This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/8a4773-a2bd-40d2-bfc8-bbe60ea222c5/1/IynmjmR1yvEbVrkfJa9cZIwyE10.roa File: IynmjmR1yvEbVrkfJa9cZIwyE10.roa (raw, json) Hash identifier: RK1dN6BbvQCv2h0gP86hx6Y2IphNnsgKhjETxDJJmvI= Subject key identifier: 23:29:E6:8E:64:75:CA:F1:1B:56:B9:1F:25:AF:5C:64:8C:32:13:5D Certificate issuer: /CN=3bccbc70e18b6c69e53ef52a5e925e5f4f0cdcc1 Certificate serial: 019B79ED4A816CDBE6762D55C4F54C26869C Authority key identifier: 3B:CC:BC:70:E1:8B:6C:69:E5:3E:F5:2A:5E:92:5E:5F:4F:0C:DC:C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O8y8cOGLbGnlPvUqXpJeX08M3ME.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/8a4773-a2bd-40d2-bfc8-bbe60ea222c5/1/IynmjmR1yvEbVrkfJa9cZIwyE10.roa Signing time: Thu 01 Jan 2026 14:19:12 +0000 ROA not before: Thu 01 Jan 2026 14:19:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 39891 IP address blocks: 159.0.186.0/24 maxlen: 24 159.0.188.0/22 maxlen: 22 185.139.8.0/24 maxlen: 24 185.139.9.0/24 maxlen: 24 185.139.10.0/24 maxlen: 24 185.139.11.0/24 maxlen: 24 212.215.129.0/24 maxlen: 24 212.215.208.0/22 maxlen: 22 212.215.212.0/22 maxlen: 22 212.215.216.0/22 maxlen: 22 212.215.232.0/22 maxlen: 22 212.215.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/8a4773-a2bd-40d2-bfc8-bbe60ea222c5/1/O8y8cOGLbGnlPvUqXpJeX08M3ME.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/8a4773-a2bd-40d2-bfc8-bbe60ea222c5/1/O8y8cOGLbGnlPvUqXpJeX08M3ME.mft rsync://rpki.ripe.net/repository/DEFAULT/O8y8cOGLbGnlPvUqXpJeX08M3ME.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 14:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:4a:81:6c:db:e6:76:2d:55:c4:f5:4c:26:86:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3bccbc70e18b6c69e53ef52a5e925e5f4f0cdcc1 Validity Not Before: Jan 1 14:19:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2329e68e6475caf11b56b91f25af5c648c32135d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:10:3e:a7:4f:08:e7:0b:8d:d7:08:df:62:f5: 06:1d:0f:69:3e:bc:1e:4c:77:57:4b:cd:1c:66:c5: c2:4c:4b:cb:54:c6:ea:3e:32:9e:2d:39:7d:11:78: ed:5e:c8:7e:07:0e:17:95:0b:c4:47:10:cc:53:d5: 1f:d8:eb:9c:a3:da:24:5d:82:29:c9:2f:4e:10:3d: ff:45:ba:70:93:5b:aa:5f:43:c2:cb:1f:e8:81:72: dd:87:77:f0:ee:dd:0a:43:b6:57:ab:f0:06:c2:67: 42:e5:0c:8e:21:d2:6d:31:8f:73:81:ab:94:b8:5e: 69:b3:ba:84:32:bf:ad:39:e8:31:4a:ba:fc:77:29: f7:30:8d:ce:e6:5e:1f:f1:e0:9c:a3:32:92:27:d3: 6e:be:4a:61:1b:d7:d2:a6:25:c6:37:57:02:28:9b: bb:d7:8c:1e:ac:62:5d:fa:10:54:ee:52:a5:c8:9f: 09:75:e7:2d:d1:39:01:44:fb:56:bf:26:02:7f:06: 21:e1:aa:98:80:92:c3:1b:e8:f8:ee:b4:a9:8d:eb: 53:40:5c:5e:40:32:aa:29:1c:5e:0b:f4:dd:78:7c: db:21:d6:e5:5b:82:c8:df:ad:7f:b5:5c:be:3f:ca: e9:39:9c:b7:42:2e:dc:9a:64:f5:f3:a1:8f:cc:ea: 96:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:29:E6:8E:64:75:CA:F1:1B:56:B9:1F:25:AF:5C:64:8C:32:13:5D X509v3 Authority Key Identifier: keyid:3B:CC:BC:70:E1:8B:6C:69:E5:3E:F5:2A:5E:92:5E:5F:4F:0C:DC:C1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O8y8cOGLbGnlPvUqXpJeX08M3ME.