This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/iaWZDNhDLscYcfyYSiXpXFomI88.roa File: iaWZDNhDLscYcfyYSiXpXFomI88.roa (raw, json) Hash identifier: Pf7br+pz9PCLXjlHTpNcxUaJd9dwtWHArZdZaJaAooU= Subject key identifier: 89:A5:99:0C:D8:43:2E:C7:18:71:FC:98:4A:25:E9:5C:5A:26:23:CF Certificate issuer: /CN=5c757007aebf00098a800228db1f5930ee66e675 Certificate serial: 019B7834F50BE58166DA43F8624603EFD045 Authority key identifier: 5C:75:70:07:AE:BF:00:09:8A:80:02:28:DB:1F:59:30:EE:66:E6:75 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHVwB66_AAmKgAIo2x9ZMO5m5nU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/iaWZDNhDLscYcfyYSiXpXFomI88.roa Signing time: Thu 01 Jan 2026 06:18:15 +0000 ROA not before: Thu 01 Jan 2026 06:18:15 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 56921 IP address blocks: 195.128.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/XHVwB66_AAmKgAIo2x9ZMO5m5nU.crl rsync://rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/XHVwB66_AAmKgAIo2x9ZMO5m5nU.mft rsync://rpki.ripe.net/repository/DEFAULT/XHVwB66_AAmKgAIo2x9ZMO5m5nU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:f5:0b:e5:81:66:da:43:f8:62:46:03:ef:d0:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c757007aebf00098a800228db1f5930ee66e675 Validity Not Before: Jan 1 06:18:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89a5990cd8432ec71871fc984a25e95c5a2623cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:95:00:f8:a8:4e:17:87:80:8d:2d:6b:ef:4b: 4c:9d:49:1b:ec:ab:1a:57:9d:e2:02:7a:3a:50:89: 40:87:82:df:a4:7e:d2:04:7a:df:39:3d:39:92:32: 31:fa:97:de:98:1e:50:ac:b5:ff:35:de:a1:a4:bc: 78:54:8c:18:76:e2:0a:41:7a:32:e1:01:cf:8d:50: e8:b4:9e:fc:f9:fd:91:bd:5e:4d:b0:2a:fe:38:aa: 9b:4a:e2:46:5b:b4:18:2e:56:33:bb:0e:e3:80:b3: f9:53:42:4a:cd:93:80:a6:80:40:8d:28:b1:b4:b5: aa:76:55:35:b1:cd:76:78:13:c8:30:fb:fd:0d:00: a2:c5:a8:13:da:2e:fa:5b:f5:bd:b2:52:e7:ff:6b: 8c:8b:5f:be:f6:43:e7:20:6a:59:2a:5e:46:38:df: 43:f7:8c:3c:66:1e:01:a2:2a:09:6b:4f:ce:13:b6: 52:1d:b1:2e:79:c6:5b:29:b2:99:2e:fc:8e:83:c5: 48:fe:b5:7c:04:46:bb:5f:6e:94:47:4b:24:0a:6f: 39:1b:91:e3:d4:0f:b7:a2:5a:d0:4b:17:e5:d8:8e: 0c:9c:35:6e:68:bc:10:00:d6:f3:f1:43:15:60:7c: 69:9d:bb:a2:87:94:09:7e:09:0c:ba:d7:16:3b:dd: eb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A5:99:0C:D8:43:2E:C7:18:71:FC:98:4A:25:E9:5C:5A:26:23:CF X509v3 Authority Key Identifier: keyid:5C:75:70:07:AE:BF:00:09:8A:80:02:28:DB:1F:59:30:EE:66:E6:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHVwB66_AAmKgAIo2x9ZMO5m5nU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/iaWZDNhDLscYcfyYSiXpXFomI88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65aea5-ffef-4278-982e-a7a73194028e/1/XHVwB66_AAmKgAIo2x9ZMO5m5nU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.128.146.