This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/iWfVpt8qyWupkH9yoatFfGG_2CI.roa File: iWfVpt8qyWupkH9yoatFfGG_2CI.roa (raw, json) Hash identifier: l0XaFspVIh+Z8KH4+tmuHJwuVwG7HsPB3cPIWpVhJAU= Subject key identifier: 89:67:D5:A6:DF:2A:C9:6B:A9:90:7F:72:A1:AB:45:7C:61:BF:D8:22 Certificate issuer: /CN=5be39da3aaa52d130ff074fb049221966d2b57c6 Certificate serial: 019B7AC805BA5A544F556520855F95EE0B18 Authority key identifier: 5B:E3:9D:A3:AA:A5:2D:13:0F:F0:74:FB:04:92:21:96:6D:2B:57:C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/iWfVpt8qyWupkH9yoatFfGG_2CI.roa Signing time: Thu 01 Jan 2026 18:18:07 +0000 ROA not before: Thu 01 Jan 2026 18:18:07 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 208240 IP address blocks: 193.176.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.mft rsync://rpki.ripe.net/repository/DEFAULT/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:05:ba:5a:54:4f:55:65:20:85:5f:95:ee:0b:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5be39da3aaa52d130ff074fb049221966d2b57c6 Validity Not Before: Jan 1 18:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8967d5a6df2ac96ba9907f72a1ab457c61bfd822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d4:60:37:de:d8:ad:ac:49:22:b4:e9:be:32: 6c:6d:cd:42:11:e0:0f:51:b8:86:d6:85:63:5d:0a: 1d:c5:22:48:9b:0a:1f:37:a6:10:23:7b:a1:ad:87: 23:6d:c0:f0:ef:31:89:ff:16:9e:7a:91:5d:db:6d: 14:11:cc:e4:4c:e7:de:d7:a9:b5:c1:ee:4c:7d:f8: 74:72:0e:3a:c0:7c:93:b7:d0:0a:cb:85:19:23:f2: ad:2b:91:49:1a:29:40:32:cd:d0:ec:fa:40:a7:bb: 8e:a2:47:16:c3:a1:2d:6e:01:e7:80:6d:60:71:2a: 1d:42:32:f5:8b:08:65:31:02:27:cb:5a:d1:69:59: b3:b2:19:21:9c:16:d2:9a:29:de:e5:e2:b7:c6:2e: 67:0c:4d:73:4d:93:08:6c:4c:b5:8e:c0:89:b9:fe: 85:54:17:7c:4f:c7:1d:86:1d:a0:2d:23:19:32:1b: 80:5b:1a:12:be:dc:71:c4:5a:8f:2e:0a:f2:94:8e: 1a:9a:94:3d:d7:29:f2:a8:b8:73:77:e1:38:2a:09: c9:16:5f:b7:76:cd:d2:e2:db:4f:51:0c:d6:b0:8d: 53:53:a5:65:7e:50:0b:11:25:37:77:7a:39:2c:1a: 6d:c9:9a:b0:0d:71:09:85:ec:7c:d0:fd:b7:f8:97: 7c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:67:D5:A6:DF:2A:C9:6B:A9:90:7F:72:A1:AB:45:7C:61:BF:D8:22 X509v3 Authority Key Identifier: keyid:5B:E3:9D:A3:AA:A5:2D:13:0F:F0:74:FB:04:92:21:96:6D:2B:57:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/iWfVpt8qyWupkH9yoatFfGG_2CI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/b1e66a-516b-4d64-a645-e872c0d408a3/1/W-Odo6qlLRMP8HT7BJIhlm0rV8Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.176.221.0/24 Signature Algorithm: sha256WithRSAEncryption 77:11:05:cc:3c:0b:58:fa:fc:43:00:1b:4c:b9:17:5e:47:74: c8:ba:a8:d5:ba:d1:08:61:c1:47:48:54:28:6b:e1:e1:65:00: 5a:54:7b:54:6c:77:0f:86:ef:00:b1:f5:e7:ca:07:fe:e1:0a: 4f:13:27:0b:24:84:85:43:95:05:c4:a2:b7:62:f4:c4:50:1b: 1e:30:d1:2c:13:bb:76:fb:b2:71:8e:da:ff:48:64:7d:f6:2a: 8b:7d:1c:82:05:53:e3:40:7d:db:7c:40:f5:02:8c:9a:93:dc: 02:bf:10:68:fe:12:96:d9:73:06:0f:88:ad:8e:72:5a:99:21: 88:d9:b8:24:86:3a:a8:48:14:aa:5a:cb:0b:bf:35:e0:c5:6c: 56:f5:0d:3e:8e:67:ae:48:1b:f8:0b:e0:3e:ba:0f:14:76:06: 48:a2:2d:cd:fb:47:33:19:7c:6f:54:8b:78:21:72:a7:ed:97: 89:9a:11:c0:c7:60:35:d7:f6:e2:28:30:75:98:27:b3:c3:f1: 06:c1:3e:7d:48:0c:a2:61:ec:0a:5c:2d:14:a3:18:af:14:5c: 80:82:90:36:b8:a8:ba:22:9a:37:5a:55:f0:46:8f:a3:86:7a: 89:83:80:dd:bb:d4:7f:b5:45:66:7c:43:2f:54:d5:c8:9e:35: 81:b8:d8:0f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt6yAW6WlRPVWUghV+V7gsYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViZTM5ZGEzYWFhNTJkMTMwZmYwNzRmYjA0OTIyMTk2NmQy YjU3YzYwHhcNMjYwMTAxMTgxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTY3ZDVhNmRmMmFjOTZiYTk5MDdmNzJhMWFiNDU3YzYxYmZkODIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1dRgN97YraxJIrTpvjJsbc1CEeAP UbiG1oVjXQodxSJImwofN6YQI3uhrYcjbcDw7zGJ/xaeepFd220UEczkTOfe16m1 we5Mffh0cg46wHyTt9AKy4UZI/KtK5FJGilAMs3Q7PpAp7uOokcWw6EtbgHngG1g cSodQjL1iwhlMQIny1rRaVmzshkhnBbSmine5eK3xi5nDE1zTZMIbEy1jsCJuf6F VBd8T8cdhh2gLSMZMhuAWxoSvtxxxFqPLgrylI4ampQ91ynyqLhzd+E4KgnJFl+3 ds3S4ttPUQzWsI1TU6VlflALESU3d3o5LBptyZqwDXEJhex80P23+Jd8jQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIln1abfKslrqZB/cqGrRXxhv9giMB8GA1UdIwQY MBaAFFvjnaOqpS0TD/B0+wSSIZZtK1fGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVy1PZG82cWxMUk1QOEhUN0JKSWhsbTByVjhZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9iMWU2NmEtNTE2Yi00ZDY0LWE2NDUt ZTg3MmMwZDQwOGEzLzEvaVdmVnB0OHF5V3Vwa0g5eW9hdEZmR0dfMkNJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9iMWU2NmEtNTE2Yi00ZDY0LWE2NDUtZTg3MmMwZDQwOGEz LzEvVy1PZG82cWxMUk1QOEhUN0JKSWhsbTByVjhZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbDdMA0G CSqGSIb3DQEBCwUAA4IBAQB3EQXMPAtY+vxDABtMuRdeR3TIuqjVutEIYcFHSFQo a+HhZQBaVHtUbHcPhu8AsfXnygf+4QpPEycLJISFQ5UFxKK3YvTEUBseMNEsE7t2 +7Jxjtr/SGR99iqLfRyCBVPjQH3bfED1Aoyak9wCvxBo/hKW2XMGD4itjnJamSGI 2bgkhjqoSBSqWssLvzXgxWxW9Q0+jmeuSBv4C+A+ug8UdgZIoi3N+0czGXxvVIt4 IXKn7ZeJmhHAx2A11/biKDB1mCezw/EGwT59SAyiYewKXC0UoxivFFyAgpA2uKi6 Ipo3WlXwRo+jhnqJg4Ddu9R/tUVmfEMvVNXInjWBuNgP -----END CERTIFICATE-----Generated at Tue Jan 20 07:46:03 2026 by rpki-client