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/8a4773-a2bd-40d2-bfc8-bbe60ea222c5/1/IynmjmR1yvEbVrkfJa9cZIwyE10.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/8a4773-a2bd-40d2-bfc8-bbe60ea222c5/1/O8y8cOGLbGnlPvUqXpJeX08M3ME.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.0.186.0/24 159.0.188.0/22 185.139.8.0/22 212.215.129.0/24 212.215.208.0-212.215.219.255 212.215.232.0/22 212.215.238.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:28:53:d1:65:3f:be:14:a6:52:e8:ca:00:f9:f0:9e:03:1f: a1:51:d4:75:21:ea:cf:ab:3b:0e:f7:7d:77:4e:f4:0c:96:c0: 0c:c0:41:bf:ba:98:1b:e5:6d:76:15:b1:c1:c5:33:b9:5f:5b: 94:b0:14:42:91:d4:de:81:79:d3:ef:bd:16:5b:dc:0e:53:10: 80:3d:23:86:47:b7:90:78:c2:99:f5:c5:c1:87:b1:8f:c0:53: 46:6a:8a:23:8c:08:fa:98:5d:ac:69:ec:e6:84:74:17:e5:72: 0f:ad:20:54:25:ee:04:27:c1:b9:5e:d0:4b:65:46:7a:26:40: 45:ac:a7:34:cc:2a:8f:d1:13:2f:d3:ce:e6:fd:08:a8:b3:10: 74:b6:4b:c4:d6:56:49:21:0f:60:e2:c7:46:f4:e5:85:cd:89: ce:53:9b:8e:34:cd:15:e5:92:bb:2a:cc:1d:16:33:01:60:62: 2b:52:72:6a:f9:f4:9a:06:36:42:07:88:ce:2a:6f:28:e0:d0: 4b:35:72:ea:04:87:bb:03:3c:9a:44:59:98:78:fc:24:55:dd: 9c:6b:08:87:f5:b7:81:67:62:4d:98:6c:c5:14:81:dd:26:31: dd:3f:c9:eb:30:3f:74:ab:4a:b0:25:b4:a2:16:e6:5c:2c:71: 8a:de:40:63 -----BEGIN CERTIFICATE----- MIIFKTCCBBGgAwIBAgISAZt57UqBbNvmdi1VxPVMJoacMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNiY2NiYzcwZTE4YjZjNjllNTNlZjUyYTVlOTI1ZTVmNGYw Y2RjYzEwHhcNMjYwMTAxMTQxOTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzI5ZTY4ZTY0NzVjYWYxMWI1NmI5MWYyNWFmNWM2NDhjMzIxMzVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRA+p08I5wuN1wjfYvUGHQ9pPrwe THdXS80cZsXCTEvLVMbqPjKeLTl9EXjtXsh+Bw4XlQvERxDMU9Uf2Ouco9okXYIp yS9OED3/Rbpwk1uqX0PCyx/ogXLdh3fw7t0KQ7ZXq/AGwmdC5QyOIdJtMY9zgauU uF5ps7qEMr+tOegxSrr8dyn3MI3O5l4f8eCcozKSJ9NuvkphG9fSpiXGN1cCKJu7 14werGJd+hBU7lKlyJ8Jdect0TkBRPtWvyYCfwYh4aqYgJLDG+j47rSpjetTQFxe QDKqKRxeC/TdeHzbIdblW4LI361/tVy+P8rpOZy3Qi7cmmT186GPzOqWjQIDAQAB o4ICNTCCAjEwHQYDVR0OBBYEFCMp5o5kdcrxG1a5HyWvXGSMMhNdMB8GA1UdIwQY MBaAFDvMvHDhi2xp5T71Kl6SXl9PDNzBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTzh5OGNPR0xiR25sUHZVcVhwSmVYMDhNM01FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS84YTQ3NzMtYTJiZC00MGQyLWJmYzgt YmJlNjBlYTIyMmM1LzEvSXlubWptUjF5dkViVnJrZkphOWNaSXd5RTEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS84YTQ3NzMtYTJiZC00MGQyLWJmYzgtYmJlNjBlYTIyMmM1 LzEvTzh5OGNPR0xiR25sUHZVcVhwSmVYMDhNM01FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAATAyAwQAnwC6AwQC nwC8AwQCuYsIAwQA1NeBMAwDBATU19ADBALU19gDBALU1+gDBADU1+4wDQYJKoZI hvcNAQELBQADggEBAI4oU9FlP74UplLoygD58J4DH6FR1HUh6s+rOw73fXdO9AyW wAzAQb+6mBvlbXYVscHFM7lfW5SwFEKR1N6BedPvvRZb3A5TEIA9I4ZHt5B4wpn1 xcGHsY/AU0ZqiiOMCPqYXaxp7OaEdBflcg+tIFQl7gQnwble0EtlRnomQEWspzTM Ko/REy/Tzub9CKizEHS2S8TWVkkhD2Dix0b05YXNic5Tm440zRXlkrsqzB0WMwFg YitScmr59JoGNkIHiM4qbyjg0Es1cuoEh7sDPJpEWZh4/CRV3ZxrCIf1t4FnYk2Y bMUUgd0mMd0/yeswP3SrSrAltKIW5lwscYreQGM= -----END CERTIFICATE-----Generated at Mon Jan 26 00:37:26 2026 by rpki-client