This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/ibsoqErDKT3266b2vH5vf8KZDA0.roa File: ibsoqErDKT3266b2vH5vf8KZDA0.roa (raw, json) Hash identifier: UrhNuNL7GgbO0jHlNAEUHP2GLPJjzZnieCjHTk+nkGg= Subject key identifier: 89:BB:28:A8:4A:C3:29:3D:F6:EB:A6:F6:BC:7E:6F:7F:C2:99:0C:0D Certificate issuer: /CN=734fa61b08651038faf81ebf125ec845b1961883 Certificate serial: 019B7BA4F7289B3B80750236A76ABA77409D Authority key identifier: 73:4F:A6:1B:08:65:10:38:FA:F8:1E:BF:12:5E:C8:45:B1:96:18:83 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c0-mGwhlEDj6-B6_El7IRbGWGIM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/ibsoqErDKT3266b2vH5vf8KZDA0.roa Signing time: Thu 01 Jan 2026 22:19:27 +0000 ROA not before: Thu 01 Jan 2026 22:19:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 8685 IP address blocks: 185.135.40.0/24 maxlen: 24 185.135.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/c0-mGwhlEDj6-B6_El7IRbGWGIM.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/c0-mGwhlEDj6-B6_El7IRbGWGIM.mft rsync://rpki.ripe.net/repository/DEFAULT/c0-mGwhlEDj6-B6_El7IRbGWGIM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:f7:28:9b:3b:80:75:02:36:a7:6a:ba:77:40:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=734fa61b08651038faf81ebf125ec845b1961883 Validity Not Before: Jan 1 22:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89bb28a84ac3293df6eba6f6bc7e6f7fc2990c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:21:6d:ef:8a:a2:65:03:ff:2d:02:e6:ae:fd: df:80:89:7c:ad:c2:78:d5:c1:ad:cc:ef:23:29:ea: fc:e6:ad:83:21:3b:a0:00:21:a9:76:73:51:01:36: 98:c1:70:98:f1:6d:2b:7f:00:1e:5f:db:51:ef:fe: 8b:5d:92:22:60:16:5f:e5:84:27:ce:3e:77:f2:a8: 7b:46:9b:f4:6d:43:43:16:ec:9a:3b:9e:87:2f:1d: 8e:5a:04:56:43:9c:da:e6:5a:30:56:41:42:35:39: ab:a4:d3:ed:ef:6e:df:0c:26:9d:cd:36:44:7c:aa: 54:01:e4:b5:6c:c7:c6:ba:74:7d:b9:5c:56:33:a1: ba:42:cb:a3:0e:dc:9d:3d:de:55:43:26:8a:e6:ad: bd:eb:aa:6f:ac:04:74:97:bc:fe:15:92:56:b9:52: 81:a5:78:e8:a3:d5:53:af:8f:12:c4:ac:cf:a9:5d: 13:2e:87:6a:9d:ea:67:32:1a:a8:b0:2c:b5:06:05: 7d:2b:62:ea:c5:34:e8:ec:66:ce:c7:20:91:59:d1: 00:a7:48:63:7e:5a:da:be:89:c3:e7:a7:c6:99:6d: 4b:4a:b3:27:ae:96:89:08:fc:4a:ac:09:ab:6c:1b: b8:e3:c0:49:09:f5:49:38:dd:fd:d1:5f:42:60:3e: 4d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BB:28:A8:4A:C3:29:3D:F6:EB:A6:F6:BC:7E:6F:7F:C2:99:0C:0D X509v3 Authority Key Identifier: keyid:73:4F:A6:1B:08:65:10:38:FA:F8:1E:BF:12:5E:C8:45:B1:96:18:83 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0-mGwhlEDj6-B6_El7IRbGWGIM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/ibsoqErDKT3266b2vH5vf8KZDA0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/4459b4-1838-4231-bd2c-40c0a652450a/1/c0-mGwhlEDj6-B6_El7IRbGWGIM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.135.40.0/24 