This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/IxXflTOYaqu2atUQyoZopJz_6zE.roa File: IxXflTOYaqu2atUQyoZopJz_6zE.roa (raw, json) Hash identifier: b2hBbiqm9aa0JPxjxue6zQnoyQqQ8vw/9BwAsbxquNU= Subject key identifier: 23:15:DF:95:33:98:6A:AB:B6:6A:D5:10:CA:86:68:A4:9C:FF:EB:31 Certificate issuer: /CN=191b1a99358daa58e72625c4ce9d829e918efc86 Certificate serial: 019B7C80387C53D68C3D9D3712B4E4DC782D Authority key identifier: 19:1B:1A:99:35:8D:AA:58:E7:26:25:C4:CE:9D:82:9E:91:8E:FC:86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GRsamTWNqljnJiXEzp2CnpGO_IY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/IxXflTOYaqu2atUQyoZopJz_6zE.roa Signing time: Fri 02 Jan 2026 02:18:56 +0000 ROA not before: Fri 02 Jan 2026 02:18:56 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 212280 IP address blocks: 45.89.20.0/24 maxlen: 24 185.122.252.0/24 maxlen: 24 185.122.253.0/24 maxlen: 24 185.122.254.0/24 maxlen: 24 185.122.255.0/24 maxlen: 24 185.217.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/GRsamTWNqljnJiXEzp2CnpGO_IY.crl rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/GRsamTWNqljnJiXEzp2CnpGO_IY.mft rsync://rpki.ripe.net/repository/DEFAULT/GRsamTWNqljnJiXEzp2CnpGO_IY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:38:7c:53:d6:8c:3d:9d:37:12:b4:e4:dc:78:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=191b1a99358daa58e72625c4ce9d829e918efc86 Validity Not Before: Jan 2 02:18:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2315df9533986aabb66ad510ca8668a49cffeb31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c6:5c:2e:07:b7:66:2b:aa:5e:3b:33:ec:f5: 70:ee:60:f6:1b:2f:d6:60:f7:04:30:7b:ba:7c:83: 75:e7:df:2c:ab:2d:96:a7:ef:cb:f4:6a:83:99:4d: 9d:5e:c4:35:3c:52:40:93:f3:b8:de:bd:1b:c0:46: f8:b0:eb:d1:07:4e:80:3c:7a:06:5a:c7:4c:f9:af: 80:38:28:1f:51:84:ba:fa:47:8d:59:fd:2b:f3:be: 9e:6e:7c:2a:cb:3c:37:a9:b5:20:44:54:36:bb:1a: ff:e8:c5:e3:d3:d8:c4:ee:99:7e:0b:61:e4:e5:81: ce:36:7e:0e:60:fa:42:8f:ff:28:b6:3d:a4:5e:0e: 87:5d:a8:83:e6:58:df:32:3a:36:4e:04:23:de:5a: d5:12:f8:10:f3:d8:22:50:4e:69:34:a5:8a:7a:6f: 5d:9e:b5:37:ed:d9:fd:5d:63:98:d0:5a:06:0b:e3: f9:3f:97:0c:fe:41:61:e9:e9:0d:b9:e0:67:9d:14: a3:bb:a2:d9:e4:b6:84:c9:de:c2:c8:9a:d1:63:59: 69:43:ea:f4:ae:e9:5f:32:2d:01:1c:d4:24:55:26: 22:73:c5:54:46:27:9a:eb:10:af:73:92:10:7e:55: 75:36:ad:1e:a7:ab:6f:08:65:c6:8f:ce:ba:74:02: 07:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:15:DF:95:33:98:6A:AB:B6:6A:D5:10:CA:86:68:A4:9C:FF:EB:31 X509v3 Authority Key Identifier: keyid:19:1B:1A:99:35:8D:AA:58:E7:26:25:C4:CE:9D:82:9E:91:8E:FC:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GRsamTWNqljnJiXEzp2CnpGO_IY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/IxXflTOYaqu2atUQyoZopJz_6zE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/6197c1-72f4-4e4f-a4b8-9e4d0cf95544/1/GRsamTWNqljnJiXEzp2CnpGO_IY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.89.20.0/24 