This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/iTxkGMwghR3F8OYGNZTj6Coxz2o.roa File: iTxkGMwghR3F8OYGNZTj6Coxz2o.roa (raw, json) Hash identifier: 3IWO290f4BpEo42cnDH0C8gpXxBNeOVm/2imb34ZTKI= Subject key identifier: 89:3C:64:18:CC:20:85:1D:C5:F0:E6:06:35:94:E3:E8:2A:31:CF:6A Certificate issuer: /CN=c0a233590de586e0c55821c6f6d5732afc841229 Certificate serial: 019B7DCAE008FD24C4EDD2123436984381FF Authority key identifier: C0:A2:33:59:0D:E5:86:E0:C5:58:21:C6:F6:D5:73:2A:FC:84:12:29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wKIzWQ3lhuDFWCHG9tVzKvyEEik.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/iTxkGMwghR3F8OYGNZTj6Coxz2o.roa Signing time: Fri 02 Jan 2026 08:20:06 +0000 ROA not before: Fri 02 Jan 2026 08:20:06 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 57630 IP address blocks: 5.152.152.0/23 maxlen: 23 31.12.80.0/22 maxlen: 22 46.33.16.0/23 maxlen: 23 117.55.200.0/23 maxlen: 23 134.65.164.0/22 maxlen: 22 194.179.134.0/23 maxlen: 23 217.11.175.0/24 maxlen: 24 2a02:7e00::/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/wKIzWQ3lhuDFWCHG9tVzKvyEEik.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/wKIzWQ3lhuDFWCHG9tVzKvyEEik.mft rsync://rpki.ripe.net/repository/DEFAULT/wKIzWQ3lhuDFWCHG9tVzKvyEEik.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:e0:08:fd:24:c4:ed:d2:12:34:36:98:43:81:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c0a233590de586e0c55821c6f6d5732afc841229 Validity Not Before: Jan 2 08:20:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=893c6418cc20851dc5f0e6063594e3e82a31cf6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a4:cd:b7:fb:05:cc:c7:f0:a5:f5:cd:92:e4: 9f:c3:8c:cb:b5:29:e3:54:3c:cb:34:a9:b3:8e:91: 8e:6a:7d:b1:57:93:60:46:44:18:bc:f8:6a:e2:8b: 7c:38:f9:a5:59:db:32:1f:60:99:f0:00:4c:17:7b: 3f:8d:64:b0:48:00:60:37:8c:3b:94:ab:65:e4:3a: 95:5e:98:6a:37:59:23:1a:9e:96:10:d7:ea:57:66: 73:f5:98:75:eb:15:27:a8:4c:dd:a7:4d:07:3e:49: 0b:fe:4e:80:e7:e2:a5:96:7a:7e:68:a6:68:3d:c3: 21:70:02:bc:1a:88:c4:be:9a:a0:a6:7d:29:e7:82: 15:95:ed:15:e6:af:e5:5d:71:f5:55:08:2b:ba:fc: 94:97:4a:3c:3b:b5:cd:e2:5f:ad:06:38:28:b9:e0: 55:a0:a3:e5:35:c1:50:c3:16:b2:37:94:0c:b0:4f: 5e:20:f2:c2:46:0e:4d:1e:dc:eb:3f:17:1f:3d:63: 49:80:72:11:f4:ec:46:f5:19:7f:ae:c9:d4:1b:1e: a7:c0:0b:c7:4a:7d:78:64:dc:e3:2d:b4:37:77:7f: a3:48:ef:e4:c6:e4:08:42:fd:e4:b2:ed:87:c0:1d: e2:5e:b3:7e:a1:f2:0e:1d:14:30:0f:ad:4c:36:87: 57:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3C:64:18:CC:20:85:1D:C5:F0:E6:06:35:94:E3:E8:2A:31:CF:6A X509v3 Authority Key Identifier: keyid:C0:A2:33:59:0D:E5:86:E0:C5:58:21:C6:F6:D5:73:2A:FC:84:12:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wKIzWQ3lhuDFWCHG9tVzKvyEEik.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/iTxkGMwghR3F8OYGNZTj6Coxz2o.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/97b0b7-013d-433e-b538-a84eb411ef8a/1/wKIzWQ3lhuDFWCHG9tVzKvyEEik.