This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/iZcZ_-KRFzETMXfXgFqcCVyHHWw.roa File: iZcZ_-KRFzETMXfXgFqcCVyHHWw.roa (raw, json) Hash identifier: rbsN5PPkcbMSn4E12T9YbjsvzB+VtJOV1oya4fK1cDY= Subject key identifier: 89:97:19:FF:E2:91:17:31:13:31:77:D7:80:5A:9C:09:5C:87:1D:6C Certificate issuer: /CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81 Certificate serial: 019B79ED3300FED2B65A2730D389D42CE2E6 Authority key identifier: 4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/iZcZ_-KRFzETMXfXgFqcCVyHHWw.roa Signing time: Thu 01 Jan 2026 14:19:06 +0000 ROA not before: Thu 01 Jan 2026 14:19:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 52000 IP address blocks: 185.157.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.crl rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.mft rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:33:00:fe:d2:b6:5a:27:30:d3:89:d4:2c:e2:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4f2d30b015ec4ef1b0d3c64347c8d1b598293f81 Validity Not Before: Jan 1 14:19:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=899719ffe2911731133177d7805a9c095c871d6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f5:4e:1c:46:e1:03:4a:6e:39:fa:fa:a2:e1: c0:e0:1c:4b:a3:8a:2c:7a:d9:ca:5a:e6:22:7f:21: 40:36:f8:94:da:3c:33:59:73:b9:07:34:1d:f6:e4: 9f:af:bc:8f:43:71:63:cc:c9:14:af:8d:73:f6:78: 76:b6:28:e6:83:da:d2:77:24:9c:a0:9e:3f:47:9e: 6c:eb:47:f5:48:12:9a:ba:4a:cf:c4:f8:35:8b:e4: cb:65:81:ef:4e:d2:71:40:13:92:bf:9b:b7:08:12: ec:1e:0c:07:62:92:f9:74:46:13:45:7e:9a:10:87: d0:4d:43:62:49:26:99:1c:c9:03:8e:00:d1:28:ff: ea:24:be:ae:57:7a:b0:64:27:1d:46:9f:2f:2a:84: 19:1b:14:7f:36:28:1c:b8:c0:fd:a7:33:2f:c1:8d: 86:0f:92:c1:56:a5:39:03:96:44:82:6e:6a:87:c3: ce:60:48:89:59:19:0e:fa:a2:0f:c8:32:0a:34:aa: ea:ff:41:f9:6d:ee:f9:4b:18:24:42:3f:f3:94:e6: c9:5f:95:7e:30:0f:8c:04:30:10:47:c2:99:e4:a1: 76:08:12:5b:ba:6a:16:e1:df:fb:2e:a1:aa:61:ad: a6:2e:c2:b0:67:f6:e5:cd:dc:e7:01:5d:08:77:c9: 42:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:97:19:FF:E2:91:17:31:13:31:77:D7:80:5A:9C:09:5C:87:1D:6C X509v3 Authority Key Identifier: keyid:4F:2D:30:B0:15:EC:4E:F1:B0:D3:C6:43:47:C8:D1:B5:98:29:3F:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/iZcZ_-KRFzETMXfXgFqcCVyHHWw.