This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/IwgScS-4S8YPtD-bfmwdqiUp3Ek.roa File: IwgScS-4S8YPtD-bfmwdqiUp3Ek.roa (raw, json) Hash identifier: oEKIqloLq9eyd6YQhClj+1rynTYewTolXpO7l27C9dg= Subject key identifier: 23:08:12:71:2F:B8:4B:C6:0F:B4:3F:9B:7E:6C:1D:AA:25:29:DC:49 Certificate issuer: /CN=31d2424123ed07725330bf817944fd276b7ca36b Certificate serial: 019C2B438CAC826EB8C386BED71F8E1409AF Authority key identifier: 31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/IwgScS-4S8YPtD-bfmwdqiUp3Ek.roa Signing time: Thu 05 Feb 2026 00:46:13 +0000 ROA not before: Thu 05 Feb 2026 00:46:13 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 201696 IP address blocks: 2a06:9801:21::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.mft rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 19:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2b:43:8c:ac:82:6e:b8:c3:86:be:d7:1f:8e:14:09:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=31d2424123ed07725330bf817944fd276b7ca36b Validity Not Before: Feb 5 00:46:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=230812712fb84bc60fb43f9b7e6c1daa2529dc49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:55:79:fb:fb:62:77:28:de:42:21:05:fe: 9b:8b:9b:58:4e:e9:f0:1c:8f:cc:ac:b2:58:a1:9a: df:72:a1:44:a4:2c:2a:a5:9c:3e:49:21:5f:75:32: 48:ba:70:5f:9c:6d:cd:fa:b2:fb:dc:8b:3a:ed:1c: 85:06:41:f2:70:da:bd:4f:fd:b2:d6:31:6f:14:3a: 23:1e:6a:05:4a:24:ae:07:15:e5:be:c1:79:0d:93: 54:55:43:63:af:66:8a:4b:7c:a6:d2:46:a1:3f:d9: 6c:a5:67:5c:a5:aa:6e:4b:6e:45:44:9b:35:ca:aa: 6d:1f:05:48:05:84:05:27:68:17:06:4a:23:d5:c1: 4e:cb:d2:2c:5d:6c:98:83:2d:84:88:4f:62:ff:68: 4d:95:21:d4:b3:ff:cc:30:5d:83:24:9f:3c:05:d6: 74:b6:d7:1d:ec:31:77:e3:01:99:53:30:2b:9c:92: 81:d4:57:8e:6a:c4:09:cf:b7:59:a0:37:2e:b0:4f: f9:41:be:c7:13:31:67:41:e0:a8:d8:1d:b8:aa:70: 19:25:50:af:26:11:e9:ac:4e:bb:83:91:08:3a:d1: d1:cf:ef:38:d9:18:f5:b2:90:66:1f:cf:99:6c:80: d7:38:e4:af:13:09:85:c5:b8:4f:33:e3:ed:93:98: 9b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:08:12:71:2F:B8:4B:C6:0F:B4:3F:9B:7E:6C:1D:AA:25:29:DC:49 X509v3 Authority Key Identifier: keyid:31:D2:42:41:23:ED:07:72:53:30:BF:81:79:44:FD:27:6B:7C:A3:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MdJCQSPtB3JTML-BeUT9J2t8o2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/IwgScS-4S8YPtD-bfmwdqiUp3Ek.