This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/iDGkEHzaPIBC_ltNyeNPjxHWcLQ.roa File: iDGkEHzaPIBC_ltNyeNPjxHWcLQ.roa (raw, json) Hash identifier: m+RgaOaS95hD5eR5RGnGQAMM12oNRJddtp+/tKr5w0I= Subject key identifier: 88:31:A4:10:7C:DA:3C:80:42:FE:5B:4D:C9:E3:4F:8F:11:D6:70:B4 Certificate issuer: /CN=1faacab8e456bb291979a7357a7024f00bebaaf5 Certificate serial: 019C2F4D2D52F4DB18D3AF49493A222D0464 Authority key identifier: 1F:AA:CA:B8:E4:56:BB:29:19:79:A7:35:7A:70:24:F0:0B:EB:AA:F5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6rKuORWuykZeac1enAk8AvrqvU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/iDGkEHzaPIBC_ltNyeNPjxHWcLQ.roa Signing time: Thu 05 Feb 2026 19:35:12 +0000 ROA not before: Thu 05 Feb 2026 19:35:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216357 IP address blocks: 66.33.37.0/24 maxlen: 24 2a14:3b41::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/H6rKuORWuykZeac1enAk8AvrqvU.crl rsync://rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/H6rKuORWuykZeac1enAk8AvrqvU.mft rsync://rpki.ripe.net/repository/DEFAULT/H6rKuORWuykZeac1enAk8AvrqvU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2f:4d:2d:52:f4:db:18:d3:af:49:49:3a:22:2d:04:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1faacab8e456bb291979a7357a7024f00bebaaf5 Validity Not Before: Feb 5 19:35:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8831a4107cda3c8042fe5b4dc9e34f8f11d670b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9b:e1:7e:f2:6f:bb:1c:3c:0d:13:55:3d:a1: c4:f2:b7:23:62:7c:2f:43:9d:46:a3:53:21:90:46: 92:7e:23:cb:9c:2f:71:eb:fe:5a:c6:6f:2e:56:b2: cf:99:27:7b:4a:ec:06:f9:d2:8e:40:2d:6d:47:36: 66:8a:3e:51:1e:66:80:90:22:37:a0:3d:6a:3e:78: 98:a9:31:1c:76:46:36:4c:30:b6:07:67:4a:b1:1a: ac:15:35:86:da:9c:2c:a5:04:c1:aa:64:9f:8c:7c: 7b:00:d1:f5:18:eb:91:7b:d5:c5:3f:4f:06:34:a2: 31:d6:ae:a7:b6:f5:e7:94:9e:2c:fd:cf:1b:f0:89: 8f:f8:45:5e:db:77:73:45:27:c7:07:4b:41:64:12: 0e:70:e1:77:94:12:5c:03:56:f9:55:ee:cd:e8:bf: 5f:4a:2d:55:62:3d:40:fd:fb:f1:97:b4:f8:71:ca: 71:fb:88:d8:d3:4a:7a:be:b2:6f:92:2c:3b:e1:c4: 36:6e:cd:32:5a:ac:b9:20:fe:92:75:77:1f:06:42: 1f:c5:f2:14:a0:0e:f7:ef:56:a0:75:31:eb:d4:f7: 5c:69:df:1b:b4:c7:d7:af:a4:a3:1b:06:0e:85:8d: d4:93:91:f1:c7:eb:6d:ed:92:3c:b8:d5:94:c7:ae: de:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:31:A4:10:7C:DA:3C:80:42:FE:5B:4D:C9:E3:4F:8F:11:D6:70:B4 X509v3 Authority Key Identifier: keyid:1F:AA:CA:B8:E4:56:BB:29:19:79:A7:35:7A:70:24:F0:0B:EB:AA:F5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6rKuORWuykZeac1enAk8AvrqvU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/iDGkEHzaPIBC_ltNyeNPjxHWcLQ.