This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/igC1pYnPPor0lopH3zP7jcFLIsQ.roa File: igC1pYnPPor0lopH3zP7jcFLIsQ.roa (raw, json) Hash identifier: u9RndoPD9WqYET9REYO8d34XvruqpjbgjWwPvuZiZFI= Subject key identifier: 8A:00:B5:A5:89:CF:3E:8A:F4:96:8A:47:DF:33:FB:8D:C1:4B:22:C4 Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d Certificate serial: 019B7F8444B45A10480DD0E4A6C32F627285 Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/igC1pYnPPor0lopH3zP7jcFLIsQ.roa Signing time: Fri 02 Jan 2026 16:22:13 +0000 ROA not before: Fri 02 Jan 2026 16:22:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 45.148.51.0/24 maxlen: 24 45.152.37.0/24 maxlen: 24 45.154.237.0/24 maxlen: 24 185.208.211.0/24 maxlen: 24 185.232.85.0/24 maxlen: 24 193.57.9.0/24 maxlen: 24 195.60.177.0/24 maxlen: 24 195.88.210.0/24 maxlen: 24 213.185.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.mft rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:44:b4:5a:10:48:0d:d0:e4:a6:c3:2f:62:72:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d Validity Not Before: Jan 2 16:22:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a00b5a589cf3e8af4968a47df33fb8dc14b22c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b9:09:02:26:36:19:43:19:41:bd:96:a3:88: d2:42:ab:54:ba:f7:68:a3:c9:74:dd:8d:a6:fd:f3: 5d:b1:40:11:20:c4:0a:8a:54:3e:43:c1:40:db:7d: 0e:39:24:dc:8c:58:50:03:52:59:98:44:c3:40:43: 66:66:00:7c:6f:21:19:34:ba:bf:19:25:7d:b3:73: e7:8b:2a:31:a5:50:b1:b8:e4:bf:59:09:cf:26:5b: 7f:83:8c:11:f3:25:37:98:b9:db:82:7d:9f:e4:eb: ef:32:e5:b4:b1:49:2b:be:46:51:07:c4:57:55:bd: 84:34:1a:d9:26:93:6a:72:7f:c1:dd:7a:a4:58:c1: 6f:f2:4d:27:e8:8e:03:dd:48:b9:f3:75:07:b3:87: 31:76:4f:95:f3:ed:b6:41:7b:f3:e8:c9:f6:a8:cf: d9:fe:a0:9f:91:15:d4:ef:c8:d1:e7:74:42:46:76: 99:2a:95:98:c6:26:25:ad:ad:53:0a:92:e9:17:07: 9d:18:6b:5a:86:7d:de:38:6d:ef:a8:7d:81:0a:18: 40:8b:a6:81:15:c6:ec:db:2c:73:05:1f:40:1c:4a: 57:93:b2:8a:7c:39:12:cf:b2:e6:f0:b8:e4:b3:00: db:90:2e:31:e7:ac:ca:d9:3f:f1:c5:e3:03:f7:df: ec:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:00:B5:A5:89:CF:3E:8A:F4:96:8A:47:DF:33:FB:8D:C1:4B:22:C4 X509v3 Authority Key Identifier: keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/igC1pYnPPor0lopH3zP7jcFLIsQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.148.51.0/24 45.152.37.0/24 45.154.237.0/24 185.208.211.0/24 185.232.85.0/24 