This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/irQyC0ot9r4PxzPSLvST2QH-X0Q.roa File: irQyC0ot9r4PxzPSLvST2QH-X0Q.roa (raw, json) Hash identifier: kwnqay2aLOiYKa/WS1eZrTNeCkIkn0WSXDieMB7/M7Y= Subject key identifier: 8A:B4:32:0B:4A:2D:F6:BE:0F:C7:33:D2:2E:F4:93:D9:01:FE:5F:44 Certificate issuer: /CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a Certificate serial: 019B7C7FE90BA16B9C9BD6BB90BDF8F3DF12 Authority key identifier: 65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/irQyC0ot9r4PxzPSLvST2QH-X0Q.roa Signing time: Fri 02 Jan 2026 02:18:36 +0000 ROA not before: Fri 02 Jan 2026 02:18:36 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209525 IP address blocks: 194.147.248.0/24 maxlen: 24 2a10:1940::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.crl rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.mft rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:e9:0b:a1:6b:9c:9b:d6:bb:90:bd:f8:f3:df:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a Validity Not Before: Jan 2 02:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8ab4320b4a2df6be0fc733d22ef493d901fe5f44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:29:60:f7:ba:42:77:d0:85:01:5d:d2:a5:e7: 45:d7:0e:e2:01:1f:8b:36:cb:52:a6:5a:a3:5f:7c: 59:5a:09:ed:cc:70:12:6e:cb:0d:3a:90:5e:84:2e: 61:2f:57:96:30:0d:cd:ce:a5:dd:33:bd:53:3d:e2: f1:c0:b3:75:57:93:c0:9b:08:7b:ff:2a:2b:6a:9e: a9:4c:63:e9:a1:bb:bb:59:8f:b4:bd:21:37:42:45: 90:55:b2:c1:86:c9:0b:7e:ad:7b:d4:ab:bb:9a:d5: a9:07:12:76:e2:19:ab:7a:6b:51:8b:13:fc:6f:13: ca:ce:d7:57:dc:ca:9b:ee:87:00:ce:3b:a5:78:56: e3:91:53:1e:30:55:fb:30:0a:0b:65:d8:6d:9c:7b: d8:c9:24:6e:85:32:96:2b:6b:af:11:ca:76:3a:7d: 53:39:68:bd:4e:5b:3a:2e:53:da:a7:59:a0:2f:a5: 6e:99:f4:04:da:3e:44:ad:69:90:8d:9a:d5:02:af: 56:75:5a:86:b3:28:37:12:bf:22:67:e6:14:0c:ac: f3:28:cd:75:87:ef:40:08:e5:2b:32:9d:83:b5:b3: d1:3f:28:5b:3d:80:bd:8a:c7:bd:47:b2:20:92:76: a2:5e:62:5a:08:94:7b:19:30:8e:23:9d:66:3c:ab: 53:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B4:32:0B:4A:2D:F6:BE:0F:C7:33:D2:2E:F4:93:D9:01:FE:5F:44 X509v3 Authority Key Identifier: keyid:65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/irQyC0ot9r4PxzPSLvST2QH-X0Q.