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.152.152.0/23 31.12.80.0/22 46.33.16.0/23 117.55.200.0/23 134.65.164.0/22 194.179.134.0/23 217.11.175.0/24 IPv6: 2a02:7e00::/29 Signature Algorithm: sha256WithRSAEncryption 2c:de:dc:83:00:03:8a:1c:43:70:fd:e3:cb:be:33:d1:f9:e2: 88:69:0f:b2:96:99:46:a4:4f:05:57:1e:37:7c:f1:13:79:dc: 14:91:5c:b6:48:89:86:d4:8d:0c:36:ea:75:8a:c2:bb:12:55: f9:5f:1b:25:32:c4:cb:67:77:b0:19:6c:cf:06:9d:bd:0d:32: a4:2d:f5:80:89:7a:72:6b:62:89:b2:2e:48:9c:10:31:3e:68: 7a:32:16:73:ea:7a:74:b2:d7:b7:e7:bc:80:6f:5c:8a:14:1c: 85:37:94:56:51:3d:95:d4:97:9a:68:fd:31:de:97:ea:31:5e: da:e0:d1:cf:c9:21:44:e9:14:17:3d:a1:f6:ee:08:5b:51:8b: b4:aa:79:59:ef:d9:2c:95:02:4f:b3:51:83:a4:d2:13:4f:88: a5:86:75:62:7e:e9:e4:63:06:7f:76:57:39:c4:fc:d2:ef:55: b2:ce:82:74:40:7c:6a:a6:5f:de:cf:44:b0:e3:41:d5:8a:de: 5d:81:e0:8f:90:44:3f:14:39:c4:33:9d:89:d2:57:7a:82:4a: 31:d5:f9:bb:4b:0b:8a:eb:94:7b:68:f7:7a:0c:bb:e5:50:3e: 07:19:20:85:cf:99:6f:a8:a2:50:a6:34:0f:f4:c1:1f:c0:49: 29:22:fd:e3 -----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgISAZt9yuAI/STE7dISNDaYQ4H/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMwYTIzMzU5MGRlNTg2ZTBjNTU4MjFjNmY2ZDU3MzJhZmM4 NDEyMjkwHhcNMjYwMTAyMDgyMDA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTNjNjQxOGNjMjA4NTFkYzVmMGU2MDYzNTk0ZTNlODJhMzFjZjZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA36TNt/sFzMfwpfXNkuSfw4zLtSnj VDzLNKmzjpGOan2xV5NgRkQYvPhq4ot8OPmlWdsyH2CZ8ABMF3s/jWSwSABgN4w7 lKtl5DqVXphqN1kjGp6WENfqV2Zz9Zh16xUnqEzdp00HPkkL/k6A5+Kllnp+aKZo PcMhcAK8GojEvpqgpn0p54IVle0V5q/lXXH1VQgruvyUl0o8O7XN4l+tBjgoueBV oKPlNcFQwxayN5QMsE9eIPLCRg5NHtzrPxcfPWNJgHIR9OxG9Rl/rsnUGx6nwAvH Sn14ZNzjLbQ3d3+jSO/kxuQIQv3ksu2HwB3iXrN+ofIOHRQwD61MNodXbwIDAQAB o4ICPDCCAjgwHQYDVR0OBBYEFIk8ZBjMIIUdxfDmBjWU4+gqMc9qMB8GA1UdIwQY MBaAFMCiM1kN5YbgxVghxvbVcyr8hBIpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd0tJeldRM2xodURGV0NIRzl0VnpLdnlFRWlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy85N2IwYjctMDEzZC00MzNlLWI1Mzgt YTg0ZWI0MTFlZjhhLzEvaVR4a0dNd2doUjNGOE9ZR05aVGo2Q294ejJvLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy85N2IwYjctMDEzZC00MzNlLWI1MzgtYTg0ZWI0MTFlZjhh LzEvd0tJeldRM2xodURGV0NIRzl0VnpLdnlFRWlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMFIGCCsGAQUFBwEHAQH/BEMwQTAwBAIAATAqAwQBBZiYAwQC HwxQAwQBLiEQAwQBdTfIAwQChkGkAwQBwrOGAwQA2QuvMA0EAgACMAcDBQMqAn4A MA0GCSqGSIb3DQEBCwUAA4IBAQAs3tyDAAOKHENw/ePLvjPR+eKIaQ+ylplGpE8F Vx43fPETedwUkVy2SImG1I0MNup1isK7ElX5XxslMsTLZ3ewGWzPBp29DTKkLfWA iXpya2KJsi5InBAxPmh6MhZz6np0ste357yAb1yKFByFN5RWUT2V1JeaaP0x3pfq MV7a4NHPySFE6RQXPaH27ghbUYu0qnlZ79kslQJPs1GDpNITT4ilhnVifunkYwZ/ dlc5xPzS71WyzoJ0QHxqpl/ez0Sw40HVit5dgeCPkEQ/FDnEM52J0ld6gkox1fm7 SwuK65R7aPd6DLvlUD4HGSCFz5lvqKJQpjQP9MEfwEkpIv3j -----END CERTIFICATE-----Generated at Mon Feb 9 22:16:10 2026 by rpki-client