193.57.9.0/24 195.60.177.0/24 195.88.210.0/24 213.185.92.0/22 Signature Algorithm: sha256WithRSAEncryption 94:97:9b:c7:6b:fd:c0:2b:10:9d:55:ff:0f:ff:b0:2f:3e:08: 7c:11:c4:b6:3e:8a:32:9c:94:0e:e4:75:27:27:c8:ef:08:6b: 4e:20:cf:3c:15:63:f4:12:9d:6d:5b:1c:ce:25:df:ef:16:dd: 87:94:d6:5b:39:7f:34:b6:b8:cf:77:25:95:fe:ed:c6:6e:e1: 55:70:c4:c7:6a:de:56:23:ad:1c:c1:f2:4a:f4:94:76:17:ff: 91:84:56:31:49:19:10:f0:ac:d9:41:4d:06:5f:76:08:79:17: 1b:d2:8a:2e:bc:a0:a2:1f:37:0d:89:fb:da:46:ce:03:48:bd: 81:b7:cf:11:b5:37:3a:9b:d1:ab:78:19:8c:f5:b2:01:d5:31: 3a:38:bf:df:f7:a7:a5:e7:61:30:8f:29:14:9e:f6:0c:bf:51: af:dd:66:0a:39:6b:cd:27:e4:7e:c3:a0:48:0a:8a:a3:30:ed: 1a:9d:53:88:c5:e1:3a:98:00:b1:ec:8b:c0:81:5d:4e:d8:14: cf:32:90:14:aa:b8:0c:99:0d:84:e1:05:f2:7e:1a:bc:16:7a: f6:14:55:81:d5:32:0c:0e:06:a2:5b:fa:94:78:6d:36:9d:fc: c2:c2:e6:0e:ba:a5:d2:fb:8c:a4:57:9e:68:73:70:06:12:8e: 92:52:4a:6c -----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgISAZt/hES0WhBIDdDkpsMvYnKFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw MTRiOGQwHhcNMjYwMTAyMTYyMjEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTAwYjVhNTg5Y2YzZThhZjQ5NjhhNDdkZjMzZmI4ZGMxNGIyMmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0bkJAiY2GUMZQb2Wo4jSQqtUuvdo o8l03Y2m/fNdsUARIMQKilQ+Q8FA230OOSTcjFhQA1JZmETDQENmZgB8byEZNLq/ GSV9s3PniyoxpVCxuOS/WQnPJlt/g4wR8yU3mLnbgn2f5OvvMuW0sUkrvkZRB8RX Vb2ENBrZJpNqcn/B3XqkWMFv8k0n6I4D3Ui583UHs4cxdk+V8+22QXvz6Mn2qM/Z /qCfkRXU78jR53RCRnaZKpWYxiYlra1TCpLpFwedGGtahn3eOG3vqH2BChhAi6aB Fcbs2yxzBR9AHEpXk7KKfDkSz7Lm8LjkswDbkC4x56zK2T/xxeMD99/spwIDAQAB o4ICOTCCAjUwHQYDVR0OBBYEFIoAtaWJzz6K9JaKR98z+43BSyLEMB8GA1UdIwQY MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt NmJjNzU1NzhiNGMzLzEvaWdDMXBZblBQb3IwbG9wSDN6UDdqY0ZMSXNRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CME8GCCsGAQUFBwEHAQH/BEAwPjA8BAIAATA2AwQALZQzAwQA LZglAwQALZrtAwQAudDTAwQAuehVAwQAwTkJAwQAwzyxAwQAw1jSAwQC1blcMA0G CSqGSIb3DQEBCwUAA4IBAQCUl5vHa/3AKxCdVf8P/7AvPgh8EcS2PooynJQO5HUn J8jvCGtOIM88FWP0Ep1tWxzOJd/vFt2HlNZbOX80trjPdyWV/u3GbuFVcMTHat5W I60cwfJK9JR2F/+RhFYxSRkQ8KzZQU0GX3YIeRcb0oouvKCiHzcNifvaRs4DSL2B t88RtTc6m9GreBmM9bIB1TE6OL/f96el52EwjykUnvYMv1Gv3WYKOWvNJ+R+w6BI CoqjMO0anVOIxeE6mACx7IvAgV1O2BTPMpAUqrgMmQ2E4QXyfhq8Fnr2FFWB1TIM DgaiW/qUeG02nfzCwuYOuqXS+4ykV55oc3AGEo6SUkps -----END CERTIFICATE-----Generated at Wed Jan 7 23:48:06 2026 by rpki-client