This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/ac11ca-7817-4e75-8eff-f7abef3c8a2b/1/iYC8lbhytTD32pOwIBpaKnVh070.roa File: iYC8lbhytTD32pOwIBpaKnVh070.roa (raw, json) Hash identifier: YM6e3l9qg3NAPYfHxGGt9x27m8gykxKp/xuSfybtvWM= Subject key identifier: 89:80:BC:95:B8:72:B5:30:F7:DA:93:B0:20:1A:5A:2A:75:61:D3:BD Certificate issuer: /CN=7c7c7d48887e2f0865d701cdc6e0bb7deed5db34 Certificate serial: 019B7F840557F13A6807F121D0F339F2B403 Authority key identifier: 7C:7C:7D:48:88:7E:2F:08:65:D7:01:CD:C6:E0:BB:7D:EE:D5:DB:34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fHx9SIh-Lwhl1wHNxuC7fe7V2zQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/ac11ca-7817-4e75-8eff-f7abef3c8a2b/1/iYC8lbhytTD32pOwIBpaKnVh070.roa Signing time: Fri 02 Jan 2026 16:21:57 +0000 ROA not before: Fri 02 Jan 2026 16:21:57 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 194.150.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/ac11ca-7817-4e75-8eff-f7abef3c8a2b/1/fHx9SIh-Lwhl1wHNxuC7fe7V2zQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/ac11ca-7817-4e75-8eff-f7abef3c8a2b/1/fHx9SIh-Lwhl1wHNxuC7fe7V2zQ.mft rsync://rpki.ripe.net/repository/DEFAULT/fHx9SIh-Lwhl1wHNxuC7fe7V2zQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 10:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:84:05:57:f1:3a:68:07:f1:21:d0:f3:39:f2:b4:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7c7c7d48887e2f0865d701cdc6e0bb7deed5db34 Validity Not Before: Jan 2 16:21:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8980bc95b872b530f7da93b0201a5a2a7561d3bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:b8:d8:5a:7c:81:55:49:4c:55:7a:cc:36:24: 96:7d:fc:46:2d:a7:5f:b2:2d:69:16:08:35:9c:6d: 9b:c7:24:4a:40:c1:9b:03:d5:e7:47:74:2b:d1:88: 59:f5:8d:d8:9f:13:d2:fa:8d:72:3c:e7:07:6e:5f: f8:14:b6:c1:4c:59:6a:86:8f:c2:81:bf:0a:5b:ee: 76:1c:20:e5:22:1a:41:16:88:46:12:aa:5f:b3:ee: 3e:81:92:8c:23:f5:61:07:45:0e:0c:45:6b:db:16: df:fc:ee:48:fc:98:ac:d2:da:22:15:1d:f0:9d:ed: 95:83:e0:c0:60:79:f7:ad:bf:ff:e5:f7:45:05:86: 5b:63:a0:f1:97:5c:36:7e:e9:6f:02:32:17:b5:27: 3c:4f:c6:06:a4:f9:b0:29:f9:44:19:bb:a3:eb:d2: e9:40:1e:47:26:b6:90:71:33:27:34:a8:0d:63:19: 22:a4:83:56:ed:3e:1d:ea:76:76:00:e2:fb:87:7f: 50:d5:84:fb:2a:2d:4d:72:e3:fc:52:84:99:d7:ab: d6:96:ed:ca:ec:cb:b2:51:73:04:e1:13:08:aa:6d: f8:23:34:5d:92:7f:05:9d:08:19:d1:99:43:37:c3: 2d:1e:88:9e:d4:aa:f2:06:0c:fc:f7:cb:97:f4:60: 2a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:80:BC:95:B8:72:B5:30:F7:DA:93:B0:20:1A:5A:2A:75:61:D3:BD X509v3 Authority Key Identifier: keyid:7C:7C:7D:48:88:7E:2F:08:65:D7:01:CD:C6:E0:BB:7D:EE:D5:DB:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fHx9SIh-Lwhl1wHNxuC7fe7V2zQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/ac11ca-7817-4e75-8eff-f7abef3c8a2b/1/iYC8lbhytTD32pOwIBpaKnVh070.