This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/IsrXRGLVffEPsnHVbl_BeBHARaA.roa File: IsrXRGLVffEPsnHVbl_BeBHARaA.roa (raw, json) Hash identifier: 2bYUOyrmy0HgRWN9bHIQfD3C31xnJN8Zzbysmp0r1Aw= Subject key identifier: 22:CA:D7:44:62:D5:7D:F1:0F:B2:71:D5:6E:5F:C1:78:11:C0:45:A0 Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260 Certificate serial: 019B7A5AAD2CCB2D70EBDB2C0ACEB674F564 Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/IsrXRGLVffEPsnHVbl_BeBHARaA.roa Signing time: Thu 01 Jan 2026 16:18:41 +0000 ROA not before: Thu 01 Jan 2026 16:18:41 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 61317 IP address blocks: 45.140.209.0/24 maxlen: 24 45.140.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.mft rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:ad:2c:cb:2d:70:eb:db:2c:0a:ce:b6:74:f5:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260 Validity Not Before: Jan 1 16:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22cad74462d57df10fb271d56e5fc17811c045a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b2:4a:3b:99:c4:b9:3e:07:59:5c:6a:ab:ed: 13:58:d1:90:4a:ce:14:47:39:09:9f:ae:5f:c8:d3: 47:4a:a6:9b:2b:97:b6:eb:98:e0:8c:3f:c0:30:62: 0e:bd:18:fc:37:ee:1b:e6:a8:46:fd:5f:a8:8c:5c: 7f:b2:e9:6e:b1:2c:a6:b8:29:1c:94:35:68:db:0c: 71:b0:6f:53:81:46:0b:81:c6:a8:91:c1:f3:cf:64: 8a:2b:c7:91:13:a0:96:ae:d7:c7:55:45:58:7f:e3: a8:28:dd:07:28:3e:93:13:6b:d6:8b:08:22:d5:bb: fc:05:49:17:a1:16:41:6e:1f:f3:0e:0b:a2:e0:2c: e5:a4:66:60:cf:66:4c:25:c5:26:96:b6:fc:58:f5: a1:36:e1:f8:f4:d1:0a:c6:f3:2b:1e:ea:2f:bd:0a: 91:43:2f:68:c7:e5:66:54:a0:7b:00:24:94:83:54: 99:95:17:76:f1:47:eb:6f:8d:19:89:e0:69:23:eb: e0:67:01:c4:5a:18:ac:70:e7:8b:f8:33:1b:3c:3c: 17:da:79:b1:b6:22:a3:bc:27:fa:9c:17:df:85:70: f5:35:a2:0e:4e:26:45:cd:69:f9:cd:12:52:9a:67: 85:9a:10:38:e2:80:57:56:5d:76:a8:b1:35:23:fa: 22:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CA:D7:44:62:D5:7D:F1:0F:B2:71:D5:6E:5F:C1:78:11:C0:45:A0 X509v3 Authority Key Identifier: keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/IsrXRGLVffEPsnHVbl_BeBHARaA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.140.209.0/24 45.140.211.0/24 Signature Algorithm: sha256WithRSAEncryption bb:d6:69:90:8a:48:cb:95:7d:cd:37:e8:3c:ea:0e:0e:86:72: 01:3c:16:88:2e:1c:65:a4:6f:9f:6c:60:e3:c7:10:24:07:d6: a3:d9:47:b0:af:d2:5f:5d:0c:5f:60:70:d6:2f:73:a6:70:d0: c4:61:59:4a:17:a0:35:1a:48:38:88:bb:e9:c8:a4:b5:93:75: 85:db:a0:d0:82:3c:09:3f:98:3d:a8:22:8e:57:2d:8b:c1:1f: 6f:aa:4e:6a:bf:51:38:66:f7:96:82:ab:27:41:18:52:61:7b: 5e:96:d7:2f:64:2c:6e:61:d4:a0:6a:af:fa:ba:72:a8:6e:2e: 41:8c:23:cc:d4:34:cd:95:ec:6e:df:11:2c:2d:f8:7f:29:6a: e5:b4:a7:cb:6e:49:e5:7a:ad:eb:46:db:85:8d:b2:cc:dc:8a: c9:5c:4d:28:28:ff:85:c0:a8:c4:75:3c:8b:2b:e6:5c:5a:56: 39:09:a2:6f:1a:5f:aa:e1:a7:fc:17:86:b9:6a:3b:1c:59:fc: c6:46:d4:98:31:03:34:61:87:a2:d4:d7:42:f3:36:7d:f5:36: aa:12:1d:96:78:0f:02:04:a0:0a:9e:27:75:b4:07:36:02:7d: e8:7d:be:4b:a3:45:28:a1:4f:7e:b4:52:e8:00:88:42:33:fe: a3:45:7b:6f -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt6Wq0syy1w69ssCs62dPVkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM2OGM2NWU2OTliNTc2YWIxMTNhNzliZTg4Mjg5NDhmMWU2 Y2MyNjAwHhcNMjYwMTAxMTYxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmNhZDc0NDYyZDU3ZGYxMGZiMjcxZDU2ZTVmYzE3ODExYzA0NWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLJKO5nEuT4HWVxqq+0TWNGQSs4U RzkJn65fyNNHSqabK5e265jgjD/AMGIOvRj8N+4b5qhG/V+ojFx/sulusSymuCkc lDVo2wxxsG9TgUYLgcaokcHzz2SKK8eRE6CWrtfHVUVYf+OoKN0HKD6TE2vWiwgi 1bv8BUkXoRZBbh/zDgui4CzlpGZgz2ZMJcUmlrb8WPWhNuH49NEKxvMrHuovvQqR Qy9ox+VmVKB7ACSUg1SZlRd28Ufrb40ZieBpI+vgZwHEWhiscOeL+DMbPDwX2nmx tiKjvCf6nBffhXD1NaIOTiZFzWn5zRJSmmeFmhA44oBXVl12qLE1I/oitQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCLK10Ri1X3xD7Jx1W5fwXgRwEWgMB8GA1UdIwQY MBaAFMaMZeaZtXarETp5vogolI8ebMJgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYt NjA3ZDRmMzdmNTlmLzEvSXNyWFJHTFZmZkVQc25IVmJsX0JlQkhBUmFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYtNjA3ZDRmMzdmNTlm LzEveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYzRAwQA LYzTMA0GCSqGSIb3DQEBCwUAA4IBAQC71mmQikjLlX3NN+g86g4OhnIBPBaILhxl pG+fbGDjxxAkB9aj2Uewr9JfXQxfYHDWL3OmcNDEYVlKF6A1Gkg4iLvpyKS1k3WF 26DQgjwJP5g9qCKOVy2LwR9vqk5qv1E4ZveWgqsnQRhSYXteltcvZCxuYdSgaq/6 unKobi5BjCPM1DTNlexu3xEsLfh/KWrltKfLbknleq3rRtuFjbLM3IrJXE0oKP+F wKjEdTyLK+ZcWlY5CaJvGl+q4af8F4a5ajscWfzGRtSYMQM0YYei1NdC8zZ99Taq Eh2WeA8CBKAKnid1tAc2An3ofb5Lo0UooU9+tFLoAIhCM/6jRXtv -----END CERTIFICATE-----Generated at Thu Jan 8 12:59:40 2026 by rpki-client