This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IY-cX-MNALu4IC_OTud7vyl-LrA.roa File: IY-cX-MNALu4IC_OTud7vyl-LrA.roa (raw, json) Hash identifier: EREk8HtkB+3C+caNH7Ch6KSJNkDCyci86tLaep5Ej3s= Subject key identifier: 21:8F:9C:5F:E3:0D:00:BB:B8:20:2F:CE:4E:E7:7B:BF:29:7E:2E:B0 Certificate issuer: /CN=22a5d84053e2b0c313af1e3ba5102466a5f79678 Certificate serial: 019B7C12DD2A22D9A4E980FEABD2BE50B462 Authority key identifier: 22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IY-cX-MNALu4IC_OTud7vyl-LrA.roa Signing time: Fri 02 Jan 2026 00:19:29 +0000 ROA not before: Fri 02 Jan 2026 00:19:29 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 22065 IP address blocks: 155.204.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.mft rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 00:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:dd:2a:22:d9:a4:e9:80:fe:ab:d2:be:50:b4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22a5d84053e2b0c313af1e3ba5102466a5f79678 Validity Not Before: Jan 2 00:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=218f9c5fe30d00bbb8202fce4ee77bbf297e2eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:84:f1:ba:bb:cf:0f:ba:b7:40:0c:76:31:e9: 7b:9c:e2:ab:bf:a6:ca:6f:c1:be:21:8d:6a:d7:09: 67:ff:bb:1f:d8:78:ea:77:d2:a4:6b:e4:79:27:e8: 3c:90:21:3c:9b:58:f7:59:2a:b7:9b:00:c6:ea:a9: 02:8d:78:af:e3:c5:17:5b:19:f3:3f:e4:c3:61:2c: 23:81:93:87:2d:29:99:ab:21:be:aa:f4:94:44:6a: 6f:fa:cb:e6:11:26:92:20:a7:74:b6:62:e5:7c:30: 9f:c5:c4:54:63:33:d9:bd:1a:83:2f:7a:42:60:6b: f6:5b:ae:75:b8:dc:52:f1:27:11:43:f8:5f:d6:07: 91:0c:3a:ed:87:1c:31:b9:73:8b:c7:51:5a:dc:7f: 94:ab:63:91:67:96:d4:8a:9e:54:79:18:62:ca:b9: cd:62:d0:a0:c6:6c:eb:64:9b:45:e6:5b:62:98:30: 3d:7a:9c:ab:f9:f8:61:45:a0:f2:38:1f:a9:b1:54: 78:9b:7c:d3:d7:46:65:e5:c4:45:05:37:33:05:7c: 18:f0:d6:c9:a0:ab:7f:49:89:ff:c3:02:ff:26:da: 1c:35:0b:e5:ea:4b:35:fe:5a:aa:32:f7:92:a0:f7: 7e:4c:1d:29:92:81:09:5d:c7:2a:07:bd:2d:87:6f: f4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8F:9C:5F:E3:0D:00:BB:B8:20:2F:CE:4E:E7:7B:BF:29:7E:2E:B0 X509v3 Authority Key Identifier: keyid:22:A5:D8:40:53:E2:B0:C3:13:AF:1E:3B:A5:10:24:66:A5:F7:96:78 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqXYQFPisMMTrx47pRAkZqX3lng.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IY-cX-MNALu4IC_OTud7vyl-LrA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/e3fb7d-dd4b-4d85-b08e-591caf536ecc/1/IqXYQFPisMMTrx47pRAkZqX3lng.