This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/iGk2rj8YCAdm3k7BovgsXR_S-tk.roa File: iGk2rj8YCAdm3k7BovgsXR_S-tk.roa (raw, json) Hash identifier: Oc1cepzzGPdaTQr0Qpo8rTuwZycHeTEsjdA+8mq9b1M= Subject key identifier: 88:69:36:AE:3F:18:08:07:66:DE:4E:C1:A2:F8:2C:5D:1F:D2:FA:D9 Certificate issuer: /CN=72098efaae8063cacecc4f1c1a0b64483bb69503 Certificate serial: 019B7C80CEDA384E408B2530702D8D78D638 Authority key identifier: 72:09:8E:FA:AE:80:63:CA:CE:CC:4F:1C:1A:0B:64:48:3B:B6:95:03 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cgmO-q6AY8rOzE8cGgtkSDu2lQM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/iGk2rj8YCAdm3k7BovgsXR_S-tk.roa Signing time: Fri 02 Jan 2026 02:19:34 +0000 ROA not before: Fri 02 Jan 2026 02:19:34 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 214164 IP address blocks: 185.213.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/cgmO-q6AY8rOzE8cGgtkSDu2lQM.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/cgmO-q6AY8rOzE8cGgtkSDu2lQM.mft rsync://rpki.ripe.net/repository/DEFAULT/cgmO-q6AY8rOzE8cGgtkSDu2lQM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:ce:da:38:4e:40:8b:25:30:70:2d:8d:78:d6:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72098efaae8063cacecc4f1c1a0b64483bb69503 Validity Not Before: Jan 2 02:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=886936ae3f18080766de4ec1a2f82c5d1fd2fad9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4c:63:f9:32:aa:8d:a1:01:43:76:11:b2:9a: b1:1d:6b:83:fe:1b:79:bf:48:cd:fe:93:be:01:46: a8:7e:25:77:9c:98:d4:3f:73:06:8c:7c:38:09:35: 02:e1:d6:35:e0:02:0c:9d:fa:39:d8:e3:b0:b4:c0: d5:16:15:dd:a8:72:46:66:49:e1:8a:82:e4:fc:80: 2d:95:a1:0f:29:16:5a:1a:46:ea:df:d0:66:fe:ae: 78:98:56:ac:89:b1:78:c7:d4:06:ff:0a:c9:81:13: c7:23:6b:72:a4:05:56:2b:c8:7a:3e:f8:b3:83:a0: cb:18:7a:6f:c1:b0:91:8e:6a:9f:78:38:1d:39:f8: 8a:40:72:e4:da:b9:b9:c5:7d:66:05:ae:8d:28:b8: f9:6f:b2:2d:f7:05:7f:7a:20:bb:9b:0e:29:72:bf: 9d:44:c4:e5:02:8f:ad:0d:4b:3a:fd:f3:3a:72:98: 5d:5a:5a:08:65:a4:f3:22:63:d6:80:13:81:e3:8d: 96:34:76:a5:1f:e2:43:ef:b5:21:f0:02:a8:40:a3: a8:93:07:c0:82:1b:86:43:21:3c:a5:5c:17:fd:3a: 42:44:c5:9f:57:46:65:2e:78:10:bf:07:e1:d8:7d: 26:f3:00:4e:63:1a:35:8e:0e:d7:5f:e2:81:9e:03: 0f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:69:36:AE:3F:18:08:07:66:DE:4E:C1:A2:F8:2C:5D:1F:D2:FA:D9 X509v3 Authority Key Identifier: keyid:72:09:8E:FA:AE:80:63:CA:CE:CC:4F:1C:1A:0B:64:48:3B:B6:95:03 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cgmO-q6AY8rOzE8cGgtkSDu2lQM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/iGk2rj8YCAdm3k7BovgsXR_S-tk.