This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/iwCms-jh7sNOnDjyiQ87SCaskPM.roa File: iwCms-jh7sNOnDjyiQ87SCaskPM.roa (raw, json) Hash identifier: F9m0OaxudVEa/uHDWRuOEKekT6jQQYP93RpjR2bYjX4= Subject key identifier: 8B:00:A6:B3:E8:E1:EE:C3:4E:9C:38:F2:89:0F:3B:48:26:AC:90:F3 Certificate issuer: /CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa Certificate serial: 019B7834E63D25859AF5367DB8282AA21565 Authority key identifier: 60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/iwCms-jh7sNOnDjyiQ87SCaskPM.roa Signing time: Thu 01 Jan 2026 06:18:11 +0000 ROA not before: Thu 01 Jan 2026 06:18:11 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 48149 IP address blocks: 94.253.80.0/20 maxlen: 20 2a01:4207::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/YJDN0x06cdoc5KS9hfGYfjyk6vo.crl rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/YJDN0x06cdoc5KS9hfGYfjyk6vo.mft rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e6:3d:25:85:9a:f5:36:7d:b8:28:2a:a2:15:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa Validity Not Before: Jan 1 06:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b00a6b3e8e1eec34e9c38f2890f3b4826ac90f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:d5:75:29:91:4e:6f:7e:ee:e0:97:e0:ff:05: b0:f2:57:cf:87:0f:d4:0d:a1:5b:cc:67:e6:8b:1e: ea:e5:7a:50:f8:02:5c:9d:80:7c:30:ed:4f:02:52: 54:30:72:84:2c:e3:9f:85:23:a9:f0:d5:20:e9:01: 6c:ef:81:b4:0d:12:c3:08:9a:cf:98:37:d3:88:a8: 0b:e3:3e:5f:34:6a:2b:06:cd:78:2a:66:42:ea:c6: 85:b1:c4:a6:fa:f3:8e:05:00:94:53:cd:98:08:d1: c0:bf:09:9d:34:ea:3e:f2:85:22:8f:67:04:50:c9: b7:7a:f1:b1:84:bc:b9:72:c8:43:8e:ad:3b:cc:68: 57:0c:7b:f5:c3:13:b9:f1:b6:89:64:fe:b0:58:0a: 3e:d3:2e:89:c6:32:1c:fe:fc:d7:e2:5a:a2:78:de: cd:08:34:d5:2e:94:21:fb:5d:56:37:04:06:fb:d3: be:22:bc:a7:78:6a:36:1e:a6:84:3d:2d:09:3c:16: 17:5e:ea:45:cf:df:33:b2:53:9e:5f:18:71:b1:94: b4:d0:df:96:92:07:86:66:14:c4:e7:46:7e:ed:4a: 30:f3:85:ac:2b:54:f2:4f:d4:ba:d7:a2:29:5b:b5: 31:fd:c1:ff:f2:5c:a4:03:4e:4d:ae:74:6f:4e:5d: 05:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:00:A6:B3:E8:E1:EE:C3:4E:9C:38:F2:89:0F:3B:48:26:AC:90:F3 X509v3 Authority Key Identifier: keyid:60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/iwCms-jh7sNOnDjyiQ87SCaskPM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/YJDN0x06cdoc5KS9hfGYfjyk6vo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.253.80.0/20 IPv6: 2a01:4207::/48 Signature Algorithm: sha256WithRSAEncryption 