This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2c6b14-7e87-49c7-a3b3-a0a60bb9cd9b/1/IewQ4-Em8YPzzj6aKGxcrGBWA00.roa File: IewQ4-Em8YPzzj6aKGxcrGBWA00.roa (raw, json) Hash identifier: d+3Wy6JFrqiHOg5/dyS0zErOjSAHU2d4zx1E1Uy5i+w= Subject key identifier: 21:EC:10:E3:E1:26:F1:83:F3:CE:3E:9A:28:6C:5C:AC:60:56:03:4D Certificate issuer: /CN=ff1c218811d9294ad631253a445ed1d395a9639f Certificate serial: 019B7DC87291EFC69FC2C29EF3395EB15496 Authority key identifier: FF:1C:21:88:11:D9:29:4A:D6:31:25:3A:44:5E:D1:D3:95:A9:63:9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_xwhiBHZKUrWMSU6RF7R05WpY58.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2c6b14-7e87-49c7-a3b3-a0a60bb9cd9b/1/IewQ4-Em8YPzzj6aKGxcrGBWA00.roa Signing time: Fri 02 Jan 2026 08:17:27 +0000 ROA not before: Fri 02 Jan 2026 08:17:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 207435 IP address blocks: 82.115.212.0/24 maxlen: 24 2a10:3a00::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/2c6b14-7e87-49c7-a3b3-a0a60bb9cd9b/1/_xwhiBHZKUrWMSU6RF7R05WpY58.crl rsync://rpki.ripe.net/repository/DEFAULT/86/2c6b14-7e87-49c7-a3b3-a0a60bb9cd9b/1/_xwhiBHZKUrWMSU6RF7R05WpY58.mft rsync://rpki.ripe.net/repository/DEFAULT/_xwhiBHZKUrWMSU6RF7R05WpY58.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:72:91:ef:c6:9f:c2:c2:9e:f3:39:5e:b1:54:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ff1c218811d9294ad631253a445ed1d395a9639f Validity Not Before: Jan 2 08:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=21ec10e3e126f183f3ce3e9a286c5cac6056034d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1d:b5:d6:47:e1:5c:58:d6:99:bc:67:4f:be: 50:e9:a6:1b:21:8e:3d:70:9b:c6:59:34:d1:cb:91: 62:af:8a:ff:9c:be:3c:01:b8:6f:d6:06:c2:ee:e0: 48:1a:21:cc:75:fe:45:63:99:8b:f5:a3:21:fc:cc: 78:82:27:a4:49:ce:66:19:0a:b0:19:cd:55:1f:45: 49:68:66:8e:c1:3f:c8:86:1d:29:16:b5:7f:96:a7: f8:48:02:11:1f:e1:7d:08:ad:47:24:ce:5b:39:7d: 02:fc:f5:02:a7:0c:a0:0e:06:0b:b2:13:0c:35:31: 0c:47:c0:b3:60:ae:14:e6:dc:80:f9:c2:a1:65:6c: 76:e0:fd:3c:0c:4b:5b:b9:4b:e3:20:62:f1:a7:cb: 96:e8:2b:63:e5:7f:3e:6d:19:82:ec:f5:db:c2:10: 0b:ff:97:a6:7c:fc:82:4f:41:7b:ab:4f:82:06:de: b9:bb:6e:44:6a:7a:c6:75:0f:92:91:b0:aa:ea:dc: 71:6f:ca:81:60:9f:0d:32:07:6a:26:01:79:9f:56: 49:11:95:b9:3b:05:91:ca:21:ab:6f:c1:3e:38:60: 3e:2d:10:a9:15:78:c2:2a:eb:b9:da:60:bd:b9:e9: c7:17:48:13:e3:08:c7:46:8c:36:cf:c3:38:41:22: 76:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:EC:10:E3:E1:26:F1:83:F3:CE:3E:9A:28:6C:5C:AC:60:56:03:4D X509v3 Authority Key Identifier: keyid:FF:1C:21:88:11:D9:29:4A:D6:31:25:3A:44:5E:D1:D3:95:A9:63:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_xwhiBHZKUrWMSU6RF7R05WpY58.