This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/iB6K871-MTgrHCKR-pl3wKEY8VE.roa File: iB6K871-MTgrHCKR-pl3wKEY8VE.roa (raw, json) Hash identifier: evrLdA7V1aTPB0+S9RwUtMXPCQscLGRKXxGpKmpY5Z4= Subject key identifier: 88:1E:8A:F3:BD:7E:31:38:2B:1C:22:91:FA:99:77:C0:A1:18:F1:51 Certificate issuer: /CN=49c403d43b5f38fca2119cd1409a92763edefe71 Certificate serial: 019B7D5CA7EBC1B8FA92FB609CF7A006FFD6 Authority key identifier: 49:C4:03:D4:3B:5F:38:FC:A2:11:9C:D1:40:9A:92:76:3E:DE:FE:71 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/iB6K871-MTgrHCKR-pl3wKEY8VE.roa Signing time: Fri 02 Jan 2026 06:19:42 +0000 ROA not before: Fri 02 Jan 2026 06:19:42 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 267708 IP address blocks: 176.57.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.crl rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.mft rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:a7:eb:c1:b8:fa:92:fb:60:9c:f7:a0:06:ff:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49c403d43b5f38fca2119cd1409a92763edefe71 Validity Not Before: Jan 2 06:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=881e8af3bd7e31382b1c2291fa9977c0a118f151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:be:44:28:6d:81:97:1b:94:c2:b8:75:72:bd: 11:27:ae:8d:cd:81:f9:e7:1f:9f:6c:fc:5e:92:f1: 8d:04:e2:0c:78:54:f0:7e:45:00:98:be:41:80:97: d2:6d:a7:de:4e:f5:a7:f5:b0:b3:25:02:5f:e7:b7: 5d:da:44:09:c8:de:16:02:da:ff:66:a9:33:94:e5: dd:86:97:b9:fb:ea:42:fa:72:4d:7d:f5:12:f8:8e: ec:a1:d6:72:b6:4c:ac:64:9a:af:02:1d:4f:8f:11: a9:e0:ec:36:76:0a:5f:51:db:db:aa:3c:fa:ac:6b: 22:f7:ac:d5:e5:32:3e:d2:b5:6f:a3:13:a3:ac:da: db:01:8c:0f:c4:35:57:d9:88:dd:9a:a3:76:16:f7: 67:d2:5b:8b:08:dd:fe:0c:81:81:f3:55:0e:67:79: 3a:4d:59:02:4c:bf:9f:44:c7:a1:4f:7d:64:13:c1: da:71:c3:2d:f1:b5:93:79:bd:af:d9:7d:c9:3e:86: 71:92:22:42:b1:c5:01:2c:63:a1:0b:a2:62:f3:b0: ca:3e:b4:21:e2:9a:d6:0a:d9:29:06:fa:74:75:b6: fe:bb:2a:9b:87:5b:96:76:c9:51:14:34:3e:33:e4: 5c:3c:6a:00:1a:ea:d1:07:5a:f9:8a:fb:c4:f8:93: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:1E:8A:F3:BD:7E:31:38:2B:1C:22:91:FA:99:77:C0:A1:18:F1:51 X509v3 Authority Key Identifier: keyid:49:C4:03:D4:3B:5F:38:FC:A2:11:9C:D1:40:9A:92:76:3E:DE:FE:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ScQD1DtfOPyiEZzRQJqSdj7e_nE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/iB6K871-MTgrHCKR-pl3wKEY8VE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a2f87b-4811-4fe1-b15d-f889ca161c01/1/ScQD1DtfOPyiEZzRQJqSdj7e_nE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.57.207.