This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/decad0-26da-4b9a-b1a7-d3b38ce9dc34/1/IdcY3v8c0CZDDmi3STdilJPAqYA.roa File: IdcY3v8c0CZDDmi3STdilJPAqYA.roa (raw, json) Hash identifier: MtpvUlKM4NkKs2dwWGucxHDKfkZ77Tg0i1COdRQImog= Subject key identifier: 21:D7:18:DE:FF:1C:D0:26:43:0E:68:B7:49:37:62:94:93:C0:A9:80 Certificate issuer: /CN=a60cee7582e9759be016c931ab34d9285d2fc8b4 Certificate serial: 019B79ED66B604EE829A5BC0FB1495642B2A Authority key identifier: A6:0C:EE:75:82:E9:75:9B:E0:16:C9:31:AB:34:D9:28:5D:2F:C8:B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pgzudYLpdZvgFskxqzTZKF0vyLQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/decad0-26da-4b9a-b1a7-d3b38ce9dc34/1/IdcY3v8c0CZDDmi3STdilJPAqYA.roa Signing time: Thu 01 Jan 2026 14:19:20 +0000 ROA not before: Thu 01 Jan 2026 14:19:20 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 47843 IP address blocks: 87.248.128.0/24 maxlen: 24 194.60.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/decad0-26da-4b9a-b1a7-d3b38ce9dc34/1/pgzudYLpdZvgFskxqzTZKF0vyLQ.crl rsync://rpki.ripe.net/repository/DEFAULT/b8/decad0-26da-4b9a-b1a7-d3b38ce9dc34/1/pgzudYLpdZvgFskxqzTZKF0vyLQ.mft rsync://rpki.ripe.net/repository/DEFAULT/pgzudYLpdZvgFskxqzTZKF0vyLQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 17:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:66:b6:04:ee:82:9a:5b:c0:fb:14:95:64:2b:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a60cee7582e9759be016c931ab34d9285d2fc8b4 Validity Not Before: Jan 1 14:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=21d718deff1cd026430e68b74937629493c0a980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:34:99:ef:c1:d5:7d:66:e3:db:ce:ce:6a:9c: 42:91:a0:de:25:63:95:80:4d:e0:a0:18:7f:0e:99: f5:ac:fa:05:5c:36:c0:64:e9:41:98:81:03:ba:8b: df:b8:55:5f:61:5a:32:bd:3d:93:7a:66:55:ef:31: 07:7e:b0:be:86:c3:72:fd:5d:b6:b1:d0:5b:0c:68: 9c:0d:f2:d7:f3:08:6b:73:31:ab:4b:18:f8:86:ee: a1:c4:11:0c:48:c3:32:04:ad:88:4a:7f:c0:56:44: 2c:10:be:d8:20:1b:d6:f2:ed:af:35:8e:e2:57:d0: 8c:00:b8:4d:00:6c:6b:89:8d:45:80:85:c4:cc:30: 73:c9:87:2d:26:4b:a3:65:7b:86:5a:7d:b2:3e:3d: 98:19:22:53:ec:7a:af:55:0d:44:4d:dd:ae:fa:22: 1d:e5:cd:a5:2d:fe:af:64:7d:d9:87:1e:06:86:7e: 47:e2:ac:d9:9b:38:07:a4:18:61:17:ad:49:55:4f: fa:86:e8:90:91:10:9a:f6:e5:1e:e9:d1:ab:c0:93: 83:8e:3e:f1:d5:43:2b:c0:57:a1:89:fd:c3:d5:19: 25:e5:76:39:b0:0a:dc:3e:d2:51:92:51:7d:43:98: 33:76:85:ff:13:2c:fb:e4:fa:a1:84:d2:37:07:0e: d5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D7:18:DE:FF:1C:D0:26:43:0E:68:B7:49:37:62:94:93:C0:A9:80 X509v3 Authority Key Identifier: keyid:A6:0C:EE:75:82:E9:75:9B:E0:16:C9:31:AB:34:D9:28:5D:2F:C8:B4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pgzudYLpdZvgFskxqzTZKF0vyLQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/decad0-26da-4b9a-b1a7-d3b38ce9dc34/1/IdcY3v8c0CZDDmi3STdilJPAqYA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/decad0-26da-4b9a-b1a7-d3b38ce9dc34/1/pgzudYLpdZvgFskxqzTZKF0vyLQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.248.128.0/24 194.60.229.