This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/IPWNhyQxn8-D80dsDEI3Muy7j4w.roa File: IPWNhyQxn8-D80dsDEI3Muy7j4w.roa (raw, json) Hash identifier: JR2kZnfGEReYvLarJyG91LQRoVZfPpAoA2dBMj0ig2w= Subject key identifier: 20:F5:8D:87:24:31:9F:CF:83:F3:47:6C:0C:42:37:32:EC:BB:8F:8C Certificate issuer: /CN=8d11cb015df9baab61228dbbce17dd4e00e63c13 Certificate serial: 019B7DC98129AB823C82B1678A02EFEB9507 Authority key identifier: 8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/IPWNhyQxn8-D80dsDEI3Muy7j4w.roa Signing time: Fri 02 Jan 2026 08:18:36 +0000 ROA not before: Fri 02 Jan 2026 08:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50214 IP address blocks: 178.171.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.mft rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:81:29:ab:82:3c:82:b1:67:8a:02:ef:eb:95:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8d11cb015df9baab61228dbbce17dd4e00e63c13 Validity Not Before: Jan 2 08:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20f58d8724319fcf83f3476c0c423732ecbb8f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6e:65:72:c1:f6:9a:75:2c:a2:ba:3c:56:32: 40:86:77:52:cf:38:24:73:5c:8c:a3:76:2f:97:ad: 8b:0f:41:6f:99:cc:98:4c:94:ad:a2:8d:ca:d1:ad: 38:cd:df:5b:cd:5d:31:86:a3:88:9a:27:a0:b6:3b: 20:28:0a:67:77:e4:d3:b4:28:fe:53:77:91:ee:ef: 1d:af:19:5f:67:1a:e1:55:74:54:6b:4d:63:5c:00: bd:57:4c:09:28:6c:16:00:73:6d:5b:4e:aa:69:1c: 87:d1:1a:ec:d4:f1:3d:00:ac:26:c1:84:23:aa:01: ca:7f:fe:d5:f0:15:36:87:ab:06:0f:a3:bf:d1:b3: ab:02:9e:d1:99:1a:67:36:21:fe:c9:ef:95:a8:72: 12:2f:ab:89:65:a1:5e:ee:ba:86:e5:6c:a8:4e:36: ae:67:fa:5d:ac:06:e6:e4:65:c6:4e:ad:da:a3:7f: ec:a7:1c:0e:ce:e9:3d:10:9b:3d:dc:1f:39:da:44: 40:f6:10:c5:01:ea:36:3d:e2:ed:e2:bc:92:5d:73: 9f:ae:96:d3:ae:cc:10:3c:98:23:0f:a5:bb:be:de: 7e:1d:e5:da:54:e7:e0:7d:ef:9d:c0:65:47:a1:d2: ce:5a:1c:3e:82:ea:27:99:33:cf:d3:b3:eb:0d:82: a3:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:F5:8D:87:24:31:9F:CF:83:F3:47:6C:0C:42:37:32:EC:BB:8F:8C X509v3 Authority Key Identifier: keyid:8D:11:CB:01:5D:F9:BA:AB:61:22:8D:BB:CE:17:DD:4E:00:E6:3C:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHLAV35uqthIo27zhfdTgDmPBM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/IPWNhyQxn8-D80dsDEI3Muy7j4w.