185.122.252.0/22 185.217.61.0/24 Signature Algorithm: sha256WithRSAEncryption 72:71:a7:92:b6:3a:26:b7:c6:40:64:53:75:d8:6b:2a:bf:c0: 61:2f:c3:ca:3a:30:30:d2:94:ac:84:1d:e2:04:31:f9:9e:db: a3:93:ed:ea:c1:08:0d:c9:00:7a:2a:14:8e:2d:62:19:ae:97: fb:f8:f2:ea:40:fa:a9:ba:d0:f3:38:5c:23:27:db:d3:61:4f: c9:36:e0:a8:db:5d:a3:2e:86:2b:26:92:7f:61:25:78:35:c5: 45:ff:ed:05:a1:8b:a2:26:67:4c:b0:18:88:ad:a6:9b:33:17: 49:f5:f3:16:58:08:16:f5:b4:67:77:09:d9:d3:8e:d6:52:27: 47:6a:b9:7e:13:6c:f6:b4:f7:fd:ab:8e:92:e4:47:44:54:9a: 3e:93:c0:30:7f:b3:10:96:06:b0:11:29:bd:1c:a6:b0:8c:21: b5:e8:b4:8d:63:f3:a2:a6:ba:6a:39:9c:6c:b2:9f:9b:56:2b: c2:d0:64:d8:34:4f:c4:be:2c:dc:e9:6b:9e:bd:77:95:3a:cc: 0d:fd:47:53:d3:4e:e0:6f:65:01:13:2e:d2:22:24:82:ae:cc: 8c:75:14:74:41:0e:0a:05:81:e2:ff:de:c4:5f:73:3a:3c:77: 89:7f:0c:fe:b8:14:d4:4d:29:03:e5:13:ad:89:e7:5b:8b:36: c2:84:4c:a7 -----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISAZt8gDh8U9aMPZ03ErTk3HgtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDE5MWIxYTk5MzU4ZGFhNThlNzI2MjVjNGNlOWQ4MjllOTE4 ZWZjODYwHhcNMjYwMTAyMDIxODU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzE1ZGY5NTMzOTg2YWFiYjY2YWQ1MTBjYTg2NjhhNDljZmZlYjMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMZcLge3ZiuqXjsz7PVw7mD2Gy/W YPcEMHu6fIN1598sqy2Wp+/L9GqDmU2dXsQ1PFJAk/O43r0bwEb4sOvRB06APHoG WsdM+a+AOCgfUYS6+keNWf0r876ebnwqyzw3qbUgRFQ2uxr/6MXj09jE7pl+C2Hk 5YHONn4OYPpCj/8otj2kXg6HXaiD5ljfMjo2TgQj3lrVEvgQ89giUE5pNKWKem9d nrU37dn9XWOY0FoGC+P5P5cM/kFh6ekNueBnnRSju6LZ5LaEyd7CyJrRY1lpQ+r0 rulfMi0BHNQkVSYic8VURiea6xCvc5IQflV1Nq0ep6tvCGXGj866dAIHVwIDAQAB o4ICFTCCAhEwHQYDVR0OBBYEFCMV35UzmGqrtmrVEMqGaKSc/+sxMB8GA1UdIwQY MBaAFBkbGpk1japY5yYlxM6dgp6RjvyGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvR1JzYW1UV05xbGpuSmlYRXpwMkNucEdPX0lZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni82MTk3YzEtNzJmNC00ZTRmLWE0Yjgt OWU0ZDBjZjk1NTQ0LzEvSXhYZmxUT1lhcXUyYXRVUXlvWm9wSnpfNnpFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni82MTk3YzEtNzJmNC00ZTRmLWE0YjgtOWU0ZDBjZjk1NTQ0 LzEvR1JzYW1UV05xbGpuSmlYRXpwMkNucEdPX0lZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALVkUAwQC uXr8AwQAudk9MA0GCSqGSIb3DQEBCwUAA4IBAQBycaeStjomt8ZAZFN12Gsqv8Bh L8PKOjAw0pSshB3iBDH5ntujk+3qwQgNyQB6KhSOLWIZrpf7+PLqQPqputDzOFwj J9vTYU/JNuCo212jLoYrJpJ/YSV4NcVF/+0FoYuiJmdMsBiIraabMxdJ9fMWWAgW 9bRndwnZ047WUidHarl+E2z2tPf9q46S5EdEVJo+k8Awf7MQlgawESm9HKawjCG1 6LSNY/OiprpqOZxssp+bVivC0GTYNE/Evizc6WuevXeVOswN/UdT007gb2UBEy7S IiSCrsyMdRR0QQ4KBYHi/97EX3M6PHeJfwz+uBTUTSkD5ROtiedbizbChEyn -----END CERTIFICATE-----Generated at Mon Feb 9 23:46:45 2026 by rpki-client