This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/jiIhZii3j4Bqym72DQeyWI_m29Q.roa File: jiIhZii3j4Bqym72DQeyWI_m29Q.roa (raw, json) Hash identifier: +SPdj+zBKoxWRkJS1U/YY6cllApr1BpaKaVGD0dmzRo= Subject key identifier: 8E:22:21:66:28:B7:8F:80:6A:CA:6E:F6:0D:07:B2:58:8F:E6:DB:D4 Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702 Certificate serial: 019B77C71509D5CEDE6D716FE9AD434C86DC Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/jiIhZii3j4Bqym72DQeyWI_m29Q.roa Signing time: Thu 01 Jan 2026 04:18:14 +0000 ROA not before: Thu 01 Jan 2026 04:18:14 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201194 IP address blocks: 85.133.245.0/24 maxlen: 24 85.133.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:15:09:d5:ce:de:6d:71:6f:e9:ad:43:4c:86:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702 Validity Not Before: Jan 1 04:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e22216628b78f806aca6ef60d07b2588fe6dbd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:09:ca:53:28:b7:b6:0a:24:c3:53:67:d5:30: d3:c0:db:36:d7:b4:29:b3:0b:58:6e:fc:1d:95:c6: b8:24:1e:e3:e0:7e:9f:39:a9:06:9f:81:35:35:a6: a3:4f:51:09:6d:1b:1c:f9:76:5b:8c:95:ec:f4:c2: 42:7c:7e:41:48:da:44:b7:a2:58:30:20:55:50:a3: 85:88:ec:78:87:66:20:f7:42:b5:fa:15:c1:3a:5e: 5f:92:73:ba:80:0a:e6:d2:f6:f6:48:70:35:6e:be: 21:da:51:2b:c2:20:4a:ad:37:83:9b:76:7c:ba:89: 9e:7d:a5:97:a0:62:03:4e:ee:54:12:cf:24:2c:62: 35:34:64:34:b2:5f:53:d7:e1:55:8a:9e:83:e0:a3: 7a:18:bb:f4:cb:3b:38:57:ee:a2:fb:21:8c:31:73: e7:6c:55:02:ab:9d:3f:44:69:91:94:3c:a8:4d:96: ed:b8:bb:5c:19:c3:07:34:4c:04:ab:8a:35:cd:08: 18:01:8d:ec:0c:5d:45:81:0a:b6:3e:c1:71:ea:66: 80:a9:1a:66:31:85:bb:12:6c:05:68:5d:bc:97:31: 70:da:94:be:0a:61:97:72:37:fd:a5:7b:cc:ff:15: d4:40:fb:37:43:bc:8f:70:3c:82:32:7b:2c:58:92: a2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:22:21:66:28:B7:8F:80:6A:CA:6E:F6:0D:07:B2:58:8F:E6:DB:D4 X509v3 Authority Key Identifier: keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/jiIhZii3j4Bqym72DQeyWI_m29Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.133.245.0/24 85.133.254.0/24 Signature Algorithm: sha256WithRSAEncryption 57:41:4a:8a:3f:2b:64:a2:ad:b3:27:d5:61:c2:be:f8:0f:d1: 99:a3:b9:8b:7f:68:d9:06:f9:35:b0:d7:9f:d1:1d:78:88:01: ee:bf:e7:5a:2d:87:9f:94:4c:d3:c8:5f:88:95:2d:56:fe:c6: da:84:1f:79:cf:3e:c5:94:b8:ec:65:57:43:83:a7:5c:b8:90: 2f:fa:b1:97:ac:d8:f4:c9:4b:6c:44:e9:ba:00:a6:02:58:29: df:bd:5d:de:54:cc:3a:cf:e4:dc:0f:2c:d3:9a:44:0f:6f:bd: 14:33:23:77:3d:4d:3e:4a:31:7e:00:c9:6e:e5:53:20:55:5f: 2a:d9:8b:8d:22:f7:3e:4f:2c:42:a0:25:77:a2:e5:7b:8b:a0: 44:14:7f:03:e0:d2:e6:46:58:08:f9:10:0c:00:52:fd:b3:b1: e9:ea:6d:95:39:f5:dd:a2:74:fa:be:20:91:fc:46:e3:1c:f3: 1f:c7:6a:bc:60:f4:d0:47:a5:a9:ca:1d:fa:72:73:a8:19:60: 27:a9:95:ba:89:d5:40:a9:8b:87:cf:98:b3:f0:9d:18:88:eb: 76:91:f5:d3:ad:02:2f:cb:13:f1:70:64:36:5f:2f:4b:ec:d7: 52:c8:4e:84:92:c2:0c:9e:28:22:7e:f6:f6:af:13:9e:28:59: 24:00:0f:85 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt3xxUJ1c7ebXFv6a1DTIbcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5 NDY3MDIwHhcNMjYwMTAxMDQxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTIyMjE2NjI4Yjc4ZjgwNmFjYTZlZjYwZDA3YjI1ODhmZTZkYmQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswnKUyi3tgokw1Nn1TDTwNs217Qp swtYbvwdlca4JB7j4H6fOakGn4E1NaajT1EJbRsc+XZbjJXs9MJCfH5BSNpEt6JY MCBVUKOFiOx4h2Yg90K1+hXBOl5fknO6gArm0vb2SHA1br4h2lErwiBKrTeDm3Z8 uomefaWXoGIDTu5UEs8kLGI1NGQ0sl9T1+FVip6D4KN6GLv0yzs4V+6i+yGMMXPn bFUCq50/RGmRlDyoTZbtuLtcGcMHNEwEq4o1zQgYAY3sDF1FgQq2PsFx6maAqRpm MYW7EmwFaF28lzFw2pS+CmGXcjf9pXvM/xXUQPs3Q7yPcDyCMnssWJKi/QIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFI4iIWYot4+Aaspu9g0HsliP5tvUMB8GA1UdIwQY MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt NWQxZmE2NmMzNjNiLzEvamlJaFppaTNqNEJxeW03MkRRZXlXSV9tMjlRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVYX1AwQA VYX+MA0GCSqGSIb3DQEBCwUAA4IBAQBXQUqKPytkoq2zJ9Vhwr74D9GZo7mLf2jZ Bvk1sNef0R14iAHuv+daLYeflEzTyF+IlS1W/sbahB95zz7FlLjsZVdDg6dcuJAv +rGXrNj0yUtsROm6AKYCWCnfvV3eVMw6z+TcDyzTmkQPb70UMyN3PU0+SjF+AMlu 5VMgVV8q2YuNIvc+TyxCoCV3ouV7i6BEFH8D4NLmRlgI+RAMAFL9s7Hp6m2VOfXd onT6viCR/EbjHPMfx2q8YPTQR6Wpyh36cnOoGWAnqZW6idVAqYuHz5iz8J0YiOt2 kfXTrQIvyxPxcGQ2Xy9L7NdSyE6EksIMnigifvb2rxOeKFkkAA+F -----END CERTIFICATE-----Generated at Sun Jan 25 17:34:27 2026 by rpki-client