This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/IArcm7KHrcc-PY-XbMM0EYnJC8o.roa File: IArcm7KHrcc-PY-XbMM0EYnJC8o.roa (raw, json) Hash identifier: D8OnazQ4CkBXy0mTUKLIq9zAP3v8FKdV/2bmVQK5YE4= Subject key identifier: 20:0A:DC:9B:B2:87:AD:C7:3E:3D:8F:97:6C:C3:34:11:89:C9:0B:CA Certificate issuer: /CN=b0bfd2c85e6b79d460e660cf9664dee55dccc8cc Certificate serial: 019B7CEE03A6EEBC080E59AF3EF63F36ACA5 Authority key identifier: B0:BF:D2:C8:5E:6B:79:D4:60:E6:60:CF:96:64:DE:E5:5D:CC:C8:CC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/IArcm7KHrcc-PY-XbMM0EYnJC8o.roa Signing time: Fri 02 Jan 2026 04:18:51 +0000 ROA not before: Fri 02 Jan 2026 04:18:51 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 19905 IP address blocks: 185.51.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/sL_SyF5redRg5mDPlmTe5V3MyMw.crl rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/sL_SyF5redRg5mDPlmTe5V3MyMw.mft rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 18:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:03:a6:ee:bc:08:0e:59:af:3e:f6:3f:36:ac:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b0bfd2c85e6b79d460e660cf9664dee55dccc8cc Validity Not Before: Jan 2 04:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=200adc9bb287adc73e3d8f976cc3341189c90bca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:80:1d:93:5b:77:87:15:73:a0:6e:70:6d:34: 00:58:26:a7:3c:a5:bc:1f:01:4c:bb:6a:c6:03:b0: 07:6c:5f:5e:29:29:39:5e:da:0a:00:b2:e2:cf:1f: a1:a5:ef:5a:62:00:36:c0:ba:83:01:1b:32:f3:fb: 68:12:cc:dd:b9:3c:ec:6b:73:ba:7f:0a:23:f7:36: 6d:a9:ba:26:d8:a1:b6:c6:96:2e:cf:61:33:9f:e2: f5:f8:b3:83:8b:98:1b:d7:28:23:49:d5:67:a7:05: 38:5e:55:5d:e8:19:3c:5b:9d:b1:64:c8:8c:e2:b5: 42:95:bd:8a:ad:20:c6:de:b7:e5:21:91:d9:2f:c2: a2:63:92:02:5a:7b:7b:cc:22:10:cb:f7:c3:e0:e2: 15:06:ee:05:3f:40:c5:f9:74:b3:aa:1a:ea:b7:89: 13:8c:30:e6:64:59:6d:67:a6:4c:c5:b2:4d:eb:ea: 87:43:94:5a:0a:5b:96:67:c0:92:8f:5a:0d:eb:9b: 4c:06:71:04:65:22:27:28:ac:9d:74:dd:3f:97:2f: 5f:f9:65:6c:7b:74:4b:7e:89:02:6c:0d:75:64:e8: e0:cc:a8:c1:ec:73:5e:a6:16:8b:f7:6b:8e:67:12: 00:2b:71:29:54:f0:2f:47:9d:be:7f:51:f3:ba:4a: ff:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:0A:DC:9B:B2:87:AD:C7:3E:3D:8F:97:6C:C3:34:11:89:C9:0B:CA X509v3 Authority Key Identifier: keyid:B0:BF:D2:C8:5E:6B:79:D4:60:E6:60:CF:96:64:DE:E5:5D:CC:C8:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sL_SyF5redRg5mDPlmTe5V3MyMw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/IArcm7KHrcc-PY-XbMM0EYnJC8o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/203a53-058a-4d5d-a761-d371855756c3/1/sL_SyF5redRg5mDPlmTe5V3MyMw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.51.100.0/24 