This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/ILGhz3ePO9oxIjIbV8ykYhaN2H4.roa File: ILGhz3ePO9oxIjIbV8ykYhaN2H4.roa (raw, json) Hash identifier: VOXzwbv4ZGeGv9kyp7nhD/yFTySLzaFzJgbxt6Ep0+U= Subject key identifier: 20:B1:A1:CF:77:8F:3B:DA:31:22:32:1B:57:CC:A4:62:16:8D:D8:7E Certificate issuer: /CN=b68f940f1cc577f370f28428850dc7bf7418f121 Certificate serial: 019B7EA74EBB76A94696828AE8597B5A92FB Authority key identifier: B6:8F:94:0F:1C:C5:77:F3:70:F2:84:28:85:0D:C7:BF:74:18:F1:21 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/ILGhz3ePO9oxIjIbV8ykYhaN2H4.roa Signing time: Fri 02 Jan 2026 12:20:52 +0000 ROA not before: Fri 02 Jan 2026 12:20:52 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 35280 IP address blocks: 193.26.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.crl rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.mft rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:4e:bb:76:a9:46:96:82:8a:e8:59:7b:5a:92:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b68f940f1cc577f370f28428850dc7bf7418f121 Validity Not Before: Jan 2 12:20:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20b1a1cf778f3bda3122321b57cca462168dd87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:8c:b1:8c:fb:36:25:df:f0:72:01:1d:55: f1:99:66:b0:e7:12:a0:e0:f1:e1:7b:3f:0e:0c:2d: 42:fb:12:10:aa:4b:3b:3b:66:24:7f:76:cc:1b:cf: 19:a2:0a:6a:50:01:18:79:83:a1:fc:7f:ea:81:28: f3:ff:15:4e:35:f6:91:d5:2f:5e:58:ee:56:b4:25: 77:7e:fe:2a:14:8a:b7:2a:00:16:54:18:61:04:e2: fe:57:2f:e9:a7:96:72:bf:bd:1f:09:70:d2:75:1c: 39:16:d5:11:d5:19:ff:b9:c2:48:a9:99:41:36:5c: 6f:03:f0:36:44:40:ad:b9:57:b7:4c:97:5a:0d:13: 6a:8b:d5:ed:8f:75:73:10:80:e3:bf:02:cb:b0:47: 02:ef:29:22:09:c2:50:2e:2d:91:16:d2:a1:1e:46: 0c:4f:9c:ab:7b:2c:83:8c:53:35:5c:3d:75:8f:ff: b4:41:92:26:a4:de:0d:7b:b3:59:7a:95:d6:0c:6a: 91:ce:ee:d0:ed:8c:ac:71:3a:b6:2a:f7:bb:04:68: e3:32:cc:ad:6a:1e:1e:4a:f1:d3:f2:3f:7d:aa:db: 68:a2:72:f3:e4:94:38:1e:aa:3e:da:33:59:29:3e: 39:b7:09:e5:04:e7:3e:b9:81:f8:47:ae:d0:ce:cb: a0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B1:A1:CF:77:8F:3B:DA:31:22:32:1B:57:CC:A4:62:16:8D:D8:7E X509v3 Authority Key Identifier: keyid:B6:8F:94:0F:1C:C5:77:F3:70:F2:84:28:85:0D:C7:BF:74:18:F1:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/ILGhz3ePO9oxIjIbV8ykYhaN2H4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/4b2c23-f535-4b6d-a445-e04dac61ce9d/1/to-UDxzFd_Nw8oQohQ3Hv3QY8SE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.26.125.0/24 Signature Algorithm: sha256WithRSAEncryption 23:b2:32:fe:e6:85:6e:52:4d:67:67:a4:5e:ef:6d:7d:d7:01: 2c:b2:a2:e8:2d:d8:f7:25:6f:f5:01:36:a4:80:13:a8:e6:cc: 9e:9e:79:60:b5:1d:de:09:12:60:ed:e0:35:34:f7:d0:27:0c: 68:be:5b:8e:82:f9:3e:6b:6c:f5:12:a9:aa:72:35:14:59:b0: 7c:ae:fd:9f:1a:5b:8b:7f:88:cb:bd:ee:96:4b:c0:71:52:a1: 3d:bd:17:fb:a1:3d:cf:77:69:40:38:ce:85:45:01:06:f0:68: 9e:33:35:5f:c5:c1:ab:cf:18:7d:13:94:47:b0:6c:03:46:75: c6:b1:6d:f0:58:e6:18:cc:18:3b:41:e5:cd:b7:f1:f1:50:a0: de:62:d7:e6:fc:8c:fd:00:40:3e:a7:61:e7:67:da:90:4b:df: 96:19:81:63:88:71:4d:a8:b4:0d:f5:43:09:86:84:ef:32:a3: f3:72:c9:2b:5b:de:a8:93:44:58:16:fd:3a:05:ae:26:bd:09: 23:d8:78:ad:dd:14:87:c8:37:35:20:34:28:28:0b:37:52:c8: 36:6d:29:f5:bd:0b:44:06:3e:f1:de:f4:6b:22:48:01:19:09: 6e:1e:99:c2:b0:18:cb:32:82:a4:13:42:15:16:68:d1:dd:9a: 74:bf:b0:80 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt+p067dqlGloKK6Fl7WpL7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI2OGY5NDBmMWNjNTc3ZjM3MGYyODQyODg1MGRjN2JmNzQx OGYxMjEwHhcNMjYwMTAyMTIyMDUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGIxYTFjZjc3OGYzYmRhMzEyMjMyMWI1N2NjYTQ2MjE2OGRkODdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4+MsYz7NiXf8HIBHVXxmWaw5xKg 4PHhez8ODC1C+xIQqks7O2Ykf3bMG88ZogpqUAEYeYOh/H/qgSjz/xVONfaR1S9e WO5WtCV3fv4qFIq3KgAWVBhhBOL+Vy/pp5Zyv70fCXDSdRw5FtUR1Rn/ucJIqZlB NlxvA/A2RECtuVe3TJdaDRNqi9Xtj3VzEIDjvwLLsEcC7ykiCcJQLi2RFtKhHkYM T5yreyyDjFM1XD11j/+0QZImpN4Ne7NZepXWDGqRzu7Q7YyscTq2Kve7BGjjMsyt ah4eSvHT8j99qttoonLz5JQ4Hqo+2jNZKT45twnlBOc+uYH4R67QzsugyQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFCCxoc93jzvaMSIyG1fMpGIWjdh+MB8GA1UdIwQY MBaAFLaPlA8cxXfzcPKEKIUNx790GPEhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdG8tVUR4ekZkX053OG9Rb2hRM0h2M1FZOFNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC80YjJjMjMtZjUzNS00YjZkLWE0NDUt ZTA0ZGFjNjFjZTlkLzEvSUxHaHozZVBPOW94SWpJYlY4eWtZaGFOMkg0LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNC80YjJjMjMtZjUzNS00YjZkLWE0NDUtZTA0ZGFjNjFjZTlk LzEvdG8tVUR4ekZkX053OG9Rb2hRM0h2M1FZOFNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRp9MA0G CSqGSIb3DQEBCwUAA4IBAQAjsjL+5oVuUk1nZ6Re72191wEssqLoLdj3JW/1ATak gBOo5syennlgtR3eCRJg7eA1NPfQJwxovluOgvk+a2z1EqmqcjUUWbB8rv2fGluL f4jLve6WS8BxUqE9vRf7oT3Pd2lAOM6FRQEG8GieMzVfxcGrzxh9E5RHsGwDRnXG sW3wWOYYzBg7QeXNt/HxUKDeYtfm/Iz9AEA+p2HnZ9qQS9+WGYFjiHFNqLQN9UMJ hoTvMqPzcskrW96ok0RYFv06Ba4mvQkj2Hit3RSHyDc1IDQoKAs3Usg2bSn1vQtE Bj7x3vRrIkgBGQluHpnCsBjLMoKkE0IVFmjR3Zp0v7CA -----END CERTIFICATE-----Generated at Tue Jan 20 08:02:24 2026 by rpki-client