This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/2e8347-d9c7-4e51-9b14-d02d96c36ca3/1/IMFLS8lmXO1X5kPh5brIEnkKfS4.roa File: IMFLS8lmXO1X5kPh5brIEnkKfS4.roa (raw, json) Hash identifier: w30MlBbSWaBo/k7+866HLmrY83fawU5Z9usPbYOh250= Subject key identifier: 20:C1:4B:4B:C9:66:5C:ED:57:E6:43:E1:E5:BA:C8:12:79:0A:7D:2E Certificate issuer: /CN=8978ff5dab33c42da65fe4e1abfbca4eafbdd2aa Certificate serial: 019B791100084DC238C6048CB4199670840A Authority key identifier: 89:78:FF:5D:AB:33:C4:2D:A6:5F:E4:E1:AB:FB:CA:4E:AF:BD:D2:AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXj_XaszxC2mX-Thq_vKTq-90qo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/2e8347-d9c7-4e51-9b14-d02d96c36ca3/1/IMFLS8lmXO1X5kPh5brIEnkKfS4.roa Signing time: Thu 01 Jan 2026 10:18:35 +0000 ROA not before: Thu 01 Jan 2026 10:18:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 22773 IP address blocks: 85.204.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/2e8347-d9c7-4e51-9b14-d02d96c36ca3/1/iXj_XaszxC2mX-Thq_vKTq-90qo.crl rsync://rpki.ripe.net/repository/DEFAULT/e4/2e8347-d9c7-4e51-9b14-d02d96c36ca3/1/iXj_XaszxC2mX-Thq_vKTq-90qo.mft rsync://rpki.ripe.net/repository/DEFAULT/iXj_XaszxC2mX-Thq_vKTq-90qo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:00:08:4d:c2:38:c6:04:8c:b4:19:96:70:84:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8978ff5dab33c42da65fe4e1abfbca4eafbdd2aa Validity Not Before: Jan 1 10:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20c14b4bc9665ced57e643e1e5bac812790a7d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:96:a4:07:2c:7e:99:22:05:3c:3b:cd:87:7d: 8f:9d:6b:7f:e2:f9:6d:1b:41:ec:f1:4e:d9:df:9d: 0d:24:5a:e0:59:74:3c:9e:8d:1e:68:3b:8c:f4:05: 18:b2:ad:10:66:2f:be:27:e2:ea:91:10:e8:0d:a8: 75:27:6f:b9:fa:85:57:d3:24:e0:11:01:cd:4a:45: 3f:63:2c:ba:e8:c8:11:42:9f:1e:e5:48:78:ad:4c: 89:d0:64:3f:ad:fa:13:46:8a:d9:ad:fe:d7:9f:14: f6:6c:50:da:6f:55:10:25:b5:97:c1:41:55:ad:72: be:af:78:da:90:fd:52:4c:a1:22:ac:9f:a1:fa:a3: 91:f3:42:c3:1e:ff:31:c3:a8:56:90:62:fa:6d:fb: 33:d4:23:79:44:25:5a:76:0b:7c:8c:db:03:ce:e3: cd:68:69:94:ac:f9:df:cc:d8:6a:7f:61:6f:9a:54: 7b:1a:67:f8:30:ca:64:a3:0a:91:76:76:e5:7e:fd: 6f:34:90:de:3f:c3:96:9c:69:3c:af:da:77:f3:99: 31:e3:bd:37:5e:3a:66:4e:25:4d:84:b9:b7:e7:46: bb:20:45:07:4a:06:21:65:0d:ca:e0:e6:62:88:bd: a9:2e:c9:2b:2b:c6:07:17:1b:b1:a2:28:6a:dd:04: b5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:C1:4B:4B:C9:66:5C:ED:57:E6:43:E1:E5:BA:C8:12:79:0A:7D:2E X509v3 Authority Key Identifier: keyid:89:78:FF:5D:AB:33:C4:2D:A6:5F:E4:E1:AB:FB:CA:4E:AF:BD:D2:AA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXj_XaszxC2mX-Thq_vKTq-90qo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2e8347-d9c7-4e51-9b14-d02d96c36ca3/1/IMFLS8lmXO1X5kPh5brIEnkKfS4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/2e8347-d9c7-4e51-9b14-d02d96c36ca3/1/iXj_XaszxC2mX-Thq_vKTq-90qo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.204.148.0/22 