This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/icGxSXDSLuf3bxPbnWFtv-JBVbs.roa File: icGxSXDSLuf3bxPbnWFtv-JBVbs.roa (raw, json) Hash identifier: J8P/ZDEioxw2f81tNOKgfIU5hZS6uHNCJdz89yqe1hg= Subject key identifier: 89:C1:B1:49:70:D2:2E:E7:F7:6F:13:DB:9D:61:6D:BF:E2:41:55:BB Certificate issuer: /CN=a5472b1473bc781b70440315c83d119c8abc86fc Certificate serial: 019B77C6A7D7D02EDB9E5D5FB0AD7E1F903A Authority key identifier: A5:47:2B:14:73:BC:78:1B:70:44:03:15:C8:3D:11:9C:8A:BC:86:FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pUcrFHO8eBtwRAMVyD0RnIq8hvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/icGxSXDSLuf3bxPbnWFtv-JBVbs.roa Signing time: Thu 01 Jan 2026 04:17:46 +0000 ROA not before: Thu 01 Jan 2026 04:17:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 2860 IP address blocks: 83.223.160.0/19 maxlen: 19 84.23.192.0/19 maxlen: 19 89.109.64.0/18 maxlen: 18 95.172.160.0/19 maxlen: 19 159.255.48.0/20 maxlen: 20 185.80.76.0/22 maxlen: 22 188.125.192.0/19 maxlen: 19 213.138.224.0/19 maxlen: 19 213.190.192.0/19 maxlen: 19 2a00:d180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/pUcrFHO8eBtwRAMVyD0RnIq8hvw.crl rsync://rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/pUcrFHO8eBtwRAMVyD0RnIq8hvw.mft rsync://rpki.ripe.net/repository/DEFAULT/pUcrFHO8eBtwRAMVyD0RnIq8hvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:a7:d7:d0:2e:db:9e:5d:5f:b0:ad:7e:1f:90:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a5472b1473bc781b70440315c83d119c8abc86fc Validity Not Before: Jan 1 04:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89c1b14970d22ee7f76f13db9d616dbfe24155bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:91:a9:00:7c:14:5d:41:16:be:7c:b9:5f:33: 3b:f7:19:c7:54:16:9a:59:18:fb:2f:9b:2a:21:3f: 2c:fd:78:1a:43:4e:0e:0d:7c:ea:0e:e1:da:27:de: e0:44:2d:50:59:ae:c0:f4:9b:a2:18:61:6c:32:9c: 0f:a8:13:4e:c5:56:0e:b7:9c:a3:ae:16:60:ae:bb: 5e:02:62:aa:46:86:8b:e7:54:64:f6:c2:16:a2:8c: e5:b8:9e:ca:69:a1:91:bf:fb:21:7d:56:ac:db:d4: 0f:70:cf:81:f1:74:64:97:79:3b:bd:15:75:4d:a1: 1d:47:d2:aa:ab:1d:45:83:05:23:4b:27:46:84:67: 89:27:b1:7d:50:b8:6d:c5:58:8d:ee:87:dd:c0:13: 1c:40:c0:dd:b4:b2:f8:cc:a5:2f:5e:69:49:28:5b: 3e:b9:b5:27:87:06:ba:01:46:1a:dd:bf:2b:ac:00: 8e:cf:2d:b9:c7:54:08:32:6c:4e:07:49:60:3e:77: 6d:71:56:11:5c:f5:ba:76:4e:b8:08:c8:3c:60:6f: e1:73:02:4e:de:31:ed:3d:d9:cf:cb:d6:c3:8a:e3: 5b:00:26:3e:a8:8f:49:e7:16:35:4c:15:94:95:34: 45:75:66:cb:8c:08:11:61:bf:f3:40:77:0b:42:d6: aa:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C1:B1:49:70:D2:2E:E7:F7:6F:13:DB:9D:61:6D:BF:E2:41:55:BB X509v3 Authority Key Identifier: keyid:A5:47:2B:14:73:BC:78:1B:70:44:03:15:C8:3D:11:9C:8A:BC:86:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pUcrFHO8eBtwRAMVyD0RnIq8hvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/icGxSXDSLuf3bxPbnWFtv-JBVbs.