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/5d8915-c448-40e7-8caa-ba771ffd269c/1/jRHLAV35uqthIo27zhfdTgDmPBM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.171.122.0/24 Signature Algorithm: sha256WithRSAEncryption 08:9a:53:f1:ac:1c:e3:ac:e6:e5:f6:03:6f:a3:1e:b7:b8:dc: e5:94:18:2d:2c:0f:db:96:0d:b2:f0:56:ca:07:9e:46:be:fa: 7c:e8:84:2e:0c:e1:55:cb:13:8b:1e:dd:12:c1:47:07:d1:ae: 9b:10:9f:c4:03:d9:78:bc:c0:c0:f1:cb:79:c2:a0:d6:d4:cb: 58:ec:b4:f8:5f:51:14:54:42:80:52:6b:22:a0:d6:e6:61:9f: d8:4a:df:05:d4:7d:1c:87:ba:80:bd:f8:e0:e2:ed:2e:d0:10: 5f:2f:82:2b:b2:37:cd:cc:2d:25:81:c7:83:0d:b1:2d:31:30: fa:48:99:6c:52:fb:b2:d3:86:f5:77:93:af:03:e1:2b:fc:fd: c4:58:a1:9a:ce:d5:b0:5f:da:21:16:5a:64:c3:c1:d4:d0:a9: 1d:c5:20:5d:ab:f9:15:e6:ed:cd:06:43:b1:c9:53:05:56:6c: 1b:7a:0c:db:94:46:8e:c4:60:51:6d:fd:68:fb:d8:ac:28:9b: 75:46:46:34:7e:e7:e6:db:51:fa:71:b7:1b:7e:9c:79:d1:4f: d3:15:76:4b:af:22:a0:67:ec:53:e8:e4:ab:34:d0:a4:bc:5f: f4:50:8a:fc:2d:c1:5c:2c:92:bb:f8:ec:cf:c1:6d:b2:e0:28: ec:5f:c5:9e -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt9yYEpq4I8grFnigLv65UHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhkMTFjYjAxNWRmOWJhYWI2MTIyOGRiYmNlMTdkZDRlMDBl NjNjMTMwHhcNMjYwMTAyMDgxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGY1OGQ4NzI0MzE5ZmNmODNmMzQ3NmMwYzQyMzczMmVjYmI4ZjhjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuW5lcsH2mnUsoro8VjJAhndSzzgk c1yMo3Yvl62LD0FvmcyYTJStoo3K0a04zd9bzV0xhqOImiegtjsgKApnd+TTtCj+ U3eR7u8drxlfZxrhVXRUa01jXAC9V0wJKGwWAHNtW06qaRyH0Rrs1PE9AKwmwYQj qgHKf/7V8BU2h6sGD6O/0bOrAp7RmRpnNiH+ye+VqHISL6uJZaFe7rqG5WyoTjau Z/pdrAbm5GXGTq3ao3/spxwOzuk9EJs93B852kRA9hDFAeo2PeLt4rySXXOfrpbT rswQPJgjD6W7vt5+HeXaVOfgfe+dwGVHodLOWhw+guonmTPP07PrDYKjtQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCD1jYckMZ/Pg/NHbAxCNzLsu4+MMB8GA1UdIwQY MBaAFI0RywFd+bqrYSKNu84X3U4A5jwTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvalJITEFWMzV1cXRoSW8yN3poZmRUZ0RtUEJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni81ZDg5MTUtYzQ0OC00MGU3LThjYWEt YmE3NzFmZmQyNjljLzEvSVBXTmh5UXhuOC1EODBkc0RFSTNNdXk3ajR3LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni81ZDg5MTUtYzQ0OC00MGU3LThjYWEtYmE3NzFmZmQyNjlj LzEvalJITEFWMzV1cXRoSW8yN3poZmRUZ0RtUEJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsqt6MA0G CSqGSIb3DQEBCwUAA4IBAQAImlPxrBzjrObl9gNvox63uNzllBgtLA/blg2y8FbK B55Gvvp86IQuDOFVyxOLHt0SwUcH0a6bEJ/EA9l4vMDA8ct5wqDW1MtY7LT4X1EU VEKAUmsioNbmYZ/YSt8F1H0ch7qAvfjg4u0u0BBfL4IrsjfNzC0lgceDDbEtMTD6 SJlsUvuy04b1d5OvA+Er/P3EWKGaztWwX9ohFlpkw8HU0KkdxSBdq/kV5u3NBkOx yVMFVmwbegzblEaOxGBRbf1o+9isKJt1RkY0fufm21H6cbcbfpx50U/TFXZLryKg Z+xT6OSrNNCkvF/0UIr8LcFcLJK7+OzPwW2y4CjsX8We -----END CERTIFICATE-----Generated at Tue Jan 20 03:37:19 2026 by rpki-client