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2c6b14-7e87-49c7-a3b3-a0a60bb9cd9b/1/IewQ4-Em8YPzzj6aKGxcrGBWA00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2c6b14-7e87-49c7-a3b3-a0a60bb9cd9b/1/_xwhiBHZKUrWMSU6RF7R05WpY58.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.115.212.0/24 IPv6: 2a10:3a00::/29 Signature Algorithm: sha256WithRSAEncryption 74:96:c1:8f:05:8c:0d:21:0c:5d:40:79:0e:03:f1:73:17:7c: e3:34:80:5b:7b:42:0c:bc:7b:26:f2:25:0f:33:b5:40:44:70: a8:d5:cb:6b:3d:0a:04:85:e9:77:eb:24:e2:f0:65:9c:32:7a: 25:f1:39:85:9f:4d:51:57:f3:f5:11:78:31:bc:e2:68:08:06: b9:3d:27:6e:a2:84:f1:60:62:f7:92:35:b7:88:0e:b3:08:52: 48:71:25:a6:76:f2:c3:73:31:6a:ee:c8:bc:84:b3:73:d2:da: f6:11:5e:e1:07:3d:11:c1:e8:8e:99:07:07:6c:ee:b9:8c:d8: c2:2d:4d:12:54:ac:46:b7:b1:ee:c8:82:14:0a:4e:17:20:e4: e1:ab:64:07:4b:bd:b0:ac:66:7b:bb:c3:c3:f0:48:50:c2:cc: 34:df:93:28:06:0b:69:f4:37:48:27:3c:47:22:a3:f9:f8:d9: 32:c7:d5:e9:54:f2:e2:8a:d4:d8:58:f6:24:91:4b:f5:88:60: 25:cb:fd:43:f6:f5:9e:b7:5c:26:17:57:38:a7:4c:60:07:8b: df:02:68:8e:43:be:16:08:03:b1:03:1e:10:24:d3:95:1f:bb: f3:90:f3:6e:98:d7:05:c8:7f:40:2d:12:45:9b:dc:92:6a:e8: 72:fc:f8:0f -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt9yHKR78afwsKe8zlesVSWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGZmMWMyMTg4MTFkOTI5NGFkNjMxMjUzYTQ0NWVkMWQzOTVh OTYzOWYwHhcNMjYwMTAyMDgxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMWVjMTBlM2UxMjZmMTgzZjNjZTNlOWEyODZjNWNhYzYwNTYwMzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvh211kfhXFjWmbxnT75Q6aYbIY49 cJvGWTTRy5Fir4r/nL48Abhv1gbC7uBIGiHMdf5FY5mL9aMh/Mx4giekSc5mGQqw Gc1VH0VJaGaOwT/Ihh0pFrV/lqf4SAIRH+F9CK1HJM5bOX0C/PUCpwygDgYLshMM NTEMR8CzYK4U5tyA+cKhZWx24P08DEtbuUvjIGLxp8uW6Ctj5X8+bRmC7PXbwhAL /5emfPyCT0F7q0+CBt65u25EanrGdQ+SkbCq6txxb8qBYJ8NMgdqJgF5n1ZJEZW5 OwWRyiGrb8E+OGA+LRCpFXjCKuu52mC9uenHF0gT4wjHRow2z8M4QSJ2zwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCHsEOPhJvGD884+mihsXKxgVgNNMB8GA1UdIwQY MBaAFP8cIYgR2SlK1jElOkRe0dOVqWOfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvX3h3aGlCSFpLVXJXTVNVNlJGN1IwNVdwWTU4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8yYzZiMTQtN2U4Ny00OWM3LWEzYjMt YTBhNjBiYjljZDliLzEvSWV3UTQtRW04WVB6emo2YUtHeGNyR0JXQTAwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ni8yYzZiMTQtN2U4Ny00OWM3LWEzYjMtYTBhNjBiYjljZDli LzEvX3h3aGlCSFpLVXJXTVNVNlJGN1IwNVdwWTU4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAUnPUMA0E AgACMAcDBQMqEDoAMA0GCSqGSIb3DQEBCwUAA4IBAQB0lsGPBYwNIQxdQHkOA/Fz F3zjNIBbe0IMvHsm8iUPM7VARHCo1ctrPQoEhel36yTi8GWcMnol8TmFn01RV/P1 EXgxvOJoCAa5PSduooTxYGL3kjW3iA6zCFJIcSWmdvLDczFq7si8hLNz0tr2EV7h Bz0RweiOmQcHbO65jNjCLU0SVKxGt7HuyIIUCk4XIOThq2QHS72wrGZ7u8PD8EhQ wsw035MoBgtp9DdIJzxHIqP5+Nkyx9XpVPLiitTYWPYkkUv1iGAly/1D9vWet1wm F1c4p0xgB4vfAmiOQ74WCAOxAx4QJNOVH7vzkPNumNcFyH9ALRJFm9ySauhy/PgP -----END CERTIFICATE-----Generated at Mon Feb 9 21:01:10 2026 by rpki-client