This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/iALiZE40TDLMSzbMWnK-jhY99R8.roa File: iALiZE40TDLMSzbMWnK-jhY99R8.roa (raw, json) Hash identifier: CSX6n7wpmUcKZ7LgevP+s7dOJ8/D0LktOFqzx/ZKW4U= Subject key identifier: 88:02:E2:64:4E:34:4C:32:CC:4B:36:CC:5A:72:BE:8E:16:3D:F5:1F Certificate issuer: /CN=ea46963cc479dadbe3c52234ab9fabaa8122d25b Certificate serial: 019B76EB09303C6C4DAAE4DF763C638B11EF Authority key identifier: EA:46:96:3C:C4:79:DA:DB:E3:C5:22:34:AB:9F:AB:AA:81:22:D2:5B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6kaWPMR52tvjxSI0q5-rqoEi0ls.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/iALiZE40TDLMSzbMWnK-jhY99R8.roa Signing time: Thu 01 Jan 2026 00:17:53 +0000 ROA not before: Thu 01 Jan 2026 00:17:53 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 0 IP address blocks: 91.195.242.0/23 maxlen: 24 124.198.192.0/19 maxlen: 24 139.66.0.0/16 maxlen: 24 147.204.0.0/16 maxlen: 24 155.56.0.0/16 maxlen: 24 193.16.224.0/22 maxlen: 24 194.39.128.0/21 maxlen: 24 194.39.136.0/22 maxlen: 24 194.45.236.0/23 maxlen: 24 194.55.88.0/22 maxlen: 24 202.89.128.0/20 maxlen: 24 217.77.240.0/20 maxlen: 24 2a00:fe00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/6kaWPMR52tvjxSI0q5-rqoEi0ls.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/6kaWPMR52tvjxSI0q5-rqoEi0ls.mft rsync://rpki.ripe.net/repository/DEFAULT/6kaWPMR52tvjxSI0q5-rqoEi0ls.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 15:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:09:30:3c:6c:4d:aa:e4:df:76:3c:63:8b:11:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ea46963cc479dadbe3c52234ab9fabaa8122d25b Validity Not Before: Jan 1 00:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8802e2644e344c32cc4b36cc5a72be8e163df51f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a8:81:d5:39:70:b8:82:8d:28:6b:c4:7e:89: c6:83:ba:db:19:ae:fd:7a:4a:7d:49:e5:6e:ef:da: 94:b9:d1:20:e1:29:e6:74:bc:0e:a6:cf:6f:2b:25: 1a:9e:01:ef:0d:be:bb:5f:c8:24:a9:c9:66:a9:72: 2d:6d:b1:cd:ea:16:3c:12:54:32:55:6e:86:96:e3: f8:b8:ff:4d:e3:45:4d:00:13:fb:58:8e:8d:ec:f5: a6:bb:36:b0:1d:05:bf:06:f7:52:03:fc:39:e2:20: 07:64:a4:06:4e:7a:84:d2:2b:bd:53:25:65:12:90: de:2d:13:70:85:7b:f4:3c:3b:28:e6:29:15:71:5b: 4e:d7:ff:59:4f:b9:fa:53:fa:90:31:be:d2:bb:af: b7:38:5d:97:49:a7:48:c2:b7:9d:6d:39:02:1e:b6: 82:02:e4:43:db:dc:5d:63:b1:48:d7:f5:fa:ed:68: dd:3d:70:81:f8:d2:d4:d8:76:fe:b6:8f:d8:4b:80: ac:23:f8:29:ae:1d:31:a4:e9:fa:5e:c9:3a:e5:92: d2:87:60:a5:2d:dc:57:5c:0c:7d:05:8d:64:8b:b1: ce:e6:51:9b:8c:38:ca:7b:69:43:f8:d5:7c:8f:64: a0:99:ce:88:51:87:c5:a3:b6:82:07:19:6e:80:c3: 5f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:02:E2:64:4E:34:4C:32:CC:4B:36:CC:5A:72:BE:8E:16:3D:F5:1F X509v3 Authority Key Identifier: keyid:EA:46:96:3C:C4:79:DA:DB:E3:C5:22:34:AB:9F:AB:AA:81:22:D2:5B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kaWPMR52tvjxSI0q5-rqoEi0ls.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/iALiZE40TDLMSzbMWnK-jhY99R8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/e862de-c46c-4f21-b38e-eb5bc7d97aa0/1/6kaWPMR52tvjxSI0q5-rqoEi0ls.