This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/IFrY2kkAzLqt5nU6H0jjg7fOnfs.roa File: IFrY2kkAzLqt5nU6H0jjg7fOnfs.roa (raw, json) Hash identifier: 3jLeNihZ7jH0KElGLvHndCBcoZfJ8baWrI/MSc9FDOM= Subject key identifier: 20:5A:D8:DA:49:00:CC:BA:AD:E6:75:3A:1F:48:E3:83:B7:CE:9D:FB Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad Certificate serial: 019B7C7FB56ACEF12D7FBC694B5CB7C63D31 Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/IFrY2kkAzLqt5nU6H0jjg7fOnfs.roa Signing time: Fri 02 Jan 2026 02:18:22 +0000 ROA not before: Fri 02 Jan 2026 02:18:22 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 210896 IP address blocks: 185.239.24.0/24 maxlen: 24 2a13:f780::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.mft rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:b5:6a:ce:f1:2d:7f:bc:69:4b:5c:b7:c6:3d:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08af091858bb99651764399c6565df7a0834dbad Validity Not Before: Jan 2 02:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=205ad8da4900ccbaade6753a1f48e383b7ce9dfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:84:e3:68:db:d9:0b:36:0f:13:7a:cf:89:8d: 0e:91:ff:ef:8a:76:02:90:4f:b9:15:b7:cb:64:7c: 11:91:e0:fe:26:0d:f4:ae:a8:85:9e:81:d8:b0:4b: e9:21:94:7a:07:85:1a:e3:30:0a:6d:32:11:dd:60: 33:32:70:3f:fc:6b:e9:92:e3:2d:ac:73:9c:dd:84: c2:c9:9c:4e:e0:b2:1b:98:94:6c:2d:70:56:3f:2c: 85:fb:07:f2:a4:2b:9d:b6:c6:e3:2d:1a:6c:ae:6b: af:1b:42:25:c1:65:21:ff:5b:9e:f1:0b:72:51:6d: 9b:4d:22:d9:73:d3:78:f9:fe:5f:c5:67:04:85:ca: 8e:e4:a8:c1:e9:93:c5:a3:7a:65:5c:41:3f:a1:d5: 92:6e:69:29:00:d8:14:8b:fa:66:22:b4:08:ea:00: 60:bd:e4:65:c2:a0:a9:c0:10:6f:2c:77:c3:48:1f: 7b:46:45:00:1c:f5:ad:78:33:0b:1d:85:f8:38:00: 4b:a4:b0:7d:af:6c:5e:eb:7e:0c:6c:a7:ff:67:e9: 9b:03:65:ae:da:fd:89:e6:dc:18:20:80:0d:1f:fc: 2d:6f:11:99:d8:fd:13:13:0e:20:9a:fc:01:69:29: ef:46:22:42:4a:da:97:9f:f6:83:b6:3c:cd:e4:7c: 77:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:5A:D8:DA:49:00:CC:BA:AD:E6:75:3A:1F:48:E3:83:B7:CE:9D:FB X509v3 Authority Key Identifier: keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/IFrY2kkAzLqt5nU6H0jjg7fOnfs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.239.24.0/24 IPv6: 2a13:f780::/29 Signature Algorithm: sha256WithRSAEncryption 7c:a0:52:fc:5f:44:ee:3c:19:c9:19:a2:20:b8:ff:58:e9:1f: c8:52:1e:a6:23:50:e3:b9:97:c6:73:43:51:68:93:2d:f3:47: 