185.135.42.0/24 Signature Algorithm: sha256WithRSAEncryption 85:30:ad:02:2f:4c:1b:a1:18:ff:53:d3:d0:48:d2:c1:88:bd: 56:68:da:c7:86:1a:4d:e0:c2:cc:a3:ef:9a:b3:93:8e:bf:20: 0f:d7:0d:94:3c:0a:66:df:0b:aa:88:18:f6:ce:c7:fd:7c:53: 0f:f8:5e:ae:0e:7d:c6:b4:ba:6e:51:56:23:ee:0d:f4:63:ba: 15:97:4a:1b:0c:51:a0:23:54:b3:f4:c3:6c:ef:17:c3:10:22: 6f:4f:82:6e:55:9a:01:ed:4c:40:14:05:1b:03:5b:6f:11:ca: a2:31:ca:04:23:ee:5d:12:dd:5e:0e:12:39:49:0d:3a:94:d0: bb:81:a5:5d:b8:f5:6d:71:81:bb:a9:ec:c4:78:57:84:75:94: 5b:9a:95:e8:ef:42:73:37:f4:82:5a:0e:f0:29:71:4a:fd:0f: aa:d8:be:43:b6:96:81:65:6c:76:6b:4d:f1:c7:10:6e:c6:63: 36:00:85:14:da:46:15:74:2a:66:ef:cf:93:25:52:bb:07:d2: 89:f3:21:a2:c8:a5:46:d8:f3:1f:87:8b:e4:b3:46:39:64:22: 81:fa:ac:46:ee:e4:0b:53:c2:35:64:cd:a3:6a:88:d6:5f:d6: 2f:83:7f:a8:0e:98:69:b9:c3:dc:1d:ac:1c:31:cc:7a:a6:33: 65:1a:ab:91 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt7pPcomzuAdQI2p2q6d0CdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczNGZhNjFiMDg2NTEwMzhmYWY4MWViZjEyNWVjODQ1YjE5 NjE4ODMwHhcNMjYwMTAxMjIxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWJiMjhhODRhYzMyOTNkZjZlYmE2ZjZiYzdlNmY3ZmMyOTkwYzBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCFt74qiZQP/LQLmrv3fgIl8rcJ4 1cGtzO8jKer85q2DITugACGpdnNRATaYwXCY8W0rfwAeX9tR7/6LXZIiYBZf5YQn zj538qh7Rpv0bUNDFuyaO56HLx2OWgRWQ5za5lowVkFCNTmrpNPt727fDCadzTZE fKpUAeS1bMfGunR9uVxWM6G6QsujDtydPd5VQyaK5q2966pvrAR0l7z+FZJWuVKB pXjoo9VTr48SxKzPqV0TLodqnepnMhqosCy1BgV9K2LqxTTo7GbOxyCRWdEAp0hj flravonD56fGmW1LSrMnrpaJCPxKrAmrbBu448BJCfVJON390V9CYD5NbQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIm7KKhKwyk99uum9rx+b3/CmQwNMB8GA1UdIwQY MBaAFHNPphsIZRA4+vgevxJeyEWxlhiDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYzAtbUd3aGxFRGo2LUI2X0VsN0lSYkdXR0lNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi80NDU5YjQtMTgzOC00MjMxLWJkMmMt NDBjMGE2NTI0NTBhLzEvaWJzb3FFckRLVDMyNjZiMnZINXZmOEtaREEwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi80NDU5YjQtMTgzOC00MjMxLWJkMmMtNDBjMGE2NTI0NTBh LzEvYzAtbUd3aGxFRGo2LUI2X0VsN0lSYkdXR0lNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuYcoAwQA uYcqMA0GCSqGSIb3DQEBCwUAA4IBAQCFMK0CL0wboRj/U9PQSNLBiL1WaNrHhhpN 4MLMo++as5OOvyAP1w2UPApm3wuqiBj2zsf9fFMP+F6uDn3GtLpuUVYj7g30Y7oV l0obDFGgI1Sz9MNs7xfDECJvT4JuVZoB7UxAFAUbA1tvEcqiMcoEI+5dEt1eDhI5 SQ06lNC7gaVduPVtcYG7qezEeFeEdZRbmpXo70JzN/SCWg7wKXFK/Q+q2L5DtpaB ZWx2a03xxxBuxmM2AIUU2kYVdCpm78+TJVK7B9KJ8yGiyKVG2PMfh4vks0Y5ZCKB +qxG7uQLU8I1ZM2jaojWX9Yvg3+oDphpucPcHawcMcx6pjNlGquR -----END CERTIFICATE-----Generated at Mon Jan 26 10:13:40 2026 by rpki-client