This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/IB9SPKJf1hxrd2KSGuACyZN7uFc.roa File: IB9SPKJf1hxrd2KSGuACyZN7uFc.roa (raw, json) Hash identifier: NYU4ucu/KEWsCULDRDB8CckdRivWVvULbQ16Mgwuhpk= Subject key identifier: 20:1F:52:3C:A2:5F:D6:1C:6B:77:62:92:1A:E0:02:C9:93:7B:B8:57 Certificate issuer: /CN=4a409555105040578cb296070074f45107252eeb Certificate serial: 019BFE676FD6DDF4D90F27244DE1C68A9954 Authority key identifier: 4A:40:95:55:10:50:40:57:8C:B2:96:07:00:74:F4:51:07:25:2E:EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SkCVVRBQQFeMspYHAHT0UQclLus.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/IB9SPKJf1hxrd2KSGuACyZN7uFc.roa Signing time: Tue 27 Jan 2026 07:42:30 +0000 ROA not before: Tue 27 Jan 2026 07:42:30 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 12539 IP address blocks: 212.122.64.0/24 maxlen: 24 212.122.66.0/23 maxlen: 23 212.122.74.0/23 maxlen: 23 212.122.76.0/23 maxlen: 23 212.122.78.0/24 maxlen: 24 212.122.82.0/23 maxlen: 23 212.122.86.0/23 maxlen: 23 212.122.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/SkCVVRBQQFeMspYHAHT0UQclLus.crl rsync://rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/SkCVVRBQQFeMspYHAHT0UQclLus.mft rsync://rpki.ripe.net/repository/DEFAULT/SkCVVRBQQFeMspYHAHT0UQclLus.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:67:6f:d6:dd:f4:d9:0f:27:24:4d:e1:c6:8a:99:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a409555105040578cb296070074f45107252eeb Validity Not Before: Jan 27 07:42:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=201f523ca25fd61c6b7762921ae002c9937bb857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:32:ca:0f:e4:ec:09:9b:56:3d:7b:91:c5:18: 66:6c:85:8f:e8:20:ca:ea:21:b3:b7:2b:5e:b4:cb: ff:eb:be:bc:0a:2a:2c:39:2a:a3:5c:43:1d:0f:13: b3:5a:53:72:14:78:2c:70:51:c9:c3:65:a7:31:b1: 72:85:04:f5:1a:53:de:fe:6e:0e:eb:af:25:81:d6: 36:41:ad:6b:1d:d2:4e:4b:89:2f:99:ac:3c:62:c8: 74:ff:2d:01:87:f0:9a:fb:e8:8b:bb:2a:6e:5d:31: e2:2f:2a:1d:15:9f:23:16:97:d6:1f:6a:15:84:b1: 9d:00:c2:01:fc:c5:f6:53:4f:5b:36:cb:7e:78:05: 59:49:5d:d6:a2:da:55:d7:7d:6a:d2:96:6d:7c:cf: 1d:7f:6e:07:60:22:72:38:26:fc:4c:2d:4e:0a:68: 1e:a4:0b:b4:41:7b:91:ea:94:c3:74:0b:3f:83:b8: 9b:dd:cf:08:f3:3f:95:00:cc:e2:59:86:51:f2:e4: 4b:44:73:e2:a1:61:28:17:42:38:eb:fa:b4:2c:d5: 4a:58:3c:fd:98:0a:a8:82:34:b8:6d:54:b5:18:98: e2:bc:d1:d4:87:9d:d5:de:c5:fa:37:3c:53:99:38: f5:0d:0e:f5:e9:6c:44:b7:6f:d8:a0:34:d0:27:e8: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:1F:52:3C:A2:5F:D6:1C:6B:77:62:92:1A:E0:02:C9:93:7B:B8:57 X509v3 Authority Key Identifier: keyid:4A:40:95:55:10:50:40:57:8C:B2:96:07:00:74:F4:51:07:25:2E:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SkCVVRBQQFeMspYHAHT0UQclLus.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/IB9SPKJf1hxrd2KSGuACyZN7uFc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/5731da-6665-4161-80c1-5e79b4435e2c/1/SkCVVRBQQFeMspYHAHT0UQclLus.