44:69:a1:13:48:ec:15:dd:60:4a:f4:d8:a0:f6:1c:b9:18:96: 1d:99:52:cf:b9:82:75:bb:45:fd:81:1e:0e:ad:ba:62:a9:52: d9:69:5b:37:bc:d4:fc:ae:1a:3f:61:03:ed:c4:6f:6f:d2:6c: 41:42:e5:4e:78:bc:4f:2d:f6:e7:97:0f:99:3a:5e:44:01:ed: c4:54:39:36:8f:c3:63:a3:18:c6:f7:d9:f4:40:6c:b8:be:6a: f3:88:a6:0b:08:bf:30:90:2a:39:6b:c0:5d:60:56:94:a8:1f: 86:de:64:4b:70:63:41:ca:45:25:58:fc:bb:c2:be:d9:3d:e4: 68:44:82:13:47:8e:26:d2:20:f1:41:7e:8c:42:00:35:f3:dd: a8:64:e1:02:82:60:b6:65:c6:89:83:8c:35:52:27:4f:06:0f: 6a:50:16:1e:65:d5:4d:7d:f5:88:97:d5:5f:0c:40:1a:29:2b: 76:4e:6a:e7:97:c2:fe:de:c9:95:18:7e:cf:64:f4:f9:4a:3a: 9c:99:f4:c2:7b:e2:95:a1:81:78:40:39:f2:3a:ab:b9:a2:b6: b5:37:74:ed -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8f7VqzvEtf7xpS1y3xj0xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA4YWYwOTE4NThiYjk5NjUxNzY0Mzk5YzY1NjVkZjdhMDgz NGRiYWQwHhcNMjYwMTAyMDIxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDVhZDhkYTQ5MDBjY2JhYWRlNjc1M2ExZjQ4ZTM4M2I3Y2U5ZGZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA14TjaNvZCzYPE3rPiY0Okf/vinYC kE+5FbfLZHwRkeD+Jg30rqiFnoHYsEvpIZR6B4Ua4zAKbTIR3WAzMnA//GvpkuMt rHOc3YTCyZxO4LIbmJRsLXBWPyyF+wfypCudtsbjLRpsrmuvG0IlwWUh/1ue8Qty UW2bTSLZc9N4+f5fxWcEhcqO5KjB6ZPFo3plXEE/odWSbmkpANgUi/pmIrQI6gBg veRlwqCpwBBvLHfDSB97RkUAHPWteDMLHYX4OABLpLB9r2xe634MbKf/Z+mbA2Wu 2v2J5twYIIANH/wtbxGZ2P0TEw4gmvwBaSnvRiJCStqXn/aDtjzN5Hx3hQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCBa2NpJAMy6reZ1Oh9I44O3zp37MB8GA1UdIwQY MBaAFAivCRhYu5llF2Q5nGVl33oINNutMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ0s4SkdGaTdtV1VYWkRtY1pXWGZlZ2cwMjYwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS83MDBmZDMtYzM2MC00OGFiLThhMDYt NTYxMjliN2RjMDE4LzEvSUZyWTJra0F6THF0NW5VNkgwampnN2ZPbmZzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lOS83MDBmZDMtYzM2MC00OGFiLThhMDYtNTYxMjliN2RjMDE4 LzEvQ0s4SkdGaTdtV1VYWkRtY1pXWGZlZ2cwMjYwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAue8YMA0E AgACMAcDBQMqE/eAMA0GCSqGSIb3DQEBCwUAA4IBAQB8oFL8X0TuPBnJGaIguP9Y 6R/IUh6mI1DjuZfGc0NRaJMt80dEaaETSOwV3WBK9Nig9hy5GJYdmVLPuYJ1u0X9 gR4OrbpiqVLZaVs3vNT8rho/YQPtxG9v0mxBQuVOeLxPLfbnlw+ZOl5EAe3EVDk2 j8NjoxjG99n0QGy4vmrziKYLCL8wkCo5a8BdYFaUqB+G3mRLcGNBykUlWPy7wr7Z PeRoRIITR44m0iDxQX6MQgA1892oZOECgmC2ZcaJg4w1UidPBg9qUBYeZdVNffWI l9VfDEAaKSt2Tmrnl8L+3smVGH7PZPT5SjqcmfTCe+KVoYF4QDnyOqu5ora1N3Tt -----END CERTIFICATE-----Generated at Mon Jan 26 05:32:00 2026 by rpki-client