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.147.248.0/24 IPv6: 2a10:1940::/32 Signature Algorithm: sha256WithRSAEncryption 68:b3:db:0d:4c:22:47:c5:8e:bd:94:a1:22:6c:2a:bb:aa:ff: 5d:3e:39:d2:32:77:c9:10:7a:fc:bd:50:ce:72:08:b5:2a:9c: 46:f1:0c:63:2e:f9:a5:7c:17:68:6e:de:c9:b5:2c:61:b6:6a: 9c:16:5b:3d:3c:41:4d:df:82:b4:5d:b5:d4:08:66:a5:e8:7c: 57:28:ee:c5:60:63:d0:05:61:4f:1c:c8:b1:40:9e:39:d8:06: 4f:f4:ca:8e:7d:b9:f2:de:02:72:87:87:37:dc:80:be:e8:bf: 2c:09:60:af:8b:62:ad:3e:39:75:4f:30:f3:69:53:c1:72:96: 93:64:41:e3:6b:8e:34:2c:45:ea:c5:00:80:65:4c:ae:a3:3a: 8b:bb:8f:f0:c7:d3:36:01:97:00:12:ce:ef:19:67:b0:34:50: 9e:f7:3d:bb:4b:72:c2:90:f4:44:6b:be:52:73:2f:22:96:7e: 2b:a7:38:ab:e1:b2:18:39:c5:a0:6f:67:dc:c0:db:96:22:e1: 1d:91:51:4e:90:4c:79:85:0e:a7:0f:46:b0:59:e1:af:47:2b: 51:59:44:1b:ac:b2:6a:c6:ae:80:a1:9d:06:bd:f6:0a:f9:31: a6:f4:e2:64:f3:60:b0:fc:ab:e2:27:d5:33:02:a1:76:9b:2d: 93:55:2f:b3 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt8f+kLoWucm9a7kL34898SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1OGMwYzQ5OWE4ZTY5ZDk3OTVmNGJkMGI1YmYxNjgyYjFm MDBmOWEwHhcNMjYwMTAyMDIxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YWI0MzIwYjRhMmRmNmJlMGZjNzMzZDIyZWY0OTNkOTAxZmU1ZjQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnSlg97pCd9CFAV3SpedF1w7iAR+L NstSplqjX3xZWgntzHASbssNOpBehC5hL1eWMA3NzqXdM71TPeLxwLN1V5PAmwh7 /yorap6pTGPpobu7WY+0vSE3QkWQVbLBhskLfq171Ku7mtWpBxJ24hmremtRixP8 bxPKztdX3Mqb7ocAzjuleFbjkVMeMFX7MAoLZdhtnHvYySRuhTKWK2uvEcp2On1T OWi9Tls6LlPap1mgL6VumfQE2j5ErWmQjZrVAq9WdVqGsyg3Er8iZ+YUDKzzKM11 h+9ACOUrMp2DtbPRPyhbPYC9ise9R7IgknaiXmJaCJR7GTCOI51mPKtTSQIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFIq0MgtKLfa+D8cz0i70k9kB/l9EMB8GA1UdIwQY MBaAFGWMDEmajmnZeV9L0LW/FoKx8A+aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWll3TVNacU9hZGw1WDB2UXRiOFdnckh3RDVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny9lNjY5MTMtOGY1Zi00N2VmLWE3MzAt MzJjMWIyY2VlNTkzLzEvaXJReUMwb3Q5cjRQeHpQU0x2U1QyUUgtWDBRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ny9lNjY5MTMtOGY1Zi00N2VmLWE3MzAtMzJjMWIyY2VlNTkz LzEvWll3TVNacU9hZGw1WDB2UXRiOFdnckh3RDVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAwpP4MA0E AgACMAcDBQAqEBlAMA0GCSqGSIb3DQEBCwUAA4IBAQBos9sNTCJHxY69lKEibCq7 qv9dPjnSMnfJEHr8vVDOcgi1KpxG8QxjLvmlfBdobt7JtSxhtmqcFls9PEFN34K0 XbXUCGal6HxXKO7FYGPQBWFPHMixQJ452AZP9MqOfbny3gJyh4c33IC+6L8sCWCv i2KtPjl1TzDzaVPBcpaTZEHja440LEXqxQCAZUyuozqLu4/wx9M2AZcAEs7vGWew NFCe9z27S3LCkPREa75Scy8iln4rpzir4bIYOcWgb2fcwNuWIuEdkVFOkEx5hQ6n D0awWeGvRytRWUQbrLJqxq6AoZ0GvfYK+TGm9OJk82Cw/KviJ9UzAqF2my2TVS+z -----END CERTIFICATE-----Generated at Mon Feb 9 20:05:15 2026 by rpki-client