This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/im5Fb-9w5mmPjp20JVfM6UTi9ZI.roa File: im5Fb-9w5mmPjp20JVfM6UTi9ZI.roa (raw, json) Hash identifier: Lno5hcnACQyBSV8jBaTu79StES2mMHGRUyHa5ifNUXg= Subject key identifier: 8A:6E:45:6F:EF:70:E6:69:8F:8E:9D:B4:25:57:CC:E9:44:E2:F5:92 Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900 Certificate serial: 019B7E38395AC3EB87F28494925AF4B56FEF Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/im5Fb-9w5mmPjp20JVfM6UTi9ZI.roa Signing time: Fri 02 Jan 2026 10:19:32 +0000 ROA not before: Fri 02 Jan 2026 10:19:32 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 50427 IP address blocks: 109.226.248.0/24 maxlen: 24 185.84.174.0/23 maxlen: 23 185.84.174.0/24 maxlen: 24 185.84.175.0/24 maxlen: 24 193.106.168.0/22 maxlen: 22 193.106.168.0/24 maxlen: 24 193.106.169.0/24 maxlen: 24 193.106.170.0/24 maxlen: 24 193.106.171.0/24 maxlen: 24 2a05:7400:8000::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:39:5a:c3:eb:87:f2:84:94:92:5a:f4:b5:6f:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900 Validity Not Before: Jan 2 10:19:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a6e456fef70e6698f8e9db42557cce944e2f592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e6:4b:90:a2:af:a9:05:04:78:3a:b4:54:45: a1:94:94:17:76:99:9a:57:0b:bc:39:1e:26:86:2d: d5:a7:ee:7b:a1:33:6d:8e:14:fe:3a:e2:63:64:ec: b8:9a:2c:21:9b:90:18:47:e1:a1:28:1e:e1:6d:d5: 20:27:5a:26:a7:92:f8:d8:4d:42:39:98:57:90:fb: a9:bc:12:2d:93:12:ba:52:ae:16:d1:d6:b6:90:62: 19:b9:3e:e5:30:10:f6:84:48:ee:9c:48:9f:9e:46: 31:72:2b:19:d8:89:c1:66:17:5a:9f:6c:b4:ae:11: cc:80:be:c8:63:28:12:68:02:98:5c:39:e6:ca:ed: 14:2c:73:c4:f1:c0:cb:52:df:ea:fc:16:42:04:e4: bb:6d:5a:b1:82:a8:df:ff:af:e0:ba:6d:cc:8b:4e: 54:ab:12:b0:7c:61:e1:bd:51:69:6c:8b:ab:cd:02: 95:b9:0d:23:27:d1:88:8c:ff:e4:cf:8a:eb:40:80: 46:8f:b5:92:cb:c9:98:49:3f:a6:ba:e6:9f:a2:93: f2:41:81:8c:a3:cf:97:ee:46:aa:bd:1b:ba:46:f9: ba:36:7c:a6:f4:93:c2:ec:fb:fb:62:22:7a:34:c7: bb:82:8c:b8:e3:00:bd:34:96:21:29:3f:4c:9e:13: 11:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:6E:45:6F:EF:70:E6:69:8F:8E:9D:B4:25:57:CC:E9:44:E2:F5:92 X509v3 Authority Key Identifier: keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/im5Fb-9w5mmPjp20JVfM6UTi9ZI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 109.226.248.0/24 185.84.174.0/23 193.106.168.0/22 IPv6: 2a05:7400:8000::/34 