This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/i4SsIOLUv_OwWyLrengIH-QVfNI.roa File: i4SsIOLUv_OwWyLrengIH-QVfNI.roa (raw, json) Hash identifier: 36FZ86kVE/PiRgsPAz3Qv1UdGKo4t9QQzxPNHpCRysY= Subject key identifier: 8B:84:AC:20:E2:D4:BF:F3:B0:5B:22:EB:7A:78:08:1F:E4:15:7C:D2 Certificate issuer: /CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04 Certificate serial: 019B7F157A3AEB23DFB78B4C01C8350291B3 Authority key identifier: 30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/i4SsIOLUv_OwWyLrengIH-QVfNI.roa Signing time: Fri 02 Jan 2026 14:21:12 +0000 ROA not before: Fri 02 Jan 2026 14:21:12 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 43817 IP address blocks: 185.167.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:7a:3a:eb:23:df:b7:8b:4c:01:c8:35:02:91:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04 Validity Not Before: Jan 2 14:21:12 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b84ac20e2d4bff3b05b22eb7a78081fe4157cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:68:42:bf:91:99:e4:14:b6:e0:6b:c0:ba:f8: 5e:14:c5:54:f5:09:54:3c:e2:bb:c3:29:28:41:d2: f0:b1:b4:b1:71:86:0c:42:f7:72:29:80:d4:ae:20: b9:35:c7:62:63:c2:9b:fd:93:1b:b5:2f:da:07:23: 3b:0a:4d:af:9b:16:68:b2:0e:37:29:aa:07:60:54: 7f:ab:88:a6:f4:7c:d7:53:21:b0:22:14:38:5e:8e: 45:c5:c2:65:9d:ea:b6:01:cd:ec:20:1a:61:f9:42: c8:56:75:6c:f4:f7:27:5e:76:5c:82:e1:9a:f8:f9: 95:ce:b6:d9:6a:34:01:89:54:15:b5:96:33:bc:bb: 36:05:eb:c3:cc:5c:f4:1e:83:cd:bc:cf:63:82:8e: 97:07:4f:9f:10:1d:85:5b:ce:02:3d:d7:6d:f1:4a: 2b:c0:57:e1:be:1d:83:5b:82:6a:ee:b9:03:e7:ed: 0f:5e:27:c0:f4:3a:0f:1b:46:2f:d7:de:bb:9b:68: 5d:94:ec:69:f9:16:42:5e:7a:a9:79:6a:23:ee:a8: 69:c8:e0:1c:7a:c7:d7:be:a3:19:f7:14:61:79:49: 09:6c:a0:3d:95:af:c6:33:c7:22:06:92:86:90:87: 05:57:b1:dd:1b:b6:9e:7e:fd:45:c6:9a:e2:8e:95: fa:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:84:AC:20:E2:D4:BF:F3:B0:5B:22:EB:7A:78:08:1F:E4:15:7C:D2 X509v3 Authority Key Identifier: keyid:30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/i4SsIOLUv_OwWyLrengIH-QVfNI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.167.20.0/22 Signature Algorithm: sha256WithRSAEncryption 22:72:35:c2:70:48:8c:b3:c6:aa:93:20:78:d0:58:3e:78:a8: 8c:bb:e2:40:d7:79:7d:c3:60:9d:b9:4a:73:fa:29:17:08:d3: ed:81:3b:0b:05:4c:6c:bb:28:7f:fc:fa:2a:ce:a6:18:fc:c8: 5f:07:b6:05:d7:b5:5e:64:68:a5:e9:63:86:45:56:e6:49:f7: b0:ce:52:8c:74:29:a3:a1:13:4b:d6:0a:bd:39:2e:62:e0:8c: 7a:ce:6c:52:c1:18:79:54:53:ed:d9:87:7d:88:45:5e:f6:cc: ed:f7:a4:c1:1f:93:26:43:a8:96:89:15:b0:15:07:cd:05:f6: 25:09:10:22:d9:08:6a:17:8b:12:59:26:94:70:21:e0:98:cd: c4:82:bd:19:5e:f5:cb:77:40:d8:a6:f2:dd:66:90:1c:a4:5a: c6:f6:23:38:89:ac:36:c0:30:73:64:85:d3:a5:48:12:6c:00: 47:3b:f4:3c:15:41:81:d7:e3:0c:ca:88:a4:64:33:f9:8e:c4: 94:3a:d2:ea:c2:74:f6:78:59:a1:19:be:5e:8d:01:6a:46:94: 3b:41:5f:1b:55:af:06:41:35:22:1c:83:d2:58:f1:c6:8e:9d: 34:9d:32:12:b4:73:86:6f:59:b7:74:21:3f:12:3f:85:c1:c9: 07:01:74:5a -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/FXo66yPft4tMAcg1ApGzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMwOTZkN2FmYmI4YTVlMzE1YTVjNDg5YWNlYTdkY2I3NWFh NjVkMDQwHhcNMjYwMTAyMTQyMTEyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Yjg0YWMyMGUyZDRiZmYzYjA1YjIyZWI3YTc4MDgxZmU0MTU3Y2QyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomhCv5GZ5BS24GvAuvheFMVU9QlU POK7wykoQdLwsbSxcYYMQvdyKYDUriC5NcdiY8Kb/ZMbtS/aByM7Ck2vmxZosg43 KaoHYFR/q4im9HzXUyGwIhQ4Xo5FxcJlneq2Ac3sIBph+ULIVnVs9PcnXnZcguGa +PmVzrbZajQBiVQVtZYzvLs2BevDzFz0HoPNvM9jgo6XB0+fEB2FW84CPddt8Uor wFfhvh2DW4Jq7rkD5+0PXifA9DoPG0Yv1967m2hdlOxp+RZCXnqpeWoj7qhpyOAc esfXvqMZ9xRheUkJbKA9la/GM8ciBpKGkIcFV7HdG7aefv1FxprijpX64QIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIuErCDi1L/zsFsi63p4CB/kFXzSMB8GA1UdIwQY MBaAFDCW16+7il4xWlxIms6n3Ldapl0EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTUpiWHI3dUtYakZhWEVpYXpxZmN0MXFtWFFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC9jZjhmOTktZTU4MS00ZjVmLTg3NWYt ZGY0ZThjNzM2NGZlLzEvaTRTc0lPTFV2X093V3lMcmVuZ0lILVFWZk5JLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83NC9jZjhmOTktZTU4MS00ZjVmLTg3NWYtZGY0ZThjNzM2NGZl LzEvTUpiWHI3dUtYakZhWEVpYXpxZmN0MXFtWFFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuacUMA0G CSqGSIb3DQEBCwUAA4IBAQAicjXCcEiMs8aqkyB40Fg+eKiMu+JA13l9w2CduUpz +ikXCNPtgTsLBUxsuyh//PoqzqYY/MhfB7YF17VeZGil6WOGRVbmSfewzlKMdCmj oRNL1gq9OS5i4Ix6zmxSwRh5VFPt2Yd9iEVe9szt96TBH5MmQ6iWiRWwFQfNBfYl CRAi2QhqF4sSWSaUcCHgmM3Egr0ZXvXLd0DYpvLdZpAcpFrG9iM4iaw2wDBzZIXT pUgSbABHO/Q8FUGB1+MMyoikZDP5jsSUOtLqwnT2eFmhGb5ejQFqRpQ7QV8bVa8G QTUiHIPSWPHGjp00nTIStHOGb1m3dCE/Ej+FwckHAXRa -----END CERTIFICATE-----Generated at Mon Feb 9 21:23:41 2026 by rpki-client