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:11:78:3b:d3:d7:01:d8:ce:19:cd:5e:0f:9c:ed:00:5d:10: e1:f8:35:58:eb:e8:fa:2b:51:f6:01:2e:b1:d4:4b:3d:02:fe: 6c:84:c8:66:e4:e6:a9:e0:0a:16:53:07:e5:7a:42:b3:7c:80: 6b:93:48:5a:de:59:ab:82:07:58:61:76:51:4a:6f:21:8b:5f: b4:3c:66:8d:ee:a0:ae:dd:e3:7c:d8:8d:dc:91:ab:7c:6d:c9: 83:5f:a3:84:8b:40:fc:22:36:3e:2e:84:15:1f:14:c3:6c:a2: 07:8b:69:99:f3:7c:c2:f1:b2:74:6c:8d:d9:9b:7b:1c:1e:35: a1:da:9e:2c:eb:64:af:af:0d:0f:03:b9:5c:5e:45:bc:bc:23: 54:a3:d0:23:f1:a1:74:94:cc:35:ff:40:1c:5f:0a:51:fc:83: b8:40:2d:f2:54:e6:16:66:0b:20:a8:57:71:84:15:1c:ee:91: ff:ad:db:11:53:08:11:7d:ad:1c:8d:84:6e:59:9f:e7:38:2c: 7d:34:93:7d:7f:3c:47:ea:ff:f2:ee:7b:32:8f:29:ab:ee:ee: df:b7:ec:4c:02:64:30:fe:fa:5e:bb:97:62:29:70:f0:ca:b2: 2d:53:a7:1b:93:50:a5:70:84:fc:5f:aa:cf:e6:00:d7:4a:3d: 24:2b:ae:96 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NPUL5YFm2kP4YkYD79BFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNzU3MDA3YWViZjAwMDk4YTgwMDIyOGRiMWY1OTMwZWU2 NmU2NzUwHhcNMjYwMTAxMDYxODE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OWE1OTkwY2Q4NDMyZWM3MTg3MWZjOTg0YTI1ZTk1YzVhMjYyM2NmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJUA+KhOF4eAjS1r70tMnUkb7Ksa V53iAno6UIlAh4LfpH7SBHrfOT05kjIx+pfemB5QrLX/Nd6hpLx4VIwYduIKQXoy 4QHPjVDotJ78+f2RvV5NsCr+OKqbSuJGW7QYLlYzuw7jgLP5U0JKzZOApoBAjSix tLWqdlU1sc12eBPIMPv9DQCixagT2i76W/W9slLn/2uMi1++9kPnIGpZKl5GON9D 94w8Zh4BoioJa0/OE7ZSHbEuecZbKbKZLvyOg8VI/rV8BEa7X26UR0skCm85G5Hj 1A+3olrQSxfl2I4MnDVuaLwQANbz8UMVYHxpnbuih5QJfgkMutcWO93rzwIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFImlmQzYQy7HGHH8mEol6VxaJiPPMB8GA1UdIwQY MBaAFFx1cAeuvwAJioACKNsfWTDuZuZ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEhWd0I2Nl9BQW1LZ0FJbzJ4OVpNTzVtNW5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS82NWFlYTUtZmZlZi00Mjc4LTk4MmUt YTdhNzMxOTQwMjhlLzEvaWFXWkROaERMc2NZY2Z5WVNpWHBYRm9tSTg4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS82NWFlYTUtZmZlZi00Mjc4LTk4MmUtYTdhNzMxOTQwMjhl LzEvWEhWd0I2Nl9BQW1LZ0FJbzJ4OVpNTzVtNW5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw4CSMA0G CSqGSIb3DQEBCwUAA4IBAQBtEXg709cB2M4ZzV4PnO0AXRDh+DVY6+j6K1H2AS6x 1Es9Av5shMhm5Oap4AoWUwflekKzfIBrk0ha3lmrggdYYXZRSm8hi1+0PGaN7qCu 3eN82I3ckat8bcmDX6OEi0D8IjY+LoQVHxTDbKIHi2mZ83zC8bJ0bI3Zm3scHjWh 2p4s62Svrw0PA7lcXkW8vCNUo9Aj8aF0lMw1/0AcXwpR/IO4QC3yVOYWZgsgqFdx hBUc7pH/rdsRUwgRfa0cjYRuWZ/nOCx9NJN9fzxH6v/y7nsyjymr7u7ft+xMAmQw /vpeu5diKXDwyrItU6cbk1ClcIT8X6rP5gDXSj0kK66W -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:05 2026 by rpki-client