This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/ab5fdc-9d6b-4675-9a13-9d185f738211/1/Ir27xg9dLc2jCmst038CD7aSTUE.roa File: Ir27xg9dLc2jCmst038CD7aSTUE.roa (raw, json) Hash identifier: oSA2uezGmOSkDFovORRhwQlbzwF4ltfNZW/lvc676ZY= Subject key identifier: 22:BD:BB:C6:0F:5D:2D:CD:A3:0A:6B:2D:D3:7F:02:0F:B6:92:4D:41 Certificate issuer: /CN=e43f23d68937494288dfcc7a0efe1fe74a2036e1 Certificate serial: 019B797EB5F1AF7FAF4DE81A4CC01F93708F Authority key identifier: E4:3F:23:D6:89:37:49:42:88:DF:CC:7A:0E:FE:1F:E7:4A:20:36:E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5D8j1ok3SUKI38x6Dv4f50ogNuE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/ab5fdc-9d6b-4675-9a13-9d185f738211/1/Ir27xg9dLc2jCmst038CD7aSTUE.roa Signing time: Thu 01 Jan 2026 12:18:25 +0000 ROA not before: Thu 01 Jan 2026 12:18:25 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2847 IP address blocks: 83.171.0.0/18 maxlen: 18 83.171.24.0/24 maxlen: 24 193.219.32.0/21 maxlen: 21 193.219.60.0/22 maxlen: 22 193.219.60.0/24 maxlen: 24 193.219.64.0/20 maxlen: 20 193.219.152.0/21 maxlen: 21 193.219.160.0/19 maxlen: 19 2001:778::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/ab5fdc-9d6b-4675-9a13-9d185f738211/1/5D8j1ok3SUKI38x6Dv4f50ogNuE.crl rsync://rpki.ripe.net/repository/DEFAULT/38/ab5fdc-9d6b-4675-9a13-9d185f738211/1/5D8j1ok3SUKI38x6Dv4f50ogNuE.mft rsync://rpki.ripe.net/repository/DEFAULT/5D8j1ok3SUKI38x6Dv4f50ogNuE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:b5:f1:af:7f:af:4d:e8:1a:4c:c0:1f:93:70:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e43f23d68937494288dfcc7a0efe1fe74a2036e1 Validity Not Before: Jan 1 12:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22bdbbc60f5d2dcda30a6b2dd37f020fb6924d41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:31:97:13:9e:a9:ac:6b:17:45:99:82:d3:48: b7:83:61:dc:56:00:be:1e:da:88:c6:2d:15:83:33: 25:c3:7e:21:3e:85:9d:eb:a3:12:01:48:76:fd:0c: 18:f4:78:a6:00:6d:fc:85:48:3a:78:f7:28:28:0e: f1:57:0a:ec:ff:8c:64:9b:29:8c:87:d8:e1:68:11: f7:5c:df:c1:ce:c9:35:54:85:93:81:aa:4e:b8:c0: 1a:ea:01:ee:aa:c0:4a:88:55:cc:91:8d:98:ec:99: 1c:f1:07:e9:01:d0:b9:3c:86:11:3f:dd:87:0a:aa: 13:af:00:a8:6b:55:a7:1e:1b:69:85:31:77:fe:9f: 4c:2b:f7:73:fc:30:23:70:e1:d1:d0:76:cc:fa:f3: 13:cb:76:dc:0a:6a:39:40:a6:32:1a:ed:b0:ef:70: ed:a6:ba:69:d2:65:9f:d2:17:a2:73:0c:f8:e1:8e: 49:13:8d:ce:c7:ed:13:9c:b1:15:6d:1d:27:53:58: 96:a2:f4:da:29:4b:4f:43:14:65:e8:96:42:3e:de: 7d:fb:5d:b3:d6:40:3b:dd:83:09:e6:53:08:1d:d5: f8:96:bc:38:fe:82:6f:8f:6b:00:fd:b3:92:a9:e4: 99:67:d0:d3:64:c9:be:ec:fb:1d:72:ed:b0:d0:64: 7b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:BD:BB:C6:0F:5D:2D:CD:A3:0A:6B:2D:D3:7F:02:0F:B6:92:4D:41 X509v3 Authority Key Identifier: keyid:E4:3F:23:D6:89:37:49:42:88:DF:CC:7A:0E:FE:1F:E7:4A:20:36:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D8j1ok3SUKI38x6Dv4f50ogNuE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/ab5fdc-9d6b-4675-9a13-9d185f738211/1/Ir27xg9dLc2jCmst038CD7aSTUE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/ab5fdc-9d6b-4675-9a13-9d185f738211/1/5D8j1ok3SUKI38x6Dv4f50ogNuE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.171.0.0/18 193.219.32.0/21 193.219.60.0-193.219.79.255 193.219.152.0-193.219.191.255 IPv6: 2001:778::/32 Signature Algorithm: sha256WithRSAEncryption 53:ba:7c:0c:23:a0:1f:72:56:cf:41:a4:7e:d6:de:31:a6:83: c2:87:bb:a1:87:d9:57:1a:ce:eb:0b:17:ce:09:3d:2b:b9:17: 54:b7:09:10:dd:fd:ce:4a:1e:fa:fb:7e:51:ff:1c:81:f2:aa: d5:00:77:2a:d9:ff:c4:ff:22:4f:6b:d8:38:73:3b:d1:28:ce: ee:b3:70:0a:5b:e4:83:ac:5b:1b:11:e3:a3:bb:be:83:19:ea: 57:d2:11:7c:1f:6e:f5:e0:cd:a4:31:da:44:7f:a7:43:14:11: 8d:42:cc:d5:d9:7a:91:fd:b4:ec:ac:ee:30:a9:05:24:ee:aa: 64:de:c7:8c:30:57:8f:69:d1:0f:ee:84:b7:be:10:41:25:3b: 9d:7d:ad:a7:0b:a7:6f:c5:ab:1f:81:16:a4:a2:85:8b:4e:45: 73:f2:db:c3:db:bc:57:6f:3d:54:6a:52:75:bf:62:9b:a4:fe: 4a:0b:98:96:a5:e0:42:a3:bd:be:a9:43:3f:2b:d9:b6:dc:b8: ed:19:2c:0e:19:d7:e4:6c:c3:c6:79:d1:60:09:31:c7:c9:ff: 3c:a6:be:23:3b:bd:39:4f:cb:a6:2e:53:ad:4b:b2:75:11:6b: 86:dd:f6:b3:e6:7b:d0:fb:74:3c:42:92:74:30:b7:99:ec:a0: 5d:ab:6d:32 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISAZt5frXxr3+vTegaTMAfk3CPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0M2YyM2Q2ODkzNzQ5NDI4OGRmY2M3YTBlZmUxZmU3NGEy MDM2ZTEwHhcNMjYwMTAxMTIxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmJkYmJjNjBmNWQyZGNkYTMwYTZiMmRkMzdmMDIwZmI2OTI0ZDQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8jGXE56prGsXRZmC00i3g2HcVgC+ HtqIxi0VgzMlw34hPoWd66MSAUh2/QwY9HimAG38hUg6ePcoKA7xVwrs/4xkmymM h9jhaBH3XN/Bzsk1VIWTgapOuMAa6gHuqsBKiFXMkY2Y7Jkc8QfpAdC5PIYRP92H CqoTrwCoa1WnHhtphTF3/p9MK/dz/DAjcOHR0HbM+vMTy3bcCmo5QKYyGu2w73Dt prpp0mWf0heicwz44Y5JE43Ox+0TnLEVbR0nU1iWovTaKUtPQxRl6JZCPt59+12z 1kA73YMJ5lMIHdX4lrw4/oJvj2sA/bOSqeSZZ9DTZMm+7Psdcu2w0GR70wIDAQAB o4ICOjCCAjYwHQYDVR0OBBYEFCK9u8YPXS3NowprLdN/Ag+2kk1BMB8GA1UdIwQY MBaAFOQ/I9aJN0lCiN/Meg7+H+dKIDbhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUQ4ajFvazNTVUtJMzh4NkR2NGY1MG9nTnVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9hYjVmZGMtOWQ2Yi00Njc1LTlhMTMt OWQxODVmNzM4MjExLzEvSXIyN3hnOWRMYzJqQ21zdDAzOENEN2FTVFVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9hYjVmZGMtOWQ2Yi00Njc1LTlhMTMtOWQxODVmNzM4MjEx LzEvNUQ4ajFvazNTVUtJMzh4NkR2NGY1MG9nTnVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzAuBAIAATAoAwQGU6sAAwQD wdsgMAwDBALB2zwDBATB20AwDAMEA8HbmAMEBsHbgDANBAIAAjAHAwUAIAEHeDAN BgkqhkiG9w0BAQsFAAOCAQEAU7p8DCOgH3JWz0GkftbeMaaDwoe7oYfZVxrO6wsX zgk9K7kXVLcJEN39zkoe+vt+Uf8cgfKq1QB3Ktn/xP8iT2vYOHM70SjO7rNwClvk g6xbGxHjo7u+gxnqV9IRfB9u9eDNpDHaRH+nQxQRjULM1dl6kf207KzuMKkFJO6q ZN7HjDBXj2nRD+6Et74QQSU7nX2tpwunb8WrH4EWpKKFi05Fc/Lbw9u8V289VGpS db9im6T+SguYlqXgQqO9vqlDPyvZtty47RksDhnX5GzDxnnRYAkxx8n/PKa+Izu9 OU/Lpi5TrUuydRFrht32s+Z70Pt0PEKSdDC3meygXattMg== -----END CERTIFICATE-----Generated at Tue Feb 10 03:02:10 2026 by rpki-client