This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/IjH8Bw6khS3HfsHRDOq7KVhCvtE.roa File: IjH8Bw6khS3HfsHRDOq7KVhCvtE.roa (raw, json) Hash identifier: xqV8sj84jv/de5gXJFmozbmUfKDQmxucnoddgaBj3m4= Subject key identifier: 22:31:FC:07:0E:A4:85:2D:C7:7E:C1:D1:0C:EA:BB:29:58:42:BE:D1 Certificate issuer: /CN=a952d0d266557385836aab7ae3fdced4ca74ad89 Certificate serial: 019B7E39151E44AC6701AC5762141733200C Authority key identifier: A9:52:D0:D2:66:55:73:85:83:6A:AB:7A:E3:FD:CE:D4:CA:74:AD:89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/IjH8Bw6khS3HfsHRDOq7KVhCvtE.roa Signing time: Fri 02 Jan 2026 10:20:28 +0000 ROA not before: Fri 02 Jan 2026 10:20:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 216139 IP address blocks: 178.217.100.0/24 maxlen: 24 178.217.101.0/24 maxlen: 24 217.144.102.0/24 maxlen: 24 2a03:80c0:abba::/48 maxlen: 48 2a03:80c0:face::/48 maxlen: 48 2a03:c980:face::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.mft rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:15:1e:44:ac:67:01:ac:57:62:14:17:33:20:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a952d0d266557385836aab7ae3fdced4ca74ad89 Validity Not Before: Jan 2 10:20:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2231fc070ea4852dc77ec1d10ceabb295842bed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e4:63:76:07:86:73:83:78:1e:9c:40:37:ec: d5:75:13:4d:57:dc:a7:49:01:18:42:93:32:74:be: f6:05:b7:33:e8:e8:7e:89:1e:82:4d:48:b2:3d:a5: 2f:ac:85:12:e5:0b:0f:3b:52:ba:42:89:17:62:f9: 24:87:70:4f:4c:d8:a7:0b:db:e4:88:99:ef:03:b9: 73:2f:48:98:71:c1:82:1b:78:9d:4c:61:e4:5c:7d: 7a:84:b3:92:35:5d:6a:8c:2b:73:fd:66:40:0c:17: 98:44:89:56:2a:53:7e:ba:24:68:c5:fa:31:66:07: b9:8c:31:9b:7f:2d:f4:ef:f3:91:83:1f:9e:a2:54: b5:70:47:25:69:2b:06:26:84:4d:0d:75:c1:28:c9: 0c:15:09:f4:d7:91:c1:52:2f:59:be:32:ee:c6:fb: b3:07:49:62:6a:62:a1:56:22:9b:2a:76:44:df:cc: 31:20:01:6a:1f:e9:f1:3c:73:94:36:8c:df:6d:a6: d0:87:49:b9:9d:89:8d:fb:08:cc:bf:ba:50:01:c8: 87:39:b3:7a:e9:9e:c7:e6:d1:17:4d:b8:22:ca:79: ea:e3:c8:31:5f:14:7a:53:f9:c3:a2:fe:9d:0b:08: 38:d3:a7:d5:2e:7d:b2:95:f8:88:a1:28:57:ac:16: 3a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:31:FC:07:0E:A4:85:2D:C7:7E:C1:D1:0C:EA:BB:29:58:42:BE:D1 X509v3 Authority Key Identifier: keyid:A9:52:D0:D2:66:55:73:85:83:6A:AB:7A:E3:FD:CE:D4:CA:74:AD:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/IjH8Bw6khS3HfsHRDOq7KVhCvtE.