This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/irocnpPXgA_Fth-m3en9JGahONo.roa File: irocnpPXgA_Fth-m3en9JGahONo.roa (raw, json) Hash identifier: BxmKvUydui/NHX3OGtlV7yFHY1hNbUVdGtKWN7hbOqk= Subject key identifier: 8A:BA:1C:9E:93:D7:80:0F:C5:B6:1F:A6:DD:E9:FD:24:66:A1:38:DA Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a Certificate serial: 019B7FF1645A89D337F50B951E15F31EEEAB Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/irocnpPXgA_Fth-m3en9JGahONo.roa Signing time: Fri 02 Jan 2026 18:21:24 +0000 ROA not before: Fri 02 Jan 2026 18:21:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 3320 IP address blocks: 194.38.48.0/24 maxlen: 24 194.38.49.0/24 maxlen: 24 194.38.50.0/24 maxlen: 24 194.38.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.mft rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:64:5a:89:d3:37:f5:0b:95:1e:15:f3:1e:ee:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a Validity Not Before: Jan 2 18:21:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8aba1c9e93d7800fc5b61fa6dde9fd2466a138da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:50:e2:36:f8:0c:cf:84:01:88:f9:a9:72:fa: 06:be:34:14:9f:0b:bc:16:a5:6e:80:f3:10:58:c7: d5:a4:1c:93:96:c1:ba:d1:9a:49:cb:30:fa:1c:68: 7b:52:bc:d0:15:ca:67:12:be:b0:2e:9c:94:ad:b1: d7:97:83:2a:13:b6:a0:e4:1d:18:24:ae:42:b2:fe: 69:aa:4c:07:e6:b1:44:7d:61:b6:28:d7:5a:87:bf: 9f:26:27:12:07:02:77:fa:25:bc:d7:c7:c9:f4:e7: 9c:c8:7f:76:16:8e:00:e5:2b:dc:13:9b:ff:a1:f3: ce:e3:2f:72:9d:33:c8:9f:b7:3a:f6:41:9c:10:e0: cf:ce:a8:10:ed:ba:81:6b:ce:0c:0d:0e:04:af:a6: f8:c3:e0:8e:ed:dc:f7:d4:7e:27:ef:54:6d:fe:52: b6:40:9d:7b:c9:d6:0f:2d:08:ef:55:db:42:9c:ff: 2c:0c:bf:8c:ff:e3:14:56:b5:51:3f:a4:af:c5:39: 87:46:1b:27:d9:3b:61:eb:dd:b8:ce:20:8d:de:4a: 3e:32:de:b7:e9:ad:a4:19:4f:e5:af:e3:a0:09:2e: 67:65:22:6f:ea:2b:b4:3c:69:c6:a8:9a:be:93:11: dc:61:1d:c9:71:38:1f:0f:b5:d9:d9:e4:9f:32:b2: 34:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:BA:1C:9E:93:D7:80:0F:C5:B6:1F:A6:DD:E9:FD:24:66:A1:38:DA X509v3 Authority Key Identifier: keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/irocnpPXgA_Fth-m3en9JGahONo.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.38.48.0/22 Signature Algorithm: sha256WithRSAEncryption 40:0d:ea:7b:0a:e7:fc:de:f9:04:32:6c:9c:64:cc:66:df:cc: 38:62:99:cf:63:db:ad:89:a2:6d:20:a7:30:37:a1:49:41:0e: a2:54:b7:38:c5:a3:69:79:5a:fa:13:0a:62:5c:dd:ba:05:0b: e9:8d:7a:40:25:71:68:4e:00:1d:90:30:13:bb:f5:23:8d:0d: d0:2f:91:8f:93:3f:f1:b6:01:e1:28:f3:65:03:d5:3a:89:40: f0:ab:a1:c0:33:6e:92:54:7b:b6:19:f8:5e:96:13:df:45:07: 6e:b8:d6:7c:b3:02:ad:3c:82:56:50:8b:6c:61:0e:28:96:86: 71:68:7a:d1:22:63:63:5a:e4:f3:a0:cc:56:cf:f8:f6:e7:00: 12:66:99:1b:8d:12:b4:a7:62:30:2c:a0:01:3d:f6:66:c9:d8: e9:11:91:9e:f4:0a:6f:a5:25:c6:cb:be:21:a4:a7:fe:10:d3: 97:f0:51:86:4d:40:8a:6a:d5:4f:67:b3:a6:8e:e9:c8:06:c7: 92:00:91:92:fe:b9:37:75:ba:fa:05:aa:06:2e:cd:c9:ac:ce: 51:5e:78:0e:c9:e4:da:3f:5e:78:86:b3:63:dc:d4:a6:ab:56: 7c:cd:2d:1a:0e:49:2d:cb:fe:d6:98:5f:bf:dc:c0:a9:1b:6e: f4:7e:44:c1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8WRaidM39QuVHhXzHu6rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQwOGRhOWNmMDBkNGQ1OGI4NTRmZmM2MjAxMGYyMzViMDZk ZjM1NGEwHhcNMjYwMTAyMTgyMTI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWJhMWM5ZTkzZDc4MDBmYzViNjFmYTZkZGU5ZmQyNDY2YTEzOGRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3FDiNvgMz4QBiPmpcvoGvjQUnwu8 FqVugPMQWMfVpByTlsG60ZpJyzD6HGh7UrzQFcpnEr6wLpyUrbHXl4MqE7ag5B0Y JK5Csv5pqkwH5rFEfWG2KNdah7+fJicSBwJ3+iW818fJ9OecyH92Fo4A5SvcE5v/ ofPO4y9ynTPIn7c69kGcEODPzqgQ7bqBa84MDQ4Er6b4w+CO7dz31H4n71Rt/lK2 QJ17ydYPLQjvVdtCnP8sDL+M/+MUVrVRP6SvxTmHRhsn2Tth6924ziCN3ko+Mt63 6a2kGU/lr+OgCS5nZSJv6iu0PGnGqJq+kxHcYR3JcTgfD7XZ2eSfMrI03wIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIq6HJ6T14APxbYfpt3p/SRmoTjaMB8GA1UdIwQY MBaAFNCNqc8A1NWLhU/8YgEPI1sG3zVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYt MjBlMTk3ODBjYjJlLzEvaXJvY25wUFhnQV9GdGgtbTNlbjlKR2FoT05vLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYtMjBlMTk3ODBjYjJl LzEvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwiYwMA0G CSqGSIb3DQEBCwUAA4IBAQBADep7Cuf83vkEMmycZMxm38w4YpnPY9utiaJtIKcw N6FJQQ6iVLc4xaNpeVr6EwpiXN26BQvpjXpAJXFoTgAdkDATu/UjjQ3QL5GPkz/x tgHhKPNlA9U6iUDwq6HAM26SVHu2GfhelhPfRQduuNZ8swKtPIJWUItsYQ4oloZx aHrRImNjWuTzoMxWz/j25wASZpkbjRK0p2IwLKABPfZmydjpEZGe9ApvpSXGy74h pKf+ENOX8FGGTUCKatVPZ7OmjunIBseSAJGS/rk3dbr6BaoGLs3JrM5RXngOyeTa P154hrNj3NSmq1Z8zS0aDkkty/7WmF+/3MCpG270fkTB -----END CERTIFICATE-----Generated at Mon Jan 19 11:47:26 2026 by rpki-client