This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/i220VObPvHT4HgCF-uOpmI807FY.roa File: i220VObPvHT4HgCF-uOpmI807FY.roa (raw, json) Hash identifier: s9QayADVhAmQKcOJ9dlrMCwrdZV1G0CVNvgi0G197E0= Subject key identifier: 8B:6D:B4:54:E6:CF:BC:74:F8:1E:00:85:FA:E3:A9:98:8F:34:EC:56 Certificate issuer: /CN=19acf07f1352222658b789e4fe40ea38a8aa71df Certificate serial: 019C1F16357F6D08C87228941285432B0DB9 Authority key identifier: 19:AC:F0:7F:13:52:22:26:58:B7:89:E4:FE:40:EA:38:A8:AA:71:DF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GazwfxNSIiZYt4nk_kDqOKiqcd8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/i220VObPvHT4HgCF-uOpmI807FY.roa Signing time: Mon 02 Feb 2026 16:01:15 +0000 ROA not before: Mon 02 Feb 2026 16:01:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 205881 IP address blocks: 151.136.10.0/24 maxlen: 24 151.136.32.0/22 maxlen: 22 151.136.52.0/23 maxlen: 23 151.136.142.0/23 maxlen: 23 151.136.144.0/22 maxlen: 22 151.136.216.0/21 maxlen: 21 2a07:4ac0:f002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/GazwfxNSIiZYt4nk_kDqOKiqcd8.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/GazwfxNSIiZYt4nk_kDqOKiqcd8.mft rsync://rpki.ripe.net/repository/DEFAULT/GazwfxNSIiZYt4nk_kDqOKiqcd8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1f:16:35:7f:6d:08:c8:72:28:94:12:85:43:2b:0d:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19acf07f1352222658b789e4fe40ea38a8aa71df Validity Not Before: Feb 2 16:01:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b6db454e6cfbc74f81e0085fae3a9988f34ec56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:1d:be:b2:ff:2b:58:a0:e5:b5:85:2a:c5:49: ac:dd:9f:83:2a:29:3f:1a:7d:a9:1f:d2:1e:09:bf: 18:56:37:74:58:14:27:90:df:08:30:8b:f1:6d:96: 8d:20:45:64:cd:7a:b9:7f:34:bf:88:9f:b1:f4:15: 3c:5f:4b:83:05:5b:ae:74:60:25:35:6a:10:5a:0a: dc:41:5a:2d:0a:ad:1b:2f:22:2e:6a:45:fd:9b:b4: e1:d8:14:b3:28:da:0d:c6:ec:59:e9:05:8c:e2:f6: d6:5d:07:be:50:20:cb:2b:70:c6:85:12:2c:13:d8: e4:d4:23:2d:79:69:bb:18:7b:18:6b:26:fd:37:b9: 63:5a:af:1f:64:45:46:6c:b9:9c:e0:96:26:42:d2: ff:0d:bd:16:b9:60:48:1c:e4:37:c4:6f:03:44:dd: 80:00:15:6e:9f:de:6a:2a:65:cd:eb:8e:13:73:b6: 51:83:66:af:a2:19:9a:c4:25:04:f1:36:1c:b3:77: 5c:bf:35:2f:46:1c:f6:93:00:bd:06:c8:01:67:59: 02:21:31:b2:24:77:da:4f:8e:f0:1d:cd:a8:37:62: 3c:89:76:a9:58:ae:0b:ec:41:e7:80:1b:34:a8:02: a9:48:69:b0:b4:3e:3a:3a:70:f2:1a:c3:77:d4:47: 19:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6D:B4:54:E6:CF:BC:74:F8:1E:00:85:FA:E3:A9:98:8F:34:EC:56 X509v3 Authority Key Identifier: keyid:19:AC:F0:7F:13:52:22:26:58:B7:89:E4:FE:40:EA:38:A8:AA:71:DF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GazwfxNSIiZYt4nk_kDqOKiqcd8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/i220VObPvHT4HgCF-uOpmI807FY.