This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/I_M6lO4tAmUm__5FNzdwyt93cqM.roa File: I_M6lO4tAmUm__5FNzdwyt93cqM.roa (raw, json) Hash identifier: TcMDFeSDJGS7lT8MTqvKQN5ev54Bp4w8WBiO0GeJaRM= Subject key identifier: 23:F3:3A:94:EE:2D:02:65:26:FF:FE:45:37:37:70:CA:DF:77:72:A3 Certificate issuer: /CN=1f2cb35b874780cb93dc44210b9d79d6ed94fe5e Certificate serial: 019B7DCB65945A2CF8845678047B9AF7D213 Authority key identifier: 1F:2C:B3:5B:87:47:80:CB:93:DC:44:21:0B:9D:79:D6:ED:94:FE:5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HyyzW4dHgMuT3EQhC5151u2U_l4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/I_M6lO4tAmUm__5FNzdwyt93cqM.roa Signing time: Fri 02 Jan 2026 08:20:40 +0000 ROA not before: Fri 02 Jan 2026 08:20:40 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 197745 IP address blocks: 217.196.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/HyyzW4dHgMuT3EQhC5151u2U_l4.crl rsync://rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/HyyzW4dHgMuT3EQhC5151u2U_l4.mft rsync://rpki.ripe.net/repository/DEFAULT/HyyzW4dHgMuT3EQhC5151u2U_l4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:65:94:5a:2c:f8:84:56:78:04:7b:9a:f7:d2:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1f2cb35b874780cb93dc44210b9d79d6ed94fe5e Validity Not Before: Jan 2 08:20:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=23f33a94ee2d026526fffe45373770cadf7772a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:39:8a:72:56:be:7b:c8:a7:44:0d:9c:ae:ae: 31:54:7e:79:78:6e:b3:8c:7f:a2:26:df:c6:8f:10: df:67:4f:85:8d:02:65:c3:b2:75:a0:01:89:bc:85: e0:b7:ae:e9:5b:52:c3:fd:e4:27:8e:14:63:42:7c: 2f:fa:8c:3d:c3:45:d1:b8:c8:f7:bc:e3:3d:05:e6: f3:ae:a5:95:5e:15:9b:ae:b0:07:24:40:d3:18:cb: 92:ee:fb:11:2d:1e:4f:55:d5:d3:cd:6b:a8:8b:d8: 24:93:f0:93:5c:ca:86:75:25:7a:46:42:e0:ad:1a: e6:4a:9b:01:58:b2:15:85:a5:80:1f:83:8d:d3:2e: ff:47:5a:3f:4f:7e:bf:83:de:76:74:62:bc:8e:7c: 02:12:71:a1:2e:c0:d0:6c:6c:2d:4e:72:71:5a:a4: 32:ac:f7:c9:1f:06:3b:88:4e:fe:75:a2:ef:be:0f: ef:f7:60:da:5a:4f:17:54:99:12:87:d5:c3:29:28: b1:be:ef:a6:17:54:30:2a:6c:bb:9e:52:10:b3:66: ed:4d:cb:6d:13:a4:6a:35:e6:5e:f6:68:27:0e:ab: db:10:41:74:2b:88:7c:14:4d:f8:6c:ba:45:20:86: 7c:2a:9d:78:a6:d9:03:32:47:eb:8c:66:f4:dd:7e: 4e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:F3:3A:94:EE:2D:02:65:26:FF:FE:45:37:37:70:CA:DF:77:72:A3 X509v3 Authority Key Identifier: keyid:1F:2C:B3:5B:87:47:80:CB:93:DC:44:21:0B:9D:79:D6:ED:94:FE:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HyyzW4dHgMuT3EQhC5151u2U_l4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/I_M6lO4tAmUm__5FNzdwyt93cqM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/f0372a-c332-485f-b293-a6d2684a9425/1/HyyzW4dHgMuT3EQhC5151u2U_l4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 217.196.184.