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:a4:13:50:80:78:a2:ab:87:04:05:70:1c:74:c8:f5:dc:c5: 57:50:1a:e0:9f:f7:ef:d3:ce:96:af:08:b8:8a:f0:ce:fc:60: 50:4e:34:e0:96:3e:9f:68:2d:13:47:76:03:ea:d4:f1:85:11: b5:f0:4e:77:f6:11:00:96:71:b7:81:c7:86:8a:f4:be:d3:6b: bd:1c:fb:de:b9:57:1e:07:a7:c5:e3:02:95:74:8c:0c:ba:60: 43:5d:68:f9:56:b2:90:5b:12:32:f8:89:b8:1f:fb:5a:b6:e0: 79:5d:03:ff:fb:86:30:4b:03:05:88:50:7d:bd:26:39:b4:7d: a4:44:5e:0a:73:13:18:86:99:0e:cb:ec:83:8c:b3:bb:80:f5: 4f:bc:7f:45:d0:3b:54:19:cc:83:15:cf:7a:89:a3:f1:31:1e: 14:bb:60:7c:ee:cf:b4:dd:73:3f:11:3a:f2:73:85:39:21:1c: 9c:0f:3f:a7:4e:fc:3d:05:c3:7c:52:3e:20:5f:49:91:67:dd: 52:d8:29:c6:88:bb:0c:68:d1:b4:c4:ba:ba:6a:fd:27:35:f5: ef:dd:30:ca:42:d5:46:31:33:7e:06:68:73:50:34:22:6b:86: 51:6f:67:0d:4f:54:f7:58:61:c8:ce:31:bf:90:34:1b:fd:4c: 58:5e:30:42 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9XKfrwbj6kvtgnPegBv/WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5YzQwM2Q0M2I1ZjM4ZmNhMjExOWNkMTQwOWE5Mjc2M2Vk ZWZlNzEwHhcNMjYwMTAyMDYxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODFlOGFmM2JkN2UzMTM4MmIxYzIyOTFmYTk5NzdjMGExMThmMTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqr5EKG2BlxuUwrh1cr0RJ66NzYH5 5x+fbPxekvGNBOIMeFTwfkUAmL5BgJfSbafeTvWn9bCzJQJf57dd2kQJyN4WAtr/ ZqkzlOXdhpe5++pC+nJNffUS+I7sodZytkysZJqvAh1PjxGp4Ow2dgpfUdvbqjz6 rGsi96zV5TI+0rVvoxOjrNrbAYwPxDVX2YjdmqN2Fvdn0luLCN3+DIGB81UOZ3k6 TVkCTL+fRMehT31kE8HaccMt8bWTeb2v2X3JPoZxkiJCscUBLGOhC6Ji87DKPrQh 4prWCtkpBvp0dbb+uyqbh1uWdslRFDQ+M+RcPGoAGurRB1r5ivvE+JNA9wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIgeivO9fjE4KxwikfqZd8ChGPFRMB8GA1UdIwQY MBaAFEnEA9Q7Xzj8ohGc0UCaknY+3v5xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2NRRDFEdGZPUHlpRVp6UlFKcVNkajdlX25FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi9hMmY4N2ItNDgxMS00ZmUxLWIxNWQt Zjg4OWNhMTYxYzAxLzEvaUI2Szg3MS1NVGdySENLUi1wbDN3S0VZOFZFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZi9hMmY4N2ItNDgxMS00ZmUxLWIxNWQtZjg4OWNhMTYxYzAx LzEvU2NRRDFEdGZPUHlpRVp6UlFKcVNkajdlX25FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsDnPMA0G CSqGSIb3DQEBCwUAA4IBAQA8pBNQgHiiq4cEBXAcdMj13MVXUBrgn/fv086Wrwi4 ivDO/GBQTjTglj6faC0TR3YD6tTxhRG18E539hEAlnG3gceGivS+02u9HPveuVce B6fF4wKVdIwMumBDXWj5VrKQWxIy+Im4H/tatuB5XQP/+4YwSwMFiFB9vSY5tH2k RF4KcxMYhpkOy+yDjLO7gPVPvH9F0DtUGcyDFc96iaPxMR4Uu2B87s+03XM/ETry c4U5IRycDz+nTvw9BcN8Uj4gX0mRZ91S2CnGiLsMaNG0xLq6av0nNfXv3TDKQtVG MTN+BmhzUDQia4ZRb2cNT1T3WGHIzjG/kDQb/UxYXjBC -----END CERTIFICATE-----Generated at Sun Jan 25 16:54:16 2026 by rpki-client