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1a6b17-e3fe-4c6d-b8c1-ed8cfaf1b81f/1/MdJCQSPtB3JTML-BeUT9J2t8o2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9801:21::/48 Signature Algorithm: sha256WithRSAEncryption 03:ec:2c:1a:f4:9f:2d:ef:81:2e:fe:9c:2a:c6:96:a2:8d:3a: a1:73:22:7a:55:ed:e3:52:65:f5:26:70:4a:87:b8:ad:6d:4a: 90:04:b4:30:b5:0a:7f:f9:63:ee:2c:56:87:df:89:64:5d:5e: 02:f8:3b:82:b2:d0:f5:59:81:dc:95:5c:6c:ae:1d:83:85:a8: bf:1b:e3:e8:19:00:0d:10:78:45:b3:cd:ef:db:cd:0d:d9:87: 9e:86:27:fe:6d:79:6e:5c:6b:c0:6b:32:ca:ac:f2:6c:28:03: b9:d7:d3:27:fc:b2:03:c8:1c:b6:62:a2:3d:97:2a:31:a5:d5: ee:8d:56:28:10:88:ba:48:48:ff:74:7d:18:83:de:fa:94:b5: f7:45:0e:8b:db:5f:a5:67:38:3b:aa:15:76:17:63:c9:1d:76: f1:a8:8d:54:b9:bd:0f:9b:88:67:28:d3:34:7f:22:07:2d:bc: d8:d2:be:f7:6f:be:87:cd:6e:d3:3a:41:49:c7:d3:50:1d:bc: 5e:eb:54:ff:25:0a:8c:ec:c4:48:bb:56:73:53:e0:ab:7a:06: 88:6e:f8:d4:47:ee:a3:c3:e8:00:71:9f:ed:8f:37:6b:2a:45: 48:03:d9:da:3a:5b:2f:0d:f7:0f:9f:44:d0:bb:bb:0a:10:b0: 24:61:d5:ec -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZwrQ4ysgm64w4a+1x+OFAmvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxZDI0MjQxMjNlZDA3NzI1MzMwYmY4MTc5NDRmZDI3NmI3 Y2EzNmIwHhcNMjYwMjA1MDA0NjEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzA4MTI3MTJmYjg0YmM2MGZiNDNmOWI3ZTZjMWRhYTI1MjlkYzQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQ1Vefv7Ynco3kIhBf6bi5tYTunw HI/MrLJYoZrfcqFEpCwqpZw+SSFfdTJIunBfnG3N+rL73Is67RyFBkHycNq9T/2y 1jFvFDojHmoFSiSuBxXlvsF5DZNUVUNjr2aKS3ym0kahP9lspWdcpapuS25FRJs1 yqptHwVIBYQFJ2gXBkoj1cFOy9IsXWyYgy2EiE9i/2hNlSHUs//MMF2DJJ88BdZ0 ttcd7DF34wGZUzArnJKB1FeOasQJz7dZoDcusE/5Qb7HEzFnQeCo2B24qnAZJVCv JhHprE67g5EIOtHRz+842Rj1spBmH8+ZbIDXOOSvEwmFxbhPM+Ptk5ibuwIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFCMIEnEvuEvGD7Q/m35sHaolKdxJMB8GA1UdIwQY MBaAFDHSQkEj7QdyUzC/gXlE/SdrfKNrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWRKQ1FTUHRCM0pUTUwtQmVVVDlKMnQ4bzJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS8xYTZiMTctZTNmZS00YzZkLWI4YzEt ZWQ4Y2ZhZjFiODFmLzEvSXdnU2NTLTRTOFlQdEQtYmZtd2RxaVVwM0VrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS8xYTZiMTctZTNmZS00YzZkLWI4YzEtZWQ4Y2ZhZjFiODFm LzEvTWRKQ1FTUHRCM0pUTUwtQmVVVDlKMnQ4bzJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgaYAQAh MA0GCSqGSIb3DQEBCwUAA4IBAQAD7Cwa9J8t74Eu/pwqxpaijTqhcyJ6Ve3jUmX1 JnBKh7itbUqQBLQwtQp/+WPuLFaH34lkXV4C+DuCstD1WYHclVxsrh2Dhai/G+Po GQANEHhFs83v280N2Yeehif+bXluXGvAazLKrPJsKAO519Mn/LIDyBy2YqI9lyox pdXujVYoEIi6SEj/dH0Yg976lLX3RQ6L21+lZzg7qhV2F2PJHXbxqI1Uub0Pm4hn KNM0fyIHLbzY0r73b76HzW7TOkFJx9NQHbxe61T/JQqM7MRIu1ZzU+CregaIbvjU R+6jw+gAcZ/tjzdrKkVIA9naOlsvDfcPn0TQu7sKELAkYdXs -----END CERTIFICATE-----Generated at Sun Feb 8 04:50:41 2026 by rpki-client