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/270a91-cbfd-4503-b960-4c21a505f346/1/qVLQ0mZVc4WDaqt64_3O1Mp0rYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.217.100.0/23 217.144.102.0/24 IPv6: 2a03:80c0:abba::/48 2a03:80c0:face::/48 2a03:c980:face::/48 Signature Algorithm: sha256WithRSAEncryption d5:04:05:40:ec:f9:52:68:ca:a4:a6:0f:08:17:c2:14:4e:d2: b8:25:53:cd:7b:19:28:96:2d:8d:a7:0e:45:88:d6:b5:a7:d0: 7e:87:15:ad:e1:f0:36:22:cc:d2:5b:ad:2b:95:1e:72:11:e6: d7:b0:c8:53:ed:60:c7:88:76:70:a4:6c:2d:30:8b:2f:df:2f: fb:7f:96:7c:21:ad:08:b4:20:20:51:d7:8f:79:98:81:04:5d: 71:51:de:e4:f7:74:bd:c2:31:bd:c0:f5:09:c3:eb:68:ea:8f: 87:98:08:e8:6a:f9:19:a8:51:da:cc:b3:15:d7:ca:12:09:b6: 6f:d7:e8:14:2d:37:a2:ff:68:8b:c1:da:97:87:36:65:43:97: 73:ed:48:d7:aa:50:d1:be:8f:5c:28:60:ea:07:68:f6:41:b9: c5:ba:8f:54:59:9e:0a:dd:6b:a2:de:30:bd:08:75:5a:89:a3: f3:7a:f8:cb:25:cc:94:12:57:13:fb:10:2f:1a:1d:a5:69:d7: 43:b6:61:26:68:df:12:d1:a8:58:87:f4:48:f4:a1:96:d8:7f: 89:c8:48:e1:ce:30:cd:ee:6b:f3:b0:2e:59:5c:ba:99:ec:f3: ef:16:ff:15:c8:32:1e:4c:46:14:7e:f0:78:57:0e:87:fa:3c: 2d:25:f1:b5 -----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgISAZt+ORUeRKxnAaxXYhQXMyAMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE5NTJkMGQyNjY1NTczODU4MzZhYWI3YWUzZmRjZWQ0Y2E3 NGFkODkwHhcNMjYwMTAyMTAyMDI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMjMxZmMwNzBlYTQ4NTJkYzc3ZWMxZDEwY2VhYmIyOTU4NDJiZWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuRjdgeGc4N4HpxAN+zVdRNNV9yn SQEYQpMydL72Bbcz6Oh+iR6CTUiyPaUvrIUS5QsPO1K6QokXYvkkh3BPTNinC9vk iJnvA7lzL0iYccGCG3idTGHkXH16hLOSNV1qjCtz/WZADBeYRIlWKlN+uiRoxfox Zge5jDGbfy307/ORgx+eolS1cEclaSsGJoRNDXXBKMkMFQn015HBUi9ZvjLuxvuz B0liamKhViKbKnZE38wxIAFqH+nxPHOUNozfbabQh0m5nYmN+wjMv7pQAciHObN6 6Z7H5tEXTbgiynnq48gxXxR6U/nDov6dCwg406fVLn2ylfiIoShXrBY6GQIDAQAB o4ICMjCCAi4wHQYDVR0OBBYEFCIx/AcOpIUtx37B0QzquylYQr7RMB8GA1UdIwQY MBaAFKlS0NJmVXOFg2qreuP9ztTKdK2JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcVZMUTBtWlZjNFdEYXF0NjRfM08xTXAwcllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8yNzBhOTEtY2JmZC00NTAzLWI5NjAt NGMyMWE1MDVmMzQ2LzEvSWpIOEJ3NmtoUzNIZnNIUkRPcTdLVmhDdnRFLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi8yNzBhOTEtY2JmZC00NTAzLWI5NjAtNGMyMWE1MDVmMzQ2 LzEvcVZMUTBtWlZjNFdEYXF0NjRfM08xTXAwcllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEgGCCsGAQUFBwEHAQH/BDkwNzASBAIAATAMAwQBstlkAwQA 2ZBmMCEEAgACMBsDBwAqA4DAq7oDBwAqA4DA+s4DBwAqA8mA+s4wDQYJKoZIhvcN AQELBQADggEBANUEBUDs+VJoyqSmDwgXwhRO0rglU817GSiWLY2nDkWI1rWn0H6H Fa3h8DYizNJbrSuVHnIR5tewyFPtYMeIdnCkbC0wiy/fL/t/lnwhrQi0ICBR1495 mIEEXXFR3uT3dL3CMb3A9QnD62jqj4eYCOhq+RmoUdrMsxXXyhIJtm/X6BQtN6L/ aIvB2peHNmVDl3PtSNeqUNG+j1woYOoHaPZBucW6j1RZngrda6LeML0IdVqJo/N6 +MslzJQSVxP7EC8aHaVp10O2YSZo3xLRqFiH9Ej0oZbYf4nISOHOMM3ua/OwLllc upns8+8W/xXIMh5MRhR+8HhXDof6PC0l8bU= -----END CERTIFICATE-----Generated at Mon Jan 26 19:36:01 2026 by rpki-client