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/40503a-6be9-4e1b-8243-716c0347aa76/1/GazwfxNSIiZYt4nk_kDqOKiqcd8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.136.10.0/24 151.136.32.0/22 151.136.52.0/23 151.136.142.0-151.136.147.255 151.136.216.0/21 IPv6: 2a07:4ac0:f002::/48 Signature Algorithm: sha256WithRSAEncryption c5:8b:21:37:7c:92:98:52:ae:41:21:87:0c:19:4e:22:49:ea: e2:4a:1a:4b:ae:5b:35:93:82:11:96:c1:3c:92:55:94:b6:ed: c7:79:d1:2d:45:9c:62:f3:50:24:8a:59:78:81:eb:e8:02:9f: 43:59:79:67:c0:81:ca:9f:ec:88:80:58:ef:84:4d:c8:fd:05: 87:f6:84:59:e6:1b:49:31:7e:b7:bf:93:50:21:c3:59:59:13: 11:62:39:18:1e:db:79:31:25:16:3f:94:2a:9d:bc:93:ed:4e: 3e:3a:af:9e:b7:c5:14:12:78:90:fe:00:cf:05:09:8f:54:f4: 8d:d8:b4:b7:f9:18:70:1e:29:c1:aa:7c:bb:96:57:de:c6:45: a0:d9:fd:40:fe:b0:bd:ba:33:f8:f4:7e:21:82:ac:2a:37:b1: 34:7a:c0:4d:2b:82:d5:2a:3c:52:1e:9e:83:53:e6:5d:70:97: 21:8f:8e:6c:02:eb:6b:d1:2c:eb:c4:3b:b4:1b:a2:a6:d5:82: cb:0d:af:d2:89:da:f4:1d:52:92:e3:53:3f:0b:17:61:06:93: 50:b4:4c:ed:45:0d:9e:6d:ea:76:e4:54:78:75:35:52:65:4c: 8f:d0:60:93:a1:ac:0a:f2:7b:c6:1f:8e:c9:07:ce:0a:2c:c3: da:36:34:11 -----BEGIN CERTIFICATE----- MIIFLjCCBBagAwIBAgISAZwfFjV/bQjIciiUEoVDKw25MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5YWNmMDdmMTM1MjIyMjY1OGI3ODllNGZlNDBlYTM4YThh YTcxZGYwHhcNMjYwMjAyMTYwMTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjZkYjQ1NGU2Y2ZiYzc0ZjgxZTAwODVmYWUzYTk5ODhmMzRlYzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAth2+sv8rWKDltYUqxUms3Z+DKik/ Gn2pH9IeCb8YVjd0WBQnkN8IMIvxbZaNIEVkzXq5fzS/iJ+x9BU8X0uDBVuudGAl NWoQWgrcQVotCq0bLyIuakX9m7Th2BSzKNoNxuxZ6QWM4vbWXQe+UCDLK3DGhRIs E9jk1CMteWm7GHsYayb9N7ljWq8fZEVGbLmc4JYmQtL/Db0WuWBIHOQ3xG8DRN2A ABVun95qKmXN644Tc7ZRg2avohmaxCUE8TYcs3dcvzUvRhz2kwC9BsgBZ1kCITGy JHfaT47wHc2oN2I8iXapWK4L7EHngBs0qAKpSGmwtD46OnDyGsN31EcZuQIDAQAB o4ICOjCCAjYwHQYDVR0OBBYEFItttFTmz7x0+B4AhfrjqZiPNOxWMB8GA1UdIwQY MBaAFBms8H8TUiImWLeJ5P5A6jioqnHfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR2F6d2Z4TlNJaVpZdDRua19rRHFPS2lxY2Q4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy80MDUwM2EtNmJlOS00ZTFiLTgyNDMt NzE2YzAzNDdhYTc2LzEvaTIyMFZPYlB2SFQ0SGdDRi11T3BtSTgwN0ZZLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy80MDUwM2EtNmJlOS00ZTFiLTgyNDMtNzE2YzAzNDdhYTc2 LzEvR2F6d2Z4TlNJaVpZdDRua19rRHFPS2lxY2Q4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzAsBAIAATAmAwQAl4gKAwQC l4ggAwQBl4g0MAwDBAGXiI4DBAKXiJADBAOXiNgwDwQCAAIwCQMHACoHSsDwAjAN BgkqhkiG9w0BAQsFAAOCAQEAxYshN3ySmFKuQSGHDBlOIknq4koaS65bNZOCEZbB PJJVlLbtx3nRLUWcYvNQJIpZeIHr6AKfQ1l5Z8CByp/siIBY74RNyP0Fh/aEWeYb STF+t7+TUCHDWVkTEWI5GB7beTElFj+UKp28k+1OPjqvnrfFFBJ4kP4AzwUJj1T0 jdi0t/kYcB4pwap8u5ZX3sZFoNn9QP6wvboz+PR+IYKsKjexNHrATSuC1So8Uh6e g1PmXXCXIY+ObALra9Es68Q7tBuiptWCyw2v0ona9B1SkuNTPwsXYQaTULRM7UUN nm3qduRUeHU1UmVMj9Bgk6GsCvJ7xh+OyQfOCizD2jY0EQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:38 2026 by rpki-client