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/51/30112f-0e9d-4fc8-b854-b1565b255854/1/pUcrFHO8eBtwRAMVyD0RnIq8hvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.223.160.0/19 84.23.192.0/19 89.109.64.0/18 95.172.160.0/19 159.255.48.0/20 185.80.76.0/22 188.125.192.0/19 213.138.224.0/19 213.190.192.0/19 IPv6: 2a00:d180::/32 Signature Algorithm: sha256WithRSAEncryption 3b:33:44:da:08:32:b4:10:8e:65:7f:8a:79:71:12:11:ab:cd: c2:d0:e6:98:0e:b3:2b:78:f3:b5:7e:e8:f5:a6:e2:8a:2e:89: da:b5:53:6c:f5:74:ec:a4:90:35:7d:e1:e4:28:76:23:30:1d: 07:85:a2:fa:d1:9f:11:46:96:72:d5:08:9a:6f:5a:32:ab:88: 18:c2:b9:eb:21:d8:85:5a:89:eb:59:99:33:c4:0c:36:9a:5c: 9a:f4:c0:ee:d9:b9:0c:0f:03:90:4b:e1:fc:9d:e4:a8:b2:ee: 3c:54:48:ea:ad:51:a9:07:3e:40:64:14:7e:ac:c3:ee:0b:d4: 89:08:5b:9b:c3:3a:0b:e8:3a:b8:b7:cc:6a:32:23:c2:5d:ba: b9:ac:80:47:b5:b7:8d:2d:cf:36:c1:ff:4c:58:cf:f5:cd:da: 1b:61:05:e8:7e:6d:cf:0d:fa:69:31:33:96:b8:30:ed:cd:7a: db:21:8f:56:7a:74:71:31:ad:c0:f6:76:b0:79:fc:2b:d9:a0: bd:56:cc:f3:94:a6:14:f6:ad:05:85:32:da:52:08:a1:3f:28: d3:dc:a8:49:12:1e:86:30:aa:d9:94:8a:09:d2:21:5f:8c:c7: 9b:4e:f1:03:a0:98:a9:af:20:91:e0:b8:2d:32:66:53:85:94: 8e:d4:a3:df -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgISAZt3xqfX0C7bnl1fsK1+H5A6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE1NDcyYjE0NzNiYzc4MWI3MDQ0MDMxNWM4M2QxMTljOGFi Yzg2ZmMwHhcNMjYwMTAxMDQxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWMxYjE0OTcwZDIyZWU3Zjc2ZjEzZGI5ZDYxNmRiZmUyNDE1NWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0JGpAHwUXUEWvny5XzM79xnHVBaa WRj7L5sqIT8s/XgaQ04ODXzqDuHaJ97gRC1QWa7A9JuiGGFsMpwPqBNOxVYOt5yj rhZgrrteAmKqRoaL51Rk9sIWoozluJ7KaaGRv/shfVas29QPcM+B8XRkl3k7vRV1 TaEdR9Kqqx1FgwUjSydGhGeJJ7F9ULhtxViN7ofdwBMcQMDdtLL4zKUvXmlJKFs+ ubUnhwa6AUYa3b8rrACOzy25x1QIMmxOB0lgPndtcVYRXPW6dk64CMg8YG/hcwJO 3jHtPdnPy9bDiuNbACY+qI9J5xY1TBWUlTRFdWbLjAgRYb/zQHcLQtaqRQIDAQAB o4ICSDCCAkQwHQYDVR0OBBYEFInBsUlw0i7n928T251hbb/iQVW7MB8GA1UdIwQY MBaAFKVHKxRzvHgbcEQDFcg9EZyKvIb8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcFVjckZITzhlQnR3UkFNVnlEMFJuSXE4aHZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8zMDExMmYtMGU5ZC00ZmM4LWI4NTQt YjE1NjViMjU1ODU0LzEvaWNHeFNYRFNMdWYzYnhQYm5XRnR2LUpCVmJzLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MS8zMDExMmYtMGU5ZC00ZmM4LWI4NTQtYjE1NjViMjU1ODU0 LzEvcFVjckZITzhlQnR3UkFNVnlEMFJuSXE4aHZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQFU9+gAwQF VBfAAwQGWW1AAwQFX6ygAwQEn/8wAwQCuVBMAwQFvH3AAwQF1YrgAwQF1b7AMA0E AgACMAcDBQAqANGAMA0GCSqGSIb3DQEBCwUAA4IBAQA7M0TaCDK0EI5lf4p5cRIR q83C0OaYDrMrePO1fuj1puKKLonatVNs9XTspJA1feHkKHYjMB0HhaL60Z8RRpZy 1Qiab1oyq4gYwrnrIdiFWonrWZkzxAw2mlya9MDu2bkMDwOQS+H8neSosu48VEjq rVGpBz5AZBR+rMPuC9SJCFubwzoL6Dq4t8xqMiPCXbq5rIBHtbeNLc82wf9MWM/1 zdobYQXofm3PDfppMTOWuDDtzXrbIY9WenRxMa3A9nawefwr2aC9VszzlKYU9q0F hTLaUgihPyjT3KhJEh6GMKrZlIoJ0iFfjMebTvEDoJipryCR4LgtMmZThZSO1KPf -----END CERTIFICATE-----Generated at Wed Jan 21 13:17:50 2026 by rpki-client