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.122.64.0/24 212.122.66.0/23 212.122.74.0-212.122.78.255 212.122.82.0/23 212.122.86.0/23 212.122.94.0/24 Signature Algorithm: sha256WithRSAEncryption 69:45:74:fb:4b:cc:f2:ce:07:36:01:25:dd:61:4b:1d:78:fa: 27:ae:21:f6:ad:4c:13:aa:35:57:d1:6d:76:5e:ce:11:b9:d8: a5:5e:c2:50:c1:d6:af:ce:9c:c6:af:fd:0b:3f:18:c7:13:f0: e2:b4:df:c7:09:d0:18:53:d6:b5:80:9c:48:f0:80:1c:4d:b4: 1c:83:5d:27:58:de:de:cd:b9:cd:0c:da:74:b8:11:78:fa:14: d1:7d:2b:72:26:82:31:67:9d:2d:52:31:90:51:18:89:ea:27: ce:f7:ba:49:3b:56:ab:e2:46:bd:7c:66:70:f3:ff:cf:04:7e: 2c:23:bb:be:17:db:27:14:7c:00:5f:14:c5:de:80:4f:01:80: 37:7d:67:f6:dd:0c:83:d8:13:76:76:3e:8d:6c:24:bc:16:1d: c8:7b:07:87:09:54:d0:79:20:28:56:a2:65:5d:e4:3f:17:7d: e2:80:d5:0b:a6:34:1b:4f:5a:46:ff:1b:39:20:a4:a9:7f:0e: cb:53:a9:f3:2c:52:eb:4f:24:02:13:06:47:2d:b8:91:3c:ca: 80:be:c6:8d:7f:33:a4:14:6e:c9:0c:f3:67:d7:76:f0:b0:fb: ad:41:15:ee:2f:f3:60:1b:84:15:ef:4a:24:9e:30:90:a0:55: 4b:78:fc:a1 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgISAZv+Z2/W3fTZDyckTeHGiplUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhNDA5NTU1MTA1MDQwNTc4Y2IyOTYwNzAwNzRmNDUxMDcy NTJlZWIwHhcNMjYwMTI3MDc0MjMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMDFmNTIzY2EyNWZkNjFjNmI3NzYyOTIxYWUwMDJjOTkzN2JiODU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvzLKD+TsCZtWPXuRxRhmbIWP6CDK 6iGztytetMv/6768CiosOSqjXEMdDxOzWlNyFHgscFHJw2WnMbFyhQT1GlPe/m4O 668lgdY2Qa1rHdJOS4kvmaw8Ysh0/y0Bh/Ca++iLuypuXTHiLyodFZ8jFpfWH2oV hLGdAMIB/MX2U09bNst+eAVZSV3WotpV131q0pZtfM8df24HYCJyOCb8TC1OCmge pAu0QXuR6pTDdAs/g7ib3c8I8z+VAMziWYZR8uRLRHPioWEoF0I46/q0LNVKWDz9 mAqogjS4bVS1GJjivNHUh53V3sX6NzxTmTj1DQ716WxEt2/YoDTQJ+giuwIDAQAB o4ICLzCCAiswHQYDVR0OBBYEFCAfUjyiX9Yca3dikhrgAsmTe7hXMB8GA1UdIwQY MBaAFEpAlVUQUEBXjLKWBwB09FEHJS7rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2tDVlZSQlFRRmVNc3BZSEFIVDBVUWNsTHVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC81NzMxZGEtNjY2NS00MTYxLTgwYzEt NWU3OWI0NDM1ZTJjLzEvSUI5U1BLSmYxaHhyZDJLU0d1QUN5Wk43dUZjLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC81NzMxZGEtNjY2NS00MTYxLTgwYzEtNWU3OWI0NDM1ZTJj LzEvU2tDVlZSQlFRRmVNc3BZSEFIVDBVUWNsTHVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEUGCCsGAQUFBwEHAQH/BDYwNDAyBAIAATAsAwQA1HpAAwQB 1HpCMAwDBAHUekoDBADUek4DBAHUelIDBAHUelYDBADUel4wDQYJKoZIhvcNAQEL BQADggEBAGlFdPtLzPLOBzYBJd1hSx14+ieuIfatTBOqNVfRbXZezhG52KVewlDB 1q/OnMav/Qs/GMcT8OK038cJ0BhT1rWAnEjwgBxNtByDXSdY3t7Nuc0M2nS4EXj6 FNF9K3ImgjFnnS1SMZBRGInqJ873ukk7VqviRr18ZnDz/88Efiwju74X2ycUfABf FMXegE8BgDd9Z/bdDIPYE3Z2Po1sJLwWHch7B4cJVNB5IChWomVd5D8XfeKA1Qum NBtPWkb/GzkgpKl/DstTqfMsUutPJAITBkctuJE8yoC+xo1/M6QUbskM82fXdvCw +61BFe4v82AbhBXvSiSeMJCgVUt4/KE= -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:28 2026 by rpki-client