDlWNjdyTEJwOFFPc3NJWm5BNE5jX00wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8zMWEwZWMtZDliOC00OWU0LWI0MzYt OGI0MjE1ZTU4MDI4LzEvSXhPOTljNXBGaFJ2VWtzakNrOFJHTlpkSHlzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS8zMWEwZWMtZDliOC00OWU0LWI0MzYtOGI0MjE1ZTU4MDI4 LzEvc0E0bDlWNjdyTEJwOFFPc3NJWm5BNE5jX00wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAucW1MA0G CSqGSIb3DQEBCwUAA4IBAQBam4SmsBxee3DkPza0QvX7iWEMJUF+j27fFoBesvJn 2dgYTE5RhggCvCi3i5nx7svxK1hgxjLh/ArgNSoY6ZlppUZzdDd1/1ffvPuLPnAz /nIAnjtWSvpIyBRElv6tjVuB0bm98hPwapzVKCTvMXPfYtkXHgOxjem8dbo92qEO 2QXj2760Y0OH3ymq279x9WkmAOPlo4p1wUdjYBOOnm42fyaV0RCW+Ze9Fcl+G6Az 9B5NAscHC2LZZXXr49L+4XYJIvyjK5ZjgQ5u1DEWyVf/k22StvJEGY5Qa5ScnWEQ nNsM+PtTfeuJZ/Co9bbHPbJA8i2xQZLBoCMt3z8pp3wU -----END CERTIFICATE-----Generated at Mon Jan 26 13:11:06 2026 by rpki-client