This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/i2OjUzSr0-mW1clIq1J3Cyk1p88.roa File: i2OjUzSr0-mW1clIq1J3Cyk1p88.roa (raw, json) Hash identifier: HEjzkkVaOicYpRlOCAzJPorpH6/R9sHFXMzTw73EXOE= Subject key identifier: 8B:63:A3:53:34:AB:D3:E9:96:D5:C9:48:AB:52:77:0B:29:35:A7:CF Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Certificate serial: 019B7EA6C9931D2D06601E1C734EEE6D7C13 Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/i2OjUzSr0-mW1clIq1J3Cyk1p88.roa Signing time: Fri 02 Jan 2026 12:20:18 +0000 ROA not before: Fri 02 Jan 2026 12:20:18 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47498 IP address blocks: 185.1.147.0/24 maxlen: 24 2001:7f8:ca::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.mft rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 02:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:c9:93:1d:2d:06:60:1e:1c:73:4e:ee:6d:7c:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008 Validity Not Before: Jan 2 12:20:18 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b63a35334abd3e996d5c948ab52770b2935a7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:13:37:2f:b2:bd:dd:c4:20:1a:dc:b9:c3:ab: c4:cb:ee:23:af:5f:cc:1a:35:8a:22:99:95:56:38: 84:9c:bb:53:12:a1:f0:75:5f:39:8e:4a:dc:1a:c2: 30:4d:9a:22:6e:88:20:64:da:e3:f7:35:90:bd:7e: 58:e5:06:ed:e7:de:19:98:40:d0:e4:4f:24:3a:ea: e7:8b:0f:4f:32:fb:09:58:29:33:9b:2b:74:96:90: 11:65:86:d3:86:c3:76:a6:20:6a:ff:2b:cb:12:7f: 8b:1a:6f:99:9a:39:b6:d9:bb:20:2c:34:c2:a1:8a: b5:c6:d7:54:d2:6d:eb:40:79:d4:5b:2b:79:06:d7: d0:02:d4:ee:a3:5e:d6:bf:d2:23:81:70:87:db:57: 6d:6b:a1:f6:06:a6:eb:43:4a:b0:2b:84:cc:b5:1b: a2:b4:83:b7:94:95:ce:3a:29:cf:21:d6:69:ce:b5: 1e:60:7c:0b:54:91:f3:b0:f1:ac:0b:dc:a0:ce:a4: e1:7c:e8:6b:2d:79:15:c6:36:38:8d:10:2a:10:f8: 79:81:e8:60:fa:69:52:83:21:01:ea:88:f7:69:41: 3b:37:7a:70:22:08:17:8d:50:72:9e:c6:02:12:e4: 09:e0:b4:9b:79:84:7b:d2:e4:c5:b6:bc:13:8c:eb: a8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:63:A3:53:34:AB:D3:E9:96:D5:C9:48:AB:52:77:0B:29:35:A7:CF X509v3 Authority Key Identifier: keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/i2OjUzSr0-mW1clIq1J3Cyk1p88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.1.147.0/24 IPv6: 2001:7f8:ca::/48 Signature Algorithm: sha256WithRSAEncryption 31:70:f0:cc:8b:f9:e5:08:60:fd:95:36:2e:2f:ba:89:f7:73: 4a:f7:e0:4a:2b:23:13:de:96:74:67:a4:26:37:20:0c:70:e4: c8:16:0d:d4:63:4e:cf:7f:44:46:93:e5:48:ca:ed:e9:b7:c5: d8:4a:db:dc:c4:8a:df:a6:ba:49:a4:e7:6a:b0:b8:9e:2b:52: 8d:02:7f:24:77:fa:99:65:a5:81:b7:ad:f4:ae:ad:06:fb:82: f1:48:ca:de:db:44:9f:50:7f:98:58:05:34:9a:e4:5d:ba:20: 1a:1b:45:b6:f6:eb:c9:71:a6:ea:c5:4e:74:3a:9a:1e:79:8a: bd:6a:16:05:17:10:e7:a2:37:6a:0b:2f:73:a1:6e:51:b7:b8: d8:4c:fc:60:74:36:9e:f4:04:b7:4a:4b:f5:8a:14:94:98:6c: 91:6f:fe:e1:24:23:2d:bc:40:74:f7:dd:02:f3:19:4c:e3:c1: 61:71:8c:56:a4:4a:f9:f8:cd:06:4f:94:72:ad:df:1b:a8:fc: c8:b7:2c:58:c1:89:ce:99:14:62:1d:aa:eb:b7:ae:0d:97:5c: 3e:da:ee:dc:8a:38:4b:95:a7:e7:e5:30:28:d9:61:10:14:27: 93:43:ec:ab:ea:8f:67:75:14:0d:61:e4:48:9d:1e:ff:78:bd: 8a:13:dc:1f -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt+psmTHS0GYB4cc07ubXwTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl NDgwMDgwHhcNMjYwMTAyMTIyMDE4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjYzYTM1MzM0YWJkM2U5OTZkNWM5NDhhYjUyNzcwYjI5MzVhN2NmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhM3L7K93cQgGty5w6vEy+4jr1/M GjWKIpmVVjiEnLtTEqHwdV85jkrcGsIwTZoiboggZNrj9zWQvX5Y5Qbt594ZmEDQ 5E8kOurniw9PMvsJWCkzmyt0lpARZYbThsN2piBq/yvLEn+LGm+Zmjm22bsgLDTC oYq1xtdU0m3rQHnUWyt5BtfQAtTuo17Wv9IjgXCH21dta6H2BqbrQ0qwK4TMtRui tIO3lJXOOinPIdZpzrUeYHwLVJHzsPGsC9ygzqThfOhrLXkVxjY4jRAqEPh5gehg +mlSgyEB6oj3aUE7N3pwIggXjVBynsYCEuQJ4LSbeYR70uTFtrwTjOuo7QIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFItjo1M0q9PpltXJSKtSdwspNafPMB8GA1UdIwQY MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt YmY0ZTUyN2I5ZmE4LzEvaTJPalV6U3IwLW1XMWNsSXExSjNDeWsxcDg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4 LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuQGTMA8E AgACMAkDBwAgAQf4AMowDQYJKoZIhvcNAQELBQADggEBADFw8MyL+eUIYP2VNi4v uon3c0r34EorIxPelnRnpCY3IAxw5MgWDdRjTs9/REaT5UjK7em3xdhK29zEit+m ukmk52qwuJ4rUo0CfyR3+pllpYG3rfSurQb7gvFIyt7bRJ9Qf5hYBTSa5F26IBob Rbb268lxpurFTnQ6mh55ir1qFgUXEOeiN2oLL3OhblG3uNhM/GB0Np70BLdKS/WK FJSYbJFv/uEkIy28QHT33QLzGUzjwWFxjFakSvn4zQZPlHKt3xuo/Mi3LFjBic6Z FGIdquu3rg2XXD7a7tyKOEuVp+flMCjZYRAUJ5ND7Kvqj2d1FA1h5EidHv94vYoT 3B8= -----END CERTIFICATE-----Generated at Tue Jan 20 09:06:12 2026 by rpki-client