Signature Algorithm: sha256WithRSAEncryption 29:00:9a:6a:e1:e9:e0:c7:78:56:ec:01:68:64:15:ed:88:b9: f0:70:c1:bf:b2:7c:61:62:bf:56:16:0d:f0:43:bf:c6:97:97: df:bc:56:4f:a3:5b:e3:47:16:9a:a6:61:0e:27:08:78:b3:3f: fa:fb:3a:47:45:24:8c:ad:92:d0:fc:f3:df:8d:c0:ba:46:49: bb:e9:89:5b:14:61:46:62:4c:08:2f:59:67:86:1b:48:2f:c1: 26:63:3a:ec:48:18:40:de:45:f2:30:91:9c:15:a6:e8:09:29: a0:7c:32:2c:e6:41:b9:c3:bb:f8:04:91:73:43:b5:80:12:c6: ca:e1:3c:f0:ca:64:d7:42:0f:76:45:9f:0b:9c:1e:6e:8e:fd: 06:d9:ed:1c:47:14:18:97:99:98:c5:a1:32:c0:1f:79:1d:6c: 1d:b1:ac:9e:23:88:3b:4c:b2:82:7e:ba:31:11:20:70:88:2d: 52:3c:fc:70:7d:f1:77:b4:df:14:51:c1:ad:b8:02:67:93:86: ff:aa:bf:a6:b1:a1:59:8c:9b:cf:b4:0b:b1:76:a6:78:aa:00: 22:96:56:bf:df:bf:9f:46:23:5a:b4:d4:f4:89:d5:62:78:16: 08:d2:c9:e1:61:2b:6c:3c:f6:59:ae:af:0a:f7:bf:e1:53:67: 47:23:ea:0a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt5EQAITcI4xgSMtBmWcIQKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NzhmZjVkYWIzM2M0MmRhNjVmZTRlMWFiZmJjYTRlYWZi ZGQyYWEwHhcNMjYwMTAxMTAxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGMxNGI0YmM5NjY1Y2VkNTdlNjQzZTFlNWJhYzgxMjc5MGE3ZDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpakByx+mSIFPDvNh32PnWt/4vlt G0Hs8U7Z350NJFrgWXQ8no0eaDuM9AUYsq0QZi++J+LqkRDoDah1J2+5+oVX0yTg EQHNSkU/Yyy66MgRQp8e5Uh4rUyJ0GQ/rfoTRorZrf7XnxT2bFDab1UQJbWXwUFV rXK+r3jakP1STKEirJ+h+qOR80LDHv8xw6hWkGL6bfsz1CN5RCVadgt8jNsDzuPN aGmUrPnfzNhqf2FvmlR7Gmf4MMpkowqRdnblfv1vNJDeP8OWnGk8r9p385kx4703 XjpmTiVNhLm350a7IEUHSgYhZQ3K4OZiiL2pLskrK8YHFxuxoihq3QS1ywIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCDBS0vJZlztV+ZD4eW6yBJ5Cn0uMB8GA1UdIwQY MBaAFIl4/12rM8Qtpl/k4av7yk6vvdKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVhqX1hhc3p4QzJtWC1UaHFfdktUcS05MHFvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC8yZTgzNDctZDljNy00ZTUxLTliMTQt ZDAyZDk2YzM2Y2EzLzEvSU1GTFM4bG1YTzFYNWtQaDVicklFbmtLZlM0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNC8yZTgzNDctZDljNy00ZTUxLTliMTQtZDAyZDk2YzM2Y2Ez LzEvaVhqX1hhc3p4QzJtWC1UaHFfdktUcS05MHFvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVcyUMA0G CSqGSIb3DQEBCwUAA4IBAQApAJpq4engx3hW7AFoZBXtiLnwcMG/snxhYr9WFg3w Q7/Gl5ffvFZPo1vjRxaapmEOJwh4sz/6+zpHRSSMrZLQ/PPfjcC6Rkm76YlbFGFG YkwIL1lnhhtIL8EmYzrsSBhA3kXyMJGcFaboCSmgfDIs5kG5w7v4BJFzQ7WAEsbK 4TzwymTXQg92RZ8LnB5ujv0G2e0cRxQYl5mYxaEywB95HWwdsayeI4g7TLKCfrox ESBwiC1SPPxwffF3tN8UUcGtuAJnk4b/qr+msaFZjJvPtAuxdqZ4qgAilla/37+f RiNatNT0idVieBYI0snhYStsPPZZrq8K97/hU2dHI+oK -----END CERTIFICATE-----Generated at Sun Jan 25 09:19:11 2026 by rpki-client