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/9668b5-5e92-4c18-9bb9-4351bbf74c0c/1/Ty0wsBXsTvGw08ZDR8jRtZgpP4E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.157.120.0/24 Signature Algorithm: sha256WithRSAEncryption c8:c3:e2:ce:c9:94:a7:25:9b:bf:4a:b6:93:c8:0e:76:ad:51: 6e:da:3f:da:11:92:f6:ea:51:cd:7a:19:6a:3a:68:2c:cc:76: 4f:81:8e:5a:a0:ce:79:5e:23:cc:d8:c9:d9:34:ea:4e:36:37: 7c:b5:4a:d1:c3:1b:e0:64:04:e0:92:0f:a7:36:82:70:da:3b: ea:76:05:2d:d4:c3:a7:56:cc:d6:83:97:f5:71:d9:44:b5:ac: c0:37:3e:db:56:6f:f3:a9:91:b5:36:f0:db:7b:ff:ea:d0:e4: f4:a7:a2:a2:56:cc:fe:e2:f9:2d:03:6d:f8:28:73:38:ee:a6: c1:b4:17:7f:18:ab:4d:82:66:ea:98:34:98:38:04:ed:34:67: d3:6e:1f:9e:4f:46:fc:80:af:fd:00:75:4f:0c:49:1b:4f:81: 5c:92:88:df:8c:c4:d9:27:dd:88:75:90:f7:8b:17:92:29:32: aa:b1:01:a5:3c:23:5e:68:e4:32:12:5d:1d:3e:b8:14:33:68: 84:c0:92:4f:97:cb:4f:17:8c:49:da:fb:6d:a3:ae:57:a0:ee: be:86:9b:41:1c:52:43:a7:75:79:fa:db:1a:8b:12:bf:f4:98: 32:cd:d5:6d:25:92:11:d9:a7:fe:5a:4f:72:f6:3e:73:26:d8: 04:5b:04:47 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt57TMA/tK2Wicw04nULOLmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRmMmQzMGIwMTVlYzRlZjFiMGQzYzY0MzQ3YzhkMWI1OTgy OTNmODEwHhcNMjYwMTAxMTQxOTA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTk3MTlmZmUyOTExNzMxMTMzMTc3ZDc4MDVhOWMwOTVjODcxZDZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvVOHEbhA0puOfr6ouHA4BxLo4os etnKWuYifyFANviU2jwzWXO5BzQd9uSfr7yPQ3FjzMkUr41z9nh2tijmg9rSdySc oJ4/R55s60f1SBKaukrPxPg1i+TLZYHvTtJxQBOSv5u3CBLsHgwHYpL5dEYTRX6a EIfQTUNiSSaZHMkDjgDRKP/qJL6uV3qwZCcdRp8vKoQZGxR/NigcuMD9pzMvwY2G D5LBVqU5A5ZEgm5qh8POYEiJWRkO+qIPyDIKNKrq/0H5be75SxgkQj/zlObJX5V+ MA+MBDAQR8KZ5KF2CBJbumoW4d/7LqGqYa2mLsKwZ/blzdznAV0Id8lCSQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFImXGf/ikRcxEzF314BanAlchx1sMB8GA1UdIwQY MBaAFE8tMLAV7E7xsNPGQ0fI0bWYKT+BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHkwd3NCWHNUdkd3MDhaRFI4alJ0WmdwUDRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi85NjY4YjUtNWU5Mi00YzE4LTliYjkt NDM1MWJiZjc0YzBjLzEvaVpjWl8tS1JGekVUTVhmWGdGcWNDVnlISFd3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZi85NjY4YjUtNWU5Mi00YzE4LTliYjktNDM1MWJiZjc0YzBj LzEvVHkwd3NCWHNUdkd3MDhaRFI4alJ0WmdwUDRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZ14MA0G CSqGSIb3DQEBCwUAA4IBAQDIw+LOyZSnJZu/SraTyA52rVFu2j/aEZL26lHNehlq OmgszHZPgY5aoM55XiPM2MnZNOpONjd8tUrRwxvgZATgkg+nNoJw2jvqdgUt1MOn VszWg5f1cdlEtazANz7bVm/zqZG1NvDbe//q0OT0p6KiVsz+4vktA234KHM47qbB tBd/GKtNgmbqmDSYOATtNGfTbh+eT0b8gK/9AHVPDEkbT4FckojfjMTZJ92IdZD3 ixeSKTKqsQGlPCNeaOQyEl0dPrgUM2iEwJJPl8tPF4xJ2vtto65XoO6+hptBHFJD p3V5+tsaixK/9JgyzdVtJZIR2af+Wk9y9j5zJtgEWwRH -----END CERTIFICATE-----Generated at Thu Jan 8 23:54:33 2026 by rpki-client