This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/IzuhPSU32UBjVKA2bk0v7_QU1uE.roa File: IzuhPSU32UBjVKA2bk0v7_QU1uE.roa (raw, json) Hash identifier: Hv1nXeZ09K6FcuDi7GWgb1nfVre9Ok5EpyqMWBjT5zg= Subject key identifier: 23:3B:A1:3D:25:37:D9:40:63:54:A0:36:6E:4D:2F:EF:F4:14:D6:E1 Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03 Certificate serial: 019B7B36AD1A0A7AD8680F2DD2ACA0B1AE7A Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/IzuhPSU32UBjVKA2bk0v7_QU1uE.roa Signing time: Thu 01 Jan 2026 20:18:59 +0000 ROA not before: Thu 01 Jan 2026 20:18:59 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42403 IP address blocks: 195.209.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.mft rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:ad:1a:0a:7a:d8:68:0f:2d:d2:ac:a0:b1:ae:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03 Validity Not Before: Jan 1 20:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=233ba13d2537d9406354a0366e4d2feff414d6e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2d:7e:9b:b2:96:d9:a7:e4:ea:30:a9:d1:9b: 1a:c5:bc:95:50:7e:5c:47:6f:5b:1a:e4:f5:eb:07: cb:aa:fa:61:7f:2c:78:48:c2:a6:50:d1:fa:35:97: f7:c0:d6:1d:18:6b:be:08:c1:42:3c:75:33:1d:3a: ab:e5:bd:e7:33:e2:56:87:f6:bb:8d:bd:d8:0d:98: 2d:a5:bd:9e:df:07:ac:26:34:d5:f3:6e:cc:d6:49: a3:90:fe:5a:f3:8e:fc:0c:22:1c:d1:af:23:07:96: fb:9c:09:b2:a9:3b:6b:37:c1:88:1d:aa:73:f5:6c: 47:97:52:7d:91:32:a4:b9:5e:ed:42:ff:7d:89:86: 81:be:b8:2d:c5:0d:d3:33:49:bd:1a:8c:99:58:9e: 2b:e1:29:ab:65:cd:1f:a2:a2:be:f2:d1:d8:a1:7c: 4d:db:4f:89:77:fe:cb:2e:11:70:58:a6:8d:3d:47: 9f:65:65:18:7d:60:60:77:53:15:87:38:58:eb:ef: ac:d4:5d:ef:21:ef:1d:ab:c2:2f:48:98:37:4b:f1: 34:c5:4e:11:89:26:14:ed:f7:81:dc:5d:6b:b8:7d: 3b:ae:82:17:99:ed:b9:ec:dd:b6:be:ee:7d:d4:90: 4b:45:fc:7c:be:9a:56:cb:ef:53:47:2c:e9:6b:46: eb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:3B:A1:3D:25:37:D9:40:63:54:A0:36:6E:4D:2F:EF:F4:14:D6:E1 X509v3 Authority Key Identifier: keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/IzuhPSU32UBjVKA2bk0v7_QU1uE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.209.16.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:32:41:a2:91:da:a9:11:a3:3d:92:4c:bf:eb:fa:8f:29:78: 10:be:d7:97:36:f9:c5:9d:a0:47:cd:9a:49:3e:5a:60:47:11: 95:15:b2:69:98:83:52:fc:c2:b8:35:1d:5f:10:01:2d:b1:59: eb:8c:68:57:f1:ac:b6:45:ae:77:71:f7:1b:53:cd:68:3b:3f: 2d:17:13:26:39:3b:bf:83:3f:56:02:33:ca:8e:2f:33:4e:af: 39:7d:70:5b:21:85:d5:d7:30:2e:eb:49:9c:62:3a:5d:46:ca: a9:9b:00:a1:3e:e8:6d:26:ce:9d:a4:57:9e:e0:b1:27:c1:e2: 12:e5:37:8c:32:72:04:97:52:ca:14:f5:0a:de:5b:e3:8c:9b: 68:03:49:99:77:c0:e3:63:0d:50:ae:08:f7:af:89:46:b7:dd: 30:43:9d:61:af:3d:d9:a8:89:47:a8:5e:8d:fe:19:d9:1c:39: b6:28:32:ad:f3:48:3e:b5:7c:f2:a8:48:78:a8:30:4b:c6:cb: 1a:8e:09:09:8d:87:4c:d8:d9:e9:94:fe:96:7a:dc:6d:9e:07: 14:5f:fa:e1:19:09:cb:21:92:aa:87:27:d5:a8:dd:e4:40:64: 9d:c7:d8:35:fe:fa:0b:e8:5b:87:2a:7c:b9:b8:25:4f:ef:56: 39:e5:95:dd -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt7Nq0aCnrYaA8t0qygsa56MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmMWM2NjViMDM4NjkyYjkzYmRmNWQxZDhmM2NlYTNlOTg2 OTdhMDMwHhcNMjYwMTAxMjAxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzNiYTEzZDI1MzdkOTQwNjM1NGEwMzY2ZTRkMmZlZmY0MTRkNmUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAry1+m7KW2afk6jCp0ZsaxbyVUH5c R29bGuT16wfLqvphfyx4SMKmUNH6NZf3wNYdGGu+CMFCPHUzHTqr5b3nM+JWh/a7 jb3YDZgtpb2e3wesJjTV827M1kmjkP5a8478DCIc0a8jB5b7nAmyqTtrN8GIHapz 9WxHl1J9kTKkuV7tQv99iYaBvrgtxQ3TM0m9GoyZWJ4r4SmrZc0foqK+8tHYoXxN 20+Jd/7LLhFwWKaNPUefZWUYfWBgd1MVhzhY6++s1F3vIe8dq8IvSJg3S/E0xU4R iSYU7feB3F1ruH07roIXme257N22vu591JBLRfx8vppWy+9TRyzpa0brHQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCM7oT0lN9lAY1SgNm5NL+/0FNbhMB8GA1UdIwQY MBaAFO8cZlsDhpK5O99dHY886j6YaXoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAt Njg4ZDMzM2VkOWQ1LzEvSXp1aFBTVTMyVUJqVktBMmJrMHY3X1FVMXVFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAtNjg4ZDMzM2VkOWQ1 LzEvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw9EQMA0G CSqGSIb3DQEBCwUAA4IBAQBLMkGikdqpEaM9kky/6/qPKXgQvteXNvnFnaBHzZpJ PlpgRxGVFbJpmINS/MK4NR1fEAEtsVnrjGhX8ay2Ra53cfcbU81oOz8tFxMmOTu/ gz9WAjPKji8zTq85fXBbIYXV1zAu60mcYjpdRsqpmwChPuhtJs6dpFee4LEnweIS 5TeMMnIEl1LKFPUK3lvjjJtoA0mZd8DjYw1Qrgj3r4lGt90wQ51hrz3ZqIlHqF6N /hnZHDm2KDKt80g+tXzyqEh4qDBLxssajgkJjYdM2NnplP6WetxtngcUX/rhGQnL IZKqhyfVqN3kQGSdx9g1/voL6FuHKny5uCVP71Y55ZXd -----END CERTIFICATE-----Generated at Mon Jan 26 04:39:45 2026 by rpki-client