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/H6rKuORWuykZeac1enAk8AvrqvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.33.37.0/24 IPv6: 2a14:3b41::/36 Signature Algorithm: sha256WithRSAEncryption 3d:f2:bd:2f:b4:73:02:5d:ab:40:ef:e3:84:96:0e:fc:a7:c9: c5:d6:05:da:6e:4d:35:68:ce:b1:25:2c:ad:c2:23:5d:73:ac: 21:9b:4b:49:67:d2:d6:c2:ef:b2:fb:99:fb:3a:6a:d5:fd:bc: 31:c3:93:f6:7e:e1:6d:b8:66:27:51:f1:2b:48:c9:83:9e:2c: dc:a5:91:3e:7b:cb:2e:8b:5d:df:da:a3:f2:83:9c:1a:12:30: b0:e1:0d:a5:a2:fa:18:3e:ef:83:6e:50:26:4f:a5:9d:da:b2: fb:58:dd:17:eb:ce:bf:b3:75:32:fd:4a:14:34:dd:4b:62:95: ca:d7:a8:7c:ae:78:d7:5d:46:12:1d:fc:e3:f0:64:67:4a:15: 14:0d:47:67:2b:71:07:58:c0:8f:ae:9f:65:b3:65:e0:d0:01: c9:58:3c:e8:53:e7:a6:13:17:2f:f8:44:34:8f:92:42:f4:f8: 2f:f3:f1:3c:f3:c1:52:11:d2:7a:c0:7e:f5:b6:a6:67:f0:c8: 16:50:d7:30:01:c2:93:d8:ed:d2:be:98:5c:9b:f7:7b:5b:8c: d1:06:73:37:0a:3b:13:03:ab:8f:2d:53:8e:3a:43:a1:94:d9: 06:db:3c:46:48:9c:af:8e:d7:c7:f0:a5:51:c0:4b:1f:45:81: 8c:49:88:bf -----BEGIN CERTIFICATE----- MIIFDTCCA/WgAwIBAgISAZwvTS1S9NsY069JSToiLQRkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFmYWFjYWI4ZTQ1NmJiMjkxOTc5YTczNTdhNzAyNGYwMGJl YmFhZjUwHhcNMjYwMjA1MTkzNTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODMxYTQxMDdjZGEzYzgwNDJmZTViNGRjOWUzNGY4ZjExZDY3MGI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZvhfvJvuxw8DRNVPaHE8rcjYnwv Q51Go1MhkEaSfiPLnC9x6/5axm8uVrLPmSd7SuwG+dKOQC1tRzZmij5RHmaAkCI3 oD1qPniYqTEcdkY2TDC2B2dKsRqsFTWG2pwspQTBqmSfjHx7ANH1GOuRe9XFP08G NKIx1q6ntvXnlJ4s/c8b8ImP+EVe23dzRSfHB0tBZBIOcOF3lBJcA1b5Ve7N6L9f Si1VYj1A/fvxl7T4ccpx+4jY00p6vrJvkiw74cQ2bs0yWqy5IP6SdXcfBkIfxfIU oA7371agdTHr1Pdcad8btMfXr6SjGwYOhY3Uk5Hxx+tt7ZI8uNWUx67eHQIDAQAB o4ICGTCCAhUwHQYDVR0OBBYEFIgxpBB82jyAQv5bTcnjT48R1nC0MB8GA1UdIwQY MBaAFB+qyrjkVrspGXmnNXpwJPAL66r1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSDZyS3VPUld1eWtaZWFjMWVuQWs4QXZycXZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My81MDFmZDMtYThjZC00ZTJkLTlkMzIt MmZiNzJhMGFlZjZkLzEvaURHa0VIemFQSUJDX2x0TnllTlBqeEhXY0xRLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My81MDFmZDMtYThjZC00ZTJkLTlkMzItMmZiNzJhMGFlZjZk LzEvSDZyS3VPUld1eWtaZWFjMWVuQWs4QXZycXZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQAQiElMA4E AgACMAgDBgQqFDtBADANBgkqhkiG9w0BAQsFAAOCAQEAPfK9L7RzAl2rQO/jhJYO /KfJxdYF2m5NNWjOsSUsrcIjXXOsIZtLSWfS1sLvsvuZ+zpq1f28McOT9n7hbbhm J1HxK0jJg54s3KWRPnvLLotd39qj8oOcGhIwsOENpaL6GD7vg25QJk+lndqy+1jd F+vOv7N1Mv1KFDTdS2KVyteofK54111GEh384/BkZ0oVFA1HZytxB1jAj66fZbNl 4NAByVg86FPnphMXL/hENI+SQvT4L/PxPPPBUhHSesB+9bamZ/DIFlDXMAHCk9jt 0r6YXJv3e1uM0QZzNwo7EwOrjy1TjjpDoZTZBts8Rkicr47Xx/ClUcBLH0WBjEmI vw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:46 2026 by rpki-client