This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/IjaloZSYaC9Di4nesFRVAhQUalk.roa File: IjaloZSYaC9Di4nesFRVAhQUalk.roa (raw, json) Hash identifier: zhzH6hXrMbd5pjvC+zY7ZrzA+0AUiLQxT7Gw0vrW0hc= Subject key identifier: 22:36:A5:A1:94:98:68:2F:43:8B:89:DE:B0:54:55:02:14:14:6A:59 Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430 Certificate serial: 019BCC7243D0F1C3C40A6FBADB3081DEBFE2 Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/IjaloZSYaC9Di4nesFRVAhQUalk.roa Signing time: Sat 17 Jan 2026 14:53:19 +0000 ROA not before: Sat 17 Jan 2026 14:53:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 198584 IP address blocks: 46.38.152.0/24 maxlen: 24 185.24.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.mft rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 23:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cc:72:43:d0:f1:c3:c4:0a:6f:ba:db:30:81:de:bf:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430 Validity Not Before: Jan 17 14:53:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2236a5a19498682f438b89deb054550214146a59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3a:4b:c3:d6:72:b7:6a:4d:df:ab:86:c6:9d: 6e:8a:fc:2b:13:19:5f:45:77:b6:3a:02:c1:54:0c: b7:1f:45:b6:01:b9:50:a5:57:e2:ef:df:75:5d:af: c4:82:4f:90:cd:c4:e7:a9:86:b6:45:3a:ea:c6:c0: 35:e7:52:61:59:b6:f8:bb:d1:f8:6b:a9:96:a0:4a: 42:2c:34:96:97:6f:63:90:21:80:60:fb:6b:48:89: 3c:a4:56:6b:0a:bb:9d:8d:17:84:0b:54:e8:55:8d: 9d:86:92:78:8d:89:47:8b:45:5d:19:95:b5:a1:e1: 87:ee:58:05:82:fa:5e:e2:6e:bf:fd:bb:61:80:3b: 39:08:f4:24:82:29:f8:d2:2a:40:fe:a2:37:9e:55: 46:fa:f3:29:54:ca:8b:3e:73:f8:58:87:0e:b2:5b: 36:ef:65:8e:83:0b:ab:81:c6:e0:75:8d:73:e7:e0: fb:de:46:4c:54:25:bd:47:d0:d9:3f:c9:a1:8f:f5: e5:3c:39:52:97:db:05:6b:30:31:c3:0d:4d:79:d6: 5f:c1:0c:34:85:44:8a:26:77:cd:f7:10:83:21:19: 64:45:fa:eb:0b:ce:9b:35:26:21:34:14:56:bb:e4: a8:73:e7:80:5c:09:a2:39:04:ff:33:2a:dc:78:01: 95:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:36:A5:A1:94:98:68:2F:43:8B:89:DE:B0:54:55:02:14:14:6A:59 X509v3 Authority Key Identifier: keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/IjaloZSYaC9Di4nesFRVAhQUalk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.38.152.0/24 185.24.151.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:55:70:bc:76:ba:e5:1c:62:b0:1f:4f:23:1c:96:75:fa:84: 99:41:49:c2:7e:ff:f3:3b:26:07:4e:46:54:1c:2a:32:d8:cb: 2e:7b:95:da:9e:5e:7a:9f:77:93:e1:22:ab:76:28:ce:e4:e9: 9b:c1:f4:ea:4c:3a:8e:06:2f:a5:26:e4:94:72:2e:ee:4b:82: da:12:cc:f3:5f:d9:ae:ee:30:17:e6:34:ee:e0:db:29:c6:52: 33:98:02:eb:c9:87:1a:5d:11:46:6b:db:8d:4c:45:8b:66:2a: 61:ae:60:f7:70:95:94:61:33:a8:37:8c:4d:d6:d4:f5:49:95: 53:a1:79:d6:a0:6a:f9:3c:1c:b9:6a:79:46:03:70:e3:63:57: aa:04:fa:5e:bc:ae:23:d7:ca:63:2d:ab:87:0e:73:25:bc:44: 1f:46:ab:88:42:86:04:8d:fe:2c:60:79:bb:2d:1f:8c:98:3d: a7:7b:09:e2:b2:e2:b0:0e:78:75:76:6d:fa:88:fc:fd:96:f7: a3:b1:67:cf:03:f0:d6:81:fa:a1:55:e3:bc:39:42:eb:0f:bc: ce:56:eb:cb:8d:96:d5:7d:05:3f:d5:e5:fa:bd:50:7e:0b:f2: 97:fa:4c:02:92:cc:59:65:cb:79:f7:4c:12:d8:3f:46:d5:57: b9:7f:ae:0a -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZvMckPQ8cPECm+62zCB3r/iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj NWY0MzAwHhcNMjYwMTE3MTQ1MzE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjM2YTVhMTk0OTg2ODJmNDM4Yjg5ZGViMDU0NTUwMjE0MTQ2YTU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjpLw9Zyt2pN36uGxp1uivwrExlf RXe2OgLBVAy3H0W2AblQpVfi7991Xa/Egk+QzcTnqYa2RTrqxsA151JhWbb4u9H4 a6mWoEpCLDSWl29jkCGAYPtrSIk8pFZrCrudjReEC1ToVY2dhpJ4jYlHi0VdGZW1 oeGH7lgFgvpe4m6//bthgDs5CPQkgin40ipA/qI3nlVG+vMpVMqLPnP4WIcOsls2 72WOgwurgcbgdY1z5+D73kZMVCW9R9DZP8mhj/XlPDlSl9sFazAxww1NedZfwQw0 hUSKJnfN9xCDIRlkRfrrC86bNSYhNBRWu+Soc+eAXAmiOQT/MyrceAGVcQIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCI2paGUmGgvQ4uJ3rBUVQIUFGpZMB8GA1UdIwQY MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt MmEwOWNjNTNhODA1LzEvSWphbG9aU1lhQzlEaTRuZXNGUlZBaFFVYWxrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1 LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALiaYAwQA uRiXMA0GCSqGSIb3DQEBCwUAA4IBAQAtVXC8drrlHGKwH08jHJZ1+oSZQUnCfv/z OyYHTkZUHCoy2Msue5Xanl56n3eT4SKrdijO5OmbwfTqTDqOBi+lJuSUci7uS4La EszzX9mu7jAX5jTu4NspxlIzmALryYcaXRFGa9uNTEWLZiphrmD3cJWUYTOoN4xN 1tT1SZVToXnWoGr5PBy5anlGA3DjY1eqBPpevK4j18pjLauHDnMlvEQfRquIQoYE jf4sYHm7LR+MmD2newnisuKwDnh1dm36iPz9lvejsWfPA/DWgfqhVeO8OULrD7zO VuvLjZbVfQU/1eX6vVB+C/KX+kwCksxZZct590wS2D9G1Ve5f64K -----END CERTIFICATE-----Generated at Wed Jan 21 04:05:02 2026 by rpki-client