This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/iReKhZ_-E04pzg8ir_i-KAVJTug.roa File: iReKhZ_-E04pzg8ir_i-KAVJTug.roa (raw, json) Hash identifier: JcLEmoPP4jSyDJ+Og5UHxUBX28l4cJMP5KxpG/1AnsE= Subject key identifier: 89:17:8A:85:9F:FE:13:4E:29:CE:0F:22:AF:F8:BE:28:05:49:4E:E8 Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc Certificate serial: 019B7C131BD505F7276206A33240F02547AE Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/iReKhZ_-E04pzg8ir_i-KAVJTug.roa Signing time: Fri 02 Jan 2026 00:19:45 +0000 ROA not before: Fri 02 Jan 2026 00:19:45 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 60173 IP address blocks: 185.34.224.0/24 maxlen: 24 185.34.225.0/24 maxlen: 24 185.34.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 13:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:13:1b:d5:05:f7:27:62:06:a3:32:40:f0:25:47:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc Validity Not Before: Jan 2 00:19:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=89178a859ffe134e29ce0f22aff8be2805494ee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:66:e2:ab:28:01:99:d2:79:11:30:9a:fc:b5: 32:cf:ac:c4:e9:44:12:7f:a6:1c:f7:c5:d3:a3:4a: 38:9d:a5:79:cd:55:7b:fc:f4:29:6b:b9:b4:31:36: 37:bd:bf:37:e6:f8:85:96:a3:b4:45:7d:33:c2:d4: 61:8a:e7:2f:c9:72:a9:21:16:87:0a:61:40:27:fc: 1e:bf:97:6d:76:6d:ed:cb:a2:c0:d9:f9:b5:a8:ad: 77:15:2c:2e:82:cb:0b:69:f5:62:aa:46:7e:f4:31: 26:3c:91:c8:3a:42:8b:c5:b5:f3:db:9e:de:c0:9c: 10:21:a7:6a:e5:5f:ef:50:ce:03:86:a5:14:4d:26: 99:be:5f:da:0a:64:3c:0b:6c:fe:b3:f3:43:48:7a: dd:4b:22:af:bf:e8:dc:2d:b3:5d:08:05:39:44:33: 9c:de:96:e7:aa:bc:0d:46:59:de:4f:59:cf:31:0d: c5:cc:a9:42:70:a9:5a:ec:a3:26:6c:c6:c6:cb:f7: 35:df:fd:05:2a:5e:23:6c:b1:a5:1d:87:4a:95:b7: 8d:f2:43:a2:98:2b:9e:19:41:1b:44:66:80:27:5b: 15:a9:5f:99:41:db:1b:c4:fd:4f:e4:2c:e5:c1:f3: 54:fd:4c:95:7d:bc:d8:62:af:49:e5:85:20:22:35: b1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:17:8A:85:9F:FE:13:4E:29:CE:0F:22:AF:F8:BE:28:05:49:4E:E8 X509v3 Authority Key Identifier: keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/iReKhZ_-E04pzg8ir_i-KAVJTug.