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:3a:09:3a:13:15:8b:a4:c8:a2:95:22:c1:ee:69:74:fb:ca: b4:76:55:47:83:bd:92:4c:97:20:98:71:ed:9b:99:cb:eb:b6: df:b2:7b:c2:82:ad:61:1b:d8:f1:5f:fe:1f:be:0d:5f:78:6c: a8:f7:fb:b4:20:36:31:69:bf:bd:3b:8d:f1:57:24:0e:42:9e: 64:47:4b:c3:42:19:45:64:b6:be:b0:6f:4b:bf:b6:53:a0:9c: 77:d9:c1:27:c8:b3:eb:a5:e4:30:1e:a2:29:2f:5d:ea:3d:74: 18:40:05:39:ee:99:f9:68:5c:33:fc:b5:93:cd:d2:97:2d:7b: a6:cd:b0:a8:78:35:df:12:2d:4c:0c:6c:3f:3b:02:0e:ff:c4: 6d:a4:df:c8:b6:c6:e8:b9:26:3b:25:97:0d:42:81:84:3d:1c: 3d:fc:47:87:a8:45:55:c7:93:d6:78:22:ed:c6:27:92:4c:58: e3:d1:80:2e:f9:e8:e1:41:06:00:93:6a:fa:99:58:a8:6c:48: 03:c7:32:a3:21:f2:19:27:13:fe:91:a4:5b:6a:25:37:84:b4: 80:0e:48:dc:74:99:dc:96:c4:9e:84:e9:4b:b5:db:ba:57:b9: b8:89:21:aa:ff:d3:98:65:c8:a7:6b:4f:8c:29:30:90:a9:71: a1:50:ab:d1 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9y2WUWiz4hFZ4BHua99ITMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmMmNiMzViODc0NzgwY2I5M2RjNDQyMTBiOWQ3OWQ2ZWQ5 NGZlNWUwHhcNMjYwMTAyMDgyMDQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyM2YzM2E5NGVlMmQwMjY1MjZmZmZlNDUzNzM3NzBjYWRmNzc3MmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTmKcla+e8inRA2crq4xVH55eG6z jH+iJt/GjxDfZ0+FjQJlw7J1oAGJvIXgt67pW1LD/eQnjhRjQnwv+ow9w0XRuMj3 vOM9BebzrqWVXhWbrrAHJEDTGMuS7vsRLR5PVdXTzWuoi9gkk/CTXMqGdSV6RkLg rRrmSpsBWLIVhaWAH4ON0y7/R1o/T36/g952dGK8jnwCEnGhLsDQbGwtTnJxWqQy rPfJHwY7iE7+daLvvg/v92DaWk8XVJkSh9XDKSixvu+mF1QwKmy7nlIQs2btTctt E6RqNeZe9mgnDqvbEEF0K4h8FE34bLpFIIZ8Kp14ptkDMkfrjGb03X5OLQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCPzOpTuLQJlJv/+RTc3cMrfd3KjMB8GA1UdIwQY MBaAFB8ss1uHR4DLk9xEIQudedbtlP5eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSHl5elc0ZEhnTXVUM0VRaEM1MTUxdTJVX2w0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9mMDM3MmEtYzMzMi00ODVmLWIyOTMt YTZkMjY4NGE5NDI1LzEvSV9NNmxPNHRBbVVtX181Rk56ZHd5dDkzY3FNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZC9mMDM3MmEtYzMzMi00ODVmLWIyOTMtYTZkMjY4NGE5NDI1 LzEvSHl5elc0ZEhnTXVUM0VRaEM1MTUxdTJVX2w0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD2cS4MA0G CSqGSIb3DQEBCwUAA4IBAQBOOgk6ExWLpMiilSLB7ml0+8q0dlVHg72STJcgmHHt m5nL67bfsnvCgq1hG9jxX/4fvg1feGyo9/u0IDYxab+9O43xVyQOQp5kR0vDQhlF ZLa+sG9Lv7ZToJx32cEnyLPrpeQwHqIpL13qPXQYQAU57pn5aFwz/LWTzdKXLXum zbCoeDXfEi1MDGw/OwIO/8RtpN/ItsbouSY7JZcNQoGEPRw9/EeHqEVVx5PWeCLt xieSTFjj0YAu+ejhQQYAk2r6mViobEgDxzKjIfIZJxP+kaRbaiU3hLSADkjcdJnc lsSehOlLtdu6V7m4iSGq/9OYZcina0+MKTCQqXGhUKvR -----END CERTIFICATE-----Generated at Mon Feb 9 21:25:16 2026 by rpki-client