This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/IthByAoJjq4OCZKx70tYVqka2V8.roa File: IthByAoJjq4OCZKx70tYVqka2V8.roa (raw, json) Hash identifier: QOtlJL2Zqjtri6/C7SYlf66hxXAp8pusdhXSfgih9fg= Subject key identifier: 22:D8:41:C8:0A:09:8E:AE:0E:09:92:B1:EF:4B:58:56:A9:1A:D9:5F Certificate issuer: /CN=72f7f1476ff8291efaf2849cd3f214672267b001 Certificate serial: 019B7FF1F821BE87E19944A3EBFC559014D1 Authority key identifier: 72:F7:F1:47:6F:F8:29:1E:FA:F2:84:9C:D3:F2:14:67:22:67:B0:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cvfxR2_4KR768oSc0_IUZyJnsAE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/IthByAoJjq4OCZKx70tYVqka2V8.roa Signing time: Fri 02 Jan 2026 18:22:02 +0000 ROA not before: Fri 02 Jan 2026 18:22:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 15879 IP address blocks: 193.104.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/cvfxR2_4KR768oSc0_IUZyJnsAE.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/cvfxR2_4KR768oSc0_IUZyJnsAE.mft rsync://rpki.ripe.net/repository/DEFAULT/cvfxR2_4KR768oSc0_IUZyJnsAE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 09:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f1:f8:21:be:87:e1:99:44:a3:eb:fc:55:90:14:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72f7f1476ff8291efaf2849cd3f214672267b001 Validity Not Before: Jan 2 18:22:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22d841c80a098eae0e0992b1ef4b5856a91ad95f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:36:df:dd:82:1f:38:b3:f7:de:aa:77:d8:6e: 49:9b:de:2f:01:1c:93:0b:80:df:70:a8:ad:49:81: db:13:d8:1c:7f:4a:6c:8b:30:98:e1:d8:9e:a1:a9: 8e:30:82:a4:54:ba:90:6f:dc:14:a4:3b:5b:e4:ad: 49:fa:c5:e9:82:24:e6:a5:26:2a:3d:8d:62:9e:aa: 97:63:76:76:3e:b0:19:d2:e3:31:17:b2:e0:68:2b: 91:d2:63:b5:f3:40:df:eb:b3:61:f5:28:0a:1d:5d: 4e:e5:f9:5c:e8:d6:b6:87:88:88:37:48:62:7e:50: 3a:74:c5:4d:19:43:c1:ab:fe:d3:e4:5e:ad:a0:0f: b1:c1:c9:94:49:0b:5b:cd:39:4f:0f:67:bb:a1:bf: 91:b4:44:7c:54:a4:12:af:dd:c1:25:90:7c:a9:5e: 66:ec:4d:1e:fd:42:b8:42:11:3b:45:49:85:92:55: 3d:97:b7:31:67:bf:06:b2:29:63:97:78:f6:24:89: 69:d8:97:60:78:55:30:d0:02:fc:27:48:f3:db:4d: e1:9f:93:3e:36:c1:9a:d4:c8:05:5e:a8:6e:b2:ff: 10:d1:9e:65:c7:44:2c:66:6b:06:aa:c7:f0:ad:1e: 38:14:53:8b:14:2d:10:db:30:fe:cd:56:a7:e7:57: 67:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D8:41:C8:0A:09:8E:AE:0E:09:92:B1:EF:4B:58:56:A9:1A:D9:5F X509v3 Authority Key Identifier: keyid:72:F7:F1:47:6F:F8:29:1E:FA:F2:84:9C:D3:F2:14:67:22:67:B0:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cvfxR2_4KR768oSc0_IUZyJnsAE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/IthByAoJjq4OCZKx70tYVqka2V8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/e8ecd1-1e2b-42d5-af71-391d10ff947c/1/cvfxR2_4KR768oSc0_IUZyJnsAE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.104.111.0/24 