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.195.242.0/23 124.198.192.0/19 139.66.0.0/16 147.204.0.0/16 155.56.0.0/16 193.16.224.0/22 194.39.128.0-194.39.139.255 194.45.236.0/23 194.55.88.0/22 202.89.128.0/20 217.77.240.0/20 IPv6: 2a00:fe00::/32 Signature Algorithm: sha256WithRSAEncryption 84:13:96:15:b1:4e:10:3e:83:b7:36:a4:95:6f:cc:56:df:a0: 3c:39:aa:8f:d5:15:70:e3:ef:2a:72:2b:ba:69:08:b9:20:62: a4:05:23:b7:a5:d6:b1:31:46:d9:40:9b:b5:68:1c:55:28:aa: b7:26:8e:cb:3e:7e:d1:2e:06:09:90:fa:e3:f2:25:d7:cb:dc: 79:26:a9:9d:62:d6:3f:14:27:cd:62:f2:53:c1:c1:23:f4:cb: 0b:b0:4e:bd:c5:11:92:0b:ca:dd:0d:87:3d:3c:e5:71:2f:55: 28:0d:8e:81:ea:57:55:de:d3:40:12:d8:7c:29:38:34:80:86: 40:12:c4:b3:ac:d3:a2:e4:74:8b:ee:18:86:80:aa:89:a8:5e: 5a:76:e6:7a:8c:29:24:5a:33:79:75:0a:53:f6:e8:9b:61:50: b7:45:60:29:86:f5:55:04:b7:c0:f7:9e:42:a7:77:f5:73:40: 5d:5e:0a:c8:e4:80:36:bf:80:95:87:2c:0f:51:e0:df:a0:7b: 02:17:e4:62:3d:cd:fc:29:45:eb:a6:f8:4f:01:5f:b2:a4:74: d1:d7:98:4c:a5:32:d2:be:f2:a9:06:e5:ad:3d:20:cb:b0:e5: 5d:6d:de:bb:99:4b:6c:65:1f:5f:7f:64:a3:c9:a3:e9:7f:04: 43:80:22:ab -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgISAZt26wkwPGxNquTfdjxjixHvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVhNDY5NjNjYzQ3OWRhZGJlM2M1MjIzNGFiOWZhYmFhODEy MmQyNWIwHhcNMjYwMTAxMDAxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODAyZTI2NDRlMzQ0YzMyY2M0YjM2Y2M1YTcyYmU4ZTE2M2RmNTFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqiB1TlwuIKNKGvEfonGg7rbGa79 ekp9SeVu79qUudEg4SnmdLwOps9vKyUangHvDb67X8gkqclmqXItbbHN6hY8ElQy VW6GluP4uP9N40VNABP7WI6N7PWmuzawHQW/BvdSA/w54iAHZKQGTnqE0iu9UyVl EpDeLRNwhXv0PDso5ikVcVtO1/9ZT7n6U/qQMb7Su6+3OF2XSadIwredbTkCHraC AuRD29xdY7FI1/X67WjdPXCB+NLU2Hb+to/YS4CsI/gprh0xpOn6Xsk65ZLSh2Cl LdxXXAx9BY1ki7HO5lGbjDjKe2lD+NV8j2Sgmc6IUYfFo7aCBxlugMNfZwIDAQAB o4ICWTCCAlUwHQYDVR0OBBYEFIgC4mRONEwyzEs2zFpyvo4WPfUfMB8GA1UdIwQY MBaAFOpGljzEedrb48UiNKufq6qBItJbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNmthV1BNUjUydHZqeFNJMHE1LXJxb0VpMGxzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi9lODYyZGUtYzQ2Yy00ZjIxLWIzOGUt ZWI1YmM3ZDk3YWEwLzEvaUFMaVpFNDBURExNU3piTVduSy1qaFk5OVI4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi9lODYyZGUtYzQ2Yy00ZjIxLWIzOGUtZWI1YmM3ZDk3YWEw LzEvNmthV1BNUjUydHZqeFNJMHE1LXJxb0VpMGxzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBNBAIAATBHAwQBW8PyAwQF fMbAAwMAi0IDAwCTzAMDAJs4AwQCwRDgMAwDBAfCJ4ADBALCJ4gDBAHCLewDBALC N1gDBATKWYADBATZTfAwDQQCAAIwBwMFACoA/gAwDQYJKoZIhvcNAQELBQADggEB AIQTlhWxThA+g7c2pJVvzFbfoDw5qo/VFXDj7ypyK7ppCLkgYqQFI7el1rExRtlA m7VoHFUoqrcmjss+ftEuBgmQ+uPyJdfL3HkmqZ1i1j8UJ81i8lPBwSP0ywuwTr3F EZILyt0Nhz085XEvVSgNjoHqV1Xe00AS2HwpODSAhkASxLOs06LkdIvuGIaAqomo Xlp25nqMKSRaM3l1ClP26JthULdFYCmG9VUEt8D3nkKnd/VzQF1eCsjkgDa/gJWH LA9R4N+gewIX5GI9zfwpReum+E8BX7KkdNHXmEylMtK+8qkG5a09IMuw5V1t3ruZ S2xlH19/ZKPJo+l/BEOAIqs= -----END CERTIFICATE-----Generated at Wed Jan 7 23:47:48 2026 by rpki-client