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/b4daf6-448d-4f3e-944a-573ca5a609c0/1/cgmO-q6AY8rOzE8cGgtkSDu2lQM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.213.114.0/24 Signature Algorithm: sha256WithRSAEncryption a5:cf:6b:8a:29:51:52:ad:37:3a:fa:c7:03:6a:32:cc:a9:db: a0:57:ad:e8:10:8d:7f:92:a3:b4:e1:d9:2c:a8:de:31:8d:35: bb:ad:86:42:60:bb:8f:68:f1:99:a9:0e:b8:9f:29:30:9e:6a: 1a:9b:c8:87:c9:3a:e2:8f:46:f6:3d:fb:d5:53:cd:5f:d7:8c: 7d:3b:0f:5c:b0:2c:49:54:1a:1c:6c:36:32:32:ab:18:c6:c8: 2e:73:3d:44:21:ab:d5:a6:52:6b:4b:61:29:91:17:ae:27:68: 18:af:f4:53:2d:05:86:c6:05:40:cb:de:c7:3a:d0:a0:78:fd: 06:6b:4b:48:1c:78:34:24:a9:dd:1a:e4:9b:81:4f:08:e4:26: 6e:b9:5c:22:a1:22:2b:6d:9e:a9:25:ba:89:30:27:d4:cb:60: 8e:f9:50:98:00:3e:68:45:f9:c4:13:5c:1d:a9:07:61:59:28: d4:1e:3c:e5:4b:d9:d9:14:e8:bb:e2:31:8e:cf:a7:87:64:63: a6:9d:f3:6d:34:34:ab:d2:97:aa:f7:57:99:2b:ae:84:61:93: 87:66:f7:28:e5:fc:02:16:9a:ff:90:38:de:34:48:25:38:f8: 17:b0:03:c5:43:12:9d:84:4f:03:ce:8f:2c:fe:44:a7:65:a8: 97:ce:66:1f -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt8gM7aOE5AiyUwcC2NeNY4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcyMDk4ZWZhYWU4MDYzY2FjZWNjNGYxYzFhMGI2NDQ4M2Ji Njk1MDMwHhcNMjYwMTAyMDIxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODY5MzZhZTNmMTgwODA3NjZkZTRlYzFhMmY4MmM1ZDFmZDJmYWQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4kxj+TKqjaEBQ3YRspqxHWuD/ht5 v0jN/pO+AUaofiV3nJjUP3MGjHw4CTUC4dY14AIMnfo52OOwtMDVFhXdqHJGZknh ioLk/IAtlaEPKRZaGkbq39Bm/q54mFasibF4x9QG/wrJgRPHI2typAVWK8h6Pviz g6DLGHpvwbCRjmqfeDgdOfiKQHLk2rm5xX1mBa6NKLj5b7It9wV/eiC7mw4pcr+d RMTlAo+tDUs6/fM6cphdWloIZaTzImPWgBOB442WNHalH+JD77Uh8AKoQKOokwfA ghuGQyE8pVwX/TpCRMWfV0ZlLngQvwfh2H0m8wBOYxo1jg7XX+KBngMPPQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFIhpNq4/GAgHZt5OwaL4LF0f0vrZMB8GA1UdIwQY MBaAFHIJjvqugGPKzsxPHBoLZEg7tpUDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY2dtTy1xNkFZOHJPekU4Y0dndGtTRHUybFFNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9iNGRhZjYtNDQ4ZC00ZjNlLTk0NGEt NTczY2E1YTYwOWMwLzEvaUdrMnJqOFlDQWRtM2s3Qm92Z3NYUl9TLXRrLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9iNGRhZjYtNDQ4ZC00ZjNlLTk0NGEtNTczY2E1YTYwOWMw LzEvY2dtTy1xNkFZOHJPekU4Y0dndGtTRHUybFFNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudVyMA0G CSqGSIb3DQEBCwUAA4IBAQClz2uKKVFSrTc6+scDajLMqdugV63oEI1/kqO04dks qN4xjTW7rYZCYLuPaPGZqQ64nykwnmoam8iHyTrij0b2PfvVU81f14x9Ow9csCxJ VBocbDYyMqsYxsgucz1EIavVplJrS2EpkReuJ2gYr/RTLQWGxgVAy97HOtCgeP0G a0tIHHg0JKndGuSbgU8I5CZuuVwioSIrbZ6pJbqJMCfUy2CO+VCYAD5oRfnEE1wd qQdhWSjUHjzlS9nZFOi74jGOz6eHZGOmnfNtNDSr0peq91eZK66EYZOHZvco5fwC Fpr/kDjeNEglOPgXsAPFQxKdhE8Dzo8s/kSnZaiXzmYf -----END CERTIFICATE-----Generated at Mon Feb 9 18:42:32 2026 by rpki-client