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.34.224.0-185.34.226.255 Signature Algorithm: sha256WithRSAEncryption 1f:9e:b4:10:bb:34:51:db:cb:df:c7:8b:b6:92:de:b9:73:b1: c4:1a:6b:de:63:d4:fd:fd:19:d9:7e:08:83:6a:6f:06:59:76: 47:49:09:d3:4b:09:f0:98:14:df:2d:da:26:bd:9a:03:34:5f: 1a:1a:3b:3f:b1:ab:7b:72:fe:91:2a:78:73:8a:63:13:54:73: 1c:c1:73:c2:fc:dd:98:51:16:f1:dc:aa:e2:50:f5:53:23:76: ca:74:0a:2f:ab:b9:05:2b:9a:63:8c:32:0e:b7:48:94:8b:2c: 23:91:ac:1d:5a:14:af:ab:cb:ea:9f:93:19:40:2f:0c:39:bb: ce:c9:ab:87:3d:8d:46:07:c4:2d:01:c4:0e:2a:bc:3c:8d:9c: 77:6a:f0:27:16:b7:f7:8a:55:38:de:58:8c:d2:64:6f:08:66: 37:e9:4b:59:22:f2:da:dd:d6:5d:5e:fb:be:30:04:3c:20:8b: af:57:56:55:80:69:b6:f9:b0:30:4b:e2:08:ba:f6:e6:33:30: d2:f0:a0:1a:81:87:ad:f5:85:c6:0e:5d:67:84:dd:68:18:fc: 82:2c:19:91:ae:21:4f:d1:e6:df:63:c8:05:5a:a1:51:61:00: 92:1d:13:ac:34:f9:af:9f:d9:52:f9:95:02:7e:ee:4f:5a:07: f2:b8:68:0b -----BEGIN CERTIFICATE----- MIIFBTCCA+2gAwIBAgISAZt8ExvVBfcnYgajMkDwJUeuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYwMzgzMWE2MWJjOGE4ZjRjYjg1ODg3MDIyZmI2Zjg2Mzk3 MzQ1ZGMwHhcNMjYwMTAyMDAxOTQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTE3OGE4NTlmZmUxMzRlMjljZTBmMjJhZmY4YmUyODA1NDk0ZWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWbiqygBmdJ5ETCa/LUyz6zE6UQS f6Yc98XTo0o4naV5zVV7/PQpa7m0MTY3vb835viFlqO0RX0zwtRhiucvyXKpIRaH CmFAJ/wev5dtdm3ty6LA2fm1qK13FSwugssLafViqkZ+9DEmPJHIOkKLxbXz257e wJwQIadq5V/vUM4DhqUUTSaZvl/aCmQ8C2z+s/NDSHrdSyKvv+jcLbNdCAU5RDOc 3pbnqrwNRlneT1nPMQ3FzKlCcKla7KMmbMbGy/c13/0FKl4jbLGlHYdKlbeN8kOi mCueGUEbRGaAJ1sVqV+ZQdsbxP1P5CzlwfNU/UyVfbzYYq9J5YUgIjWxIwIDAQAB o4ICETCCAg0wHQYDVR0OBBYEFIkXioWf/hNOKc4PIq/4vigFSU7oMB8GA1UdIwQY MBaAFGA4MaYbyKj0y4WIcCL7b4Y5c0XcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWURneHBodklxUFRMaFlod0l2dHZoamx6UmR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9hYzMyNzYtNTBhZC00ZWJjLWEyYTYt OTgwODU0NTkzM2M5LzEvaVJlS2haXy1FMDRwemc4aXJfaS1LQVZKVHVnLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9hYzMyNzYtNTBhZC00ZWJjLWEyYTYtOTgwODU0NTkzM2M5 LzEvWURneHBodklxUFRMaFlod0l2dHZoamx6UmR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAW5IuAD BAC5IuIwDQYJKoZIhvcNAQELBQADggEBAB+etBC7NFHby9/Hi7aS3rlzscQaa95j 1P39Gdl+CINqbwZZdkdJCdNLCfCYFN8t2ia9mgM0XxoaOz+xq3ty/pEqeHOKYxNU cxzBc8L83ZhRFvHcquJQ9VMjdsp0Ci+ruQUrmmOMMg63SJSLLCORrB1aFK+ry+qf kxlALww5u87Jq4c9jUYHxC0BxA4qvDyNnHdq8CcWt/eKVTjeWIzSZG8IZjfpS1ki 8trd1l1e+74wBDwgi69XVlWAabb5sDBL4gi69uYzMNLwoBqBh631hcYOXWeE3WgY /IIsGZGuIU/R5t9jyAVaoVFhAJIdE6w0+a+f2VL5lQJ+7k9aB/K4aAs= -----END CERTIFICATE-----Generated at Sat Jan 10 20:49:44 2026 by rpki-client