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:17:b0:33:40:0c:5e:fc:90:d3:72:59:54:87:3e:e8:23:9c: ff:8c:1b:03:ca:46:06:b7:b7:31:42:db:53:e0:35:b1:3a:ea: fb:b8:ca:1f:d8:ad:ea:2b:a7:da:87:e9:96:28:56:30:3b:04: bf:30:3c:12:c2:5a:9f:1c:3b:86:44:e8:c8:c0:d4:e7:59:2c: 6b:6f:0d:02:2f:79:34:04:36:2d:92:c8:90:cc:e9:ad:21:7c: 19:13:d4:66:fb:f9:2c:94:f4:dd:16:2d:db:8b:6a:26:26:b5: bb:af:f6:b0:fa:94:a8:a3:e8:b3:30:18:a5:dc:94:8c:83:28: 10:2e:14:3c:80:a3:ac:cc:41:20:be:d5:ad:92:0d:d9:34:12: f8:33:82:29:9c:6f:3f:2e:fe:71:9b:09:d7:57:8d:d2:dd:ff: 8f:55:86:8e:18:5c:60:bf:36:81:98:0f:2e:46:06:f6:c1:c6: 68:04:41:58:87:37:cb:12:12:9e:0f:91:4f:f7:d1:1d:90:f0: e5:e7:e0:f1:0d:ee:cb:2a:53:c7:3f:70:da:c0:14:47:1c:36: 14:a8:ba:4f:6a:24:e9:75:be:48:2d:62:97:d9:8f:b8:de:a4: 4a:dd:6f:e1:88:15:c3:4e:7c:4d:04:6f:a0:8e:88:f4:0d:03: b4:d0:b4:09 -----BEGIN CERTIFICATE----- MIIFAzCCA+ugAwIBAgISAZt57Wa2BO6CmlvA+xSVZCsqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2MGNlZTc1ODJlOTc1OWJlMDE2YzkzMWFiMzRkOTI4NWQy ZmM4YjQwHhcNMjYwMTAxMTQxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMWQ3MThkZWZmMWNkMDI2NDMwZTY4Yjc0OTM3NjI5NDkzYzBhOTgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTSZ78HVfWbj287OapxCkaDeJWOV gE3goBh/Dpn1rPoFXDbAZOlBmIEDuovfuFVfYVoyvT2TemZV7zEHfrC+hsNy/V22 sdBbDGicDfLX8whrczGrSxj4hu6hxBEMSMMyBK2ISn/AVkQsEL7YIBvW8u2vNY7i V9CMALhNAGxriY1FgIXEzDBzyYctJkujZXuGWn2yPj2YGSJT7HqvVQ1ETd2u+iId 5c2lLf6vZH3Zhx4Ghn5H4qzZmzgHpBhhF61JVU/6huiQkRCa9uUe6dGrwJODjj7x 1UMrwFehif3D1Rkl5XY5sArcPtJRklF9Q5gzdoX/Eyz75PqhhNI3Bw7V3wIDAQAB o4ICDzCCAgswHQYDVR0OBBYEFCHXGN7/HNAmQw5ot0k3YpSTwKmAMB8GA1UdIwQY MBaAFKYM7nWC6XWb4BbJMas02ShdL8i0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcGd6dWRZTHBkWnZnRnNreHF6VFpLRjB2eUxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9kZWNhZDAtMjZkYS00YjlhLWIxYTct ZDNiMzhjZTlkYzM0LzEvSWRjWTN2OGMwQ1pERG1pM1NUZGlsSlBBcVlBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOC9kZWNhZDAtMjZkYS00YjlhLWIxYTctZDNiMzhjZTlkYzM0 LzEvcGd6dWRZTHBkWnZnRnNreHF6VFpLRjB2eUxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAV/iAAwQA wjzlMA0GCSqGSIb3DQEBCwUAA4IBAQBNF7AzQAxe/JDTcllUhz7oI5z/jBsDykYG t7cxQttT4DWxOur7uMof2K3qK6fah+mWKFYwOwS/MDwSwlqfHDuGROjIwNTnWSxr bw0CL3k0BDYtksiQzOmtIXwZE9Rm+/kslPTdFi3bi2omJrW7r/aw+pSoo+izMBil 3JSMgygQLhQ8gKOszEEgvtWtkg3ZNBL4M4IpnG8/Lv5xmwnXV43S3f+PVYaOGFxg vzaBmA8uRgb2wcZoBEFYhzfLEhKeD5FP99EdkPDl5+DxDe7LKlPHP3DawBRHHDYU qLpPaiTpdb5ILWKX2Y+43qRK3W/hiBXDTnxNBG+gjoj0DQO00LQJ -----END CERTIFICATE-----Generated at Tue Jan 20 02:45:51 2026 by rpki-client