Signature Algorithm: sha256WithRSAEncryption de:5c:b6:f8:d4:f2:c7:e3:2e:a7:70:77:67:43:cf:54:3c:71: 38:c9:95:05:eb:96:06:b7:bc:69:85:c0:a4:10:46:bc:f7:57: 5a:10:6c:93:62:2b:ad:2c:3a:3d:3d:4e:53:43:7c:2f:af:e4: 36:2d:c1:ad:fe:1c:ac:4f:03:70:c2:9c:03:b8:e3:95:73:d7: 68:22:bf:e2:2a:f5:37:18:ba:72:14:d3:fe:26:da:05:e9:c7: 75:9d:cf:6b:47:24:cc:ce:82:af:d8:49:2c:c9:ca:42:c1:33: 39:65:2e:ca:20:86:94:e3:ab:a8:c6:d1:df:dd:ad:42:46:c3: 19:de:46:46:d4:d7:8c:76:05:a3:c6:18:d5:4b:60:61:94:37: 56:a9:8e:41:31:f8:bd:ef:ce:cb:50:c7:16:1e:d8:5a:a1:2f: 04:38:f7:39:37:af:74:39:12:55:fd:f7:10:43:01:1b:7f:d5: ad:95:b7:5c:cd:e4:1f:e4:64:68:50:fc:40:f6:c4:94:a7:2f: cb:1e:3d:60:7c:68:19:47:ae:f8:5c:9e:22:ea:35:43:f5:f2: 1e:c9:53:8e:5c:6f:4f:02:47:f9:b9:15:02:d4:23:bd:06:54: 3c:ad:23:aa:d1:07:bb:c4:07:6e:8b:41:59:ec:24:88:f9:3f: 84:d7:a3:d9 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt87gOm7rwIDlmvPvY/NqylMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIwYmZkMmM4NWU2Yjc5ZDQ2MGU2NjBjZjk2NjRkZWU1NWRj Y2M4Y2MwHhcNMjYwMTAyMDQxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDBhZGM5YmIyODdhZGM3M2UzZDhmOTc2Y2MzMzQxMTg5YzkwYmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIAdk1t3hxVzoG5wbTQAWCanPKW8 HwFMu2rGA7AHbF9eKSk5XtoKALLizx+hpe9aYgA2wLqDARsy8/toEszduTzsa3O6 fwoj9zZtqbom2KG2xpYuz2Ezn+L1+LODi5gb1ygjSdVnpwU4XlVd6Bk8W52xZMiM 4rVClb2KrSDG3rflIZHZL8KiY5ICWnt7zCIQy/fD4OIVBu4FP0DF+XSzqhrqt4kT jDDmZFltZ6ZMxbJN6+qHQ5RaCluWZ8CSj1oN65tMBnEEZSInKKyddN0/ly9f+WVs e3RLfokCbA11ZOjgzKjB7HNephaL92uOZxIAK3EpVPAvR52+f1Hzukr/tQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCAK3Juyh63HPj2Pl2zDNBGJyQvKMB8GA1UdIwQY MBaAFLC/0shea3nUYOZgz5Zk3uVdzMjMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc0xfU3lGNXJlZFJnNW1EUGxtVGU1VjNNeU13LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8yMDNhNTMtMDU4YS00ZDVkLWE3NjEt ZDM3MTg1NTc1NmMzLzEvSUFyY203S0hyY2MtUFktWGJNTTBFWW5KQzhvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My8yMDNhNTMtMDU4YS00ZDVkLWE3NjEtZDM3MTg1NTc1NmMz LzEvc0xfU3lGNXJlZFJnNW1EUGxtVGU1VjNNeU13LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuTNkMA0G CSqGSIb3DQEBCwUAA4IBAQDeXLb41PLH4y6ncHdnQ89UPHE4yZUF65YGt7xphcCk EEa891daEGyTYiutLDo9PU5TQ3wvr+Q2LcGt/hysTwNwwpwDuOOVc9doIr/iKvU3 GLpyFNP+JtoF6cd1nc9rRyTMzoKv2EksycpCwTM5ZS7KIIaU46uoxtHf3a1CRsMZ 3kZG1NeMdgWjxhjVS2BhlDdWqY5BMfi9787LUMcWHthaoS8EOPc5N690ORJV/fcQ QwEbf9WtlbdczeQf5GRoUPxA9sSUpy/LHj1gfGgZR674XJ4i6jVD9fIeyVOOXG9P Akf5uRUC1CO9BlQ8rSOq0Qe7xAdui0FZ7CSI+T+E16PZ -----END CERTIFICATE-----Generated at Tue Jan 20 01:22:01 2026 by rpki-client