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/ac11ca-7817-4e75-8eff-f7abef3c8a2b/1/fHx9SIh-Lwhl1wHNxuC7fe7V2zQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.150.193.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:4c:ad:11:7f:e0:29:3f:94:6a:10:4a:b5:11:4d:4e:02:ca: d8:c0:28:fb:f7:f6:6f:d8:db:c7:e9:ab:3d:61:5d:c9:45:2b: 4d:f6:20:a3:5d:50:ce:7c:27:85:a9:ed:d0:4a:d2:d3:6e:70: 6a:69:40:1b:6e:3a:c2:da:a0:15:a2:68:18:46:35:1c:1e:f8: 6d:52:c1:71:ce:a6:7f:8c:31:3c:8c:52:5d:45:24:99:d2:25: 46:87:21:5e:6d:7f:37:98:55:a6:08:a9:08:3b:29:5a:5d:a5: cf:c3:11:2f:b0:12:1f:88:75:95:69:86:63:c8:0e:95:eb:76: fc:23:92:f8:cd:a1:fd:fa:86:de:ee:7d:87:4a:08:eb:a3:44: 5d:fd:84:6e:d7:23:1b:ad:cd:4e:da:6e:64:22:09:0b:61:0d: 77:dc:72:78:96:da:ab:b0:98:fe:d4:bd:1a:91:17:1d:92:ef: 78:fd:03:a0:d0:e9:6b:5f:76:31:26:ef:a7:f9:8b:e3:f6:54: 40:ec:94:d0:2e:a3:da:b8:b1:ba:d8:c9:55:05:d1:1f:ff:4b: be:db:24:db:66:77:bb:4d:92:5a:10:8c:70:d8:da:c3:d2:14: 14:55:61:e0:e8:64:1d:46:ba:94:7d:86:88:86:d6:09:61:66: f3:f7:57:73 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt/hAVX8TpoB/Eh0PM58rQDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdjN2M3ZDQ4ODg3ZTJmMDg2NWQ3MDFjZGM2ZTBiYjdkZWVk NWRiMzQwHhcNMjYwMTAyMTYyMTU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTgwYmM5NWI4NzJiNTMwZjdkYTkzYjAyMDFhNWEyYTc1NjFkM2JkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7bjYWnyBVUlMVXrMNiSWffxGLadf si1pFgg1nG2bxyRKQMGbA9XnR3Qr0YhZ9Y3YnxPS+o1yPOcHbl/4FLbBTFlqho/C gb8KW+52HCDlIhpBFohGEqpfs+4+gZKMI/VhB0UODEVr2xbf/O5I/Jis0toiFR3w ne2Vg+DAYHn3rb//5fdFBYZbY6Dxl1w2fulvAjIXtSc8T8YGpPmwKflEGbuj69Lp QB5HJraQcTMnNKgNYxkipINW7T4d6nZ2AOL7h39Q1YT7Ki1NcuP8UoSZ16vWlu3K 7MuyUXME4RMIqm34IzRdkn8FnQgZ0ZlDN8MtHoie1KryBgz898uX9GAqAQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFImAvJW4crUw99qTsCAaWip1YdO9MB8GA1UdIwQY MBaAFHx8fUiIfi8IZdcBzcbgu33u1ds0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZkh4OVNJaC1Md2hsMXdITnh1QzdmZTdWMnpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9hYzExY2EtNzgxNy00ZTc1LThlZmYt ZjdhYmVmM2M4YTJiLzEvaVlDOGxiaHl0VEQzMnBPd0lCcGFLblZoMDcwLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9hYzExY2EtNzgxNy00ZTc1LThlZmYtZjdhYmVmM2M4YTJi LzEvZkh4OVNJaC1Md2hsMXdITnh1QzdmZTdWMnpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpbBMA0G CSqGSIb3DQEBCwUAA4IBAQAdTK0Rf+ApP5RqEEq1EU1OAsrYwCj79/Zv2NvH6as9 YV3JRStN9iCjXVDOfCeFqe3QStLTbnBqaUAbbjrC2qAVomgYRjUcHvhtUsFxzqZ/ jDE8jFJdRSSZ0iVGhyFebX83mFWmCKkIOylaXaXPwxEvsBIfiHWVaYZjyA6V63b8 I5L4zaH9+obe7n2HSgjro0Rd/YRu1yMbrc1O2m5kIgkLYQ133HJ4ltqrsJj+1L0a kRcdku94/QOg0OlrX3YxJu+n+Yvj9lRA7JTQLqPauLG62MlVBdEf/0u+2yTbZne7 TZJaEIxw2NrD0hQUVWHg6GQdRrqUfYaIhtYJYWbz91dz -----END CERTIFICATE-----Generated at Fri Jan 9 17:04:36 2026 by rpki-client