10:a8:5d:12:85:5f:59:ab:fe:85:04:08:74:ab:eb:43:47:34: 7f:48:16:1e:3d:57:35:c6:5d:5b:26:49:2e:da:a9:72:e8:50: bf:81:c4:29:17:78:57:f7:21:6a:1c:56:fb:0e:68:f0:e8:c8: 9f:c6:aa:de:74:de:aa:af:46:30:de:d7:bc:44:ec:38:a5:f8: 5c:cd:76:c6:68:fa:c0:e1:2d:12:e1:93:a1:b4:e9:a7:82:6c: 6e:17:96:a7:d0:e4:87:1a:7f:8e:b6:93:ab:ec:38:39:1d:44: 05:bc:f8:e0:77:b7:96:38:b2:b2:db:ae:ae:5d:e8:24:6c:5e: b3:58:ab:5c:b3:e4:cd:6a:61:51:0a:b2:19:73:07:ad:c5:6e: 72:3f:6e:d1:7c:40:cf:2b:16:b8:00:90:5f:04:62:3e:5f:69: 2e:fb:5d:4b:1d:18:cf:df:1b:92:d6:43:ba:5d:51:07:a5:9b: 85:c6:54:03:7b:a8:43:d0:ac:51:83:f7:e7:45:aa:95:33:6d: c9:7a:9b:65:b6:d8:0d:a0:10:f5:73:e0:35:9c:d7:2d:ce:ae: 7e:db:3f:34:24:9f:38:53:bb:32:16:50:50:36:38:c6:e4:41: cf:b9:04:8b:83:4e:cb:da:85:16:5a:f3:b3:c1:f6:be:41:22: 77:b4:09:cb -----BEGIN CERTIFICATE----- MIIFDjCCA/agAwIBAgISAZt4NOY9JYWa9TZ9uCgqohVlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwOTBjZGQzMWQzYTcxZGExY2U0YTRiZDg1ZjE5ODdlM2Nh NGVhZmEwHhcNMjYwMTAxMDYxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjAwYTZiM2U4ZTFlZWMzNGU5YzM4ZjI4OTBmM2I0ODI2YWM5MGYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjdV1KZFOb37u4Jfg/wWw8lfPhw/U DaFbzGfmix7q5XpQ+AJcnYB8MO1PAlJUMHKELOOfhSOp8NUg6QFs74G0DRLDCJrP mDfTiKgL4z5fNGorBs14KmZC6saFscSm+vOOBQCUU82YCNHAvwmdNOo+8oUij2cE UMm3evGxhLy5cshDjq07zGhXDHv1wxO58baJZP6wWAo+0y6JxjIc/vzX4lqieN7N CDTVLpQh+11WNwQG+9O+IryneGo2HqaEPS0JPBYXXupFz98zslOeXxhxsZS00N+W kgeGZhTE50Z+7Uow84WsK1TyT9S616IpW7Ux/cH/8lykA05NrnRvTl0FbwIDAQAB o4ICGjCCAhYwHQYDVR0OBBYEFIsAprPo4e7DTpw48okPO0gmrJDzMB8GA1UdIwQY MBaAFGCQzdMdOnHaHOSkvYXxmH48pOr6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWUpETjB4MDZjZG9jNUtTOWhmR1lmanlrNnZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8wODkwMGYtYjM2MS00N2FkLTg5M2Yt NzM1MWY4NjliNDJiLzEvaXdDbXMtamg3c05PbkRqeWlRODdTQ2Fza1BNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC8wODkwMGYtYjM2MS00N2FkLTg5M2YtNzM1MWY4NjliNDJi LzEvWUpETjB4MDZjZG9jNUtTOWhmR1lmanlrNnZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQEXv1QMA8E AgACMAkDBwAqAUIHAAAwDQYJKoZIhvcNAQELBQADggEBABCoXRKFX1mr/oUECHSr 60NHNH9IFh49VzXGXVsmSS7aqXLoUL+BxCkXeFf3IWocVvsOaPDoyJ/Gqt503qqv RjDe17xE7Dil+FzNdsZo+sDhLRLhk6G06aeCbG4XlqfQ5Icaf462k6vsODkdRAW8 +OB3t5Y4srLbrq5d6CRsXrNYq1yz5M1qYVEKshlzB63FbnI/btF8QM8rFrgAkF8E Yj5faS77XUsdGM/fG5LWQ7pdUQelm4XGVAN7qEPQrFGD9+dFqpUzbcl6m2W22A2g EPVz4DWc1y3Orn7bPzQknzhTuzIWUFA2OMbkQc+5BIuDTsvahRZa87PB9r5BIne0 Ccs= -----END CERTIFICATE-----Generated at Mon Feb 9 22:35:41 2026 by rpki-client