Signature Algorithm: sha256WithRSAEncryption 10:ff:be:e6:3b:0f:f8:0d:34:cf:d3:ef:9c:5f:63:38:50:22: 99:60:d7:72:04:7f:98:fb:c1:7a:a8:c3:5e:e0:89:c9:f8:6f: ed:8c:6e:15:10:01:7a:f0:16:39:b8:87:b9:fa:18:04:37:8e: f8:97:90:36:0d:bd:ca:62:dd:c7:ea:00:e9:67:ab:b8:36:6f: 90:ac:7b:21:06:c1:2a:b3:95:05:01:2f:6a:f9:1b:5c:41:ed: 02:3b:85:a4:6d:16:54:1d:70:c0:bb:72:33:b5:c0:6d:ee:16: e4:ab:3b:aa:e0:4b:37:68:8a:b0:1c:89:e3:b6:ed:af:46:f3: 97:98:3d:25:75:b6:86:ed:e7:ac:a9:16:20:53:d5:93:19:19: 19:df:66:1a:79:d3:0c:51:f7:52:f9:f1:bb:64:9a:ba:cd:9a: 33:f6:36:78:02:3d:2d:56:cf:fd:d5:1d:39:68:d8:da:bd:7a: 95:4d:b7:ad:2d:b9:4d:bc:d9:fa:30:69:72:5d:2a:b8:f9:3b: 27:a4:84:41:31:f1:ab:60:53:d6:5e:1f:ab:08:87:a8:e1:ac: b6:f1:52:84:1c:91:1b:6e:fe:32:7f:20:5f:d4:ef:3c:be:19: 4f:39:90:04:39:87:93:00:a0:02:ef:cd:68:34:47:58:4f:9f: 61:91:eb:ca -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/8fghvofhmUSj6/xVkBTRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyZjdmMTQ3NmZmODI5MWVmYWYyODQ5Y2QzZjIxNDY3MjI2 N2IwMDEwHhcNMjYwMTAyMTgyMjAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmQ4NDFjODBhMDk4ZWFlMGUwOTkyYjFlZjRiNTg1NmE5MWFkOTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDbf3YIfOLP33qp32G5Jm94vARyT C4DfcKitSYHbE9gcf0psizCY4dieoamOMIKkVLqQb9wUpDtb5K1J+sXpgiTmpSYq PY1inqqXY3Z2PrAZ0uMxF7LgaCuR0mO180Df67Nh9SgKHV1O5flc6Na2h4iIN0hi flA6dMVNGUPBq/7T5F6toA+xwcmUSQtbzTlPD2e7ob+RtER8VKQSr93BJZB8qV5m 7E0e/UK4QhE7RUmFklU9l7cxZ78Gsiljl3j2JIlp2JdgeFUw0AL8J0jz203hn5M+ NsGa1MgFXqhusv8Q0Z5lx0QsZmsGqsfwrR44FFOLFC0Q2zD+zVan51dnrQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCLYQcgKCY6uDgmSse9LWFapGtlfMB8GA1UdIwQY MBaAFHL38Udv+Cke+vKEnNPyFGciZ7ABMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3ZmeFIyXzRLUjc2OG9TYzBfSVVaeUpuc0FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9lOGVjZDEtMWUyYi00MmQ1LWFmNzEt MzkxZDEwZmY5NDdjLzEvSXRoQnlBb0pqcTRPQ1pLeDcwdFlWcWthMlY4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi9lOGVjZDEtMWUyYi00MmQ1LWFmNzEtMzkxZDEwZmY5NDdj LzEvY3ZmeFIyXzRLUjc2OG9TYzBfSVVaeUpuc0FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWhvMA0G CSqGSIb3DQEBCwUAA4IBAQAQ/77mOw/4DTTP0++cX2M4UCKZYNdyBH+Y+8F6qMNe 4InJ+G/tjG4VEAF68BY5uIe5+hgEN474l5A2Db3KYt3H6gDpZ6u4Nm+QrHshBsEq s5UFAS9q+RtcQe0CO4WkbRZUHXDAu3IztcBt7hbkqzuq4Es3aIqwHInjtu2vRvOX mD0ldbaG7eesqRYgU9WTGRkZ32YaedMMUfdS+fG7ZJq6zZoz9jZ4Aj0tVs/91R05 aNjavXqVTbetLblNvNn6MGlyXSq4+TsnpIRBMfGrYFPWXh+rCIeo4ay28VKEHJEb bv4yfyBf1O88vhlPOZAEOYeTAKAC781oNEdYT59hkevK -----END CERTIFICATE-----Generated at Mon Jan 26 19:34:58 2026 by rpki-client