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.204.154.0/24 Signature Algorithm: sha256WithRSAEncryption 93:a2:19:a2:97:ef:9d:45:62:6f:44:7c:e7:2a:ac:05:e6:35: 94:93:bb:de:76:5b:d4:96:a2:8d:9d:13:4d:f5:f4:6e:5a:cb: 11:f9:53:53:c6:71:92:46:7a:e4:35:7f:cd:f5:e8:f7:cd:f2: 31:4d:f7:52:26:15:f4:6c:e2:e6:59:9d:6d:10:5e:02:65:18: 95:ec:76:8c:7d:cc:0a:52:98:8c:30:bd:4d:d4:17:61:5b:42: 75:ca:dc:69:83:11:01:99:29:7a:e2:57:3d:da:c7:8b:f5:d6: 47:0c:07:e8:45:21:21:f6:7d:78:d1:78:91:a9:e0:42:15:a3: d3:c3:27:26:1e:67:f9:87:c6:0f:4f:f9:19:3f:4d:cc:68:a8: a3:58:a4:e0:89:1d:82:80:ae:e0:86:6d:94:2f:1b:29:11:2f: 0d:4a:4c:7c:29:75:3d:03:5f:e4:22:29:e3:77:42:45:05:d3: cc:f1:de:52:d5:f1:0a:8a:86:b0:7f:f1:bd:c0:bc:f7:91:87: 8c:73:74:d7:20:8f:3a:53:d6:a8:6b:73:7d:90:99:06:cd:55: a9:32:1f:ce:53:08:8b:30:81:ad:e9:0f:dc:42:b0:d1:2b:ca: 4e:61:ff:88:c5:0e:57:ba:fa:82:73:13:57:9c:32:40:74:5e: 82:e3:9e:6f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8Et0qItmk6YD+q9K+ULRiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIyYTVkODQwNTNlMmIwYzMxM2FmMWUzYmE1MTAyNDY2YTVm Nzk2NzgwHhcNMjYwMTAyMDAxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMThmOWM1ZmUzMGQwMGJiYjgyMDJmY2U0ZWU3N2JiZjI5N2UyZWIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4TxurvPD7q3QAx2Mel7nOKrv6bK b8G+IY1q1wln/7sf2Hjqd9Kka+R5J+g8kCE8m1j3WSq3mwDG6qkCjXiv48UXWxnz P+TDYSwjgZOHLSmZqyG+qvSURGpv+svmESaSIKd0tmLlfDCfxcRUYzPZvRqDL3pC YGv2W651uNxS8ScRQ/hf1geRDDrthxwxuXOLx1Fa3H+Uq2ORZ5bUip5UeRhiyrnN YtCgxmzrZJtF5ltimDA9epyr+fhhRaDyOB+psVR4m3zT10Zl5cRFBTczBXwY8NbJ oKt/SYn/wwL/JtocNQvl6ks1/lqqMveSoPd+TB0pkoEJXccqB70th2/0AQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCGPnF/jDQC7uCAvzk7ne78pfi6wMB8GA1UdIwQY MBaAFCKl2EBT4rDDE68eO6UQJGal95Z4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUt NTkxY2FmNTM2ZWNjLzEvSVktY1gtTU5BTHU0SUNfT1R1ZDd2eWwtTHJBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi9lM2ZiN2QtZGQ0Yi00ZDg1LWIwOGUtNTkxY2FmNTM2ZWNj LzEvSXFYWVFGUGlzTU1Ucng0N3BSQWtacVgzbG5nLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAm8yaMA0G CSqGSIb3DQEBCwUAA4IBAQCTohmil++dRWJvRHznKqwF5jWUk7vedlvUlqKNnRNN 9fRuWssR+VNTxnGSRnrkNX/N9ej3zfIxTfdSJhX0bOLmWZ1tEF4CZRiV7HaMfcwK UpiMML1N1BdhW0J1ytxpgxEBmSl64lc92seL9dZHDAfoRSEh9n140XiRqeBCFaPT wycmHmf5h8YPT/kZP03MaKijWKTgiR2CgK7ghm2ULxspES8NSkx8KXU9A1/kIinj d0JFBdPM8d5S1fEKioawf/G9wLz3kYeMc3TXII86U9aoa3N9kJkGzVWpMh/OUwiL MIGt6Q/cQrDRK8pOYf+IxQ5XuvqCcxNXnDJAdF6C455v -----END CERTIFICATE-----Generated at Tue Jan 20 07:46:03 2026 by rpki-client