Signature Algorithm: sha256WithRSAEncryption be:6c:c5:6f:aa:ee:9b:7d:be:c1:84:e7:dc:1a:fd:0e:78:99: 2a:27:af:ed:53:c5:27:6e:af:15:02:0e:9e:a6:44:e8:05:0b: c7:3b:9c:ef:53:bf:19:bd:88:66:35:97:f9:6c:a1:fe:dd:b5: 43:31:0e:ec:c6:7c:3a:46:62:1b:1b:9e:78:33:70:33:8b:7f: 80:bc:90:88:e0:b6:e8:a5:57:6e:c3:6a:4d:cb:25:5d:bc:7e: 56:da:e7:7c:cb:1c:9b:92:06:99:48:de:a9:9e:af:5c:0d:8f: 68:b7:2e:37:cb:06:3b:ad:79:26:12:c9:74:e0:16:08:92:bb: 4e:6f:d5:df:41:47:eb:ac:f2:9b:58:4d:da:97:0a:c9:3d:10: 07:cc:d1:db:cf:2c:5a:31:c9:ef:b0:72:09:3e:6a:4b:8a:75: 1d:db:0c:ba:8f:c1:97:53:f4:df:25:1d:4f:07:ed:95:ca:8b: 33:9a:66:21:0f:9f:11:f0:fa:75:b3:80:45:29:e0:4e:b4:97: 37:59:1f:13:39:50:a7:8a:ce:75:8b:ec:65:53:d8:13:30:db: 27:fc:ce:6c:68:fc:30:35:3a:54:81:d5:26:fe:43:37:cb:9b: 0d:b3:e6:36:97:4f:18:d9:f0:f0:05:d6:e2:d5:28:c5:cb:ea: 16:da:11:e1 -----BEGIN CERTIFICATE----- MIIFGTCCBAGgAwIBAgISAZt+ODlaw+uH8oSUklr0tW/vMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFlN2Y3NDdkZjVmMjQzNTMxNTRkYzRkNGJmNzBkMmRkY2I1 M2U5MDAwHhcNMjYwMTAyMTAxOTMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTZlNDU2ZmVmNzBlNjY5OGY4ZTlkYjQyNTU3Y2NlOTQ0ZTJmNTkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn+ZLkKKvqQUEeDq0VEWhlJQXdpma Vwu8OR4mhi3Vp+57oTNtjhT+OuJjZOy4miwhm5AYR+GhKB7hbdUgJ1omp5L42E1C OZhXkPupvBItkxK6Uq4W0da2kGIZuT7lMBD2hEjunEifnkYxcisZ2InBZhdan2y0 rhHMgL7IYygSaAKYXDnmyu0ULHPE8cDLUt/q/BZCBOS7bVqxgqjf/6/gum3Mi05U qxKwfGHhvVFpbIurzQKVuQ0jJ9GIjP/kz4rrQIBGj7WSy8mYST+muuafopPyQYGM o8+X7kaqvRu6Rvm6Nnym9JPC7Pv7YiJ6NMe7goy44wC9NJYhKT9MnhMRuQIDAQAB o4ICJTCCAiEwHQYDVR0OBBYEFIpuRW/vcOZpj46dtCVXzOlE4vWSMB8GA1UdIwQY MBaAFK5/dH318kNTFU3E1L9w0t3LU+kAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2Et YzZmMWU2YWM5YmE5LzEvaW01RmItOXc1bW1QanAyMEpWZk02VVRpOVpJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2EtYzZmMWU2YWM5YmE5 LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAYBAIAATASAwQAbeL4AwQB uVSuAwQCwWqoMA4EAgACMAgDBgYqBXQAgDANBgkqhkiG9w0BAQsFAAOCAQEAvmzF b6rum32+wYTn3Br9DniZKiev7VPFJ26vFQIOnqZE6AULxzuc71O/Gb2IZjWX+Wyh /t21QzEO7MZ8OkZiGxueeDNwM4t/gLyQiOC26KVXbsNqTcslXbx+VtrnfMscm5IG mUjeqZ6vXA2PaLcuN8sGO615JhLJdOAWCJK7Tm/V30FH66zym1hN2pcKyT0QB8zR 288sWjHJ77ByCT5qS4p1HdsMuo/Bl1P03yUdTwftlcqLM5pmIQ+fEfD6dbOARSng TrSXN1kfEzlQp4rOdYvsZVPYEzDbJ/zObGj8MDU6VIHVJv5DN8ubDbPmNpdPGNnw 8AXW4tUoxcvqFtoR4Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:15:09 2026 by rpki-client