This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/8f7d37-a740-42b0-acd0-c36976363968/1/ILa8ZoCJZMkNP3VlFiAUG63QFj0.roa File: ILa8ZoCJZMkNP3VlFiAUG63QFj0.roa (raw, json) Hash identifier: ithiJooqYNVv+hqIuWx9pXDq5+Ysuyh5ujkHJJ0K2Hg= Subject key identifier: 20:B6:BC:66:80:89:64:C9:0D:3F:75:65:16:20:14:1B:AD:D0:16:3D Certificate issuer: /CN=938a2d72e79026f52bf5657e97ffd1b11be88641 Certificate serial: 019B7CEDF59443ABD8469A25B3AC08EB982D Authority key identifier: 93:8A:2D:72:E7:90:26:F5:2B:F5:65:7E:97:FF:D1:B1:1B:E8:86:41 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k4otcueQJvUr9WV-l__RsRvohkE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/8f7d37-a740-42b0-acd0-c36976363968/1/ILa8ZoCJZMkNP3VlFiAUG63QFj0.roa Signing time: Fri 02 Jan 2026 04:18:48 +0000 ROA not before: Fri 02 Jan 2026 04:18:48 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34428 IP address blocks: 185.249.157.0/24 maxlen: 24 2a13:f00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/8f7d37-a740-42b0-acd0-c36976363968/1/k4otcueQJvUr9WV-l__RsRvohkE.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/8f7d37-a740-42b0-acd0-c36976363968/1/k4otcueQJvUr9WV-l__RsRvohkE.mft rsync://rpki.ripe.net/repository/DEFAULT/k4otcueQJvUr9WV-l__RsRvohkE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:f5:94:43:ab:d8:46:9a:25:b3:ac:08:eb:98:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=938a2d72e79026f52bf5657e97ffd1b11be88641 Validity Not Before: Jan 2 04:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20b6bc66808964c90d3f75651620141badd0163d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3e:12:16:3e:e1:87:08:1f:3f:95:05:43:d9: c0:b6:79:5a:0c:dd:c1:42:e5:a4:97:d7:c2:2e:aa: b1:7e:90:89:18:84:2f:1d:5f:13:83:95:66:cb:35: 6b:bd:18:96:02:fe:f2:ab:9b:24:33:46:8e:66:6f: f1:13:d4:f5:79:8e:11:94:7e:85:db:10:f2:b5:6e: 30:4e:6a:44:e7:af:35:aa:cd:d3:90:c8:51:f6:bf: 81:f7:60:b3:18:ee:b7:de:5f:12:b0:77:00:0b:6b: 9a:7a:dc:15:6b:d8:49:fe:ba:b1:fd:88:f1:6b:e8: bf:a7:6e:8f:da:e9:e3:5a:f0:4a:dc:d0:06:cb:ad: 2a:06:d4:9e:c0:a4:89:dc:67:cc:d8:61:54:2f:7a: 9e:d1:16:b5:9f:14:68:e9:88:c9:aa:da:8d:0b:2c: 3d:ff:5a:ac:4e:b5:a1:dc:7b:a6:d2:1a:f4:18:6e: b5:82:87:41:cb:ef:87:05:01:14:b4:e5:78:54:79: da:68:d8:3b:44:5f:95:a3:0c:08:b5:71:dc:30:3c: 0a:4b:69:5b:bf:71:c0:f1:5f:38:be:93:d6:3a:1a: 79:65:73:25:c0:b2:4e:88:f5:57:a9:ae:87:f5:36: 73:d3:5c:c0:be:5a:72:de:9a:48:a1:47:a7:10:31: 27:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B6:BC:66:80:89:64:C9:0D:3F:75:65:16:20:14:1B:AD:D0:16:3D X509v3 Authority Key Identifier: keyid:93:8A:2D:72:E7:90:26:F5:2B:F5:65:7E:97:FF:D1:B1:1B:E8:86:41 