This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/iySxoQ79pu7zVHvYOAGTMySjCYE.roa File: iySxoQ79pu7zVHvYOAGTMySjCYE.roa (raw, json) Hash identifier: XNn9YtTfrj8MPLFvTjd/XgA60lThSzRcPg+b23EbGIs= Subject key identifier: 8B:24:B1:A1:0E:FD:A6:EE:F3:54:7B:D8:38:01:93:33:24:A3:09:81 Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Certificate serial: 019B76EAFEB62486B6CFE70033E4EF992376 Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/iySxoQ79pu7zVHvYOAGTMySjCYE.roa Signing time: Thu 01 Jan 2026 00:17:50 +0000 ROA not before: Thu 01 Jan 2026 00:17:50 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 211686 IP address blocks: 37.123.192.0/23 maxlen: 24 185.148.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.mft rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:fe:b6:24:86:b6:cf:e7:00:33:e4:ef:99:23:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478 Validity Not Before: Jan 1 00:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b24b1a10efda6eef3547bd83801933324a30981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:01:5f:8f:99:9d:56:30:ac:ad:a8:74:6f:61: df:01:29:17:76:fa:9a:3d:b1:79:e8:ae:73:7a:f9: d9:d0:73:12:06:d1:5b:af:5d:97:db:6f:87:eb:15: dd:12:2b:d1:ce:4c:d0:17:83:ae:17:d3:cd:9a:2f: f6:83:54:86:87:e4:3a:c6:c3:9d:03:cd:e9:24:e3: 77:01:c4:c3:5c:d5:5c:48:0c:b3:3c:55:89:e4:83: 0b:14:0a:25:af:90:ce:37:9a:dc:18:ff:d4:50:37: e6:b9:4a:f8:5c:cb:f6:6c:3d:d5:88:42:bc:f6:fc: 6f:2b:ba:8f:57:fb:6c:f4:e1:1e:86:70:24:32:da: 50:16:a0:40:f2:f9:99:99:4d:1b:3f:71:53:29:c6: 2d:12:66:ab:b7:95:bf:42:de:3e:a0:e3:40:31:ff: 6b:f8:34:c9:72:f6:f4:d5:3b:21:89:8a:8c:03:74: 3a:28:31:45:1d:da:39:98:29:77:e2:95:13:dc:95: 08:5e:f9:84:5d:ca:af:81:67:53:aa:60:bf:a8:4d: be:8a:2b:43:aa:87:2d:cd:a1:41:51:6e:85:1c:18: 35:0b:7d:bd:9d:4e:12:d5:06:48:22:41:39:7c:6c: 6e:9a:b8:8f:8c:99:05:79:b6:a7:5d:7c:61:26:6a: c3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:24:B1:A1:0E:FD:A6:EE:F3:54:7B:D8:38:01:93:33:24:A3:09:81 X509v3 Authority Key Identifier: keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/iySxoQ79pu7zVHvYOAGTMySjCYE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.123.192.0/23 185.148.12.0/23 Signature Algorithm: sha256WithRSAEncryption 35:68:c6:cc:1b:f1:ed:9a:33:8a:9a:1b:21:84:4b:88:58:36: 8e:03:39:43:fa:4c:85:d5:da:93:a6:63:f3:b8:cc:d8:69:94: 48:42:c8:62:48:02:44:9b:5b:6b:ef:7b:9d:0c:b8:b0:00:e9: 8a:77:2a:7c:1c:0d:48:f3:0f:fd:60:90:41:bc:fa:5e:80:f2: 9d:74:a6:62:04:71:a3:5c:9f:f2:91:8d:08:19:ce:28:13:89: f3:9a:2b:8e:83:37:b4:8a:37:68:90:87:6f:25:4b:2e:6c:5a: 31:5e:6d:f7:42:3a:f2:6d:8d:97:e9:74:1d:e1:02:2f:6e:92: 73:92:d4:39:68:17:a9:28:2d:c2:b9:54:bb:06:e8:45:22:4a: ec:c4:a1:0f:1c:d3:76:0e:df:5d:51:87:d3:c1:fb:14:86:1c: 8e:b7:56:3b:cf:18:1c:28:a2:af:f2:d0:4c:1f:81:95:4e:ed: ae:3d:a5:33:b9:a8:d6:e0:52:58:52:6c:45:72:4e:1e:f8:2f: 4f:a5:ef:10:8a:4e:38:0e:73:2d:3c:bf:eb:e5:55:d5:65:0a: 63:4e:cf:1e:54:b3:2a:90:4e:c4:30:43:69:da:f6:6c:a8:05: 7a:95:24:bb:b5:e5:fe:4a:c6:5f:68:3c:e7:71:23:ef:2e:04: 98:10:69:c8 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt26v62JIa2z+cAM+TvmSN2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2 NWE0NzgwHhcNMjYwMTAxMDAxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjI0YjFhMTBlZmRhNmVlZjM1NDdiZDgzODAxOTMzMzI0YTMwOTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwwFfj5mdVjCsrah0b2HfASkXdvqa PbF56K5zevnZ0HMSBtFbr12X22+H6xXdEivRzkzQF4OuF9PNmi/2g1SGh+Q6xsOd A83pJON3AcTDXNVcSAyzPFWJ5IMLFAolr5DON5rcGP/UUDfmuUr4XMv2bD3ViEK8 9vxvK7qPV/ts9OEehnAkMtpQFqBA8vmZmU0bP3FTKcYtEmart5W/Qt4+oONAMf9r +DTJcvb01TshiYqMA3Q6KDFFHdo5mCl34pUT3JUIXvmEXcqvgWdTqmC/qE2+iitD qoctzaFBUW6FHBg1C329nU4S1QZIIkE5fGxumriPjJkFebanXXxhJmrDLwIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFIsksaEO/abu81R72DgBkzMkowmBMB8GA1UdIwQY MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt ZmUwNjU5MTc2YTU2LzEvaXlTeG9RNzlwdTd6Vkh2WU9BR1RNeVNqQ1lFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2 LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBJXvAAwQB uZQMMA0GCSqGSIb3DQEBCwUAA4IBAQA1aMbMG/HtmjOKmhshhEuIWDaOAzlD+kyF 1dqTpmPzuMzYaZRIQshiSAJEm1tr73udDLiwAOmKdyp8HA1I8w/9YJBBvPpegPKd dKZiBHGjXJ/ykY0IGc4oE4nzmiuOgze0ijdokIdvJUsubFoxXm33QjrybY2X6XQd 4QIvbpJzktQ5aBepKC3CuVS7BuhFIkrsxKEPHNN2Dt9dUYfTwfsUhhyOt1Y7zxgc KKKv8tBMH4GVTu2uPaUzuajW4FJYUmxFck4e+C9Ppe8Qik44DnMtPL/r5VXVZQpj Ts8eVLMqkE7EMENp2vZsqAV6lSS7teX+SsZfaDzncSPvLgSYEGnI -----END CERTIFICATE-----Generated at Wed Jan 21 16:15:48 2026 by rpki-client