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k4otcueQJvUr9WV-l__RsRvohkE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8f7d37-a740-42b0-acd0-c36976363968/1/ILa8ZoCJZMkNP3VlFiAUG63QFj0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8f7d37-a740-42b0-acd0-c36976363968/1/k4otcueQJvUr9WV-l__RsRvohkE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.249.157.0/24 IPv6: 2a13:f00::/29 Signature Algorithm: sha256WithRSAEncryption 4b:93:0d:59:40:e0:9e:65:d3:5e:59:c1:7a:76:7a:df:9b:bd: 54:fd:cd:c1:4b:d9:26:3c:8c:55:2b:59:4a:96:2a:00:38:48: 51:26:33:6c:7c:f5:1a:22:97:de:9b:c5:33:79:54:7c:49:05: 57:db:b0:02:c2:1f:1b:e8:bd:49:f8:a2:ee:ff:cc:28:b3:c4: dc:b1:33:58:4f:2b:19:fb:7c:67:5d:d7:90:83:50:b9:bb:6c: 24:42:c9:37:74:d4:29:73:eb:71:ba:c5:30:d3:f2:4f:e8:16: e1:3f:33:b2:26:ad:a6:f0:31:e5:93:b1:d8:16:31:31:c1:54: 1f:8b:f6:27:f4:5e:98:ac:06:ec:5c:42:76:a1:95:e9:f6:1d: c7:db:b6:6b:05:46:19:a6:86:8f:94:c1:2d:30:95:c3:8c:ce: 18:a6:c5:04:7d:78:77:aa:94:6a:16:08:b8:b2:61:35:45:3e: 65:6d:bd:2d:6f:5d:d9:19:bb:fa:db:a6:f8:15:ea:1b:6b:6e: 9d:08:fc:5e:6b:b9:69:dd:bf:dc:c6:56:ad:3b:5f:f8:40:f0: 2a:aa:73:9d:05:ce:d8:e4:62:c6:f6:11:89:d0:0b:eb:c8:c5: 76:43:d9:f2:be:dc:97:bb:2f:17:03:c9:d0:b0:ac:3f:3e:33: 92:0d:7d:60 -----BEGIN CERTIFICATE----- MIIFDDCCA/SgAwIBAgISAZt87fWUQ6vYRpols6wI65gtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzOGEyZDcyZTc5MDI2ZjUyYmY1NjU3ZTk3ZmZkMWIxMWJl ODg2NDEwHhcNMjYwMTAyMDQxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGI2YmM2NjgwODk2NGM5MGQzZjc1NjUxNjIwMTQxYmFkZDAxNjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuz4SFj7hhwgfP5UFQ9nAtnlaDN3B QuWkl9fCLqqxfpCJGIQvHV8Tg5VmyzVrvRiWAv7yq5skM0aOZm/xE9T1eY4RlH6F 2xDytW4wTmpE5681qs3TkMhR9r+B92CzGO633l8SsHcAC2uaetwVa9hJ/rqx/Yjx a+i/p26P2unjWvBK3NAGy60qBtSewKSJ3GfM2GFUL3qe0Ra1nxRo6YjJqtqNCyw9 /1qsTrWh3Hum0hr0GG61godBy++HBQEUtOV4VHnaaNg7RF+VowwItXHcMDwKS2lb v3HA8V84vpPWOhp5ZXMlwLJOiPVXqa6H9TZz01zAvlpy3ppIoUenEDEnhwIDAQAB o4ICGDCCAhQwHQYDVR0OBBYEFCC2vGaAiWTJDT91ZRYgFBut0BY9MB8GA1UdIwQY MBaAFJOKLXLnkCb1K/Vlfpf/0bEb6IZBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazRvdGN1ZVFKdlVyOVdWLWxfX1JzUnZvaGtFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi84ZjdkMzctYTc0MC00MmIwLWFjZDAt YzM2OTc2MzYzOTY4LzEvSUxhOFpvQ0paTWtOUDNWbEZpQVVHNjNRRmowLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi84ZjdkMzctYTc0MC00MmIwLWFjZDAtYzM2OTc2MzYzOTY4 LzEvazRvdGN1ZVFKdlVyOVdWLWxfX1JzUnZvaGtFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAufmdMA0E AgACMAcDBQMqEw8AMA0GCSqGSIb3DQEBCwUAA4IBAQBLkw1ZQOCeZdNeWcF6dnrf m71U/c3BS9kmPIxVK1lKlioAOEhRJjNsfPUaIpfem8UzeVR8SQVX27ACwh8b6L1J +KLu/8wos8TcsTNYTysZ+3xnXdeQg1C5u2wkQsk3dNQpc+txusUw0/JP6BbhPzOy Jq2m8DHlk7HYFjExwVQfi/Yn9F6YrAbsXEJ2oZXp9h3H27ZrBUYZpoaPlMEtMJXD jM4YpsUEfXh3qpRqFgi4smE1RT5lbb0tb13ZGbv626b4Feoba26dCPxea7lp3b/c xlatO1/4QPAqqnOdBc7Y5GLG9hGJ0AvryMV2Q9nyvtyXuy8XA8nQsKw/PjOSDX1g -----END CERTIFICATE-----Generated at Tue Feb 10 00:09:20 2026 by rpki-client